$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa File: 44B65A3890FF11EFA6BECB58C4F9AE02.roa (raw, json) Hash identifier: GUv+bR0jB5xe+4YguFwkCK8B685+o0kSH52XBLyO1zw= Subject key identifier: 68:7F:FE:5A:2C:9A:80:0B:EB:2B:D6:7F:DD:C3:C2:0B:CA:F5:A7:BE Certificate issuer: /CN=A9160C9E/serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Certificate serial: 11 Authority key identifier: 10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa Signing time: Wed 23 Oct 2024 05:47:09 +0000 ROA not before: Wed 23 Oct 2024 05:47:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153365 IP address blocks: 2401:cf20::/32 maxlen: 32 2401:cf20::/33 maxlen: 36 2401:cf20:8000::/33 maxlen: 35 2401:cf20:8000::/35 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C9E/serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Validity Not Before: Oct 23 05:47:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67188ddd-551f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:6e:a1:bb:83:e1:22:fd:8e:e1:f3:e0:79: 2f:93:ef:e6:33:a1:a6:ff:57:40:21:60:0b:2a:7d: 4e:15:77:4b:4a:29:88:56:95:51:f4:76:46:60:9d: dd:19:82:7c:e2:7f:88:64:22:0c:0a:e5:52:dd:2f: d1:78:43:3e:d3:41:ac:5e:67:8c:c3:06:d8:63:74: 63:ca:1d:1d:03:1b:ee:17:cf:07:af:3b:12:4c:61: c2:10:83:da:8f:87:31:77:7d:3e:10:de:06:f8:dc: 16:69:cc:46:c6:8d:50:46:9c:63:11:ea:c2:d3:1d: fe:6b:a2:d3:5e:f9:a2:30:0f:b1:7f:c5:2a:2c:ee: f3:ce:95:44:dd:41:c6:62:2a:8f:77:46:8a:ee:41: ce:38:b0:fe:45:3d:ad:3d:fc:b8:c9:58:46:57:8e: 3a:cf:47:c4:e3:ac:3b:ce:a9:22:7a:4f:33:e3:ca: 67:cf:9f:98:9f:91:a8:ee:b7:a9:ba:15:b8:c9:35: e8:81:d2:ce:ad:7a:49:fd:63:34:aa:d4:63:52:4e: 13:05:41:15:db:2a:68:a0:b8:07:77:b2:d3:cc:c9: 0f:69:66:70:58:58:ba:6c:4f:61:df:5b:d4:f5:f5: 1e:52:54:5c:9c:bc:0c:ed:51:d6:13:3d:8b:4a:f4: 0e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7F:FE:5A:2C:9A:80:0B:EB:2B:D6:7F:DD:C3:C2:0B:CA:F5:A7:BE X509v3 Authority Key Identifier: keyid:10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:cf20::/32 Signature Algorithm: sha256WithRSAEncryption 02:71:cf:db:55:17:78:e9:9c:e3:52:89:08:da:2f:59:ca:d7: 92:a2:af:ab:84:39:df:b1:d0:35:75:7f:15:ca:82:14:13:ae: e8:78:ef:8a:0c:f8:4b:e3:a1:ac:ee:e5:26:30:3e:85:c6:f4: 23:50:af:c3:09:33:aa:f8:c2:5d:4d:d0:16:fc:81:57:3b:5a: 18:ae:3a:17:b7:2d:1c:a8:27:b1:fc:72:d9:6e:a7:24:54:56: 16:89:41:69:15:47:1d:b4:d7:85:39:c7:c4:33:a5:a5:62:df: 77:69:7f:7b:0e:7c:c6:ea:ae:5f:d4:c3:ec:d3:ed:49:fc:31: e7:39:3f:e8:04:bd:a9:bf:71:25:22:1d:f8:dd:6f:bd:bf:be: 49:7e:e1:0b:fb:5c:f4:69:19:a4:04:c8:3d:1f:26:7b:a8:d5: c8:a3:d9:31:8e:42:e3:50:3f:2c:63:5a:ad:c9:b2:5f:1f:1f: ea:92:ed:af:e4:a1:84:c2:3c:97:85:2a:3a:5a:93:0b:cf:6a: cc:b3:7c:ca:3d:ea:d6:96:eb:9b:9e:d0:90:94:3a:e8:33:a0: 12:de:57:79:13:8c:fa:94:88:44:5c:a5:30:97:f9:db:45:41: ce:02:f5:74:27:9a:13:99:ed:ee:b7:a3:2e:1c:33:cd:ef:c1: 3b:8c:6a:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEM5RTExMC8GA1UEBRMoMTAwRDlBRUU5MUQyMjdGRTQ3NTkzNEYyOTc4QzM2MTdE OENGQThFRTAeFw0yNDEwMjMwNTQ3MDlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTg4ZGRkLTU1MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIEW6hu4PhIv2O4fPgeS+T7+Yzoab/V0AhYAsqfU4Vd0tKKYhWlVH0dkZgnd0Z gnzif4hkIgwK5VLdL9F4Qz7TQaxeZ4zDBthjdGPKHR0DG+4XzwevOxJMYcIQg9qP hzF3fT4Q3gb43BZpzEbGjVBGnGMR6sLTHf5rotNe+aIwD7F/xSos7vPOlUTdQcZi Ko93RoruQc44sP5FPa09/LjJWEZXjjrPR8TjrDvOqSJ6TzPjymfPn5ifkajut6m6 FbjJNeiB0s6tekn9YzSq1GNSThMFQRXbKmiguAd3stPMyQ9pZnBYWLpsT2HfW9T1 9R5SVFycvAztUdYTPYtK9A5LAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUaH/+Wiya gAvrK9Z/3cPCC8r1p74wHwYDVR0jBBgwFoAUEA2a7pHSJ/5HWTTyl4w2F9jPqO4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQzlFLzU3RkY0QkNBOEJD QTExRUZBQkZDMUEzOUM0RjlBRTAyL0VBMmE3cEhTSl81SFdUVHlsNHcyRjlqUHFP NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRUEyYTdwSFNKXzVIV1RUeWw0dzJGOWpQcU80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5RS81N0ZGNEJDQThCQ0ExMUVGQUJGQzFBMzlDNEY5QUUwMi80NEI2NUEzODkw RkYxMUVGQTZCRUNCNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBzyAwDQYJKoZIhvcNAQELBQADggEBAAJxz9tVF3jpnONS iQjaL1nK15Kir6uEOd+x0DV1fxXKghQTruh474oM+Evjoazu5SYwPoXG9CNQr8MJ M6r4wl1N0Bb8gVc7WhiuOhe3LRyoJ7H8ctlupyRUVhaJQWkVRx2014U5x8QzpaVi 33dpf3sOfMbqrl/Uw+zT7Un8Mec5P+gEvam/cSUiHfjdb72/vkl+4Qv7XPRpGaQE yD0fJnuo1cij2TGOQuNQPyxjWq3Jsl8fH+qS7a/koYTCPJeFKjpakwvPasyzfMo9 6taW65ue0JCUOugzoBLeV3kTjPqUiERcpTCX+dtFQc4C9XQnmhOZ7e63oy4cM83v wTuMalo= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:54 2024 by rpki-client on console-ams.rpki-client.org