$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa File: D4D84D08DA9211ED99CD1D28C4F9AE02.roa (raw, json) Hash identifier: k8fn8kaAVqX+FyPeWprQ1+C6X5Mp6iWOh3NubB8x45A= Subject key identifier: 43:25:D2:D2:5C:88:59:42:0D:D9:61:61:2B:EF:29:6E:F0:B4:C2:7D Certificate issuer: /CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Certificate serial: D6 Authority key identifier: AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa Signing time: Wed 01 May 2024 06:40:24 +0000 ROA not before: Wed 01 May 2024 06:40:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151182 IP address blocks: 2001:df2:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Validity Not Before: May 1 06:40:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3d7-ae72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1d:df:ce:38:7f:6e:61:84:78:60:bf:d0:88: de:a2:cc:59:48:59:c1:69:5c:61:64:e2:02:f4:57: 28:2d:a8:4b:d1:bd:9e:11:f6:81:f7:56:a6:ea:07: 41:7f:fd:06:49:88:91:a5:46:a2:fc:de:d4:71:cc: de:e5:9b:51:59:a9:a3:24:81:a0:20:7b:5c:0c:ac: 10:1a:8d:20:38:86:a2:c6:59:97:30:ae:18:97:5f: 39:9c:6f:dd:fa:e1:a5:bc:bd:68:c3:f1:9f:a0:b0: 33:de:66:9e:fe:ed:06:51:ab:5e:56:9e:57:78:a0: 17:a0:93:a9:2d:2e:ab:8c:12:eb:b6:1b:1d:a6:a2: cf:40:e1:d2:92:ce:cc:e4:d0:e6:60:0f:30:8f:fd: 38:10:07:49:18:91:18:34:28:e1:b6:63:d0:a8:fe: 17:97:1e:6f:68:80:8b:73:4f:6f:47:e9:88:19:66: be:b3:b5:ac:75:07:f6:28:55:fb:f9:be:9b:3a:7e: 15:3d:06:44:4e:55:b9:95:55:1b:d5:f2:9c:ef:13: 57:a6:dd:22:77:f1:9b:5d:ba:8c:b2:51:4c:2c:31: 8c:c8:9c:9d:35:6a:0f:77:a5:fb:18:60:bb:d7:47: 83:ce:b7:df:fc:15:4f:3f:26:40:26:21:e0:e7:21: 93:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:25:D2:D2:5C:88:59:42:0D:D9:61:61:2B:EF:29:6E:F0:B4:C2:7D X509v3 Authority Key Identifier: keyid:AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:42c0::/48 Signature Algorithm: sha256WithRSAEncryption 4c:80:c1:1c:af:46:48:1e:6f:49:73:37:7f:60:10:24:57:fd: 2c:a0:bb:99:d9:ab:b0:9b:d5:7f:38:5c:c5:0a:0c:f5:d8:ca: a4:73:a9:d3:c8:8a:a1:16:d8:e0:bd:b4:49:5e:cc:d3:4f:e4: 51:86:79:a3:36:30:18:38:00:2a:5b:d6:23:9d:dd:12:ff:18: 4e:60:59:31:57:47:41:db:55:ad:65:74:e0:34:8e:76:92:70: af:0b:1e:2a:38:a8:42:0e:54:bd:8d:fc:62:7f:d2:67:20:e7: 45:d5:41:33:17:e6:9c:c1:3c:71:e9:f6:81:91:aa:98:0c:47: a5:5e:05:b6:04:bb:ad:c8:60:0f:8f:7f:fd:e3:67:2e:3d:69: e3:05:b1:47:cb:c5:5e:76:b3:9d:ac:0e:4e:a0:6c:fe:95:93: 16:bd:07:73:9f:40:65:42:83:a0:c9:c1:8d:9f:0f:16:64:b8: 2d:42:76:0b:7f:22:61:2e:9b:57:c3:c6:3f:1f:b1:ac:ab:0f: eb:b3:48:1b:50:7c:5b:2e:28:83:c1:21:c7:d7:14:0b:ad:44: d9:b6:5b:ce:92:27:00:8c:ea:bb:60:b0:4d:d0:73:42:88:c6: 84:25:3c:78:73:5b:04:f9:5a:63:35:e0:91:d9:8c:b4:3e:5a: 9d:9e:79:5d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1RjYxMTAvBgNVBAUTKEFGRjg1RjdFRjNEQTU4ODc0MzhERDIwNjFGMkU5RUUw QjJERDBBN0YwHhcNMjQwNTAxMDY0MDI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNkNy1hZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlB3fzjh/bmGEeGC/0IjeosxZSFnBaVxhZOIC9FcoLahL0b2eEfaB91am6gdB f/0GSYiRpUai/N7Uccze5ZtRWamjJIGgIHtcDKwQGo0gOIaixlmXMK4Yl185nG/d +uGlvL1ow/GfoLAz3mae/u0GUateVp5XeKAXoJOpLS6rjBLrthsdpqLPQOHSks7M 5NDmYA8wj/04EAdJGJEYNCjhtmPQqP4Xlx5vaICLc09vR+mIGWa+s7WsdQf2KFX7 +b6bOn4VPQZETlW5lVUb1fKc7xNXpt0id/GbXbqMslFMLDGMyJydNWoPd6X7GGC7 10eDzrff/BVPPyZAJiHg5yGTtwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEMl0tJc iFlCDdlhYSvvKW7wtMJ9MB8GA1UdIwQYMBaAFK/4X37z2liHQ43SBh8unuCy3Qp/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVGNi9CQ0E2NkI3RURB OEUxMUVEODM1QzM5MjVDNEY5QUUwMi9yX2hmZnZQYVdJZERqZElHSHk2ZTRMTGRD bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaGZmdlBhV0lkRGpkSUdIeTZlNExMZENuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1RjYvQkNBNjZCN0VEQThFMTFFRDgzNUMzOTI1QzRGOUFFMDIvRDREODREMDhE QTkyMTFFRDk5Q0QxRDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yQsAwDQYJKoZIhvcNAQELBQADggEBAEyAwRyvRkge b0lzN39gECRX/Sygu5nZq7Cb1X84XMUKDPXYyqRzqdPIiqEW2OC9tElezNNP5FGG eaM2MBg4ACpb1iOd3RL/GE5gWTFXR0HbVa1ldOA0jnaScK8LHio4qEIOVL2N/GJ/ 0mcg50XVQTMX5pzBPHHp9oGRqpgMR6VeBbYEu63IYA+Pf/3jZy49aeMFsUfLxV52 s52sDk6gbP6Vkxa9B3OfQGVCg6DJwY2fDxZkuC1Cdgt/ImEum1fDxj8fsayrD+uz SBtQfFsuKIPBIcfXFAutRNm2W86SJwCM6rtgsE3Qc0KIxoQlPHhzWwT5WmM14JHZ jLQ+Wp2eeV0= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org