$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/EB2858349B4B11EF86A11C85C4F9AE02.roa File: EB2858349B4B11EF86A11C85C4F9AE02.roa (raw, json) Hash identifier: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g= Subject key identifier: 36:57:30:12:B1:1A:10:20:7D:B3:F3:34:66:E2:AB:61:F5:8A:92:18 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: 06 Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/EB2858349B4B11EF86A11C85C4F9AE02.roa Signing time: Tue 05 Nov 2024 07:59:44 +0000 ROA not before: Tue 05 Nov 2024 07:59:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153383 IP address blocks: 2001:df4:87c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: Nov 5 07:59:44 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6729d070-53bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b4:f7:8e:66:81:92:59:b1:5a:15:5c:63:18: 42:f2:27:ea:48:fe:14:fd:d4:98:ce:f6:5a:b0:4b: 77:28:da:8e:9d:be:32:a1:4a:fb:0c:06:ed:68:85: 95:e2:3a:1d:50:4f:9e:76:1b:06:a4:6a:2c:75:1f: dd:b4:52:92:37:53:27:20:a6:ee:da:cd:c5:f4:ac: c0:ad:95:9a:6b:d7:87:0c:f2:c7:39:19:26:f3:c1: a7:32:ae:dd:f6:74:b5:0c:04:07:f9:ab:c1:ce:e4: 58:11:96:b4:bc:9b:4a:54:eb:38:45:3e:e5:2c:4f: 98:b0:9a:fc:e4:ea:74:1a:45:17:20:7c:15:af:bf: 77:b6:33:68:e3:fd:78:29:0f:c9:3f:27:50:19:b0: 25:15:50:8d:c7:b8:6e:1e:c5:28:80:e9:2e:72:a8: 3d:a1:8a:0e:ff:4e:08:c4:30:cc:a6:f2:07:00:79: d4:7f:61:03:8e:ba:fb:a1:a1:88:ed:91:20:04:3d: 9d:29:ec:f2:5a:3a:4c:7c:80:29:4d:b1:52:08:35: 74:73:35:1e:bf:5c:4a:fc:08:7a:a4:df:54:75:11: e3:4e:95:c9:69:8d:02:e0:e6:b6:ce:07:7f:7e:76: 54:7e:2b:cc:c7:6c:63:fa:81:d2:ea:86:65:43:44: e0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:57:30:12:B1:1A:10:20:7D:B3:F3:34:66:E2:AB:61:F5:8A:92:18 X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/EB2858349B4B11EF86A11C85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:87c0::/48 Signature Algorithm: sha256WithRSAEncryption b1:7b:36:01:57:2e:0a:10:0a:3e:06:ac:0c:43:49:e6:5a:8e: 27:9a:f3:88:43:b5:73:f8:bc:cc:2f:32:67:e3:ba:ef:e0:94: 15:46:f3:2e:8b:06:23:cf:5d:5e:8a:0a:9d:07:8b:85:70:15: 2e:89:59:57:93:b8:9b:7a:dc:96:33:92:0b:21:f0:69:ff:23: c6:1e:0e:82:d4:13:c3:4b:6c:a6:2f:e0:48:23:67:99:f3:3f: 01:69:62:48:b9:64:17:13:97:22:63:a1:c2:3f:89:4b:15:9c: 1e:4e:f5:1b:da:3d:41:f7:a4:44:7e:89:97:60:14:3b:d2:0c: bc:48:ef:b1:99:4a:62:7d:6d:df:55:79:1c:29:8a:ae:c8:8c: 55:d5:5a:73:11:79:ab:86:8f:cc:ba:6a:ea:c1:5e:c0:3b:ea: c1:65:0d:71:33:e5:99:6f:bf:0a:5b:08:46:9a:e2:83:e3:70: e4:7c:f6:39:37:e7:1e:71:95:ff:9c:8c:c2:ea:58:af:b9:b7: 70:00:54:f2:ae:4d:7c:8e:c8:1c:ff:fc:84:66:77:26:b0:88: 5a:0e:ce:de:24:37:e9:88:aa:69:84:6c:b2:24:65:80:c2:44: 8f:2c:41:f5:13:3f:72:5d:d3:e1:a3:a1:e8:ef:15:54:5a:65: 97:e6:6a:23 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEYxMTExMC8GA1UEBRMoRDQ2OTY0RjlGMzczMUYyRjYzRTY3MDA4QzkxRTU5QzdE Q0M3ODU1NzAeFw0yNDExMDUwNzU5NDRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjlkMDcwLTUzYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDctPeOZoGSWbFaFVxjGELyJ+pI/hT91JjO9lqwS3co2o6dvjKhSvsMBu1ohZXi Oh1QT552Gwakaix1H920UpI3Uycgpu7azcX0rMCtlZpr14cM8sc5GSbzwacyrt32 dLUMBAf5q8HO5FgRlrS8m0pU6zhFPuUsT5iwmvzk6nQaRRcgfBWvv3e2M2jj/Xgp D8k/J1AZsCUVUI3HuG4exSiA6S5yqD2hig7/TgjEMMym8gcAedR/YQOOuvuhoYjt kSAEPZ0p7PJaOkx8gClNsVIINXRzNR6/XEr8CHqk31R1EeNOlclpjQLg5rbOB39+ dlR+K8zHbGP6gdLqhmVDRODxAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUNlcwErEa ECB9s/M0ZuKrYfWKkhgwHwYDVR0jBBgwFoAU1Glk+fNzHy9j5nAIyR5Zx9zHhVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRjExL0U5MjZFOTEyOUE3 QzExRUY4NDk1MEQzM0M0RjlBRTAyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUdsay1mTnpIeTlqNW5BSXlSNVp4OXpIaFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FOTI2RTkxMjlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9FQjI4NTgzNDlC NEIxMUVGODZBMTFDODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSHwDANBgkqhkiG9w0BAQsFAAOCAQEAsXs2AVcuChAK PgasDENJ5lqOJ5rziEO1c/i8zC8yZ+O67+CUFUbzLosGI89dXooKnQeLhXAVLolZ V5O4m3rcljOSCyHwaf8jxh4OgtQTw0tspi/gSCNnmfM/AWliSLlkFxOXImOhwj+J SxWcHk71G9o9QfekRH6Jl2AUO9IMvEjvsZlKYn1t31V5HCmKrsiMVdVacxF5q4aP zLpq6sFewDvqwWUNcTPlmW+/ClsIRprig+Nw5Hz2OTfnHnGV/5yMwupYr7m3cABU 8q5NfI7IHP/8hGZ3JrCIWg7O3iQ36YiqaYRssiRlgMJEjyxB9RM/cl3T4aOh6O8V VFpll+ZqIw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org