$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa File: 99AA0D12924111EFB764DA22C4F9AE02.roa (raw, json) Hash identifier: 6Ekj1nXZBXdZ0SK5obl2WhrbeIrpop08pwoR14tlr2w= Subject key identifier: D2:51:B3:4A:8D:3B:11:35:BC:F2:21:A8:C8:9F:90:0F:CD:39:DD:54 Certificate issuer: /CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Certificate serial: 0A Authority key identifier: EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa Signing time: Thu 24 Oct 2024 20:10:07 +0000 ROA not before: Thu 24 Oct 2024 20:10:07 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152479 IP address blocks: 2401:cfa0::/32 maxlen: 32 2401:cfa0::/40 maxlen: 40 2401:cfa0:100::/40 maxlen: 40 2401:cfa0:101::/48 maxlen: 48 2401:cfa0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E50/serialNumber=ECB4840056046A8A932284EA5F1E046A02331CE9 Validity Not Before: Oct 24 20:10:07 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=671aa99f-d587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d1:33:6f:95:72:3e:d3:c2:49:d3:2e:be:10: 8b:e3:d6:fa:2d:65:1a:16:82:c8:1b:ec:04:ca:35: 82:6a:ae:81:5b:fb:c1:7f:e7:2c:7f:81:7d:a9:51: 33:be:52:6d:7b:41:34:78:31:b7:d6:d9:9d:44:55: 23:82:38:e6:25:45:b0:69:9b:90:18:6d:21:16:f8: 16:f5:5f:e2:86:11:c8:56:c8:ff:a1:3f:b5:53:a4: 0c:0f:91:b5:fc:7a:dc:d2:d5:c7:13:eb:4a:49:d6: 76:77:8f:de:6b:8a:22:67:9d:2b:8d:f1:85:94:00: 6d:0c:77:62:97:b8:a5:c1:9c:f7:6c:08:b4:f8:ce: da:3b:21:b6:39:bc:4b:47:b2:b3:ec:24:5f:34:cb: 85:61:cf:af:f7:1e:1f:1f:5f:ff:43:5f:4a:94:62: ff:ec:99:19:a6:f9:69:bd:ec:64:87:1f:f7:76:c8: 52:0c:4e:4e:13:d6:58:a4:28:24:b9:c4:a7:f3:04: 0a:73:08:cd:64:a0:9d:54:78:8d:9b:e5:c4:ab:f8: 79:ca:a3:43:20:90:fe:da:26:9a:28:16:f2:4e:d8: 57:79:3b:70:46:bf:6c:18:2f:a0:6a:2a:62:b1:2c: da:2c:87:18:f9:bb:45:ff:e6:d1:34:8e:b4:a2:33: c0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:51:B3:4A:8D:3B:11:35:BC:F2:21:A8:C8:9F:90:0F:CD:39:DD:54 X509v3 Authority Key Identifier: keyid:EC:B4:84:00:56:04:6A:8A:93:22:84:EA:5F:1E:04:6A:02:33:1C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/7LSEAFYEaoqTIoTqXx4EagIzHOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LSEAFYEaoqTIoTqXx4EagIzHOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E50/2DD7638C924111EFA56CCE21C4F9AE02/99AA0D12924111EFB764DA22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:cfa0::/32 Signature Algorithm: sha256WithRSAEncryption 85:80:b6:e2:77:d4:79:b8:19:d5:24:38:28:51:73:2b:7b:f4: 83:87:20:52:5b:d8:be:56:45:66:11:d3:1f:65:1a:9f:68:b7: e2:e6:48:e6:75:26:d4:a5:9b:65:ab:97:99:6a:93:75:94:a8: 34:75:3b:dc:8b:97:fa:09:e1:45:da:4e:17:f1:02:98:16:e2: 72:10:93:a5:64:95:ef:7a:8b:97:55:34:3f:fb:2a:af:26:1d: ad:b3:05:b4:12:7d:cc:8e:c0:86:9a:78:12:1b:09:bb:d2:20: 02:08:53:e4:f3:82:6f:81:1f:02:f9:76:1e:2c:ee:58:bd:13: 35:a4:b3:4f:b1:93:2e:56:17:df:0f:29:ba:4d:20:5f:3f:cb: 30:f6:19:9a:75:5a:5a:0f:17:e8:80:d9:c0:f8:4e:8e:bd:95: 0d:ab:1f:52:c5:67:a4:89:4b:ec:f7:54:21:81:c3:8d:e5:8b: 03:13:7f:f5:b6:32:f2:d1:75:a7:01:e1:c3:5d:86:1b:b2:36: 12:af:23:b0:5c:91:1e:40:a0:cb:59:4f:85:08:e0:df:50:f5: 84:24:dc:23:a6:eb:5c:04:7d:24:87:b8:70:10:99:e4:33:f3: 73:5c:ba:61:0b:1e:2f:d9:ab:bc:b0:8f:29:80:aa:90:6b:45: 74:71:ea:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUU1MDExMC8GA1UEBRMoRUNCNDg0MDA1NjA0NkE4QTkzMjI4NEVBNUYxRTA0NkEw MjMzMUNFOTAeFw0yNDEwMjQyMDEwMDdaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWFhOTlmLWQ1ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDi0TNvlXI+08JJ0y6+EIvj1votZRoWgsgb7ATKNYJqroFb+8F/5yx/gX2pUTO+ Um17QTR4MbfW2Z1EVSOCOOYlRbBpm5AYbSEW+Bb1X+KGEchWyP+hP7VTpAwPkbX8 etzS1ccT60pJ1nZ3j95riiJnnSuN8YWUAG0Md2KXuKXBnPdsCLT4zto7IbY5vEtH srPsJF80y4Vhz6/3Hh8fX/9DX0qUYv/smRmm+Wm97GSHH/d2yFIMTk4T1likKCS5 xKfzBApzCM1koJ1UeI2b5cSr+HnKo0MgkP7aJpooFvJO2Fd5O3BGv2wYL6BqKmKx LNoshxj5u0X/5tE0jrSiM8DlAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU0lGzSo07 ETW88iGoyJ+QD8053VQwHwYDVR0jBBgwFoAU7LSEAFYEaoqTIoTqXx4EagIzHOkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5RTUwLzJERDc2MzhDOTI0 MTExRUZBNTZDQ0UyMUM0RjlBRTAyLzdMU0VBRllFYW9xVElvVHFYeDRFYWdJekhP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0xTRUFGWUVhb3FUSW9UcVh4NEVhZ0l6SE9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUU1MC8yREQ3NjM4QzkyNDExMUVGQTU2Q0NFMjFDNEY5QUUwMi85OUFBMEQxMjky NDExMUVGQjc2NERBMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBz6AwDQYJKoZIhvcNAQELBQADggEBAIWAtuJ31Hm4GdUk OChRcyt79IOHIFJb2L5WRWYR0x9lGp9ot+LmSOZ1JtSlm2Wrl5lqk3WUqDR1O9yL l/oJ4UXaThfxApgW4nIQk6Vkle96i5dVND/7Kq8mHa2zBbQSfcyOwIaaeBIbCbvS IAIIU+Tzgm+BHwL5dh4s7li9EzWks0+xky5WF98PKbpNIF8/yzD2GZp1WloPF+iA 2cD4To69lQ2rH1LFZ6SJS+z3VCGBw43liwMTf/W2MvLRdacB4cNdhhuyNhKvI7Bc kR5AoMtZT4UI4N9Q9YQk3COm61wEfSSHuHAQmeQz83NcumELHi/Zq7ywjymAqpBr RXRx6rY= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org