$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/2B2CF35A35A411ED89F95974C4F9AE02.roa File: 2B2CF35A35A411ED89F95974C4F9AE02.roa (raw, json) Hash identifier: SMBY1LukYFigMF8a28TCWL5pjJYfobly4CC1lr0o8t4= Subject key identifier: A6:55:9F:AF:F6:6A:00:B0:63:38:D6:E9:EB:B2:17:CB:98:87:A1:F8 Certificate issuer: /CN=A9170982/serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Certificate serial: 0290 Authority key identifier: E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/2B2CF35A35A411ED89F95974C4F9AE02.roa Signing time: Sat 09 Dec 2023 02:54:19 +0000 ROA not before: Sat 09 Dec 2023 02:54:19 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 397182 IP address blocks: 2406:9f01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982/serialNumber=E621469CD5A578F947AB47EB0ECE88939B87EBFB Validity Not Before: Dec 9 02:54:19 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6573d6db-a544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2a:8d:2d:80:4f:8a:82:df:5f:82:b2:d4:72: 34:68:63:79:c0:a0:ae:8f:f3:31:1a:60:ba:65:57: f0:9d:60:21:92:5b:5d:36:26:88:f6:2b:cc:15:7d: c6:03:62:8a:7e:92:f9:b6:89:31:4f:0d:15:5d:cd: ea:30:52:1c:92:c8:ce:47:a2:85:1a:3d:a4:35:1b: a2:37:74:7a:e4:51:92:32:f3:13:02:b8:11:20:9b: 5e:c9:03:d8:df:5b:3f:cd:1a:2d:5a:b1:2d:09:16: 19:63:be:24:bf:55:7a:4e:ec:22:d9:a8:b0:b6:dd: d0:e7:af:62:97:09:8c:e2:ba:fb:4e:3c:f8:3f:18: f0:64:b1:01:26:a9:da:81:bb:93:6f:b7:ec:f8:47: d3:43:3f:3b:9b:d5:b7:46:19:18:2b:53:8a:08:e0: d1:00:a0:71:93:cf:4f:d3:09:b4:60:79:9c:11:13: d3:03:88:71:49:75:99:7c:b1:ef:62:77:c4:96:0b: d6:7c:54:ba:6e:b4:9b:bd:e0:a6:de:59:88:2b:36: 29:80:f4:a3:af:ba:86:e0:b9:56:cd:52:b5:93:50: e5:05:65:18:82:b2:56:96:7b:58:9c:27:93:6a:98: 9c:68:62:d9:45:c2:31:f2:a2:92:9b:9f:59:f0:34: 0b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:55:9F:AF:F6:6A:00:B0:63:38:D6:E9:EB:B2:17:CB:98:87:A1:F8 X509v3 Authority Key Identifier: keyid:E6:21:46:9C:D5:A5:78:F9:47:AB:47:EB:0E:CE:88:93:9B:87:EB:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/5iFGnNWlePlHq0frDs6Ik5uH6_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iFGnNWlePlHq0frDs6Ik5uH6_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/D8B68696AC1311ECB776B209C4F9AE02/2B2CF35A35A411ED89F95974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9f01::/32 Signature Algorithm: sha256WithRSAEncryption 0b:d9:54:c2:1c:1c:26:1d:c9:c4:91:27:76:27:3c:04:16:2b: f4:2f:6c:e6:15:cd:9b:af:c2:22:04:ae:79:46:1a:d1:2b:65: b3:82:e7:90:c8:d3:da:a7:56:01:56:39:1d:6c:82:de:ee:15: 1a:17:b6:57:75:62:f0:17:9a:f6:10:b3:7b:98:dd:24:78:cd: b7:d8:5b:bb:73:29:1c:70:03:27:d5:c1:e3:5c:4d:c9:ee:37: fb:44:5f:56:62:76:8c:da:4e:34:cc:7b:ea:f1:c6:7e:df:58: fa:12:e4:a5:04:21:58:a5:31:c7:d2:3b:c9:ec:bd:3e:ea:7d: b0:81:ee:d7:7b:7c:60:78:57:3f:e7:c4:0d:ab:ad:bf:9e:d4: 56:f6:22:b7:46:f9:9f:84:11:c9:cf:d8:ce:e5:84:22:0e:da: 3c:6f:62:0b:ce:3c:ac:7e:63:29:a8:a2:6a:18:a1:d9:16:f9: 8f:71:4f:05:f3:00:1a:2b:6e:dc:72:fb:cd:7e:39:d1:32:37: a3:29:38:15:52:4b:4c:84:d1:9d:d8:d0:6d:15:42:fc:b1:d1: b8:79:3e:47:5a:c5:38:c6:42:ff:10:91:50:c5:32:10:04:eb: 9f:bd:60:72:dd:d2:9b:22:d9:52:69:bb:f5:d0:ec:c4:36:66: 1b:16:69:cb -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKEU2MjE0NjlDRDVBNTc4Rjk0N0FCNDdFQjBFQ0U4ODkz OUI4N0VCRkIwHhcNMjMxMjA5MDI1NDE5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczZDZkYi1hNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyqNLYBPioLfX4Ky1HI0aGN5wKCuj/MxGmC6ZVfwnWAhkltdNiaI9ivMFX3G A2KKfpL5tokxTw0VXc3qMFIcksjOR6KFGj2kNRuiN3R65FGSMvMTArgRIJteyQPY 31s/zRotWrEtCRYZY74kv1V6Tuwi2aiwtt3Q569ilwmM4rr7Tjz4PxjwZLEBJqna gbuTb7fs+EfTQz87m9W3RhkYK1OKCODRAKBxk89P0wm0YHmcERPTA4hxSXWZfLHv YnfElgvWfFS6brSbveCm3lmIKzYpgPSjr7qG4LlWzVK1k1DlBWUYgrJWlntYnCeT apicaGLZRcIx8qKSm59Z8DQLsQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKZVn6/2 agCwYzjW6euyF8uYh6H4MB8GA1UdIwQYMBaAFOYhRpzVpXj5R6tH6w7OiJObh+v7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9EOEI2ODY5NkFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi81aUZHbk5XbGVQbEhxMGZyRHM2SWs1dUg2 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpRkduTldsZVBsSHEwZnJEczZJazV1SDZfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5ODIvRDhCNjg2OTZBQzEzMTFFQ0I3NzZCMjA5QzRGOUFFMDIvMkIyQ0YzNUEz NUE0MTFFRDg5Rjk1OTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBp8BMA0GCSqGSIb3DQEBCwUAA4IBAQAL2VTCHBwmHcnE kSd2JzwEFiv0L2zmFc2br8IiBK55RhrRK2WzgueQyNPap1YBVjkdbILe7hUaF7ZX dWLwF5r2ELN7mN0keM232Fu7cykccAMn1cHjXE3J7jf7RF9WYnaM2k40zHvq8cZ+ 31j6EuSlBCFYpTHH0jvJ7L0+6n2wge7Xe3xgeFc/58QNq62/ntRW9iK3RvmfhBHJ z9jO5YQiDto8b2ILzjysfmMpqKJqGKHZFvmPcU8F8wAaK27ccvvNfjnRMjejKTgV UktMhNGd2NBtFUL8sdG4eT5HWsU4xkL/EJFQxTIQBOufvWBy3dKbItlSabv10OzE NmYbFmnL -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:40 2024 by rpki-client on console-ams.rpki-client.org