$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/FDB29514452511E98F23AE4FC4F9AE02.roa File: FDB29514452511E98F23AE4FC4F9AE02.roa (raw, json) Hash identifier: jKjgjHAVwE6QjT9uxqWJZ+6l7n4ZvhOgISiekncD66w= Subject key identifier: 24:F2:D3:8F:55:23:12:EE:E6:1C:DC:03:D9:48:35:82:97:A5:1E:91 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 11DB Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/FDB29514452511E98F23AE4FC4F9AE02.roa Signing time: Fri 08 Dec 2023 17:44:52 +0000 ROA not before: Fri 08 Dec 2023 17:44:52 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137937 IP address blocks: 2403:cfc0:1003::/48 maxlen: 48 2403:cfc0:100d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4571 (0x11db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 8 17:44:52 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65735614-b761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c6:a4:55:d7:8e:1c:78:b1:38:66:94:e7:0f: f3:c3:d8:29:da:ea:eb:7b:d1:33:83:1a:d1:ee:06: 46:66:5a:46:55:c0:80:d3:dc:4d:92:6f:12:fc:19: 59:5a:8d:7a:6d:bc:ba:ce:c2:26:ac:98:8e:91:4f: 54:64:db:a3:0b:33:89:7a:7b:3c:e4:1c:9e:32:0e: 62:f8:5d:e0:62:61:da:4a:3d:a0:29:e5:c1:c6:81: c9:c9:56:f7:32:37:0d:71:a4:08:e3:19:d6:de:66: 43:21:cd:7d:d7:d8:87:9e:cb:1e:2e:2c:5d:7f:6d: 52:b3:10:86:69:aa:b4:2f:6a:fd:e0:f5:61:56:e6: c3:61:ad:f0:dd:b4:19:ff:68:20:8b:4c:b9:5e:ec: 6f:82:9e:36:6b:f7:9c:f3:c2:04:e5:57:f9:f2:e3: cb:f0:9b:48:3c:82:f3:2a:e6:82:85:5c:d7:f8:10: 18:cb:f2:3c:fa:3f:73:17:2f:4e:3e:8e:0f:5f:39: c6:e4:4a:dd:7b:d3:49:23:f0:e3:a0:77:ae:d6:9a: c9:b7:83:83:05:5c:7e:63:6c:5a:79:35:d0:df:39: 9b:37:8f:c2:70:9e:23:53:5e:dc:2d:6e:b5:2e:c3: c6:0f:a7:9a:53:4f:74:84:6c:ec:18:d6:49:a6:c4: 5b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F2:D3:8F:55:23:12:EE:E6:1C:DC:03:D9:48:35:82:97:A5:1E:91 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/FDB29514452511E98F23AE4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1003::/48 2403:cfc0:100d::/48 Signature Algorithm: sha256WithRSAEncryption 78:12:f5:ab:2a:7d:9f:55:a8:31:90:fa:2c:24:b5:93:5f:be: aa:59:52:91:c6:99:36:75:0e:aa:0f:f5:5b:88:08:7f:99:f3: 6d:14:af:31:d7:5a:50:65:a5:d8:3f:96:72:58:bb:cd:fa:b5: 6a:97:f4:3f:8d:e9:1f:1b:7b:28:f6:cb:c5:b9:50:02:d4:78: ee:f4:49:d0:cf:c5:4c:5d:6d:6f:ca:18:68:bc:ee:a4:29:f6: d7:64:4e:bb:af:2c:54:32:96:d8:a6:f7:14:79:95:77:f7:2a: 2f:35:62:da:2e:70:9a:23:67:e7:e8:82:66:10:3f:26:3e:11: e1:f9:6c:58:59:48:22:5b:02:d6:63:99:62:8c:f5:2a:8a:f1: 5b:84:d0:7b:1d:ac:67:03:46:8c:75:08:2e:0d:53:31:4b:dd: 8f:2d:b1:d5:cd:dc:f9:95:ae:15:54:f3:e0:d1:e2:dd:d0:f1: 35:2f:8b:f9:09:cc:ba:9c:5f:77:eb:f7:9d:61:21:6f:62:ab: d9:a5:2a:a3:40:d6:2b:8b:7d:69:0a:98:ba:5f:96:95:ad:c9: 6a:b3:03:56:7e:d2:1c:e3:6a:a1:e9:6b:ab:81:b9:e6:d0:ea: be:cd:f1:cd:43:a9:34:37:ae:e3:72:d8:04:c2:d5:00:9d:04: fb:f4:14:43 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjMxMjA4MTc0NDUyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNTYxNC1iNzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8akVdeOHHixOGaU5w/zw9gp2urre9EzgxrR7gZGZlpGVcCA09xNkm8S/BlZ Wo16bby6zsImrJiOkU9UZNujCzOJens85ByeMg5i+F3gYmHaSj2gKeXBxoHJyVb3 MjcNcaQI4xnW3mZDIc1919iHnsseLixdf21SsxCGaaq0L2r94PVhVubDYa3w3bQZ /2ggi0y5Xuxvgp42a/ec88IE5Vf58uPL8JtIPILzKuaChVzX+BAYy/I8+j9zFy9O Po4PXznG5Erde9NJI/DjoHeu1prJt4ODBVx+Y2xaeTXQ3zmbN4/CcJ4jU17cLW61 LsPGD6eaU090hGzsGNZJpsRbXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCTy049V IxLu5hzcA9lINYKXpR6RMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvRkRCMjk1MTQ0 NTI1MTFFOThGMjNBRTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkA8/AEAMDBwAkA8/AEA0wDQYJKoZIhvcNAQELBQADggEB AHgS9asqfZ9VqDGQ+iwktZNfvqpZUpHGmTZ1DqoP9VuICH+Z820UrzHXWlBlpdg/ lnJYu836tWqX9D+N6R8beyj2y8W5UALUeO70SdDPxUxdbW/KGGi87qQp9tdkTruv LFQyltim9xR5lXf3Ki81YtoucJojZ+fogmYQPyY+EeH5bFhZSCJbAtZjmWKM9SqK 8VuE0HsdrGcDRox1CC4NUzFL3Y8tsdXN3PmVrhVU8+DR4t3Q8TUvi/kJzLqcX3fr 951hIW9iq9mlKqNA1iuLfWkKmLpflpWtyWqzA1Z+0hzjaqHpa6uBuebQ6r7N8c1D qTQ3ruNy2ATC1QCdBPv0FEM= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:12 2024 by rpki-client on console-ams.rpki-client.org