$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa File: FF3178EAB14B11EFB6CD146AC4F9AE02.roa (raw, json) Hash identifier: KPgMUtF2z6om6dSm7+mB/ufWiwTV8TpJVcH2+or0fgs= Subject key identifier: 34:D8:76:BA:CC:EF:33:90:FB:5C:41:0B:4E:56:D7:4C:ED:14:7F:3E Certificate issuer: /CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Certificate serial: 07 Authority key identifier: B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa Signing time: Tue 03 Dec 2024 07:55:43 +0000 ROA not before: Tue 03 Dec 2024 07:55:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 142634 IP address blocks: 2001:df4:ad40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Validity Not Before: Dec 3 07:55:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674eb97f-10bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0e:b8:b9:73:63:9d:37:12:07:ca:74:20:bc: 6b:aa:95:96:9f:a5:34:4f:55:76:e6:ac:c2:25:3e: 4a:88:0a:b9:da:b2:c9:e4:4d:37:6f:2c:7c:37:ad: f1:4d:d8:01:fa:d9:91:9f:0f:61:6f:0f:4e:95:58: a4:5f:5a:4c:11:87:ac:f4:d3:2a:4b:a7:e5:10:72: 0f:d5:5d:bb:9f:52:de:21:03:66:02:9f:0f:c0:ff: 85:88:16:dd:94:44:6a:97:59:f9:7a:e0:d3:ca:1a: 82:91:f3:c4:65:ac:99:fa:2c:e8:dc:e5:67:9e:7f: 31:a3:4d:2e:d6:57:8e:4f:33:68:19:9a:c6:3b:13: d7:15:48:f5:50:e4:b7:bd:b9:7b:1d:ad:92:5e:19: 82:38:ff:90:c8:d3:e1:da:ec:32:41:b4:89:c1:24: 7a:fd:10:a3:b9:90:cb:67:14:30:6d:8c:2d:93:98: c2:b2:3b:c6:8f:fb:40:ac:57:b9:bd:1c:21:8f:d7: 57:46:7a:80:5f:41:27:e2:ea:e5:cd:de:97:8d:6d: 68:92:c5:bb:52:1d:73:93:c0:3f:de:3f:3b:68:d1: c4:9e:38:84:c2:0b:01:dc:8d:99:bb:b6:23:33:ba: 70:0b:29:64:5d:fe:3d:c4:ce:05:b7:33:e8:0a:d2: a5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:D8:76:BA:CC:EF:33:90:FB:5C:41:0B:4E:56:D7:4C:ED:14:7F:3E X509v3 Authority Key Identifier: keyid:B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/FF3178EAB14B11EFB6CD146AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:ad40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:22:14:bb:17:26:bd:65:28:eb:1e:a0:c3:c4:8c:c3:51:c1: bd:f2:0a:e4:38:84:8b:f4:24:f0:44:16:d4:8e:0d:4d:00:ff: 99:eb:be:13:97:db:87:c1:73:2e:63:f9:cb:3d:7c:98:1a:e1: a6:fd:56:a2:1e:a1:3e:51:b0:e9:e4:c9:f2:c8:1b:ff:6e:bb: 05:5a:e8:a4:d1:84:67:99:39:99:47:cc:e7:4f:03:f4:76:d7: 72:ee:bc:9c:2e:4a:d2:c8:4f:5b:40:ed:6e:a4:45:e9:7c:45: 01:a8:96:b1:48:f1:93:77:d9:04:51:18:2f:31:d7:dd:60:e0: 76:83:3c:95:87:cf:6d:49:b0:20:ad:e2:24:f9:07:47:2f:d4: 39:1c:ca:c1:5a:9c:04:f7:48:72:b9:a6:5d:fc:99:aa:a2:64: c4:62:17:ba:df:16:da:9f:a0:e7:0c:67:e8:d6:f9:bb:16:9d: e6:28:a6:01:7e:e6:0d:a8:be:ac:9c:96:b2:b6:68:fb:32:5f: ad:3b:63:96:f0:02:dc:e6:10:f3:10:11:da:f8:4b:b1:64:32: 5d:d8:15:83:61:ba:07:81:88:52:b6:cb:54:27:44:7b:6b:c1: 61:b0:19:70:bd:b9:23:a3:16:00:4a:51:6f:ba:ac:66:7e:81: 29:cb:78:ed -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoQjAyNzk1RDJFMDlFM0FBQTNFMzZEMkI1OTJEMkUwRTlG QkI3RUZCRDAeFw0yNDEyMDMwNzU1NDNaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGViOTdmLTEwYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1Dri5c2OdNxIHynQgvGuqlZafpTRPVXbmrMIlPkqICrnassnkTTdvLHw3rfFN 2AH62ZGfD2FvD06VWKRfWkwRh6z00ypLp+UQcg/VXbufUt4hA2YCnw/A/4WIFt2U RGqXWfl64NPKGoKR88RlrJn6LOjc5WeefzGjTS7WV45PM2gZmsY7E9cVSPVQ5Le9 uXsdrZJeGYI4/5DI0+Ha7DJBtInBJHr9EKO5kMtnFDBtjC2TmMKyO8aP+0CsV7m9 HCGP11dGeoBfQSfi6uXN3peNbWiSxbtSHXOTwD/ePzto0cSeOITCCwHcjZm7tiMz unALKWRd/j3EzgW3M+gK0qV/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUNNh2uszv M5D7XEELTlbXTO0Ufz4wHwYDVR0jBBgwFoAUsCeV0uCeOqo+NtK1ktLg6fu3770w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzM3MzM0QkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3FvLU50SzFrdExnNmZ1Mzc3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0NlVjB1Q2VPcW8tTnRLMWt0TGc2ZnUzNzcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8zNzMzNEJFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9GRjMxNzhFQUIx NEIxMUVGQjZDRDE0NkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfStQDANBgkqhkiG9w0BAQsFAAOCAQEAGiIUuxcmvWUo 6x6gw8SMw1HBvfIK5DiEi/Qk8EQW1I4NTQD/meu+E5fbh8FzLmP5yz18mBrhpv1W oh6hPlGw6eTJ8sgb/267BVropNGEZ5k5mUfM508D9HbXcu68nC5K0shPW0DtbqRF 6XxFAaiWsUjxk3fZBFEYLzHX3WDgdoM8lYfPbUmwIK3iJPkHRy/UORzKwVqcBPdI crmmXfyZqqJkxGIXut8W2p+g5wxn6Nb5uxad5iimAX7mDai+rJyWsrZo+zJfrTtj lvAC3OYQ8xAR2vhLsWQyXdgVg2G6B4GIUrbLVCdEe2vBYbAZcL25I6MWAEpRb7qs Zn6BKct47Q== -----END CERTIFICATE-----Generated at Fri Dec 27 08:43:11 2024 by rpki-client on console-fra.rpki-client.org