$ rpki-client -vvf rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9AC721604BC211EEA7AF2B6FC4F9AE02.roa File: 9AC721604BC211EEA7AF2B6FC4F9AE02.roa (raw, json) Hash identifier: d3gLGGrLZBKlh1oeBhh6ERMmVy7ZPGIKYX8M6gYUlBo= Subject key identifier: B6:A3:66:23:37:FF:AF:CB:E1:FF:43:CF:79:A3:C7:95:69:AE:62:53 Certificate issuer: /CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Certificate serial: 02AE Authority key identifier: F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9AC721604BC211EEA7AF2B6FC4F9AE02.roa Signing time: Mon 13 May 2024 04:07:57 +0000 ROA not before: Mon 13 May 2024 04:07:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151338 IP address blocks: 2400:70e0:bab::/48 maxlen: 48 2400:70e0:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Validity Not Before: May 13 04:07:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6641921d-8fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:35:9a:5f:51:37:43:53:0e:3e:f6:f2:ad: a7:ad:b9:69:97:ef:d1:0e:93:29:fd:6b:8f:34:25: 2b:6c:5c:9d:0d:9d:f4:fe:09:c0:46:0d:7d:c8:8d: 69:62:22:bb:5f:97:b3:08:d3:92:03:02:5e:12:00: e6:d4:a0:99:f7:87:3f:f9:84:16:a7:2f:5c:88:49: df:44:47:e8:55:c3:06:24:ba:a2:bc:36:29:c4:7c: 1f:47:4f:25:0f:d5:8a:8f:63:c9:d9:e4:10:55:ff: 43:4a:62:c7:0c:fb:2f:d0:76:a9:8a:b4:7a:07:df: d7:ab:1e:f5:5a:d8:a2:17:d2:49:ea:b1:62:07:33: 4e:7f:8d:c3:f0:78:93:08:24:70:f1:0d:39:c7:6e: a6:07:fa:5a:4a:6e:f9:eb:4b:f5:18:d3:dd:26:69: 8b:32:b8:b2:98:88:41:c2:b9:be:41:e0:23:22:0d: 16:37:b8:02:a1:f8:8a:ab:47:e7:4d:5e:fc:63:e1: 23:8c:ff:24:4d:74:6e:ef:eb:09:55:f2:fc:8f:07: b4:d7:c5:3c:39:4d:4f:2e:00:83:89:ca:8e:d6:62: c1:b8:0e:4f:85:fa:88:22:ef:2e:26:e0:b5:b2:96: e6:30:7e:b5:39:88:e5:bc:6d:e4:44:67:ea:51:57: 5a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A3:66:23:37:FF:AF:CB:E1:FF:43:CF:79:A3:C7:95:69:AE:62:53 X509v3 Authority Key Identifier: keyid:F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9AC721604BC211EEA7AF2B6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:70e0:bab::/48 2400:70e0:b000::/48 Signature Algorithm: sha256WithRSAEncryption 87:08:f3:2e:97:bf:76:51:a7:6f:9b:a7:ef:e0:32:48:d7:55: c5:3e:8f:15:c5:a7:dd:f6:cc:d2:53:19:05:48:ba:81:92:97: ee:20:2f:f4:eb:2f:2d:13:6a:4d:0a:9a:bb:38:35:2f:4b:a8: 96:8b:6d:91:60:07:ec:81:58:bc:e0:44:b1:d3:cc:e9:fd:08: 75:b0:86:63:e3:04:e3:e3:e2:10:b8:8a:a0:e5:88:0c:fb:00: 7d:47:18:5b:5b:7e:b8:6f:11:da:b0:ec:33:8a:58:16:de:1f: a7:4a:f1:c2:31:85:2c:48:27:f2:06:77:d9:4a:4f:11:91:26: 49:f1:c1:a3:29:7f:62:1c:49:21:e4:0f:35:ca:ac:34:ac:18: 17:9a:bb:31:69:46:fd:4a:37:8e:85:8a:a3:fa:f2:bd:73:0c: 03:8d:38:09:3a:0a:3e:0e:8c:02:a0:10:69:83:61:06:4d:b9: 0e:1f:02:be:68:32:d5:7f:e6:52:68:74:1c:57:38:b8:2a:e8: 0d:79:19:42:8b:38:f6:2d:08:16:66:89:13:f6:e3:48:3e:4c: d2:e1:ee:eb:94:1b:82:98:e4:54:d7:f7:cf:d4:29:89:4c:b7: 34:c7:32:17:44:fc:6b:fe:0d:f4:9c:7a:e5:23:5a:60:ee:5d: 09:37:04:ce -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4MzcxMTAvBgNVBAUTKEY1NTIyREUzMTM4NDRFOTZFM0VCRjM4MDM0RUNBMDlC RTJBQTBBRDUwHhcNMjQwNTEzMDQwNzU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTIxZC04ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfU1ml9RN0NTDj728q2nrblpl+/RDpMp/WuPNCUrbFydDZ30/gnARg19yI1p YiK7X5ezCNOSAwJeEgDm1KCZ94c/+YQWpy9ciEnfREfoVcMGJLqivDYpxHwfR08l D9WKj2PJ2eQQVf9DSmLHDPsv0HapirR6B9/Xqx71WtiiF9JJ6rFiBzNOf43D8HiT CCRw8Q05x26mB/paSm7560v1GNPdJmmLMriymIhBwrm+QeAjIg0WN7gCofiKq0fn TV78Y+EjjP8kTXRu7+sJVfL8jwe018U8OU1PLgCDicqO1mLBuA5PhfqIIu8uJuC1 spbmMH61OYjlvG3kRGfqUVda4wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLajZiM3 /6/L4f9Dz3mjx5VprmJTMB8GA1UdIwQYMBaAFPVSLeMThE6W4+vzgDTsoJviqgrV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjgzNy85RDkwQUI2MkMx NUExMUVDQTQ0RjUzNjBDNEY5QUUwMi85Vkl0NHhPRVRwYmo2X09BTk95Z20tS3FD dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlWSXQ0eE9FVHBiajZfT0FOT3lnbS1LcUN0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI4MzcvOUQ5MEFCNjJDMTVBMTFFQ0E0NEY1MzYwQzRGOUFFMDIvOUFDNzIxNjA0 QkMyMTFFRUE3QUYyQjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAHDgC6sDBwAkAHDgsAAwDQYJKoZIhvcNAQELBQADggEB AIcI8y6Xv3ZRp2+bp+/gMkjXVcU+jxXFp932zNJTGQVIuoGSl+4gL/TrLy0Tak0K mrs4NS9LqJaLbZFgB+yBWLzgRLHTzOn9CHWwhmPjBOPj4hC4iqDliAz7AH1HGFtb frhvEdqw7DOKWBbeH6dK8cIxhSxIJ/IGd9lKTxGRJknxwaMpf2IcSSHkDzXKrDSs GBeauzFpRv1KN46FiqP68r1zDAONOAk6Cj4OjAKgEGmDYQZNuQ4fAr5oMtV/5lJo dBxXOLgq6A15GUKLOPYtCBZmiRP240g+TNLh7uuUG4KY5FTX98/UKYlMtzTHMhdE /Gv+DfSceuUjWmDuXQk3BM4= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:57 2024 by rpki-client on console-fra.rpki-client.org