$ rpki-client -vvf rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/9A6A637EF48C11EBBDF92914C4F9AE02.roa File: 9A6A637EF48C11EBBDF92914C4F9AE02.roa (raw, json) Hash identifier: 29WR9bK+1J7teRj22ZLgNx6ODw6+LHNBzuwuJrvhB0E= Subject key identifier: 1E:5F:AF:41:E8:83:72:1E:D9:36:14:DE:4F:40:73:77:0E:66:99:9E Certificate issuer: /CN=A9165456/serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Certificate serial: 09FA Authority key identifier: 2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/9A6A637EF48C11EBBDF92914C4F9AE02.roa Signing time: Tue 20 Aug 2024 20:09:27 +0000 ROA not before: Tue 20 Aug 2024 20:09:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 396982 IP address blocks: 2404:f340::/44 maxlen: 44 2404:f340:4000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2554 (0x9fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165456/serialNumber=2CE11008D2E03FEB3E637AD4F7E7272EDC60D53B Validity Not Before: Aug 20 20:09:27 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c4f7f7-2f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:f8:45:60:46:12:89:2b:40:ae:f6:c8:d9: 30:c1:3b:32:2a:7c:36:66:ae:36:1b:27:ef:45:12: 3c:dd:fb:fa:fc:ca:18:e1:ae:20:6a:58:1b:39:31: db:07:75:1f:7a:83:85:bf:57:cb:81:46:67:6b:e3: 0e:f5:dc:26:84:04:44:3b:2a:9b:fc:7d:1a:d5:c8: 4a:40:53:6e:56:9e:18:b9:9b:64:71:63:00:e3:36: 2a:28:07:41:59:45:67:59:05:4b:10:b5:ef:f8:d2: 80:21:6f:49:9b:cc:f5:05:18:63:04:bd:2d:2b:9a: fa:c5:b2:d5:a5:2c:ce:1e:65:be:64:91:87:c6:f4: 10:ac:e3:fd:57:dc:7c:51:84:45:25:05:fe:a6:fa: 2e:e8:5b:5e:94:81:2d:e8:4e:d2:69:fe:f3:d0:3b: cc:de:32:43:40:10:a2:5e:8f:72:50:6f:88:9c:63: 60:41:c6:d3:b7:37:98:0f:df:f6:13:fa:64:b5:01: 8b:72:8c:fc:45:e7:f0:5f:1f:00:eb:dd:98:d7:00: 5c:b0:4c:d3:44:08:26:4f:75:20:ce:b5:7e:c4:33: fd:de:b8:57:b3:bf:59:e7:9a:32:5a:9f:c3:51:67: d5:ad:3c:4c:00:f7:38:22:bf:14:c3:29:d1:e4:3e: 0d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5F:AF:41:E8:83:72:1E:D9:36:14:DE:4F:40:73:77:0E:66:99:9E X509v3 Authority Key Identifier: keyid:2C:E1:10:08:D2:E0:3F:EB:3E:63:7A:D4:F7:E7:27:2E:DC:60:D5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOEQCNLgP-s-Y3rU9-cnLtxg1Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165456/2378E0805EE511EAAA52DE47C4F9AE02/9A6A637EF48C11EBBDF92914C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f340::/44 2404:f340:4000::/44 Signature Algorithm: sha256WithRSAEncryption 46:5f:a8:5b:e1:92:0b:7f:50:84:d7:39:da:db:01:46:7b:57: d9:2f:14:b0:3a:ac:14:67:dd:a5:d8:04:f3:25:77:8d:38:59: bf:da:e4:08:6c:f3:ba:6b:ce:90:73:f4:02:85:cd:5f:4d:16: b1:99:68:ae:56:46:a8:56:69:dd:d2:ee:bc:65:b8:5b:1d:6d: 0d:4b:b0:3a:d0:47:d7:1c:ed:15:f7:39:da:f3:10:f2:c8:f7: a8:21:3f:32:2b:50:ba:84:75:67:3b:27:84:3b:f3:32:04:18: b9:14:5a:22:17:92:85:d5:36:c1:74:a6:7c:4f:da:41:e8:7e: 8b:42:65:eb:99:6b:89:66:6e:ed:eb:13:f5:14:ac:3f:cd:8d: d4:64:50:e0:2d:5d:82:e6:07:6a:82:b9:b3:a6:38:75:e0:ed: d5:a5:e6:4b:49:e9:6b:95:34:b7:33:7c:1e:0e:9d:8c:9b:cb: 1a:81:3d:f5:24:af:fa:1c:4b:1c:78:34:84:5e:4c:0e:1c:16: 53:ca:4d:27:75:75:e5:b0:bf:e2:89:b5:d4:f1:27:b3:47:05: 1e:7e:c7:b8:43:55:aa:2d:e8:c4:d5:63:73:56:fe:c6:b5:9e: 5e:0b:8f:fa:29:18:99:f9:68:75:bd:87:52:38:6b:a1:ed:df: e1:5a:c5:b9 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU0NTYxMTAvBgNVBAUTKDJDRTExMDA4RDJFMDNGRUIzRTYzN0FENEY3RTcyNzJF REM2MEQ1M0IwHhcNMjQwODIwMjAwOTI3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0ZjdmNy0yZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylL4RWBGEokrQK72yNkwwTsyKnw2Zq42GyfvRRI83fv6/MoY4a4galgbOTHb B3UfeoOFv1fLgUZna+MO9dwmhAREOyqb/H0a1chKQFNuVp4YuZtkcWMA4zYqKAdB WUVnWQVLELXv+NKAIW9Jm8z1BRhjBL0tK5r6xbLVpSzOHmW+ZJGHxvQQrOP9V9x8 UYRFJQX+pvou6FtelIEt6E7Saf7z0DvM3jJDQBCiXo9yUG+InGNgQcbTtzeYD9/2 E/pktQGLcoz8RefwXx8A692Y1wBcsEzTRAgmT3UgzrV+xDP93rhXs79Z55oyWp/D UWfVrTxMAPc4Ir8UwynR5D4NaQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFB5fr0Ho g3Ie2TYU3k9Ac3cOZpmeMB8GA1UdIwQYMBaAFCzhEAjS4D/rPmN61PfnJy7cYNU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTQ1Ni8yMzc4RTA4MDVF RTUxMUVBQUE1MkRFNDdDNEY5QUUwMi9MT0VRQ05MZ1Atcy1ZM3JVOS1jbkx0eGcx VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPRVFDTkxnUC1zLVkzclU5LWNuTHR4ZzFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU0NTYvMjM3OEUwODA1RUU1MTFFQUFBNTJERTQ3QzRGOUFFMDIvOUE2QTYzN0VG NDhDMTFFQkJERjkyOTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBPNAAAADBwQkBPNAQAAwDQYJKoZIhvcNAQELBQADggEB AEZfqFvhkgt/UITXOdrbAUZ7V9kvFLA6rBRn3aXYBPMld404Wb/a5Ahs87przpBz 9AKFzV9NFrGZaK5WRqhWad3S7rxluFsdbQ1LsDrQR9cc7RX3OdrzEPLI96ghPzIr ULqEdWc7J4Q78zIEGLkUWiIXkoXVNsF0pnxP2kHofotCZeuZa4lmbu3rE/UUrD/N jdRkUOAtXYLmB2qCubOmOHXg7dWl5ktJ6WuVNLczfB4OnYybyxqBPfUkr/ocSxx4 NIReTA4cFlPKTSd1deWwv+KJtdTxJ7NHBR5+x7hDVaot6MTVY3NW/sa1nl4Lj/op GJn5aHW9h1I4a6Ht3+Faxbk= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:11 2024 by rpki-client on console-fra.rpki-client.org