$ rpki-client -vvf rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3BB8855E415111EE9DA4641CC4F9AE02.roa File: 3BB8855E415111EE9DA4641CC4F9AE02.roa (raw, json) Hash identifier: itZryiOaXim8yotn6iR2dA0UNoogCWxfG1rW4K7mrt8= Subject key identifier: 0D:4C:FE:3A:56:06:A4:5E:6B:8E:19:8A:78:BB:A1:78:D8:61:6C:9C Certificate issuer: /CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Certificate serial: 02B0 Authority key identifier: F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3BB8855E415111EE9DA4641CC4F9AE02.roa Signing time: Mon 13 May 2024 04:07:59 +0000 ROA not before: Mon 13 May 2024 04:07:59 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 197646 IP address blocks: 2400:70e0:fe00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Validity Not Before: May 13 04:07:59 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6641921f-5bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:a6:77:f9:86:08:2a:7c:c8:c0:88:88:21: 24:b1:56:16:ae:c9:ec:99:23:95:be:88:bb:5e:18: 96:aa:98:71:24:34:45:50:67:86:35:9b:95:cc:a8: 6f:1d:20:c7:3b:bb:3f:bc:53:ef:32:d5:6a:35:ca: 6c:9d:cb:db:ca:1b:a5:a1:54:c5:ef:74:a4:ae:4e: b0:b6:e1:5f:ca:8d:4b:f3:d9:41:a9:47:11:f2:83: ae:67:c5:df:9e:0a:8e:82:0a:06:ba:09:2e:60:59: bc:30:d6:83:4a:8b:4e:93:e7:ba:85:49:d7:d6:21: f6:2b:c2:ef:70:78:18:c7:2c:e2:b8:e0:f1:34:71: a1:ee:b8:b3:43:d1:17:3e:51:c8:c0:e8:b7:6a:69: 59:36:bd:da:2d:ca:5a:fa:63:21:e1:4a:ec:03:ae: e2:53:2c:e1:1a:7f:f3:3c:3d:b3:2f:e3:0f:23:67: a7:b9:69:63:08:29:f8:f4:14:f4:99:83:b1:3c:9a: e4:10:0c:1b:b4:be:d8:c6:02:e5:35:1d:21:43:8c: aa:97:d9:87:e2:da:2a:41:fc:b2:29:3d:11:81:a0: 36:ef:b9:e7:73:d7:eb:26:2b:d4:a8:f2:39:43:ef: c9:2b:6d:68:c8:65:ef:c6:b8:36:51:c0:aa:ac:0d: 4f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4C:FE:3A:56:06:A4:5E:6B:8E:19:8A:78:BB:A1:78:D8:61:6C:9C X509v3 Authority Key Identifier: keyid:F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3BB8855E415111EE9DA4641CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:70e0:fe00::/40 Signature Algorithm: sha256WithRSAEncryption af:cd:c4:44:d5:04:4a:43:a7:a4:b1:c9:68:0c:5b:3e:60:21: f8:0b:ee:3e:84:db:44:ab:29:4f:54:78:1f:43:c8:2e:b4:d9: 2e:38:ee:b8:a7:ec:e0:e7:7b:56:b5:2f:ac:39:69:44:7a:56: 29:e0:f5:32:29:7d:fb:31:56:9e:12:51:35:aa:06:2a:d9:17: 46:b0:ad:8f:ab:6e:f6:6d:7a:13:e6:ce:1a:45:fb:74:79:b1: ff:36:6e:2c:fe:43:4c:02:40:8f:2b:bd:4b:bb:56:9f:b2:80: 81:71:fe:0b:8a:03:00:a8:71:c4:88:92:07:01:b3:dc:26:38: 72:24:00:26:4b:83:96:9d:7b:79:99:48:37:98:75:d8:ce:7d: ef:8d:9f:37:10:3e:be:3b:de:10:b9:b0:4c:b8:a1:c7:fb:1b: dd:ec:1f:9d:52:f9:e5:ca:a2:e6:45:10:df:0a:4e:23:2a:f5: e7:78:00:88:e7:e7:25:23:93:23:23:a6:87:06:b5:d5:f5:f9: c2:49:19:9c:bf:ca:fc:4e:c3:82:2f:78:6d:e1:0d:3e:2c:15: 8a:2d:86:37:b9:d1:55:2d:e5:70:1a:e5:c1:80:69:27:27:7e: 65:e7:fd:ec:70:c8:7c:f9:0b:0f:72:9a:ab:10:df:bc:38:94: b3:6d:c3:da -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4MzcxMTAvBgNVBAUTKEY1NTIyREUzMTM4NDRFOTZFM0VCRjM4MDM0RUNBMDlC RTJBQTBBRDUwHhcNMjQwNTEzMDQwNzU5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTIxZi01YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfymd/mGCCp8yMCIiCEksVYWrsnsmSOVvoi7XhiWqphxJDRFUGeGNZuVzKhv HSDHO7s/vFPvMtVqNcpsncvbyhuloVTF73Skrk6wtuFfyo1L89lBqUcR8oOuZ8Xf ngqOggoGugkuYFm8MNaDSotOk+e6hUnX1iH2K8LvcHgYxyziuODxNHGh7rizQ9EX PlHIwOi3amlZNr3aLcpa+mMh4UrsA67iUyzhGn/zPD2zL+MPI2enuWljCCn49BT0 mYOxPJrkEAwbtL7YxgLlNR0hQ4yql9mH4toqQfyyKT0RgaA277nnc9frJivUqPI5 Q+/JK21oyGXvxrg2UcCqrA1PWQIDAQABo4IClzCCApMwHQYDVR0OBBYEFA1M/jpW BqRea44Zini7oXjYYWycMB8GA1UdIwQYMBaAFPVSLeMThE6W4+vzgDTsoJviqgrV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjgzNy85RDkwQUI2MkMx NUExMUVDQTQ0RjUzNjBDNEY5QUUwMi85Vkl0NHhPRVRwYmo2X09BTk95Z20tS3FD dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlWSXQ0eE9FVHBiajZfT0FOT3lnbS1LcUN0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI4MzcvOUQ5MEFCNjJDMTVBMTFFQ0E0NEY1MzYwQzRGOUFFMDIvM0JCODg1NUU0 MTUxMTFFRTlEQTQ2NDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAHDg/jANBgkqhkiG9w0BAQsFAAOCAQEAr83ERNUESkOn pLHJaAxbPmAh+AvuPoTbRKspT1R4H0PILrTZLjjuuKfs4Od7VrUvrDlpRHpWKeD1 Mil9+zFWnhJRNaoGKtkXRrCtj6tu9m16E+bOGkX7dHmx/zZuLP5DTAJAjyu9S7tW n7KAgXH+C4oDAKhxxIiSBwGz3CY4ciQAJkuDlp17eZlIN5h12M59742fNxA+vjve ELmwTLihx/sb3ewfnVL55cqi5kUQ3wpOIyr153gAiOfnJSOTIyOmhwa11fX5wkkZ nL/K/E7Dgi94beENPiwVii2GN7nRVS3lcBrlwYBpJyd+Zef97HDIfPkLD3KaqxDf vDiUs23D2g== -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:22 2024 by rpki-client on console-fra.rpki-client.org