$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa File: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (raw, json) Hash identifier: FsiT3oYazNjnPtPEe7G6GkJ5HTMUOkycbdZ+8LjujNs= Subject key identifier: B1:31:F3:4B:74:EB:C2:BC:2E:EA:D4:7A:03:33:12:2F:A5:05:10:5C Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 03 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa Signing time: Fri 20 Sep 2024 18:31:31 +0000 ROA not before: Fri 20 Sep 2024 18:31:31 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 3949 IP address blocks: 2405:a280:ff00::/44 maxlen: 44 2405:a280:ff80::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Sep 20 18:31:31 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66edbf82-6c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2a:65:ea:f2:c6:51:9b:92:d5:5c:cc:a5:12: fd:a5:17:21:93:d0:08:24:de:06:fc:dd:a5:ed:dd: 69:5b:6d:d0:1c:e9:e1:46:87:2a:8b:31:ab:1c:6a: 90:cd:81:a9:0c:b3:b6:c7:88:12:0f:4c:4d:ef:12: 28:d6:5f:4d:01:75:2c:25:28:84:42:df:7e:91:dc: c9:71:d6:82:3e:d4:07:75:f1:45:0b:f6:1b:1f:c7: bf:53:b5:95:c6:fa:a7:51:ce:0d:d6:72:69:89:9c: 53:06:5f:9e:94:25:da:9b:0d:53:be:12:6b:66:1a: 35:dc:28:2c:ed:a6:f8:2a:e3:7c:ac:23:68:d1:17: a0:c3:b2:7d:c2:c5:aa:3d:49:c0:67:26:ff:28:ae: 49:c6:e7:df:55:e3:f5:ec:c8:87:53:15:f6:28:29: 18:25:93:51:b4:c9:be:87:4e:ef:4a:aa:36:5b:b3: 6a:9a:c8:8a:3c:2a:49:b1:50:e6:f8:91:44:e2:6e: 71:79:b4:6d:21:e3:44:ba:dd:85:d6:a5:42:d8:e1: d3:01:6e:73:32:63:b6:2a:34:c0:45:51:65:b8:45: cc:1f:d3:fd:09:71:b4:f8:e4:18:dd:d8:d5:62:6e: 0e:6a:e6:f1:62:c2:c5:5d:12:7e:07:f0:ce:a2:07: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:31:F3:4B:74:EB:C2:BC:2E:EA:D4:7A:03:33:12:2F:A5:05:10:5C X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:a280:ff00::/44 2405:a280:ff80::/44 Signature Algorithm: sha256WithRSAEncryption 83:37:42:37:08:34:07:bc:3a:56:8e:81:79:dc:8a:e0:05:e0: c0:9f:1f:fd:c2:5c:29:1e:64:a4:8d:bb:cb:70:55:3b:13:f0: 86:6a:bb:97:45:d9:f7:56:3a:8e:d6:1f:36:d9:af:db:1d:74: 15:61:1f:b3:45:bd:78:6d:0d:19:ee:ca:2d:ed:05:a6:24:11: d3:31:47:a3:24:62:48:5c:a4:e5:bf:30:0a:2f:06:26:d7:be: 5c:a6:3e:95:4b:66:ac:6e:a8:1f:33:c2:3d:30:a7:65:36:fd: 6b:8b:18:04:87:8c:3e:51:9a:22:5a:1e:be:b6:40:fc:de:43: 15:be:9d:78:6a:00:52:e5:1f:fb:c3:ea:3e:0c:e5:65:a7:77: df:9e:94:0e:89:6e:50:0c:96:d6:1c:89:d0:39:7f:fa:ba:4a: 05:e0:8a:22:c5:54:1a:e6:00:41:80:dd:b6:cd:f2:d6:5e:4c: 46:5a:df:1d:1d:4e:73:a0:d5:9b:4a:75:f8:7f:99:fd:6a:22: 51:05:89:1e:a5:61:82:04:b5:20:b4:3b:a8:27:bd:5d:71:44: 9a:70:0d:0f:72:fc:eb:92:a6:f4:1d:27:7f:cd:f5:b4:cf:2b: 63:4d:b3:44:28:05:e8:27:ac:98:1b:5e:4a:11:53:1f:b1:de: 9e:1c:60:6b -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDkyQzExMC8GA1UEBRMoODE3REQzODAyRjI2RTU3RUNFODI2NUNFODYyNkZDQkI5 QzY0RTlENDAeFw0yNDA5MjAxODMxMzFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWRiZjgyLTZjNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLKmXq8sZRm5LVXMylEv2lFyGT0Agk3gb83aXt3WlbbdAc6eFGhyqLMascapDN gakMs7bHiBIPTE3vEijWX00BdSwlKIRC336R3Mlx1oI+1Ad18UUL9hsfx79TtZXG +qdRzg3WcmmJnFMGX56UJdqbDVO+EmtmGjXcKCztpvgq43ysI2jRF6DDsn3Cxao9 ScBnJv8orknG599V4/XsyIdTFfYoKRglk1G0yb6HTu9KqjZbs2qayIo8KkmxUOb4 kUTibnF5tG0h40S63YXWpULY4dMBbnMyY7YqNMBFUWW4Rcwf0/0JcbT45Bjd2NVi bg5q5vFiwsVdEn4H8M6iB6ZVAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUsTHzS3Tr wrwu6tR6AzMSL6UFEFwwHwYDVR0jBBgwFoAUgX3TgC8m5X7OgmXOhib8u5xk6dQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTJDL0UyQzA3N0RFNzc2 NjExRUZCNTVFRDI3OUM0RjlBRTAyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1gzVGdDOG01WDdPZ21YT2hpYjh1NXhrNmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi84RTAwRkJGMjc3 N0UxMUVGOEQwRUNDNEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAIwEgMHBCQFooD/AAMHBCQFooD/gDANBgkqhkiG9w0BAQsFAAOCAQEA gzdCNwg0B7w6Vo6BedyK4AXgwJ8f/cJcKR5kpI27y3BVOxPwhmq7l0XZ91Y6jtYf Ntmv2x10FWEfs0W9eG0NGe7KLe0FpiQR0zFHoyRiSFyk5b8wCi8GJte+XKY+lUtm rG6oHzPCPTCnZTb9a4sYBIeMPlGaIloevrZA/N5DFb6deGoAUuUf+8PqPgzlZad3 356UDoluUAyW1hyJ0Dl/+rpKBeCKIsVUGuYAQYDdts3y1l5MRlrfHR1Oc6DVm0p1 +H+Z/WoiUQWJHqVhggS1ILQ7qCe9XXFEmnAND3L865Km9B0nf831tM8rY02zRCgF 6CesmBteShFTH7Henhxgaw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org