$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa File: A6A6CE0A54EC11E791C3F825C4F9AE02.roa (raw, json) Hash identifier: GKvqpNtngL4CLVJfuRTvFt8AdTrJ98zOSUzO6azhFSk= Subject key identifier: 29:AD:7E:10:F8:DC:DE:7F:59:1B:9B:66:9D:C8:DE:59:8F:32:6E:3D Certificate issuer: /CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Certificate serial: 2533 Authority key identifier: 47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa Signing time: Tue 08 Oct 2024 16:03:21 +0000 ROA not before: Tue 08 Oct 2024 16:03:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7712 IP address blocks: 118.67.200.0/21 maxlen: 24 2405:aa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9523 (0x2533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Validity Not Before: Oct 8 16:03:21 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670557c9-521f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:8d:6c:ed:de:13:a9:0d:89:20:cd:05:05: 1e:5c:ab:d0:66:34:2a:4f:85:b7:fd:be:2a:49:ad: 83:12:5c:d4:5e:cd:16:5d:b5:8f:d6:d1:33:ab:63: 39:e2:4c:5c:e4:9d:50:2d:86:83:c6:79:5b:6d:e8: 0c:44:47:0f:0d:a2:e7:ee:10:b1:d4:e4:51:d9:7e: 7a:4a:86:2e:4c:d2:ab:a5:83:11:d0:f9:ab:e3:ee: 0c:96:7f:24:8f:6c:75:5f:2d:cf:03:b6:49:95:b9: fd:d0:bd:62:8a:77:f2:c9:be:41:1a:0b:8a:c2:15: c7:a3:fe:a5:17:7d:b0:e8:7b:e1:fc:b1:48:96:8e: 3a:ff:bc:56:9c:92:df:13:90:72:77:aa:13:c8:97: 84:45:a6:ba:eb:3b:2a:d6:e1:d1:7c:22:3c:04:f7: b5:b8:08:36:05:d7:ae:3e:d5:96:41:8d:82:be:07: cf:29:8d:f7:cd:22:aa:c0:ae:31:8d:23:80:63:05: 3f:90:82:8b:a6:10:74:69:3e:e9:ba:40:be:5b:47: ae:9b:22:ac:41:80:74:e8:df:63:9e:74:14:3c:c2: e9:69:51:a2:2e:ee:d0:62:05:2d:d8:87:74:ab:70: 54:15:9d:9c:60:b9:65:5b:ce:1c:09:ac:24:3b:1e: 97:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AD:7E:10:F8:DC:DE:7F:59:1B:9B:66:9D:C8:DE:59:8F:32:6E:3D X509v3 Authority Key Identifier: keyid:47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.67.200.0/21 IPv6: 2405:aa00::/32 Signature Algorithm: sha256WithRSAEncryption 84:3a:4f:66:4a:77:2a:18:2a:9c:4a:cc:7b:9f:bd:8e:24:38: 7d:d2:2c:55:48:70:53:8d:83:e1:e4:ba:6b:38:ec:17:80:83: c9:84:6d:64:8f:7a:23:a7:b6:b2:a2:53:d4:70:df:e5:03:f5: 4b:98:45:30:58:3f:9d:b3:05:d0:2d:5f:bb:ea:d3:d8:c4:3d: f8:54:aa:86:45:dd:41:9e:ac:48:5c:3a:48:a8:18:fa:9a:74: 64:5b:8b:e3:46:b5:af:33:c0:d9:4a:5e:31:d2:14:7e:ea:a0: a3:fa:b4:63:50:17:c9:6b:a6:6d:13:6e:da:0d:b9:45:67:d3: c0:34:30:66:77:98:42:e1:38:6c:17:53:0c:3e:16:dc:0c:73: 4c:62:76:f2:e6:df:fc:00:73:ca:53:95:83:c1:0d:a4:48:9b: 21:3d:30:90:86:e9:1f:02:ee:9a:9b:a5:fe:e3:6b:26:e5:23: bc:10:a2:98:30:b8:93:a5:d9:89:22:fa:12:4e:29:4c:2e:3a: 53:e1:bc:cd:47:c5:7b:b8:00:ce:17:73:a1:57:8b:5a:bc:72: 30:24:c5:20:e2:c4:de:f0:20:ed:a9:ee:df:20:63:20:60:bb: 9b:8a:dc:af:28:44:82:42:a1:d9:e9:8d:99:0a:08:55:fe:29: 5a:4f:20:e4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICJTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjgxMTAvBgNVBAUTKDQ3MTYwNjc4NUIzMkY0REYzRUM5NDNGMkE3ODdEQkEy MTI2OTZFMUYwHhcNMjQxMDA4MTYwMzIxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1NTdjOS01MjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnGNbO3eE6kNiSDNBQUeXKvQZjQqT4W3/b4qSa2DElzUXs0WXbWP1tEzq2M5 4kxc5J1QLYaDxnlbbegMREcPDaLn7hCx1ORR2X56SoYuTNKrpYMR0Pmr4+4Mln8k j2x1Xy3PA7ZJlbn90L1iinfyyb5BGguKwhXHo/6lF32w6Hvh/LFIlo46/7xWnJLf E5Byd6oTyJeERaa66zsq1uHRfCI8BPe1uAg2BdeuPtWWQY2CvgfPKY33zSKqwK4x jSOAYwU/kIKLphB0aT7pukC+W0eumyKsQYB06N9jnnQUPMLpaVGiLu7QYgUt2Id0 q3BUFZ2cYLllW84cCawkOx6X1QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCmtfhD4 3N5/WRubZp3I3lmPMm49MB8GA1UdIwQYMBaAFEcWBnhbMvTfPslD8qeH26ISaW4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyOC9GQUVGOENCRTEz NDMxMUU1OTZGNTQwMUVDNEY5QUUwMi9SeFlHZUZzeTlOOC15VVB5cDRmYm9oSnBi aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4WUdlRnN5OU44LXlVUHlwNGZib2hKcGJoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCMjgvRkFFRjhDQkUxMzQzMTFFNTk2RjU0MDFFQzRGOUFFMDIvQTZBNkNFMEE1 NEVDMTFFNzkxQzNGODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN2Q8gwDQQCAAIwBwMFACQFqgAwDQYJKoZIhvcNAQELBQAD ggEBAIQ6T2ZKdyoYKpxKzHufvY4kOH3SLFVIcFONg+Hkums47BeAg8mEbWSPeiOn trKiU9Rw3+UD9UuYRTBYP52zBdAtX7vq09jEPfhUqoZF3UGerEhcOkioGPqadGRb i+NGta8zwNlKXjHSFH7qoKP6tGNQF8lrpm0TbtoNuUVn08A0MGZ3mELhOGwXUww+ FtwMc0xidvLm3/wAc8pTlYPBDaRImyE9MJCG6R8C7pqbpf7jayblI7wQopgwuJOl 2Yki+hJOKUwuOlPhvM1HxXu4AM4Xc6FXi1q8cjAkxSDixN7wIO2p7t8gYyBgu5uK 3K8oRIJCodnpjZkKCFX+KVpPIOQ= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:09 2024 by rpki-client on console-ams.rpki-client.org