$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/C2F17AB22DCE11EEA2884670C4F9AE02.roa File: C2F17AB22DCE11EEA2884670C4F9AE02.roa (raw, json) Hash identifier: 6RV+8EFAwjvBrux8h7BdNlD+hbhZDD26pn+W86CfTqU= Subject key identifier: 92:5F:C0:CB:51:04:65:82:44:D3:C3:15:0A:5E:D2:8F:42:BA:F7:16 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3362 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/C2F17AB22DCE11EEA2884670C4F9AE02.roa Signing time: Tue 12 Sep 2023 15:31:11 +0000 ROA not before: Tue 12 Sep 2023 15:31:11 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 148001 IP address blocks: 240a:eff0::/28 maxlen: 30 240a:eff0::/30 maxlen: 32 240a:eff4::/31 maxlen: 32 240a:eff8::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13154 (0x3362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Sep 12 15:31:11 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500843e-0d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:df:08:21:1d:17:9f:23:fb:2b:73:9f:54: a0:12:3b:e8:59:5e:f5:03:54:99:09:7e:da:0c:8c: 8e:16:77:32:50:09:9e:58:c6:9b:66:b3:d6:a6:8f: 5f:4c:d1:71:31:a3:fd:b9:25:6c:44:15:24:37:0d: 67:83:2f:5a:fc:1f:18:be:9f:d3:2e:0b:7f:de:27: 8d:c7:7b:0f:9d:7a:a8:90:c7:cd:5d:7c:94:86:c5: 99:a6:fb:25:f8:f4:c6:a9:cf:ef:71:9e:23:e0:4a: 8a:5e:56:d4:af:13:48:8e:e5:c0:2b:ae:83:2f:cc: 83:f1:41:b8:a7:0d:af:52:fa:f0:93:91:f3:2d:ca: c7:a1:a3:02:9f:ed:0a:12:b4:57:fe:dd:34:2e:cf: 97:9c:a8:f7:84:79:a7:bf:d5:57:0f:0b:ac:8a:ce: fb:8a:70:e6:c0:80:97:48:ae:89:d1:f8:4c:c0:aa: 30:cc:9a:9b:23:08:45:31:21:31:6c:9c:f5:14:7d: 60:fa:05:5c:60:9e:c6:31:65:47:2a:0e:ef:e4:77: 6b:80:29:4a:7f:2d:03:ad:c7:9a:71:0f:c6:aa:29: e2:39:2b:21:7b:3c:12:eb:3a:14:82:5f:64:e9:94: 40:ea:5d:77:3a:17:9a:34:57:02:28:59:bc:b6:47: 73:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5F:C0:CB:51:04:65:82:44:D3:C3:15:0A:5E:D2:8F:42:BA:F7:16 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/C2F17AB22DCE11EEA2884670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:eff0::/28 Signature Algorithm: sha256WithRSAEncryption 9e:21:e8:7d:e0:7d:a0:1f:86:74:12:a6:47:2f:07:36:ed:9a: 83:17:db:31:f5:9a:74:e5:43:c4:67:4f:2d:f1:80:96:38:b6: 76:9d:16:0f:c5:5c:39:87:c2:27:cf:13:24:eb:d0:7f:7e:c9: 24:40:8e:35:85:2b:d5:69:95:34:b6:a7:9a:cd:c5:4d:c6:45: 56:ae:3b:9c:3c:7a:c0:0f:e9:09:4b:0d:31:3f:fa:ba:df:ce: 39:b6:b2:36:d6:ea:6f:84:c5:17:e9:91:a5:90:11:52:c7:c9: 65:4d:2d:56:b9:3f:1d:d6:fb:e7:fa:43:25:e2:30:98:31:1b: ef:81:61:35:ba:c6:9e:92:97:a3:2b:77:eb:8c:22:d6:ae:fa: e2:b8:38:dd:36:5e:22:90:35:30:b8:dc:d4:b7:04:c9:7f:c4: ff:ca:dc:43:63:f7:7f:27:3a:70:2c:f4:eb:06:98:5b:29:e9: 74:20:c7:90:5c:85:5b:ef:5e:09:75:4d:d1:ef:08:18:e8:bf: 95:bc:e7:89:27:02:bd:87:dd:90:ee:a8:4e:2c:5f:8f:f6:a3: 66:fc:b3:31:fd:60:7f:4a:48:2f:48:09:4a:08:02:98:99:d6: 0c:24:34:e5:45:c1:20:25:e2:7a:03:e4:ff:72:a6:85:5c:cd: ff:37:57:a7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICM2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjMwOTEyMTUzMTExWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwODQzZS0wZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3nfCCEdF58j+ytzn1SgEjvoWV71A1SZCX7aDIyOFncyUAmeWMabZrPWpo9f TNFxMaP9uSVsRBUkNw1ngy9a/B8Yvp/TLgt/3ieNx3sPnXqokMfNXXyUhsWZpvsl +PTGqc/vcZ4j4EqKXlbUrxNIjuXAK66DL8yD8UG4pw2vUvrwk5HzLcrHoaMCn+0K ErRX/t00Ls+XnKj3hHmnv9VXDwusis77inDmwICXSK6J0fhMwKowzJqbIwhFMSEx bJz1FH1g+gVcYJ7GMWVHKg7v5HdrgClKfy0DrceacQ/GqiniOSshezwS6zoUgl9k 6ZRA6l13OheaNFcCKFm8tkdz1QIDAQABo4ICljCCApIwHQYDVR0OBBYEFJJfwMtR BGWCRNPDFQpe0o9CuvcWMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvQzJGMTdBQjIy RENFMTFFRUEyODg0NjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQQkCu/wMA0GCSqGSIb3DQEBCwUAA4IBAQCeIeh94H2gH4Z0 EqZHLwc27ZqDF9sx9Zp05UPEZ08t8YCWOLZ2nRYPxVw5h8InzxMk69B/fskkQI41 hSvVaZU0tqeazcVNxkVWrjucPHrAD+kJSw0xP/q63845trI21upvhMUX6ZGlkBFS x8llTS1WuT8d1vvn+kMl4jCYMRvvgWE1usaekpejK3frjCLWrvriuDjdNl4ikDUw uNzUtwTJf8T/ytxDY/d/JzpwLPTrBphbKel0IMeQXIVb714JdU3R7wgY6L+VvOeJ JwK9h92Q7qhOLF+P9qNm/LMx/WB/SkgvSAlKCAKYmdYMJDTlRcEgJeJ6A+T/cqaF XM3/N1en -----END CERTIFICATE-----Generated at Sat May 18 16:19:52 2024 by rpki-client on console-fra.rpki-client.org