$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa File: CBD704945F5F11EFB99ABA76C4F9AE02.roa (raw, json) Hash identifier: 8S2L4PIf85V9FtE2NxlTWF91adX1vQpLiZaP3LriZvM= Subject key identifier: C2:CB:92:4E:C3:71:00:BB:EF:89:A6:1E:8E:0A:80:4D:A6:55:1B:31 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0DEA Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa Signing time: Wed 21 Aug 2024 01:50:52 +0000 ROA not before: Wed 21 Aug 2024 01:50:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45275 IP address blocks: 240c::/48 maxlen: 48 240c:6::/48 maxlen: 48 240c:6:1::/48 maxlen: 48 240c:6:3::/48 maxlen: 48 240c:f::/48 maxlen: 48 240c:f:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Aug 21 01:50:52 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c547fc-3c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:26:49:87:e1:16:fc:8d:4a:8e:3b:b1:f6:80: 42:f9:45:56:36:1d:36:d7:a8:b9:ef:f4:f2:9a:05: cf:c3:20:02:86:2a:af:6c:fa:06:c9:09:c5:ec:76: 1e:4c:5c:ff:46:e7:09:d9:5a:8f:ec:17:56:98:af: 81:42:5c:4f:16:bd:9d:8b:79:b5:32:73:74:70:96: ab:fd:7e:40:f8:9a:d4:ad:ab:a6:2a:98:e9:66:62: 45:af:f9:70:53:0d:41:d3:d8:d6:ee:64:68:16:c6: 09:bb:2e:fa:89:00:89:60:18:cb:f2:ef:5a:19:77: d6:ad:89:cf:9f:2c:48:0c:a6:4f:04:99:c1:21:f2: 58:b6:f6:61:de:a1:32:11:84:7d:69:6d:27:3e:c6: ea:b8:2c:96:f5:1f:3d:82:c7:8b:84:92:fb:1c:fd: 55:fe:a1:5a:7d:32:b8:0f:a6:03:81:6a:79:89:f5: b5:1b:6a:fc:26:55:5f:59:2c:1d:9d:6a:1b:3d:4f: 0b:2b:2e:05:46:f2:ae:53:7b:f6:c9:82:1c:b5:c4: f9:df:a3:b8:48:c5:5f:40:1c:3f:32:04:4b:2c:fb: 5b:d3:83:3d:a0:f2:44:cd:bf:e0:c7:51:ec:2b:c3: 84:81:0d:26:07:fd:26:2e:88:fa:37:9f:30:92:29: 3c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CB:92:4E:C3:71:00:BB:EF:89:A6:1E:8E:0A:80:4D:A6:55:1B:31 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/CBD704945F5F11EFB99ABA76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240c::/48 240c:6::/47 240c:6:3::/48 240c:f::/47 Signature Algorithm: sha256WithRSAEncryption a5:7a:49:24:3a:18:05:89:82:ea:f5:d3:16:84:ff:f9:ca:9d: 26:30:1a:93:50:33:26:9b:58:2a:ed:50:62:a1:d1:3e:00:31: b4:7e:ee:bf:8c:9a:53:a3:01:b5:2f:cc:8e:f6:29:20:6d:fe: 85:66:e5:1c:43:05:1b:09:3e:71:86:4f:6a:e8:be:40:ea:12: 2c:7a:a8:b0:03:cd:65:09:23:e8:1c:9b:db:ae:57:eb:4c:31: 49:fa:fb:f6:66:93:6a:81:a5:58:2c:28:7f:d6:b5:f8:b3:21: 04:8d:0e:bd:4c:35:8c:f4:9d:50:5d:ca:76:40:cd:e3:44:23: fe:a8:39:87:fb:ed:e0:eb:98:b9:c1:08:1f:31:24:18:c5:ce: ba:34:4f:45:25:20:a7:93:1f:28:4f:d9:5e:00:81:29:04:a3: 90:2b:93:1d:c5:b6:49:14:7b:b7:82:c4:fd:2c:8c:4d:6f:c2: 6d:a0:26:ed:a1:5f:3b:4f:51:a5:fd:37:4b:40:71:35:c3:72: f6:a8:ac:2c:aa:1c:7b:77:e0:6c:2b:04:69:d3:1c:77:fb:7b: c1:28:87:d9:dc:9a:46:d7:2f:c8:54:c5:de:42:79:8e:27:cc: 67:8a:ea:fa:19:ee:2f:12:d5:cb:21:61:f1:12:22:6c:31:85: 2b:a8:3b:c9 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjQwODIxMDE1MDUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1NDdmYy0zYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iZJh+EW/I1Kjjux9oBC+UVWNh0216i57/TymgXPwyAChiqvbPoGyQnF7HYe TFz/RucJ2VqP7BdWmK+BQlxPFr2di3m1MnN0cJar/X5A+JrUraumKpjpZmJFr/lw Uw1B09jW7mRoFsYJuy76iQCJYBjL8u9aGXfWrYnPnyxIDKZPBJnBIfJYtvZh3qEy EYR9aW0nPsbquCyW9R89gseLhJL7HP1V/qFafTK4D6YDgWp5ifW1G2r8JlVfWSwd nWobPU8LKy4FRvKuU3v2yYIctcT536O4SMVfQBw/MgRLLPtb04M9oPJEzb/gx1Hs K8OEgQ0mB/0mLoj6N58wkik8VQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFMLLkk7D cQC774mmHo4KgE2mVRsxMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNBNkUvNzlFQ0U4Mzg5OEJEMTFFOUFDOTlFNzRFQzRGOUFFMDIvQ0JENzA0OTQ1 RjVGMTFFRkI5OUFCQTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwAkDAAAAAADBwEkDAAGAAADBwAkDAAGAAMDBwEkDAAPAAAw DQYJKoZIhvcNAQELBQADggEBAKV6SSQ6GAWJgur10xaE//nKnSYwGpNQMyabWCrt UGKh0T4AMbR+7r+MmlOjAbUvzI72KSBt/oVm5RxDBRsJPnGGT2rovkDqEix6qLAD zWUJI+gcm9uuV+tMMUn6+/Zmk2qBpVgsKH/WtfizIQSNDr1MNYz0nVBdynZAzeNE I/6oOYf77eDrmLnBCB8xJBjFzro0T0UlIKeTHyhP2V4AgSkEo5Arkx3FtkkUe7eC xP0sjE1vwm2gJu2hXztPUaX9N0tAcTXDcvaorCyqHHt34GwrBGnTHHf7e8Eoh9nc mkbXL8hUxd5CeY4nzGeK6voZ7i8S1cshYfESImwxhSuoO8k= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:02 2024 by rpki-client on console-ams.rpki-client.org