$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/793803867DEA11EC9FC67D66C4F9AE02.roa File: 793803867DEA11EC9FC67D66C4F9AE02.roa (raw, json) Hash identifier: WtBhf+2wV0FG+D0dG09G0N6uOWOutj/QTC9UQ4o3FqU= Subject key identifier: A3:00:B3:86:14:30:D1:40:00:D0:54:45:8D:EB:BC:07:2C:E9:62:AE Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 0369 Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/793803867DEA11EC9FC67D66C4F9AE02.roa Signing time: Thu 11 Jan 2024 02:24:32 +0000 ROA not before: Thu 11 Jan 2024 02:24:32 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45671 IP address blocks: 2400:3e20:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: Jan 11 02:24:32 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f5160-da21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:7d:0d:f6:ed:d6:71:ea:ac:5e:03:d6:8c: 13:65:f3:a6:cd:9a:47:9c:f4:c5:ff:be:dd:3a:4c: 59:64:d8:cb:f8:1d:50:2d:b1:38:6f:49:24:72:04: b6:cf:3c:0d:78:7e:1f:8a:91:94:46:21:89:95:85: 4a:61:e1:b8:7b:65:21:c5:af:ef:82:44:e7:e9:d1: d5:7d:b1:55:f6:8a:2e:d8:8e:38:43:21:e2:3a:03: 61:8e:43:48:7b:77:93:2d:23:c6:d0:bd:ab:41:25: b6:55:db:95:b9:d4:3a:fa:84:65:64:75:5b:b2:02: ed:46:a6:85:60:c2:6f:97:89:bd:76:49:37:00:eb: fc:2c:a4:68:0f:dd:f4:78:aa:77:f4:07:f2:66:04: 64:6e:27:73:08:1a:f1:6f:bb:d3:e3:9e:89:4f:62: 53:03:a4:17:28:1a:a6:de:5b:05:32:87:f6:4f:e7: b1:5a:84:61:68:51:e3:bc:8a:77:03:b7:3b:d3:ad: 92:72:06:b8:6a:21:c8:f8:e7:4c:cb:95:9d:64:cb: 2d:58:f4:2f:df:06:d4:3d:01:e7:a2:a7:a3:35:c2: f3:e0:f6:ed:26:c3:5f:c5:7e:b6:5a:4a:92:a0:37: c9:c1:4b:96:0d:36:25:ce:7b:ad:63:c9:4c:15:01: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:00:B3:86:14:30:D1:40:00:D0:54:45:8D:EB:BC:07:2C:E9:62:AE X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/793803867DEA11EC9FC67D66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3e20:1000::/36 Signature Algorithm: sha256WithRSAEncryption 15:c3:7a:e2:a9:4d:8d:be:a2:2e:ed:73:f3:1f:27:e1:28:e6: db:8b:7f:6c:73:21:86:e8:a9:72:99:39:7a:28:93:07:5d:f8: 7a:d9:bd:0b:40:d6:59:fd:61:70:a4:a9:b1:39:3d:42:10:e0: e8:e0:db:23:73:61:49:ad:22:2e:e5:09:62:51:3e:4b:29:79: b0:59:53:60:55:12:2e:78:14:6f:8d:2d:9b:a8:f6:5c:23:23: 58:03:c7:c9:c9:f9:8e:e0:a5:ed:a6:99:2b:c2:b5:50:c2:67: 51:80:69:6c:7d:3a:23:c2:0f:78:61:41:d6:e9:72:67:5f:72: 58:e2:e1:3e:d5:ca:96:6e:9b:9c:a5:d5:da:4a:4f:ba:ef:46: a1:75:d9:0f:95:dd:3b:63:4d:d5:ae:c8:6f:7e:df:c9:a6:58: a1:1b:73:75:9f:b3:f0:f7:32:84:6c:0e:86:6d:db:0a:ba:44: 85:c1:0a:92:b4:02:d9:b0:e5:23:d0:e3:6f:94:2a:1e:a7:7f: c8:28:03:50:d3:2a:c0:83:fd:f5:f1:5e:09:7a:bb:f2:cb:0f: 89:bf:e3:f2:42:3f:26:ce:be:96:f7:91:d4:ff:9b:ae:d2:a5: 4c:73:30:48:28:0d:6d:1b:dc:72:e2:71:7e:0f:11:bc:07:b5: f4:c5:bd:94 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjQwMTExMDIyNDMyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTE2MC1kYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIB9Dfbt1nHqrF4D1owTZfOmzZpHnPTF/77dOkxZZNjL+B1QLbE4b0kkcgS2 zzwNeH4fipGURiGJlYVKYeG4e2Uhxa/vgkTn6dHVfbFV9oou2I44QyHiOgNhjkNI e3eTLSPG0L2rQSW2VduVudQ6+oRlZHVbsgLtRqaFYMJvl4m9dkk3AOv8LKRoD930 eKp39AfyZgRkbidzCBrxb7vT456JT2JTA6QXKBqm3lsFMof2T+exWoRhaFHjvIp3 A7c7062Scga4aiHI+OdMy5WdZMstWPQv3wbUPQHnoqejNcLz4PbtJsNfxX62WkqS oDfJwUuWDTYlznutY8lMFQFbYQIDAQABo4IClzCCApMwHQYDVR0OBBYEFKMAs4YU MNFAANBURY3rvAcs6WKuMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFMTEvRDA2MEM5QjI1QkQ2MTFFQ0FEODMzNjUxQzRGOUFFMDIvNzkzODAzODY3 REVBMTFFQzlGQzY3RDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAD4gEDANBgkqhkiG9w0BAQsFAAOCAQEAFcN64qlNjb6i Lu1z8x8n4Sjm24t/bHMhhuipcpk5eiiTB134etm9C0DWWf1hcKSpsTk9QhDg6ODb I3NhSa0iLuUJYlE+Syl5sFlTYFUSLngUb40tm6j2XCMjWAPHycn5juCl7aaZK8K1 UMJnUYBpbH06I8IPeGFB1ulyZ19yWOLhPtXKlm6bnKXV2kpPuu9GoXXZD5XdO2NN 1a7Ib37fyaZYoRtzdZ+z8PcyhGwOhm3bCrpEhcEKkrQC2bDlI9Djb5QqHqd/yCgD UNMqwIP99fFeCXq78ssPib/j8kI/Js6+lveR1P+brtKlTHMwSCgNbRvccuJxfg8R vAe19MW9lA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:55 2024 by rpki-client on console-fra.rpki-client.org