$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/D6F76118231C11EF84144357C4F9AE02.roa File: D6F76118231C11EF84144357C4F9AE02.roa (raw, json) Hash identifier: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo= Subject key identifier: 4C:1B:EB:9E:F1:9E:E3:F3:D2:BE:63:56:B3:2A:4A:34:0A:37:FE:62 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0693 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/D6F76118231C11EF84144357C4F9AE02.roa Signing time: Sat 16 Nov 2024 18:37:15 +0000 ROA not before: Sat 16 Nov 2024 18:37:15 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134723 IP address blocks: 2403:680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Nov 16 18:37:15 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6738e65b-f009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ea:a1:b2:79:57:cd:5e:18:e3:bd:fe:a1:2f: 40:74:ae:a3:7a:80:7b:10:7f:06:11:65:e2:66:d0: db:9c:89:86:b0:46:ed:e9:4f:4c:06:64:da:6c:99: cd:dc:f1:60:d5:70:75:35:d4:9f:16:c9:ad:3c:92: e2:6c:3d:48:89:8d:60:d9:4a:9d:c2:c7:63:2b:02: 76:a9:f3:c4:f5:70:d2:09:39:ba:c7:12:1e:67:1b: d8:cd:76:b0:48:ba:19:68:11:b1:84:13:1f:87:91: 72:ff:2c:0c:20:6f:89:7c:da:b7:d6:cc:fd:6e:db: 75:d4:a7:74:9f:21:93:c7:f9:58:03:4d:b2:a0:9d: a1:34:52:f0:d4:85:70:d6:8c:66:f8:f1:7f:93:57: bc:1c:d8:59:0b:e6:03:0b:f6:80:40:b0:3e:95:6b: 65:76:72:79:35:e0:30:72:fe:41:95:2b:d1:60:c0: db:d6:62:65:6d:2a:7a:4a:3a:d5:6c:ad:28:87:66: 59:93:0b:2b:e8:45:ff:07:11:ac:25:ff:40:df:59: 06:1e:b1:5e:6e:33:16:7f:19:7c:98:ee:85:c9:70: ef:50:86:9c:0e:02:24:3d:c7:f0:93:f3:74:29:4d: 8d:69:1a:a8:29:22:91:db:86:2d:21:eb:95:7c:7e: fd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1B:EB:9E:F1:9E:E3:F3:D2:BE:63:56:B3:2A:4A:34:0A:37:FE:62 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/D6F76118231C11EF84144357C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:680::/32 Signature Algorithm: sha256WithRSAEncryption 3c:50:a5:ff:20:00:d9:45:8a:d1:c7:b6:f5:da:31:72:b2:00: c8:a9:9a:b9:f2:c4:27:e4:34:4c:a5:a0:e1:59:70:9d:a4:0d: ba:28:76:c0:bf:64:c8:c4:f2:23:78:39:a3:3f:8d:bf:d0:57: f8:5b:80:87:c4:6b:a7:24:b6:bd:c1:4e:cc:2d:11:cf:74:bc: 08:87:92:05:88:3c:ab:46:10:63:69:16:93:74:6b:a4:f2:a7: 92:30:62:e2:73:5b:61:93:69:0b:91:44:fa:bb:26:ed:ac:25: 61:8c:b5:b2:57:2b:f4:78:4c:20:02:0e:34:37:d4:37:06:07: 8c:e3:7f:61:ac:2e:34:59:38:40:77:ea:4a:82:16:ce:d6:00: 43:d5:32:9e:db:bf:a2:e5:17:9b:13:9b:9e:4c:1c:7b:ac:89: 22:af:68:48:92:9d:f9:75:7c:7d:16:6d:4d:31:13:79:96:a4: 3e:0f:58:c3:ef:11:a5:2d:b5:e3:96:e1:a9:87:d3:b6:f3:da: 48:d6:d0:2d:d1:a7:ed:56:1c:1a:99:e9:41:40:65:0c:1d:64: 4c:a4:04:5f:72:7a:b8:00:da:c4:d0:bf:be:4c:e5:4e:eb:a0: a4:e4:d6:5f:b3:a6:5f:19:27:d3:31:80:69:99:84:b5:df:e2: ff:5c:f6:85 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjQxMTE2MTgzNzE1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4ZTY1Yi1mMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlOqhsnlXzV4Y473+oS9AdK6jeoB7EH8GEWXiZtDbnImGsEbt6U9MBmTabJnN 3PFg1XB1NdSfFsmtPJLibD1IiY1g2UqdwsdjKwJ2qfPE9XDSCTm6xxIeZxvYzXaw SLoZaBGxhBMfh5Fy/ywMIG+JfNq31sz9btt11Kd0nyGTx/lYA02yoJ2hNFLw1IVw 1oxm+PF/k1e8HNhZC+YDC/aAQLA+lWtldnJ5NeAwcv5BlSvRYMDb1mJlbSp6SjrV bK0oh2ZZkwsr6EX/BxGsJf9A31kGHrFebjMWfxl8mO6FyXDvUIacDgIkPcfwk/N0 KU2NaRqoKSKR24YtIeuVfH79+QIDAQABo4ICljCCApIwHQYDVR0OBBYEFEwb657x nuPz0r5jVrMqSjQKN/5iMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0NzUvRTAyMkEwNTgwRTkxMTFFQUIwRTg3NDQxQzRGOUFFMDIvRDZGNzYxMTgy MzFDMTFFRjg0MTQ0MzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAwaAMA0GCSqGSIb3DQEBCwUAA4IBAQA8UKX/IADZRYrR x7b12jFysgDIqZq58sQn5DRMpaDhWXCdpA26KHbAv2TIxPIjeDmjP42/0Ff4W4CH xGunJLa9wU7MLRHPdLwIh5IFiDyrRhBjaRaTdGuk8qeSMGLic1thk2kLkUT6uybt rCVhjLWyVyv0eEwgAg40N9Q3BgeM439hrC40WThAd+pKghbO1gBD1TKe27+i5Reb E5ueTBx7rIkir2hIkp35dXx9Fm1NMRN5lqQ+D1jD7xGlLbXjluGph9O289pI1tAt 0aftVhwamelBQGUMHWRMpARfcnq4ANrE0L++TOVO66Ck5NZfs6ZfGSfTMYBpmYS1 3+L/XPaF -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org