$ rpki-client -vvf rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa File: 5A15EA040D7A11EB9D346C48C4F9AE02.roa (raw, json) Hash identifier: 2Lal6Hihil8XYkgrg/1JrJLddglMRFIWSjh8Zg5doPM= Subject key identifier: 7C:C5:E0:5D:EC:38:7C:2B:6D:96:7A:7E:FA:FB:41:66:99:D0:58:1E Certificate issuer: /CN=A9165456/serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Certificate serial: 09F8 Authority key identifier: 2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa Signing time: Tue 20 Aug 2024 20:09:25 +0000 ROA not before: Tue 20 Aug 2024 20:09:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139190 IP address blocks: 2404:f340:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165456/serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Validity Not Before: Aug 20 20:09:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c4f7f5-feb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:32:cc:3b:72:20:be:f7:8b:72:c2:9f:40: 21:26:b7:83:9e:50:14:71:28:5d:8a:0d:39:04:3e: 1d:d8:1b:66:fe:3c:da:87:b6:d4:dd:36:9d:4c:2a: 07:b6:3b:84:d1:cb:d5:ea:41:f6:86:1d:4b:c1:d8: 3b:9f:37:69:11:f6:cc:09:60:e2:bd:5f:1a:d4:53: 31:0d:20:83:66:88:21:24:42:7d:6d:bb:9d:85:a7: 83:f8:b1:bf:32:60:64:6e:7a:17:64:27:ef:38:3d: f5:8b:02:90:d5:8e:8c:d8:31:f0:00:73:d1:e5:1e: da:a4:29:9b:9b:31:b5:84:66:b0:59:7e:01:3a:24: 3d:0e:73:55:15:40:da:fe:d4:75:94:0f:93:c2:98: 3a:b9:27:5a:f0:9e:43:08:d1:e5:ad:65:65:17:47: 20:26:db:f7:9b:bd:5b:a6:ce:48:b5:a7:6f:c0:52: 83:05:66:e0:ab:32:90:4a:53:77:7b:a2:67:30:5c: dd:ec:f3:31:53:95:ad:d6:c1:b0:b5:b3:0b:5e:06: 62:03:77:1d:59:cb:12:2b:ca:b1:31:fc:e2:e8:3e: 5b:1a:24:3f:c8:d1:39:63:73:d6:81:49:56:65:3a: cf:30:08:a6:14:51:93:2c:ad:03:83:57:83:d5:db: e7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C5:E0:5D:EC:38:7C:2B:6D:96:7A:7E:FA:FB:41:66:99:D0:58:1E X509v3 Authority Key Identifier: keyid:2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/5A15EA040D7A11EB9D346C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f340:4000::/34 Signature Algorithm: sha256WithRSAEncryption 89:a6:c9:e0:55:e1:5b:eb:58:3e:6b:2b:d9:a5:f3:e9:8c:6f: 67:f0:0f:06:5c:6b:33:d5:49:b5:c4:c4:e5:c1:90:8f:96:70: 2b:cd:11:d0:14:f4:ba:2a:f6:b2:8c:f2:d9:d0:c5:76:32:35: 37:dc:13:02:62:d2:1e:b3:85:3d:4b:7a:b1:a3:56:10:4b:4b: ce:0b:46:c9:53:9c:fa:3a:31:09:6b:9a:51:f6:2b:7e:ee:ec: 80:06:77:db:bc:20:1a:bc:b4:e0:94:eb:79:b0:f3:87:31:62: 8e:0c:71:10:e4:a7:49:94:a0:c0:48:5f:77:05:5a:51:b7:70: 7a:c7:16:f8:40:44:c9:e7:c6:67:1a:a1:4c:63:c0:b6:e3:79: df:90:2f:21:c3:bd:b9:a7:20:a9:85:a2:c8:41:a1:f2:59:ec: 22:1b:8c:b5:76:b2:14:6b:2e:f2:fe:95:b2:06:8f:5a:4e:0e: f3:65:ae:1c:eb:aa:3e:32:7d:48:ae:0b:33:22:47:38:89:40: 43:ee:70:10:c5:0f:84:c7:9e:80:39:e9:7b:bb:f7:29:d5:8a: ae:8a:5c:79:2f:3a:72:8b:22:b4:ae:6a:f2:83:90:ae:f2:68: d3:c9:5b:1e:2b:3b:ff:a4:cb:fc:f5:03:fc:a4:73:96:18:9c: af:e9:f2:70 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU0NTYxMTAvBgNVBAUTKDJDRTExMDA4RDJFMDNGRUIzRTYzN0FENEY3RTcyNzJF REM2MEQ1M0IwHhcNMjQwODIwMjAwOTI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0ZjdmNS1mZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPMyzDtyIL73i3LCn0AhJreDnlAUcShdig05BD4d2Btm/jzah7bU3TadTCoH tjuE0cvV6kH2hh1Lwdg7nzdpEfbMCWDivV8a1FMxDSCDZoghJEJ9bbudhaeD+LG/ MmBkbnoXZCfvOD31iwKQ1Y6M2DHwAHPR5R7apCmbmzG1hGawWX4BOiQ9DnNVFUDa /tR1lA+Twpg6uSda8J5DCNHlrWVlF0cgJtv3m71bps5ItadvwFKDBWbgqzKQSlN3 e6JnMFzd7PMxU5Wt1sGwtbMLXgZiA3cdWcsSK8qxMfzi6D5bGiQ/yNE5Y3PWgUlW ZTrPMAimFFGTLK0Dg1eD1dvnEwIDAQABo4IClzCCApMwHQYDVR0OBBYEFHzF4F3s OHwrbZZ6fvr7QWaZ0FgeMB8GA1UdIwQYMBaAFCzhEAjS4D/rPmN61PfnJy7cYNU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTQ1Ni8yMzc4RTA4MDVF RTUxMUVBQUE1MkRFNDdDNEY5QUUwMi9MT0VRQ05MZ1Atcy1ZM3JVOS1jbkx0eGcx VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPRVFDTkxnUC1zLVkzclU5LWNuTHR4ZzFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU0NTYvMjM3OEUwODA1RUU1MTFFQUFBNTJERTQ3QzRGOUFFMDIvNUExNUVBMDQw RDdBMTFFQjlEMzQ2QzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgYkBPNAQDANBgkqhkiG9w0BAQsFAAOCAQEAiabJ4FXhW+tY Pmsr2aXz6YxvZ/APBlxrM9VJtcTE5cGQj5ZwK80R0BT0uir2sozy2dDFdjI1N9wT AmLSHrOFPUt6saNWEEtLzgtGyVOc+joxCWuaUfYrfu7sgAZ327wgGry04JTrebDz hzFijgxxEOSnSZSgwEhfdwVaUbdwescW+EBEyefGZxqhTGPAtuN535AvIcO9uacg qYWiyEGh8lnsIhuMtXayFGsu8v6VsgaPWk4O82WuHOuqPjJ9SK4LMyJHOIlAQ+5w EMUPhMeegDnpe7v3KdWKropceS86cositK5q8oOQrvJo08lbHis7/6TL/PUD/KRz lhicr+nycA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org