$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/AB96EF3852CD11ECAB209C5FC4F9AE02.roa File: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (raw, json) Hash identifier: PTN3D9DukvxulJCnZfplXeEJi7h63+XDY8ZJvEz9E/c= Subject key identifier: B7:29:9F:84:CB:87:D7:E4:AF:16:47:11:76:C3:63:5C:9D:54:28:32 Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 094D Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/AB96EF3852CD11ECAB209C5FC4F9AE02.roa Signing time: Tue 02 Jul 2024 23:12:07 +0000 ROA not before: Tue 02 Jul 2024 23:12:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132591 IP address blocks: 240d:c010:50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2381 (0x94d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jul 2 23:12:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66848947-420a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:60:67:2f:45:75:7b:0d:95:ca:91:45:63:d7: 09:dd:00:5d:ce:99:67:11:f4:50:9d:a3:69:a6:34: cd:9b:55:b4:3c:9b:32:5b:24:11:5e:9b:35:69:1c: 15:c9:fa:c3:33:8f:b7:80:89:f1:59:98:09:b9:cf: 13:eb:7d:f3:86:b1:d1:a3:00:23:6b:2e:f5:4f:b6: ef:05:26:b5:a9:fa:bd:16:6f:7e:fd:be:68:9f:b0: dc:d5:45:74:74:19:69:3b:3d:33:2a:65:af:9c:95: aa:dc:74:13:0b:33:59:51:ab:6e:55:22:46:e0:81: 3c:37:4b:4b:65:33:e2:47:bf:4a:2f:a4:1a:af:5c: 50:34:ac:24:e8:a2:23:eb:aa:5d:82:a2:d3:0c:34: 8d:9d:46:07:46:6a:39:7a:0d:d2:7a:23:cc:42:eb: ee:e3:be:0d:55:29:d5:8e:f1:36:0f:4f:e0:7b:6d: 17:18:26:5e:1b:0d:5c:83:11:1c:5b:1f:c0:30:72: 1e:31:55:25:74:f0:1a:83:d8:6f:0a:9f:e9:11:de: d4:c2:0e:b7:55:4a:5b:2a:8b:55:77:75:ae:33:16: 09:49:1e:42:cd:8d:1b:7d:c0:f8:7d:a8:85:22:6c: 27:0a:2c:d6:67:95:de:57:36:22:65:77:56:3b:1e: 1d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:29:9F:84:CB:87:D7:E4:AF:16:47:11:76:C3:63:5C:9D:54:28:32 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/AB96EF3852CD11ECAB209C5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240d:c010:50::/48 Signature Algorithm: sha256WithRSAEncryption 9b:4b:a8:93:d7:86:c6:33:1b:29:d1:2d:ec:e8:85:19:30:57: dd:ad:f3:62:6d:5c:21:41:24:60:ce:69:3b:cc:9d:04:08:2f: 2d:b8:82:70:58:90:1c:63:73:65:5b:b9:58:bf:1f:0a:5e:10: 35:59:f8:f5:06:2d:73:84:4e:4b:07:94:bc:57:10:3b:2d:b2: a9:c5:23:d7:bb:e0:3a:66:74:46:59:81:5d:e8:fb:cd:23:87: 45:6e:fc:7f:88:05:9f:2d:89:57:a0:23:0d:76:c4:f9:1e:b4: c3:3e:29:f1:86:99:97:9c:c0:55:7e:e0:30:cd:e0:8a:88:80: 46:49:7c:f0:0a:c2:e0:3b:dc:2a:70:ba:ae:0a:c3:27:10:4c: 8d:f9:41:93:41:a4:20:cf:00:a2:87:72:98:11:5c:ab:fd:83: 34:40:16:1b:f9:8d:57:59:c4:da:11:8b:3c:bb:a0:f9:e2:d8: b1:41:63:84:a3:72:25:5e:67:00:c5:63:46:6d:8c:6f:61:68: 30:c0:00:64:b5:91:7b:f4:4a:ed:e6:87:8b:eb:66:f0:b5:89: 04:e2:06:63:93:12:6b:af:52:06:ed:ca:69:39:fd:7a:78:a9: 8d:3c:b6:f4:35:c5:9f:5d:d1:69:c4:3e:25:b3:97:66:d4:3b: a9:6f:65:5a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjQwNzAyMjMxMjA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ODk0Ny00MjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWBnL0V1ew2VypFFY9cJ3QBdzplnEfRQnaNppjTNm1W0PJsyWyQRXps1aRwV yfrDM4+3gInxWZgJuc8T633zhrHRowAjay71T7bvBSa1qfq9Fm9+/b5on7Dc1UV0 dBlpOz0zKmWvnJWq3HQTCzNZUatuVSJG4IE8N0tLZTPiR79KL6Qar1xQNKwk6KIj 66pdgqLTDDSNnUYHRmo5eg3SeiPMQuvu474NVSnVjvE2D0/ge20XGCZeGw1cgxEc Wx/AMHIeMVUldPAag9hvCp/pEd7Uwg63VUpbKotVd3WuMxYJSR5CzY0bfcD4faiF ImwnCizWZ5XeVzYiZXdWOx4djQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLcpn4TL h9fkrxZHEXbDY1ydVCgyMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdENjcvNjlFNkMxNkE0NDJBMTFFQjk1OTlBRDM4QzRGOUFFMDIvQUI5NkVGMzg1 MkNEMTFFQ0FCMjA5QzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkDcAQAFAwDQYJKoZIhvcNAQELBQADggEBAJtLqJPXhsYz GynRLezohRkwV92t82JtXCFBJGDOaTvMnQQILy24gnBYkBxjc2VbuVi/HwpeEDVZ +PUGLXOETksHlLxXEDstsqnFI9e74DpmdEZZgV3o+80jh0Vu/H+IBZ8tiVegIw12 xPketMM+KfGGmZecwFV+4DDN4IqIgEZJfPAKwuA73Cpwuq4KwycQTI35QZNBpCDP AKKHcpgRXKv9gzRAFhv5jVdZxNoRizy7oPni2LFBY4SjciVeZwDFY0ZtjG9haDDA AGS1kXv0Su3mh4vrZvC1iQTiBmOTEmuvUgbtymk5/Xp4qY08tvQ1xZ9d0WnEPiWz l2bUO6lvZVo= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org