$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/29A436623FE111EFB5A50814C4F9AE02.roa File: 29A436623FE111EFB5A50814C4F9AE02.roa (raw, json) Hash identifier: i8BI9IvwuikO1+xMVefOXZH2ufnANITPzuMSdPax+Fg= Subject key identifier: 86:F5:D1:B0:68:DB:41:7E:14:1B:DF:AB:61:6E:64:0D:57:8D:DF:E0 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: 02 Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/29A436623FE111EFB5A50814C4F9AE02.roa Signing time: Thu 11 Jul 2024 23:56:17 +0000 ROA not before: Thu 11 Jul 2024 23:56:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 64095 IP address blocks: 2401:b120::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Jul 11 23:56:17 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66907121-1d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f2:64:86:08:c8:e2:7f:d2:ba:87:54:78:5e: 5c:29:87:42:df:a6:a2:74:67:91:38:63:cd:c9:05: dd:08:47:e3:dc:5b:9f:a3:5b:36:b4:55:b8:e4:b1: 14:5b:dc:fb:7a:6b:96:44:73:31:9c:06:a4:84:6e: 3f:a7:af:43:26:34:c7:8d:50:cc:07:a8:d0:a9:bc: f5:81:3e:c3:3d:98:33:57:fa:61:4d:7b:6f:c5:69: a7:d1:d9:f8:7c:8c:b3:de:d6:d0:bc:14:a2:6c:9b: 1d:40:80:86:6b:20:14:ca:b4:15:c0:e1:f1:34:53: 10:3e:fe:6b:a1:18:b7:de:02:f0:3b:e9:2a:c1:c2: 9e:38:0f:6d:bb:5b:b0:79:83:07:b7:cb:31:cd:e0: 85:0c:f9:9b:ed:75:81:63:09:16:87:4b:20:bb:8b: 12:69:ef:49:0a:57:09:37:1f:2a:ac:75:ef:ae:f5: 34:d5:96:75:72:fc:c2:67:65:3c:c9:cf:62:8b:f3: 50:2a:4a:4d:f6:9a:72:f4:67:53:6a:19:0b:27:b2: b3:82:c2:aa:9a:0a:22:c5:87:40:0a:b1:b8:03:9c: 9d:6d:d7:0b:a5:b2:8c:02:04:9a:1b:4a:94:d4:e1: 79:13:ba:30:18:54:88:9f:3d:be:06:e2:c2:a5:1c: 21:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F5:D1:B0:68:DB:41:7E:14:1B:DF:AB:61:6E:64:0D:57:8D:DF:E0 X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/29A436623FE111EFB5A50814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b120::/32 Signature Algorithm: sha256WithRSAEncryption 9d:67:cb:ab:58:69:1c:e1:d7:9a:35:01:24:8e:35:61:1c:84: 9c:63:a3:1f:07:bd:17:9f:6b:de:9f:ac:3e:b1:53:f8:7a:ae: 65:02:1e:97:37:1d:96:21:2f:c5:04:7e:c0:ad:44:cb:17:89: 24:9f:7f:05:b6:a3:34:71:3e:0a:3b:24:40:e9:10:07:4a:a3: 38:f1:56:43:b8:5e:4d:a2:e7:3c:99:00:7f:bb:06:91:5b:63: c8:ad:2d:86:12:09:fe:57:18:3e:8b:39:b3:29:bf:74:5b:5d: 43:1c:d1:36:cf:0d:78:49:a0:20:92:c2:99:e2:e9:a5:f7:11: 81:56:6d:15:08:44:ea:c1:96:3e:cb:4c:0b:b0:8c:87:77:5d: 15:bb:1d:0b:05:71:5d:59:db:e5:b9:3f:e8:cd:bd:15:df:ba: c3:03:d7:78:6e:53:da:e2:5c:db:9e:d2:ce:21:b7:7f:08:a5: 38:f2:1a:eb:dc:e0:7c:c8:a0:42:a7:56:68:72:ed:11:50:59: c4:40:2c:f6:88:b7:75:d4:c9:2d:4b:25:b6:d3:b1:c4:6b:4b: 9b:cd:4f:25:b4:a5:e4:07:af:64:c6:00:e4:ca:bb:83:81:1b: 0b:7f:b5:0e:a8:47:d3:3a:16:2b:c1:71:3e:13:be:10:5f:9c: 3f:ae:5f:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzMwMzExMC8GA1UEBRMoOTY1NEEyRjA4NDU5N0EyQjkxQUMwMDJBNzYwN0UxM0Mx NUQwOTQ5MTAeFw0yNDA3MTEyMzU2MTdaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OTA3MTIxLTFkOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj8mSGCMjif9K6h1R4Xlwph0LfpqJ0Z5E4Y83JBd0IR+PcW5+jWza0VbjksRRb 3Pt6a5ZEczGcBqSEbj+nr0MmNMeNUMwHqNCpvPWBPsM9mDNX+mFNe2/FaafR2fh8 jLPe1tC8FKJsmx1AgIZrIBTKtBXA4fE0UxA+/muhGLfeAvA76SrBwp44D227W7B5 gwe3yzHN4IUM+ZvtdYFjCRaHSyC7ixJp70kKVwk3Hyqsde+u9TTVlnVy/MJnZTzJ z2KL81AqSk32mnL0Z1NqGQsnsrOCwqqaCiLFh0AKsbgDnJ1t1wulsowCBJobSpTU 4XkTujAYVIifPb4G4sKlHCF7AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUhvXRsGjb QX4UG9+rYW5kDVeN3+AwHwYDVR0jBBgwFoAUllSi8IRZeiuRrAAqdgfhPBXQlJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzMzAzLzgwQkYxQTYyM0ZF MDExRUY4NjM1RDcxMkM0RjlBRTAyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGxTaThJUlplaXVSckFBcWRnZmhQQlhRbEpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi8yOUE0MzY2MjNG RTExMUVGQjVBNTA4MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBsSAwDQYJKoZIhvcNAQELBQADggEBAJ1ny6tYaRzh15o1 ASSONWEchJxjox8HvRefa96frD6xU/h6rmUCHpc3HZYhL8UEfsCtRMsXiSSffwW2 ozRxPgo7JEDpEAdKozjxVkO4Xk2i5zyZAH+7BpFbY8itLYYSCf5XGD6LObMpv3Rb XUMc0TbPDXhJoCCSwpni6aX3EYFWbRUIROrBlj7LTAuwjId3XRW7HQsFcV1Z2+W5 P+jNvRXfusMD13huU9riXNue0s4ht38IpTjyGuvc4HzIoEKnVmhy7RFQWcRALPaI t3XUyS1LJbbTscRrS5vNTyW0peQHr2TGAOTKu4OBGwt/tQ6oR9M6FivBcT4TvhBf nD+uX5A= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:04 2024 by rpki-client on console-ams.rpki-client.org