$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa File: 958CC8DA1C2611ECB416AA68C4F9AE02.roa (raw, json) Hash identifier: 8mVeA+SIv0Xg6q5R2kTn0B3EzwQb0xwk0GGq0XOtjBM= Subject key identifier: 47:04:D2:CD:96:E6:5C:A5:9E:B7:7F:C5:6B:3A:07:8F:31:15:DD:25 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0B04 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa Signing time: Fri 16 Aug 2024 20:28:28 +0000 ROA not before: Fri 16 Aug 2024 20:28:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 394749 IP address blocks: 2407:b000:4015::/48 maxlen: 48 2407:b001:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2820 (0xb04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 20:28:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfb66c-e113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:dd:f1:7c:72:ac:fb:2c:e4:dd:ca:72:3b:e8: 46:1b:69:12:34:ce:1d:de:6f:e7:65:ac:92:e2:33: 91:56:8c:1f:63:be:c3:a6:95:2a:6c:ee:eb:4a:ac: 3b:71:ca:75:47:ec:e7:0c:86:10:2c:50:35:12:56: d5:10:8f:c4:f4:b0:92:f1:ca:ec:40:fc:58:ab:4a: 1a:0f:ec:8e:1f:44:64:ec:61:a2:2b:65:e6:d2:e0: 74:9a:e3:26:27:28:3a:ef:98:14:a9:19:1f:fd:48: 66:46:94:47:69:eb:b3:77:f4:12:08:a8:be:19:fe: 45:b9:d8:59:93:b8:b2:57:61:51:fa:8f:e8:be:eb: f7:cb:86:9e:a3:30:3f:47:47:3e:83:fc:01:58:66: e0:49:c1:fe:0e:94:95:c3:35:e8:d3:3f:3e:7c:b5: e3:10:e3:73:4f:e7:f0:17:77:26:c5:2f:ac:87:4b: 1e:74:82:f2:3c:fd:80:c4:f0:b1:3e:e7:9d:87:5f: 54:7c:bf:71:a5:54:d1:71:28:f9:1c:57:57:11:19: e6:6c:29:40:20:71:8b:39:52:b9:27:6a:17:c1:3e: b0:dd:90:45:1f:62:e5:de:d1:be:c7:2d:69:63:ae: 9e:b7:3c:4f:b7:10:7e:3d:da:95:48:ce:84:79:a6: 1c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:04:D2:CD:96:E6:5C:A5:9E:B7:7F:C5:6B:3A:07:8F:31:15:DD:25 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:b000:4015::/48 2407:b001:1010::/48 Signature Algorithm: sha256WithRSAEncryption 87:5f:c6:69:b1:10:40:2b:ae:af:23:85:e2:13:75:e8:22:5c: 0d:d1:d2:a8:d0:7c:3a:f3:bb:44:83:d8:c5:89:6d:b2:20:80: a5:79:d0:d7:7f:3d:a0:ee:d0:68:5c:39:a0:ca:a3:78:b8:e0: 48:8f:03:1a:47:cb:1c:59:74:9e:68:e3:95:ea:5f:68:68:ca: 73:8b:a4:9f:24:a7:c5:f9:28:90:de:d6:b7:c2:7e:e9:23:bc: e8:ec:3e:5f:0a:ab:53:3e:d5:01:ac:08:c4:87:5f:9f:4a:02: c3:f6:3c:de:59:d9:ae:b6:2a:b6:b4:19:cb:fa:ef:20:c9:09: f8:2d:87:30:b4:27:02:a7:75:be:42:0b:f4:c8:b0:b8:bd:95: c6:40:c7:c2:b5:77:98:a2:86:52:c4:92:b8:f1:48:a8:ef:91: ad:cc:2f:9c:f5:a3:1d:a4:d9:eb:e7:47:60:d3:41:6d:d0:7a: 18:6a:f8:d8:98:5f:05:43:77:8a:99:49:e6:e2:f1:28:91:ac: 4a:96:70:30:63:6a:0d:e5:33:12:eb:75:4a:29:93:8f:26:ed: 13:08:3d:6b:24:c8:26:e0:e6:80:20:47:17:1a:58:62:95:63: 35:f8:dd:cc:48:b4:53:16:59:9b:23:56:29:e7:1c:a4:9e:f2: 90:d3:dd:f7 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjQwODE2MjAyODI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYjY2Yy1lMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmd3xfHKs+yzk3cpyO+hGG2kSNM4d3m/nZayS4jORVowfY77DppUqbO7rSqw7 ccp1R+znDIYQLFA1ElbVEI/E9LCS8crsQPxYq0oaD+yOH0Rk7GGiK2Xm0uB0muMm Jyg675gUqRkf/UhmRpRHaeuzd/QSCKi+Gf5FudhZk7iyV2FR+o/ovuv3y4aeozA/ R0c+g/wBWGbgScH+DpSVwzXo0z8+fLXjEONzT+fwF3cmxS+sh0sedILyPP2AxPCx Puedh19UfL9xpVTRcSj5HFdXERnmbClAIHGLOVK5J2oXwT6w3ZBFH2Ll3tG+xy1p Y66etzxPtxB+PdqVSM6EeaYcaQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEcE0s2W 5lylnrd/xWs6B48xFd0lMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvOTU4Q0M4REEx QzI2MTFFQ0I0MTZBQTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkB7AAQBUDBwAkB7ABEBAwDQYJKoZIhvcNAQELBQADggEB AIdfxmmxEEArrq8jheITdegiXA3R0qjQfDrzu0SD2MWJbbIggKV50Nd/PaDu0Ghc OaDKo3i44EiPAxpHyxxZdJ5o45XqX2hoynOLpJ8kp8X5KJDe1rfCfukjvOjsPl8K q1M+1QGsCMSHX59KAsP2PN5Z2a62Kra0Gcv67yDJCfgthzC0JwKndb5CC/TIsLi9 lcZAx8K1d5iihlLEkrjxSKjvka3ML5z1ox2k2evnR2DTQW3Qehhq+NiYXwVDd4qZ Sebi8SiRrEqWcDBjag3lMxLrdUopk48m7RMIPWskyCbg5oAgRxcaWGKVYzX43cxI tFMWWZsjVinnHKSe8pDT3fc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org