$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa File: 7A5A3018369911EEA7B51070C4F9AE02.roa (raw, json) Hash identifier: zSC/gjCR0EVJELBfh0dBGYdErFR0oMqid9q1RQYH1s0= Subject key identifier: 79:45:20:C3:81:53:87:F1:1C:7C:8F:20:5E:23:9A:88:51:E7:39:AA Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Certificate serial: 0385 Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa Signing time: Wed 09 Oct 2024 01:14:52 +0000 ROA not before: Wed 09 Oct 2024 01:14:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141039 IP address blocks: 2407:e8c0:10::/48 maxlen: 48 2407:e8c0:4000::/40 maxlen: 40 2407:e8c0:4100::/40 maxlen: 40 2407:e8c0:4200::/40 maxlen: 40 2407:e8c0:4300::/40 maxlen: 40 2407:e8c0:4400::/40 maxlen: 40 2407:e8c0:4500::/40 maxlen: 40 2407:e8c0:4600::/40 maxlen: 40 2407:e8c0:4700::/40 maxlen: 40 2407:e8c0:4800::/40 maxlen: 40 2407:e8c0:4900::/40 maxlen: 40 2407:e8c0:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Validity Not Before: Oct 9 01:14:52 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705d90c-95fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2e:cc:bc:9b:24:fc:62:33:9b:96:b0:53:ce: 6c:29:ac:43:27:4d:84:1a:6e:c2:58:c4:b1:eb:9d: e5:cd:5a:ab:c9:58:03:8c:58:82:24:b8:d6:de:d2: 81:c2:0f:5a:33:63:2c:18:e3:64:48:e1:33:29:4e: 98:59:55:81:7b:c0:cc:94:ff:42:6a:36:ae:ec:03: 5a:fe:0a:0a:80:fc:b8:33:c0:f8:ff:07:f0:38:23: 69:93:b6:50:23:4e:f6:b6:42:cf:35:18:a5:52:9b: 49:d9:20:03:9e:be:3a:a9:42:1f:51:73:f0:20:1a: dd:5e:ef:00:a7:1e:cc:f7:17:f7:cf:2a:d6:ce:34: bf:1a:35:4e:b4:ce:62:48:40:ba:63:3c:15:e8:a7: 90:b6:89:93:8e:b0:18:18:fc:83:70:29:f5:6e:35: fd:ba:56:d4:3a:4f:8d:88:6d:ae:52:14:5c:d4:1d: 65:d1:84:a1:66:71:ba:cf:26:5a:02:8c:32:3f:af: 83:de:eb:0f:e5:e0:e5:0c:94:5d:c6:9a:00:fe:cd: c5:b5:ff:ed:08:9f:8d:20:3e:09:92:ae:11:e7:0c: 3b:03:25:36:07:5d:e2:05:b7:56:68:2d:b0:7d:1e: bd:b9:59:7d:04:28:58:4e:d1:5b:ed:bd:13:49:f9: cc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:45:20:C3:81:53:87:F1:1C:7C:8F:20:5E:23:9A:88:51:E7:39:AA X509v3 Authority Key Identifier: keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e8c0:10::/48 2407:e8c0:4000::-2407:e8c0:49ff:ffff:ffff:ffff:ffff:ffff 2407:e8c0:6000::/40 Signature Algorithm: sha256WithRSAEncryption 73:16:78:0c:c6:dc:31:5e:fa:1e:1e:a5:5c:fe:e5:79:b7:47: 00:e6:d2:9a:c2:f4:0b:ef:00:0d:b3:16:4b:5e:51:e0:93:79: c4:2a:f1:e8:43:77:a1:4f:94:f5:a8:3b:42:f0:1c:f2:be:f1: 8b:36:f4:fb:ff:a2:4a:fa:55:41:85:7a:c4:51:08:86:dd:c7: f1:e4:c1:85:1f:ba:30:30:3a:1e:ab:ef:cd:20:39:c5:7a:63: 89:c4:44:78:ae:2b:1b:df:e3:72:3a:fe:3e:0b:9c:ed:16:6a: 40:c0:3f:05:51:4d:05:e5:6a:29:90:7a:de:5a:e7:fc:f8:3d: d8:8b:43:c3:4a:6c:56:cf:38:25:bf:ae:fb:ce:e9:c4:75:8c: d4:4e:1a:60:0e:32:96:ee:26:a7:3f:b3:9b:ed:0b:85:86:e6: f4:4d:69:ae:74:32:04:e4:88:9a:3c:f4:d0:98:3b:37:89:90: 40:d4:d2:a9:52:66:0d:92:16:a5:a5:91:a7:85:01:25:24:dc: 20:2b:eb:70:bf:3f:b6:2a:e6:1d:5c:83:c6:40:f9:a0:29:02: b3:1a:d3:a3:5a:d7:19:c4:02:d6:52:05:17:15:1a:ad:00:40: 02:cc:19:dd:68:a0:11:74:eb:ee:54:0a:c2:38:1f:c6:97:49: f5:1b:5e:e9 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJFRTExMTAvBgNVBAUTKDYwNzZCRDBCQTREQjc5N0E3MkE2OEZFRkY5QkZCNTU4 QzQ0Mzk4QjIwHhcNMjQxMDA5MDExNDUyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1ZDkwYy05NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6C7MvJsk/GIzm5awU85sKaxDJ02EGm7CWMSx653lzVqryVgDjFiCJLjW3tKB wg9aM2MsGONkSOEzKU6YWVWBe8DMlP9Cajau7ANa/goKgPy4M8D4/wfwOCNpk7ZQ I072tkLPNRilUptJ2SADnr46qUIfUXPwIBrdXu8Apx7M9xf3zyrWzjS/GjVOtM5i SEC6YzwV6KeQtomTjrAYGPyDcCn1bjX9ulbUOk+NiG2uUhRc1B1l0YShZnG6zyZa AowyP6+D3usP5eDlDJRdxpoA/s3Ftf/tCJ+NID4Jkq4R5ww7AyU2B13iBbdWaC2w fR69uVl9BChYTtFb7b0TSfnMJQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFHlFIMOB U4fxHHyPIF4jmohR5zmqMB8GA1UdIwQYMBaAFGB2vQuk23l6cqaP7/m/tVjEQ5iy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkVFMS83NTJENDJFODhG RDIxMUVDOTQ4QTkzN0VDNEY5QUUwMi9ZSGE5QzZUYmVYcHlwb192LWItMVdNUkRt TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYTlDNlRiZVhweXBvX3YtYi0xV01SRG1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjJFRTEvNzUyRDQyRTg4RkQyMTFFQzk0OEE5MzdFQzRGOUFFMDIvN0E1QTMwMTgz Njk5MTFFRUE3QjUxMDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMCkEAgACMCMDBwAkB+jAABAwEAMGBiQH6MBAAwYBJAfowEgDBgAkB+jAYDAN BgkqhkiG9w0BAQsFAAOCAQEAcxZ4DMbcMV76Hh6lXP7lebdHAObSmsL0C+8ADbMW S15R4JN5xCrx6EN3oU+U9ag7QvAc8r7xizb0+/+iSvpVQYV6xFEIht3H8eTBhR+6 MDA6HqvvzSA5xXpjicREeK4rG9/jcjr+Pguc7RZqQMA/BVFNBeVqKZB63lrn/Pg9 2ItDw0psVs84Jb+u+87pxHWM1E4aYA4ylu4mpz+zm+0LhYbm9E1prnQyBOSImjz0 0Jg7N4mQQNTSqVJmDZIWpaWRp4UBJSTcICvrcL8/tirmHVyDxkD5oCkCsxrTo1rX GcQC1lIFFxUarQBAAswZ3WigEXTr7lQKwjgfxpdJ9Rte6Q== -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org