$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa File: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (raw, json) Hash identifier: EtDaxhToMUaXQqBpB7YShd7GhOWDJATl5CFZ4kv+tSc= Subject key identifier: 4F:8F:A7:91:D5:32:61:07:E6:76:EF:5B:A1:BD:78:3D:94:2C:50:6A Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 16E2 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa Signing time: Mon 04 Dec 2023 17:04:24 +0000 ROA not before: Mon 04 Dec 2023 17:04:23 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132383 IP address blocks: 2401:f9c0:1111::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Dec 2024 16:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5858 (0x16e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Dec 4 17:04:23 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e0697-b4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:fe:c5:ae:43:89:78:78:fe:fc:65:f2:17: 95:df:05:36:f9:63:72:f1:d8:f8:e6:da:ed:57:40: ce:72:7d:48:92:d7:9b:a9:17:fa:6b:45:54:5e:87: 33:ea:f5:30:66:ed:5f:05:88:51:3d:3d:b0:ed:e7: 1d:e5:78:19:3a:46:f7:df:08:c7:c9:dc:2e:bd:e2: 3f:11:97:3f:bd:47:bf:2f:a5:d9:51:af:99:b6:f6: 5e:08:dc:c5:ec:8f:fc:d3:80:33:ca:16:34:bc:33: cd:a8:04:11:79:11:01:7a:20:3c:eb:02:a9:b1:ba: e4:b3:52:3b:94:0e:cf:ab:64:bf:9f:ab:7d:0a:63: ed:75:1e:64:cb:74:56:b0:63:fb:02:e7:2a:b1:ab: 92:02:21:2c:df:53:37:42:e9:5c:12:93:48:1a:91: fd:b5:e6:cc:21:25:f3:cf:a3:03:f7:0d:eb:4c:ae: 03:ea:7f:f8:eb:2f:0a:fe:8c:22:05:d8:b4:c8:a7: 8a:de:d7:d3:a8:04:cf:36:73:9a:75:29:f4:34:51: 54:bc:86:5c:32:49:49:07:72:e8:0a:8d:06:92:ed: 5b:d3:23:34:4f:0a:94:c0:75:52:a6:93:df:19:9f: 0a:e0:8f:83:b0:f4:75:c8:fe:a6:6a:5d:17:1d:65: 94:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8F:A7:91:D5:32:61:07:E6:76:EF:5B:A1:BD:78:3D:94:2C:50:6A X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f9c0:1111::/48 Signature Algorithm: sha256WithRSAEncryption 60:47:6e:f8:ea:a7:2a:1c:2b:51:03:a7:3f:59:f7:04:63:a4: 1d:1b:0d:3a:be:92:1b:14:a7:98:01:28:0c:fe:fc:48:66:41: fe:ef:e3:46:b2:a0:11:70:cd:5f:c0:7f:af:1e:4b:30:3a:4d: 9d:5b:d7:da:54:ec:9b:1d:2c:6c:c9:0d:ce:21:e6:aa:97:ab: e5:0f:c4:21:69:c2:7b:1e:f7:8b:10:a6:88:91:29:cd:ee:a0: 26:78:a0:4b:70:d0:db:e1:5a:fb:24:73:78:b7:1b:35:b5:78: 91:63:08:ca:a6:a9:22:7b:6d:05:a4:69:7a:14:79:7d:73:dd: d4:c6:7a:22:b3:56:1d:f4:37:73:52:b5:2a:42:26:b0:ca:86: 46:e0:1a:6e:1b:76:78:14:b1:f7:f7:3e:73:d1:fa:d1:19:cc: 0d:40:54:ff:41:1c:c7:a4:3c:d0:3d:7c:43:a9:64:81:cc:c5: 21:52:2b:e7:1e:1b:81:ee:fd:c8:1f:3a:8c:b7:eb:61:64:4c: fd:b5:85:b0:28:bf:de:71:bd:50:fc:84:bf:9f:c4:b3:61:e7: d1:37:cb:2e:3c:27:88:ab:af:c8:5c:20:68:30:86:11:22:c8: 7a:6e:b1:17:62:8e:ce:f3:9e:b3:c2:44:66:b9:23:8a:ea:11: d1:15:c1:82 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICFuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjMxMjA0MTcwNDIzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMDY5Ny1iNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rP+xa5DiXh4/vxl8heV3wU2+WNy8dj45trtV0DOcn1IktebqRf6a0VUXocz 6vUwZu1fBYhRPT2w7ecd5XgZOkb33wjHydwuveI/EZc/vUe/L6XZUa+ZtvZeCNzF 7I/804AzyhY0vDPNqAQReREBeiA86wKpsbrks1I7lA7Pq2S/n6t9CmPtdR5ky3RW sGP7AucqsauSAiEs31M3QulcEpNIGpH9tebMISXzz6MD9w3rTK4D6n/46y8K/owi Bdi0yKeK3tfTqATPNnOadSn0NFFUvIZcMklJB3LoCo0Gku1b0yM0TwqUwHVSppPf GZ8K4I+DsPR1yP6mal0XHWWU7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFE+Pp5HV MmEH5nbvW6G9eD2ULFBqMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMUUvQzFGQTA4MkNDOENCMTFFNzkwQTg4MTM4QzRGOUFFMDIvRkEyQ0NEQ0NE RTYxMTFFODhCRkQ3ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAfnAEREwDQYJKoZIhvcNAQELBQADggEBAGBHbvjqpyoc K1EDpz9Z9wRjpB0bDTq+khsUp5gBKAz+/EhmQf7v40ayoBFwzV/Af68eSzA6TZ1b 19pU7JsdLGzJDc4h5qqXq+UPxCFpwnse94sQpoiRKc3uoCZ4oEtw0NvhWvskc3i3 GzW1eJFjCMqmqSJ7bQWkaXoUeX1z3dTGeiKzVh30N3NStSpCJrDKhkbgGm4bdngU sff3PnPR+tEZzA1AVP9BHMekPNA9fEOpZIHMxSFSK+ceG4Hu/cgfOoy362FkTP21 hbAov95xvVD8hL+fxLNh59E3yy48J4irr8hcIGgwhhEiyHpusRdijs7znrPCRGa5 I4rqEdEVwYI= -----END CERTIFICATE-----Generated at Thu Nov 28 18:37:23 2024 by rpki-client on console-fra.rpki-client.org