$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/A1E99A4E9C1211EFB233147EC4F9AE02.roa File: A1E99A4E9C1211EFB233147EC4F9AE02.roa (raw, json) Hash identifier: 3ye2avJW3DGdXLpGllemApGuBs5Hg/Dy3+TFvLk8rE8= Subject key identifier: D3:29:E5:10:AC:27:C1:58:B6:6F:B2:91:1A:4C:B6:B5:6A:45:EC:CD Certificate issuer: /CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Certificate serial: 02 Authority key identifier: AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/A1E99A4E9C1211EFB233147EC4F9AE02.roa Signing time: Wed 06 Nov 2024 07:42:11 +0000 ROA not before: Wed 06 Nov 2024 07:42:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153392 IP address blocks: 2001:df4:8f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Validity Not Before: Nov 6 07:42:11 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672b1dd3-3fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:0b:22:d7:e4:21:b1:c4:3a:ce:a5:eb:16: a3:36:5a:d3:4a:1e:78:92:e0:30:7c:3d:ea:3f:49: 59:70:c4:90:3f:1a:b3:4c:39:f5:ac:23:04:42:23: e7:69:15:2e:d0:55:65:ec:1b:08:cf:16:3d:c5:37: 10:c9:99:20:a2:dc:fa:7e:19:2d:23:98:19:da:b9: 5d:e7:44:76:89:35:d6:10:36:f9:c8:a7:7f:7a:be: 1f:d0:27:ea:cd:1d:d7:9f:23:b1:c4:00:e1:fe:45: 34:6a:81:d9:88:2e:f6:bf:d9:ab:9b:1d:f3:ab:6e: 2f:3e:c2:64:c6:78:33:0b:a6:e8:60:08:08:93:6a: 70:11:36:5b:b7:28:29:ba:5f:48:bb:14:a4:5a:16: f3:3b:00:0b:9d:08:05:95:28:8a:7d:a0:f7:6e:bb: 5f:07:1f:97:68:80:c6:bf:ff:8b:91:cb:d6:b0:17: 98:f6:b2:3e:77:5b:a8:9a:14:a6:4e:a7:8a:08:e0: c8:20:43:62:c6:03:51:23:a8:3d:46:77:69:57:37: b3:4f:f5:89:d9:3a:da:a0:6c:46:ce:8f:98:fe:98: 5d:e6:49:64:b7:85:ed:39:4c:17:b5:61:6e:86:b2: 6a:f0:fd:e3:96:5d:76:c8:b7:a0:48:83:1a:7b:36: 38:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:29:E5:10:AC:27:C1:58:B6:6F:B2:91:1A:4C:B6:B5:6A:45:EC:CD X509v3 Authority Key Identifier: keyid:AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/A1E99A4E9C1211EFB233147EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8f40::/48 Signature Algorithm: sha256WithRSAEncryption 29:89:c0:5e:b4:3b:36:fb:73:be:b8:d5:2a:93:43:9d:24:76: 0c:b1:86:38:cb:e9:55:e6:8c:75:56:a4:0b:24:67:45:57:ea: 06:39:d5:3f:68:3e:0d:78:09:66:44:c2:ca:07:20:71:d7:b9: 1e:b2:a0:ad:87:79:38:4f:ff:0c:dd:9f:02:9c:36:0b:28:37: ec:78:43:43:13:cf:40:f0:fc:17:0e:9d:dc:c8:12:4a:a9:65: 05:9a:1c:f7:a7:e8:9d:84:a5:70:d1:ed:01:0b:9b:0c:9d:d6: 21:a8:d4:e3:a2:3f:34:49:02:23:67:01:ad:f9:87:63:87:4a: 97:07:00:07:04:ce:5d:dd:1d:5f:10:aa:e4:c2:d4:ef:dd:04: 68:0e:a9:f5:f7:e7:b1:4d:94:46:a3:8f:dc:a8:e0:34:b1:4f: ba:1d:2b:5b:dd:ea:78:84:d5:eb:99:55:86:0e:7f:2f:67:95: 64:7b:c4:f0:17:82:15:b5:ac:6b:73:28:0c:56:f1:7c:36:de: 9a:b7:50:a5:4c:07:09:ea:b1:90:42:1b:75:cd:84:42:fb:83: 39:67:96:e0:4a:d3:d0:29:bb:0e:41:ef:34:c8:00:85:a5:6f: 7a:63:5c:7b:27:80:e2:7b:2a:dd:64:61:47:fa:11:d0:40:7f: 1a:8b:d8:f0 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RUE0NjExMC8GA1UEBRMoQUMyOERDMkE1NTRCNEUzMzlBMzk5Qzk2NDJCNENFMDI2 OEE4REZCMDAeFw0yNDExMDYwNzQyMTFaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmIxZGQzLTNmYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp3gsi1+QhscQ6zqXrFqM2WtNKHniS4DB8Peo/SVlwxJA/GrNMOfWsIwRCI+dp FS7QVWXsGwjPFj3FNxDJmSCi3Pp+GS0jmBnauV3nRHaJNdYQNvnIp396vh/QJ+rN HdefI7HEAOH+RTRqgdmILva/2aubHfOrbi8+wmTGeDMLpuhgCAiTanARNlu3KCm6 X0i7FKRaFvM7AAudCAWVKIp9oPduu18HH5dogMa//4uRy9awF5j2sj53W6iaFKZO p4oI4MggQ2LGA1EjqD1Gd2lXN7NP9YnZOtqgbEbOj5j+mF3mSWS3he05TBe1YW6G smrw/eOWXXbIt6BIgxp7NjjdAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU0ynlEKwn wVi2b7KRGky2tWpF7M0wHwYDVR0jBBgwFoAUrCjcKlVLTjOaOZyWQrTOAmio37Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFQTQ2L0RCREEyQ0M0OUMx MTExRUY5MkZCQTk3Q0M0RjlBRTAyL3JDamNLbFZMVGpPYU9aeVdRclRPQW1pbzM3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckNqY0tsVkxUak9hT1p5V1FyVE9BbWlvMzdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE0Ni9EQkRBMkNDNDlDMTExMUVGOTJGQkE5N0NDNEY5QUUwMi9BMUU5OUE0RTlD MTIxMUVGQjIzMzE0N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSPQDANBgkqhkiG9w0BAQsFAAOCAQEAKYnAXrQ7Nvtz vrjVKpNDnSR2DLGGOMvpVeaMdVakCyRnRVfqBjnVP2g+DXgJZkTCygcgcde5HrKg rYd5OE//DN2fApw2Cyg37HhDQxPPQPD8Fw6d3MgSSqllBZoc96fonYSlcNHtAQub DJ3WIajU46I/NEkCI2cBrfmHY4dKlwcABwTOXd0dXxCq5MLU790EaA6p9ffnsU2U RqOP3KjgNLFPuh0rW93qeITV65lVhg5/L2eVZHvE8BeCFbWsa3MoDFbxfDbemrdQ pUwHCeqxkEIbdc2EQvuDOWeW4ErT0Cm7DkHvNMgAhaVvemNceyeA4nsq3WRhR/oR 0EB/GovY8A== -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:48 2024 by rpki-client on console-ams.rpki-client.org