$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa File: B47102FE77F211EFBA1E9F7EC4F9AE02.roa (raw, json) Hash identifier: SEeajkndfK9XKBY3HRdlq0CgTt3jAkAhBVklDZv6c2o= Subject key identifier: 45:93:4F:50:0E:50:54:9C:97:1C:5D:58:9E:1B:C5:AF:5A:F6:4C:97 Certificate issuer: /CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Certificate serial: 16 Authority key identifier: 7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa Signing time: Wed 16 Oct 2024 19:55:11 +0000 ROA not before: Wed 16 Oct 2024 19:55:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137552 IP address blocks: 2001:df4:1840::/47 maxlen: 47 2001:df4:1840::/48 maxlen: 48 2001:df4:1841::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Validity Not Before: Oct 16 19:55:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67101a1e-0ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cb:b1:02:df:db:53:f0:97:7a:1c:fc:ae:b4: 6a:10:17:e9:7d:bd:e5:8e:f6:57:6f:69:55:4f:24: da:da:07:5e:ba:db:aa:54:af:c8:da:f9:59:a7:50: 9d:1e:b7:53:e1:bb:83:65:77:34:af:9f:67:1c:d3: 8b:d2:3c:03:99:b6:01:f5:50:f9:85:61:f2:a3:9d: e0:35:cc:6f:35:a0:17:85:d3:86:f5:72:ea:d7:83: 5d:b4:c9:38:10:66:65:5e:39:3d:9d:ad:9e:e2:28: c3:28:8a:94:c5:59:d0:19:1c:81:73:76:8e:24:11: 5c:09:62:73:f0:c9:50:1f:0a:dc:75:52:d2:bd:6f: 53:28:ec:9a:0e:7a:64:b5:fb:13:69:1e:b9:87:7d: c3:f9:9a:82:3c:d1:ce:21:73:14:ab:f7:ef:40:a8: 77:04:19:24:ea:ac:59:7d:31:b4:65:dd:97:0a:d5: 2a:ba:00:2e:65:70:1e:24:e8:13:a2:4c:c7:cc:c6: 47:50:dc:24:bc:96:a9:03:f8:06:3b:3a:8b:f8:f4: c8:7d:ef:55:33:4e:94:70:2c:b9:09:85:5d:b2:89: 32:9e:86:c2:ef:bd:ec:69:36:ca:1b:16:59:05:7d: 6c:a7:63:d6:06:c3:2c:be:98:48:48:8c:a8:a2:bf: 84:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:93:4F:50:0E:50:54:9C:97:1C:5D:58:9E:1B:C5:AF:5A:F6:4C:97 X509v3 Authority Key Identifier: keyid:7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1840::/47 Signature Algorithm: sha256WithRSAEncryption 42:44:6b:91:1e:7e:b5:6d:91:62:19:59:a0:3c:f8:7f:d6:e8: d5:37:b0:76:bc:d9:33:bf:04:c2:98:c0:d7:78:8e:8c:fd:52: 77:4e:d0:64:c5:81:b4:7b:a0:41:e2:fb:e0:cd:59:45:80:b2: f1:a6:5b:c6:e0:3d:41:43:e2:8c:14:47:ea:c3:f4:ef:10:68: 70:80:9e:d6:2d:a2:e5:05:f1:06:07:4d:da:f7:94:ed:a3:47: 64:38:1f:3f:e4:77:b1:e0:53:e7:23:94:5c:2a:45:97:2f:b4: 86:b4:f6:4a:01:ef:e5:11:bd:5d:cb:7e:3c:c8:f2:31:2a:dd: 9f:6d:2d:d7:24:c1:2e:03:89:2e:99:57:34:a0:82:d8:4e:bc: 11:8e:09:6a:1b:22:7a:fe:f2:97:0a:54:b3:63:74:08:6d:d5: e9:bb:33:1d:49:fd:d9:19:c0:a2:cd:1f:21:ba:7e:b1:a1:dd: 94:7d:dc:ce:af:23:ab:ee:07:87:4b:99:f4:91:01:ae:53:77: 9f:c6:f3:e0:a1:1a:4e:48:a1:a0:0a:b1:06:5a:c0:95:ae:91: 5d:41:09:79:c2:7c:3b:7f:12:73:a5:0d:a7:a6:d1:32:94:d5: 12:d9:94:91:7e:c6:32:30:df:00:ae:a8:98:8f:9d:fa:19:58: 50:3e:b1:62 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTYwMDExMC8GA1UEBRMoN0Y4MjQ1QkJENEQ0NTk3MjFCNDFENEZGMkJCRkI0MjVG RjExODk1MzAeFw0yNDEwMTYxOTU1MTFaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTAxYTFlLTBiYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3y7EC39tT8Jd6HPyutGoQF+l9veWO9ldvaVVPJNraB16626pUr8ja+VmnUJ0e t1Phu4NldzSvn2cc04vSPAOZtgH1UPmFYfKjneA1zG81oBeF04b1curXg120yTgQ ZmVeOT2drZ7iKMMoipTFWdAZHIFzdo4kEVwJYnPwyVAfCtx1UtK9b1Mo7JoOemS1 +xNpHrmHfcP5moI80c4hcxSr9+9AqHcEGSTqrFl9MbRl3ZcK1Sq6AC5lcB4k6BOi TMfMxkdQ3CS8lqkD+AY7Oov49Mh971UzTpRwLLkJhV2yiTKehsLvvexpNsobFlkF fWynY9YGwyy+mEhIjKiiv4SJAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQURZNPUA5Q VJyXHF1YnhvFr1r2TJcwHwYDVR0jBBgwFoAUf4JFu9TUWXIbQdT/K7+0Jf8RiVMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNjAwLzJBQTdENDVFNzdG MTExRUZBQzExMjk0MkM0RjlBRTAyL2Y0SkZ1OVRVV1hJYlFkVF9LNy0wSmY4UmlW TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZjRKRnU5VFVXWEliUWRUX0s3LTBKZjhSaVZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTYwMC8yQUE3RDQ1RTc3RjExMUVGQUMxMTI5NDJDNEY5QUUwMi9CNDcxMDJGRTc3 RjIxMUVGQkExRTlGN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHASABDfQYQDANBgkqhkiG9w0BAQsFAAOCAQEAQkRrkR5+tW2R YhlZoDz4f9bo1TewdrzZM78EwpjA13iOjP1Sd07QZMWBtHugQeL74M1ZRYCy8aZb xuA9QUPijBRH6sP07xBocICe1i2i5QXxBgdN2veU7aNHZDgfP+R3seBT5yOUXCpF ly+0hrT2SgHv5RG9Xct+PMjyMSrdn20t1yTBLgOJLplXNKCC2E68EY4Jahsiev7y lwpUs2N0CG3V6bszHUn92RnAos0fIbp+saHdlH3czq8jq+4Hh0uZ9JEBrlN3n8bz 4KEaTkihoAqxBlrAla6RXUEJecJ8O38Sc6UNp6bRMpTVEtmUkX7GMjDfAK6omI+d +hlYUD6xYg== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:19 2024 by rpki-client on console-fra.rpki-client.org