$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/D2158BC4AA7C11EF9A76A779C4F9AE02.roa File: D2158BC4AA7C11EF9A76A779C4F9AE02.roa (raw, json) Hash identifier: LaPRc5QCE3D/egNmbBmNccMoDV83OnAl0IeSttB5Fwk= Subject key identifier: 77:91:5D:68:92:4F:EF:A6:AD:0C:44:CD:84:63:70:A5:42:57:8C:21 Certificate issuer: /CN=A9146179/serialNumber=40502A4B0C1FF4682F52E34064044445287D4BB8 Certificate serial: 02 Authority key identifier: 40:50:2A:4B:0C:1F:F4:68:2F:52:E3:40:64:04:44:45:28:7D:4B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFAqSwwf9GgvUuNAZARERSh9S7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/D2158BC4AA7C11EF9A76A779C4F9AE02.roa Signing time: Sun 24 Nov 2024 15:57:35 +0000 ROA not before: Sun 24 Nov 2024 15:57:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 142158 IP address blocks: 2001:df4:a4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/QFAqSwwf9GgvUuNAZARERSh9S7g.crl rsync://rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/QFAqSwwf9GgvUuNAZARERSh9S7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFAqSwwf9GgvUuNAZARERSh9S7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179/serialNumber=40502A4B0C1FF4682F52E34064044445287D4BB8 Validity Not Before: Nov 24 15:57:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67434cef-02b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:36:21:50:7b:86:13:25:54:7e:e0:21:f2:ad: 91:bd:86:de:d3:78:43:c3:8a:7b:68:12:2e:a9:59: d7:e9:93:37:39:dc:50:ca:55:a4:81:d2:17:f6:10: 46:9d:8d:ba:3d:d4:ce:97:1d:95:86:dd:6b:c3:31: 55:a8:50:2a:95:81:1e:c5:1f:95:e9:34:bf:37:72: e4:3a:a7:b1:63:18:df:26:b5:02:09:6f:61:56:b5: 61:24:2b:42:2d:66:2a:de:f4:1c:02:d8:1b:33:b0: c6:14:99:55:4a:4f:43:19:09:d7:0f:03:96:2c:01: 49:6e:7d:16:2a:fe:db:1c:b4:2f:bc:04:f4:9d:cd: 05:f4:06:bc:57:e1:f8:5f:4d:c7:57:85:74:ad:9e: 9a:18:f1:8d:78:c7:57:4c:88:7c:ad:f9:15:46:49: f6:a4:e3:3a:47:8d:6c:07:2e:22:47:3f:d3:9c:4b: dc:2f:61:f5:31:88:a1:5a:c4:23:e4:87:14:0c:67: 20:05:10:10:f9:57:85:35:90:e9:15:41:61:b3:7c: f7:11:c4:74:c4:62:66:b5:40:a8:8c:a5:cd:68:ae: 78:6e:79:05:23:90:8c:7f:27:7d:12:a5:68:96:5e: f1:24:5b:49:68:c4:08:09:fc:22:11:9a:0b:78:7f: 9d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:91:5D:68:92:4F:EF:A6:AD:0C:44:CD:84:63:70:A5:42:57:8C:21 X509v3 Authority Key Identifier: keyid:40:50:2A:4B:0C:1F:F4:68:2F:52:E3:40:64:04:44:45:28:7D:4B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/QFAqSwwf9GgvUuNAZARERSh9S7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFAqSwwf9GgvUuNAZARERSh9S7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/54E04716AA7C11EFA33BFD77C4F9AE02/D2158BC4AA7C11EF9A76A779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a4c0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:cf:7d:ea:de:64:48:ce:7a:9e:13:ca:d8:dd:3f:8d:da:48: 58:00:74:7e:4d:97:d1:b1:85:38:68:3b:93:ed:7d:77:c0:71: dc:a8:f7:80:4c:21:16:48:3f:95:a8:34:bd:aa:83:b2:71:b7: 87:8d:c9:bd:2b:b2:7c:f6:ef:f7:c6:a5:61:5b:f6:39:07:04: 6f:40:0d:49:91:61:d4:d8:e5:ab:56:0a:e8:3a:24:28:e8:ba: ff:54:c1:12:8d:4d:59:84:11:1f:d6:8b:5e:4e:d4:3d:cc:a5: 36:af:ea:79:9f:61:27:78:3d:1c:77:2a:96:25:3a:b2:7e:99: 70:50:75:ca:65:25:57:e9:fe:c7:b7:b3:2d:7c:d9:17:d5:d3: f0:e8:b5:89:04:9b:fe:cd:98:a1:2c:c4:f3:6a:c3:c0:e7:7d: 62:9d:b5:b0:e0:ab:62:5b:f4:57:b8:6c:5a:d3:a5:ab:6f:ca: a4:c9:d4:f8:0d:f9:c8:62:12:86:cd:8b:5d:23:6e:17:6b:00: eb:c5:be:f6:6e:74:19:94:da:f0:0e:43:f3:14:47:02:f6:42: 10:13:51:03:16:14:f8:38:f5:78:92:56:a2:5d:8a:19:5a:c3: cf:c0:ac:60:ed:3c:b4:ad:fc:58:6c:f4:49:e3:e7:2f:95:ad: d7:2a:20:cc -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjE3OTExMC8GA1UEBRMoNDA1MDJBNEIwQzFGRjQ2ODJGNTJFMzQwNjQwNDQ0NDUy ODdENEJCODAeFw0yNDExMjQxNTU3MzVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDM0Y2VmLTAyYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDINiFQe4YTJVR+4CHyrZG9ht7TeEPDintoEi6pWdfpkzc53FDKVaSB0hf2EEad jbo91M6XHZWG3WvDMVWoUCqVgR7FH5XpNL83cuQ6p7FjGN8mtQIJb2FWtWEkK0It Zire9BwC2BszsMYUmVVKT0MZCdcPA5YsAUlufRYq/tsctC+8BPSdzQX0BrxX4fhf TcdXhXStnpoY8Y14x1dMiHyt+RVGSfak4zpHjWwHLiJHP9OcS9wvYfUxiKFaxCPk hxQMZyAFEBD5V4U1kOkVQWGzfPcRxHTEYma1QKiMpc1ornhueQUjkIx/J30SpWiW XvEkW0loxAgJ/CIRmgt4f52JAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUd5FdaJJP 76atDETNhGNwpUJXjCEwHwYDVR0jBBgwFoAUQFAqSwwf9GgvUuNAZARERSh9S7gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MTc5LzU0RTA0NzE2QUE3 QzExRUZBMzNCRkQ3N0M0RjlBRTAyL1FGQXFTd3dmOUdndlV1TkFaQVJFUlNoOVM3 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUZBcVN3d2Y5R2d2VXVOQVpBUkVSU2g5UzdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS81NEUwNDcxNkFBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9EMjE1OEJDNEFB N0MxMUVGOUE3NkE3NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSkwDANBgkqhkiG9w0BAQsFAAOCAQEAC8996t5kSM56 nhPK2N0/jdpIWAB0fk2X0bGFOGg7k+19d8Bx3Kj3gEwhFkg/lag0vaqDsnG3h43J vSuyfPbv98alYVv2OQcEb0ANSZFh1Njlq1YK6DokKOi6/1TBEo1NWYQRH9aLXk7U PcylNq/qeZ9hJ3g9HHcqliU6sn6ZcFB1ymUlV+n+x7ezLXzZF9XT8Oi1iQSb/s2Y oSzE82rDwOd9Yp21sOCrYlv0V7hsWtOlq2/KpMnU+A35yGIShs2LXSNuF2sA68W+ 9m50GZTa8A5D8xRHAvZCEBNRAxYU+Dj1eJJWol2KGVrDz8CsYO08tK38WGz0SePn L5Wt1yogzA== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:11 2024 by rpki-client on console-fra.rpki-client.org