$ rpki-client -vvf rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa File: 6211D40A941F11EEA7C3E86FC4F9AE02.roa (raw, json) Hash identifier: VzIcL9cwYPKsctz7TXhlKtxDnAxMW1Nmzyb+yo8dVqU= Subject key identifier: 03:8B:2F:E0:71:E8:A1:B6:97:BB:3C:92:63:18:EA:2E:A8:8E:47:3F Certificate issuer: /CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Certificate serial: 0831 Authority key identifier: 2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa Signing time: Mon 12 Aug 2024 21:18:53 +0000 ROA not before: Mon 12 Aug 2024 21:18:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 26496 IP address blocks: 2406:f380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Validity Not Before: Aug 12 21:18:53 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ba7c3c-93e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:84:ae:7f:88:55:70:64:77:aa:a5:4e:7a:4d: b7:77:73:8f:1c:e2:8b:0e:d2:34:9c:d5:7c:e8:a1: fc:fd:78:0b:07:8b:d2:1d:c5:2b:2e:d3:63:90:6a: 44:b2:9c:f2:a5:af:1f:0a:78:b3:27:ad:6d:ff:aa: 10:33:e9:16:f6:b5:e8:88:0d:ad:6f:2e:7a:61:59: a5:ad:4b:72:2d:3f:b8:56:7a:fa:0d:2e:28:e1:1e: af:da:59:09:4c:b4:a4:dc:95:79:5b:f3:27:72:c7: a7:30:90:9c:61:bf:12:e2:a1:11:7a:dc:24:6a:aa: 25:9c:de:84:0b:23:64:55:61:c8:fd:7c:28:6e:24: 55:88:14:7c:ac:22:30:b9:37:30:c0:96:21:bd:17: 48:21:6c:f2:64:06:f8:16:ca:7e:d8:2d:ce:93:ce: c4:b3:49:86:f9:66:36:57:a1:28:cf:5f:ad:10:49: 1e:1f:2f:0f:11:f9:da:de:58:8f:c9:d5:14:d3:4e: fe:2a:c7:ba:e0:99:7c:ac:c7:b0:84:63:ab:07:8a: 21:52:ef:83:ce:ba:10:84:6f:cd:37:50:e9:66:3d: 23:c9:24:7b:00:93:06:5c:0f:8b:cf:33:85:4d:6c: d2:2a:da:42:93:bd:17:ff:05:a0:2f:fe:13:bf:12: 28:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8B:2F:E0:71:E8:A1:B6:97:BB:3C:92:63:18:EA:2E:A8:8E:47:3F X509v3 Authority Key Identifier: keyid:2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:f380::/32 Signature Algorithm: sha256WithRSAEncryption 7e:4f:5d:92:df:19:d6:b7:38:e6:6f:d7:0e:63:34:07:60:b9: 4b:6e:38:dc:a5:59:84:7e:88:7d:c9:dd:09:1e:85:2b:34:92: f8:01:40:bd:05:db:93:7c:2d:55:a2:2b:0a:a8:ca:7c:06:2b: a1:78:81:6e:f6:e4:5f:b7:28:bd:4f:bc:31:9d:44:76:c0:07: 07:d8:58:97:59:0e:2c:6e:c7:4b:c3:cc:13:02:af:38:3e:20: 90:7f:1b:b1:37:b9:8a:07:5f:96:80:ce:b1:1a:1f:f1:f3:5b: 47:2c:e6:cc:d3:08:8f:c3:c6:40:65:45:40:20:29:da:52:29: 5a:a1:22:a6:6f:07:4e:e5:70:3b:1d:e7:6d:c3:0f:b5:e4:5b: 5b:41:23:8e:62:32:f2:5e:9d:42:80:80:18:42:01:50:b6:40: 08:30:1d:8c:26:6f:3a:cf:f6:77:4d:0a:ea:6d:e2:88:bc:72: 8e:20:f2:df:19:4a:ba:60:3a:95:b1:21:0d:15:30:a2:ff:b2: 6e:dd:e0:e3:00:f1:d6:78:e0:95:bc:eb:fa:75:00:6f:79:c6: f5:e4:24:10:e4:df:b7:ae:3d:f0:26:2f:59:31:6b:ef:e1:6f: a8:42:bc:fb:b8:14:1b:e1:eb:15:fb:55:a8:f2:63:eb:ca:84: 14:d7:cb:28 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDNEMxMTAvBgNVBAUTKDJBOUFFRjZCQzEyOTkxNENBMEI5MTA1QzkyNzFERUFG MzlEQkM4NjYwHhcNMjQwODEyMjExODUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhN2MzYy05M2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YSuf4hVcGR3qqVOek23d3OPHOKLDtI0nNV86KH8/XgLB4vSHcUrLtNjkGpE spzypa8fCnizJ61t/6oQM+kW9rXoiA2tby56YVmlrUtyLT+4Vnr6DS4o4R6v2lkJ TLSk3JV5W/MncsenMJCcYb8S4qERetwkaqolnN6ECyNkVWHI/XwobiRViBR8rCIw uTcwwJYhvRdIIWzyZAb4Fsp+2C3Ok87Es0mG+WY2V6Eoz1+tEEkeHy8PEfna3liP ydUU007+Kse64Jl8rMewhGOrB4ohUu+DzroQhG/NN1DpZj0jySR7AJMGXA+LzzOF TWzSKtpCk70X/wWgL/4TvxIoXQIDAQABo4ICljCCApIwHQYDVR0OBBYEFAOLL+Bx 6KG2l7s8kmMY6i6ojkc/MB8GA1UdIwQYMBaAFCqa72vBKZFMoLkQXJJx3q8528hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0M0Qy9DQ0IyMDM1NEI5 RTIxMUVBQkM1NTRCODNDNEY5QUUwMi9LcHJ2YThFcGtVeWd1UkJja25IZXJ6bmJ5 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twcnZhOEVwa1V5Z3VSQmNrbkhlcnpuYnlHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDNEMvQ0NCMjAzNTRCOUUyMTFFQUJDNTU0QjgzQzRGOUFFMDIvNjIxMUQ0MEE5 NDFGMTFFRUE3QzNFODZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBvOAMA0GCSqGSIb3DQEBCwUAA4IBAQB+T12S3xnWtzjm b9cOYzQHYLlLbjjcpVmEfoh9yd0JHoUrNJL4AUC9BduTfC1VoisKqMp8BiuheIFu 9uRftyi9T7wxnUR2wAcH2FiXWQ4sbsdLw8wTAq84PiCQfxuxN7mKB1+WgM6xGh/x 81tHLObM0wiPw8ZAZUVAICnaUilaoSKmbwdO5XA7Hedtww+15FtbQSOOYjLyXp1C gIAYQgFQtkAIMB2MJm86z/Z3TQrqbeKIvHKOIPLfGUq6YDqVsSENFTCi/7Ju3eDj APHWeOCVvOv6dQBvecb15CQQ5N+3rj3wJi9ZMWvv4W+oQrz7uBQb4esV+1Wo8mPr yoQU18so -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:38 2024 by rpki-client on console-fra.rpki-client.org