$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa File: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (raw, json) Hash identifier: GXouMFAOJVC9NIYsZ23uZYKCTXWXo1NKnPdMvbwSfZE= Subject key identifier: 10:F9:83:EA:5B:FA:DA:EA:6F:02:9D:4D:B6:A6:C1:E4:C2:25:85:0D Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 0368 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa Signing time: Thu 11 Jan 2024 02:24:31 +0000 ROA not before: Thu 11 Jan 2024 02:24:31 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 398355 IP address blocks: 2400:3e20::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 872 (0x368) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Jan 11 02:24:31 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f515f-4b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:50:fb:fd:a2:aa:59:75:ae:83:74:59:ef:9d: 82:74:d8:ea:4b:10:e8:23:c5:3c:2c:7b:8f:3b:d5: f2:f5:dc:87:d4:ae:26:d9:a0:be:7f:a7:a8:3e:47: fb:c6:2d:c4:15:ab:73:a5:47:2e:10:62:30:f0:20: 93:9c:d3:e4:24:ed:a0:9e:36:f1:87:99:65:19:96: 23:ef:b8:ff:27:c4:a4:3d:31:32:9a:d7:ba:d9:d7: 93:e5:1f:82:ed:49:b0:bb:b5:c6:b6:23:e8:13:ea: 41:f7:4b:94:62:50:12:ea:05:ea:2f:3b:95:bf:07: ce:6e:54:70:b6:10:9b:94:b8:8f:17:63:1c:b6:21: 6d:2a:85:f7:40:c3:08:85:da:fc:76:07:e6:19:04: 23:d6:c4:d9:8f:a0:af:85:07:17:c7:92:73:42:5a: 1a:fb:e3:3d:4b:c8:f2:46:1c:be:52:64:e1:ba:ec: 62:80:92:3c:46:f8:ef:64:10:d4:58:94:f5:fc:38: 22:0e:d6:0c:e9:3c:b8:52:b0:26:d5:a9:bf:eb:28: da:ac:00:51:a2:5e:e2:9d:06:50:1c:be:ad:1e:78: 86:04:4d:0c:5e:a4:ea:44:43:6e:cc:82:6a:89:1e: e5:d0:61:23:4c:18:4b:5d:b5:b5:c7:b5:69:9c:36: 40:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F9:83:EA:5B:FA:DA:EA:6F:02:9D:4D:B6:A6:C1:E4:C2:25:85:0D X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3e20::/36 Signature Algorithm: sha256WithRSAEncryption 96:14:92:96:6b:f3:f7:da:a2:d7:72:f0:b7:2c:0c:25:74:65: 38:63:56:40:bc:27:be:e3:e7:5b:b1:a4:3f:76:0d:c3:34:67: cd:59:d6:2b:44:7f:5f:75:f4:f4:fd:05:0c:bf:8b:db:24:59: 67:01:0f:05:55:34:fa:61:2d:09:17:4d:a4:f8:d3:d6:54:d9: 0e:01:76:3a:d6:2d:8f:58:a4:b8:01:90:39:da:2e:94:f8:36: 3b:c7:e3:15:e9:00:bb:73:1d:f9:81:93:60:55:60:50:ad:f4: 00:13:2f:2f:c0:62:3b:09:dd:4b:da:a3:6a:b1:27:4f:03:07: f0:05:3a:27:e2:4f:31:f3:de:07:05:5e:e7:1d:6a:1a:22:24: 57:a0:f9:01:7f:d6:5c:88:93:81:f9:59:13:71:d6:13:8a:b3: aa:13:86:0d:e0:80:97:4b:92:f8:fb:a7:14:64:58:1c:de:26: 60:4e:df:dd:af:69:90:86:48:3e:9c:93:44:72:a1:be:21:ac: 13:83:c7:37:80:c1:f3:65:91:22:5c:96:78:cb:13:5c:01:03: 0c:e6:47:4e:b2:28:3c:a8:c0:f7:f7:87:71:62:29:ac:da:4a: 44:65:1c:be:b6:a7:a6:a3:68:0a:57:09:2c:13:98:33:0c:82: 9b:69:91:11 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjQwMTExMDIyNDMxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTE1Zi00YjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlD7/aKqWXWug3RZ752CdNjqSxDoI8U8LHuPO9Xy9dyH1K4m2aC+f6eoPkf7 xi3EFatzpUcuEGIw8CCTnNPkJO2gnjbxh5llGZYj77j/J8SkPTEymte62deT5R+C 7Umwu7XGtiPoE+pB90uUYlAS6gXqLzuVvwfOblRwthCblLiPF2MctiFtKoX3QMMI hdr8dgfmGQQj1sTZj6CvhQcXx5JzQloa++M9S8jyRhy+UmThuuxigJI8RvjvZBDU WJT1/DgiDtYM6Ty4UrAm1am/6yjarABRol7inQZQHL6tHniGBE0MXqTqRENuzIJq iR7l0GEjTBhLXbW1x7VpnDZAwwIDAQABo4IClzCCApMwHQYDVR0OBBYEFBD5g+pb +trqbwKdTbamweTCJYUNMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFMTEvRDA2MEM5QjI1QkQ2MTFFQ0FEODMzNjUxQzRGOUFFMDIvMkNFNUJFMDY1 QkRBMTFFQ0FBODU1MzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAD4gADANBgkqhkiG9w0BAQsFAAOCAQEAlhSSlmvz99qi 13LwtywMJXRlOGNWQLwnvuPnW7GkP3YNwzRnzVnWK0R/X3X09P0FDL+L2yRZZwEP BVU0+mEtCRdNpPjT1lTZDgF2OtYtj1ikuAGQOdoulPg2O8fjFekAu3Md+YGTYFVg UK30ABMvL8BiOwndS9qjarEnTwMH8AU6J+JPMfPeBwVe5x1qGiIkV6D5AX/WXIiT gflZE3HWE4qzqhOGDeCAl0uS+PunFGRYHN4mYE7f3a9pkIZIPpyTRHKhviGsE4PH N4DB82WRIlyWeMsTXAEDDOZHTrIoPKjA9/eHcWIprNpKRGUcvranpqNoClcJLBOY MwyCm2mREQ== -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:28 2024 by rpki-client on console-ams.rpki-client.org