$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa File: 4AFD4994CDD011EEA5534481C4F9AE02.roa (raw, json) Hash identifier: U2pgcPipddVZ72wsOjIBUQaJaHNGvZhnk8uGYFZu+oo= Subject key identifier: B5:02:65:99:B5:02:0B:EB:0E:11:4A:6A:EF:67:51:2C:7F:7A:BD:F8 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 0E Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa Signing time: Sat 17 Feb 2024 20:08:19 +0000 ROA not before: Sat 17 Feb 2024 20:08:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 10104 IP address blocks: 2001:df3:6c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Feb 17 20:08:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65d11233-d8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8b:de:43:f9:82:3a:4d:df:2f:44:2a:2e:6c: 4f:42:de:e6:3a:2d:fd:14:3f:56:c4:4b:10:d6:f9: ad:40:ff:76:3c:d3:e6:e0:85:08:4f:02:3a:c0:2a: 73:fc:2f:a9:24:1b:f5:e2:98:51:26:ec:7e:31:27: 63:ba:1f:ee:2e:e9:d6:a0:f2:37:5f:c9:58:fe:c2: bb:07:52:96:2b:51:dc:11:65:e7:47:26:d1:15:89: c1:26:88:f8:5e:fc:b3:17:cf:24:1d:a5:bc:36:64: 42:3d:a5:62:4c:05:69:ca:f9:df:a6:9f:08:4c:c3: 71:09:4a:ec:e8:cf:9e:2f:c6:96:91:2f:00:3d:af: ca:75:87:93:2a:02:2d:10:21:f3:6b:12:30:66:ac: 09:48:e3:b3:30:b1:85:96:c6:5a:7a:3b:0c:d3:77: ee:27:af:46:9c:4d:c6:24:8f:40:49:c4:ea:38:99: f1:e1:35:d1:4c:30:39:44:c4:7b:be:6a:f4:e1:94: d1:dd:35:93:d2:2a:b5:67:54:eb:76:28:18:19:1e: 3e:9f:32:51:77:3a:d2:09:8f:95:70:17:49:ad:1f: 84:42:d0:9a:73:d0:c6:30:5b:ea:94:64:01:4c:a0: f3:a7:3a:4b:95:02:f9:12:53:3c:4c:5d:15:ff:7e: e3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:02:65:99:B5:02:0B:EB:0E:11:4A:6A:EF:67:51:2C:7F:7A:BD:F8 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/4AFD4994CDD011EEA5534481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6c40::/48 Signature Algorithm: sha256WithRSAEncryption 0f:ea:4f:99:19:e7:f0:ac:d5:fc:55:f4:9b:42:09:a8:29:0d: a9:ba:71:21:6c:4b:1c:5d:39:1e:97:53:60:fd:eb:5c:55:75: 79:c7:13:93:e7:d7:51:76:79:f4:75:c9:8f:c7:4e:dc:b4:6a: 08:ba:67:78:63:86:86:9e:8f:4b:4c:05:d0:fb:87:5e:8a:e9: b9:88:e1:a9:c1:22:b3:6e:b8:ac:c9:3a:dc:15:4b:6f:6a:35: 48:ef:23:f0:99:64:2a:07:b5:c9:f9:08:da:c0:00:d5:65:36: f8:16:6f:ff:3b:55:53:7a:0f:b0:45:5f:b1:a9:73:5a:8a:98: 9e:30:38:5d:a1:73:77:8c:4a:29:89:4b:50:68:32:6f:54:07: f3:a2:21:5d:3a:7e:99:a0:47:56:23:b3:5f:39:79:fe:d2:a3: 27:39:4e:e3:2b:4e:37:5c:98:07:b1:dc:d9:26:03:f3:48:49: 52:af:cd:4e:c9:15:ce:f9:1e:d8:53:5c:34:1e:88:89:e4:3d: 68:92:7a:85:bc:f7:5b:3a:96:11:0b:c7:2c:2e:5a:dd:f4:02: b1:c1:9f:75:4b:19:07:85:3c:60:99:5e:75:22:2c:db:40:c8: 89:f9:65:b6:d4:a6:7b:c4:18:75:ae:9b:88:54:bb:35:17:6a: aa:42:13:31 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEMxRTExMC8GA1UEBRMoMURGOUMwQ0VGOUE3N0RDRDE1QkI1MUY5M0ZEMzQyOTk5 QkUxMTY1ODAeFw0yNDAyMTcyMDA4MTlaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDExMjMzLWQ4ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCii95D+YI6Td8vRCoubE9C3uY6Lf0UP1bESxDW+a1A/3Y80+bghQhPAjrAKnP8 L6kkG/XimFEm7H4xJ2O6H+4u6dag8jdfyVj+wrsHUpYrUdwRZedHJtEVicEmiPhe /LMXzyQdpbw2ZEI9pWJMBWnK+d+mnwhMw3EJSuzoz54vxpaRLwA9r8p1h5MqAi0Q IfNrEjBmrAlI47MwsYWWxlp6OwzTd+4nr0acTcYkj0BJxOo4mfHhNdFMMDlExHu+ avThlNHdNZPSKrVnVOt2KBgZHj6fMlF3OtIJj5VwF0mtH4RC0Jpz0MYwW+qUZAFM oPOnOkuVAvkSUzxMXRX/fuNVAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUtQJlmbUC C+sOEUpq72dRLH96vfgwHwYDVR0jBBgwFoAUHfnAzvmnfc0Vu1H5P9NCmZvhFlgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4QzFFL0MyODYwMzJFQzY0 NzExRUU5RDY4RUI3RkM0RjlBRTAyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZs Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGZuQXp2bW5mYzBWdTFINVA5TkNtWnZoRmxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi80QUZENDk5NENE RDAxMUVFQTU1MzQ0ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNsQDANBgkqhkiG9w0BAQsFAAOCAQEAD+pPmRnn8KzV /FX0m0IJqCkNqbpxIWxLHF05HpdTYP3rXFV1eccTk+fXUXZ59HXJj8dO3LRqCLpn eGOGhp6PS0wF0PuHXorpuYjhqcEis264rMk63BVLb2o1SO8j8JlkKge1yfkI2sAA 1WU2+BZv/ztVU3oPsEVfsalzWoqYnjA4XaFzd4xKKYlLUGgyb1QH86IhXTp+maBH ViOzXzl5/tKjJzlO4ytON1yYB7Hc2SYD80hJUq/NTskVzvke2FNcNB6IieQ9aJJ6 hbz3WzqWEQvHLC5a3fQCscGfdUsZB4U8YJledSIs20DIifllttSme8QYda6biFS7 NRdqqkITMQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org