$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/843E9BFC625111EF9E190A2FC4F9AE02.roa File: 843E9BFC625111EF9E190A2FC4F9AE02.roa (raw, json) Hash identifier: 0qqIPbNplujOWkqOGJSvJbShjqFNjX+Ho+fZpofBWaA= Subject key identifier: 41:88:F5:0D:BA:06:4C:AF:1C:69:BB:9D:75:89:99:F4:91:61:67:D6 Certificate issuer: /CN=A9179F64/serialNumber=BDC4A5163317F73097F027A342B860A792D7F1DC Certificate serial: 05 Authority key identifier: BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/843E9BFC625111EF9E190A2FC4F9AE02.roa Signing time: Sat 24 Aug 2024 19:46:12 +0000 ROA not before: Sat 24 Aug 2024 19:46:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138954 IP address blocks: 2001:df4:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.crl rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64/serialNumber=BDC4A5163317F73097F027A342B860A792D7F1DC Validity Not Before: Aug 24 19:46:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ca3884-c023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:18:d6:58:6f:33:27:23:68:66:39:ae:b9: 76:b9:26:c5:21:e4:a4:01:6f:0d:23:2d:4b:d5:3e: cd:ea:79:1a:eb:36:00:00:b4:2c:6f:c9:49:a7:59: 05:bb:83:dd:1d:8d:62:f8:18:b6:16:be:54:6c:4b: c2:e7:14:17:5c:26:6d:f6:09:72:41:69:60:80:73: 85:1d:76:b9:4a:e8:9a:cd:35:08:81:5c:91:ef:be: 1b:43:07:55:52:6a:3d:40:5a:58:9a:2b:cb:d6:17: 16:73:bc:40:2c:d8:11:f2:73:9d:68:d5:12:bd:50: a6:07:5d:8a:5a:a2:0e:e1:7b:77:3d:84:28:06:dc: ca:2a:04:eb:49:d0:2d:fc:3b:ad:9e:95:50:81:7b: 5d:2b:fd:e3:55:20:0f:60:e6:7f:18:e1:3e:ae:43: c8:f6:b9:4b:34:93:18:b3:72:45:45:df:1d:50:09: f1:00:22:06:9d:6c:31:97:f9:18:a0:70:6e:81:51: 64:99:b4:30:33:59:69:08:52:02:92:77:e7:27:07: 7c:bc:2e:31:14:fb:53:c8:79:c3:18:b2:04:5d:3d: 0a:5c:1b:11:cf:94:4c:dd:a7:be:95:80:fd:34:fb: f6:cb:0d:9c:6e:f1:0d:09:ab:a6:f0:51:7a:37:b5: 56:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:88:F5:0D:BA:06:4C:AF:1C:69:BB:9D:75:89:99:F4:91:61:67:D6 X509v3 Authority Key Identifier: keyid:BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/843E9BFC625111EF9E190A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3340::/48 Signature Algorithm: sha256WithRSAEncryption bf:9c:84:6d:71:51:bb:04:e6:93:67:42:a4:b1:c3:4b:16:2c: be:b8:89:cc:5f:d3:50:84:42:96:29:da:9e:51:af:ef:20:60: 2b:34:ca:3e:df:4a:33:71:09:27:63:8a:a5:85:34:4c:7a:f8: 41:e4:ab:6d:d8:45:f0:cf:42:89:ec:5a:14:f0:22:b7:55:1a: 36:35:8d:de:f0:5b:f0:4a:53:ea:53:d3:b4:9a:20:47:7b:2f: 9f:ee:f7:14:3e:6c:a6:06:10:fd:db:52:2c:ff:b5:f5:dd:09: 2b:fb:31:40:2a:b0:e1:23:e5:e4:6f:e3:23:c5:6a:bb:eb:d9: ab:a1:04:da:d7:43:bd:05:94:3a:fb:b9:02:3c:56:9b:cd:99: 3c:d0:b4:9f:1a:b7:eb:18:58:bf:45:69:df:02:fa:a6:8f:dd: bb:5f:a0:c4:59:f1:81:00:e0:ea:96:a5:5c:8b:7a:31:27:0d: 4c:e6:98:d0:14:44:82:e1:37:81:a7:47:e8:2e:dc:cc:28:c6: 3f:c7:86:e8:d9:d6:db:a0:d6:b5:72:b7:9e:4e:18:cc:59:96: 6c:3e:5f:a1:2b:f1:2d:1a:8c:31:0b:ad:bd:67:04:e6:63:28: 64:76:4b:49:8d:7e:b9:81:12:d4:08:3c:51:ef:85:8c:b9:e3: 6d:8b:43:df -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OUY2NDExMC8GA1UEBRMoQkRDNEE1MTYzMzE3RjczMDk3RjAyN0EzNDJCODYwQTc5 MkQ3RjFEQzAeFw0yNDA4MjQxOTQ2MTJaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2EzODg0LWMwMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMgxjWWG8zJyNoZjmuuXa5JsUh5KQBbw0jLUvVPs3qeRrrNgAAtCxvyUmnWQW7 g90djWL4GLYWvlRsS8LnFBdcJm32CXJBaWCAc4UddrlK6JrNNQiBXJHvvhtDB1VS aj1AWliaK8vWFxZzvEAs2BHyc51o1RK9UKYHXYpaog7he3c9hCgG3MoqBOtJ0C38 O62elVCBe10r/eNVIA9g5n8Y4T6uQ8j2uUs0kxizckVF3x1QCfEAIgadbDGX+Rig cG6BUWSZtDAzWWkIUgKSd+cnB3y8LjEU+1PIecMYsgRdPQpcGxHPlEzdp76VgP00 +/bLDZxu8Q0Jq6bwUXo3tVZ9AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUQYj1DboG TK8cabuddYmZ9JFhZ9YwHwYDVR0jBBgwFoAUvcSlFjMX9zCX8CejQrhgp5LX8dww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5RjY0LzgwOTM4NDY0NjI0 QjExRUZBQjEyMEY0RkM0RjlBRTAyL3ZjU2xGak1YOXpDWDhDZWpRcmhncDVMWDhk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdmNTbEZqTVg5ekNYOENlalFyaGdwNUxYOGR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC84MDkzODQ2NDYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi84NDNFOUJGQzYy NTExMUVGOUUxOTBBMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQzQDANBgkqhkiG9w0BAQsFAAOCAQEAv5yEbXFRuwTm k2dCpLHDSxYsvriJzF/TUIRClinanlGv7yBgKzTKPt9KM3EJJ2OKpYU0THr4QeSr bdhF8M9CiexaFPAit1UaNjWN3vBb8EpT6lPTtJogR3svn+73FD5spgYQ/dtSLP+1 9d0JK/sxQCqw4SPl5G/jI8Vqu+vZq6EE2tdDvQWUOvu5AjxWm82ZPNC0nxq36xhY v0Vp3wL6po/du1+gxFnxgQDg6palXIt6MScNTOaY0BREguE3gadH6C7czCjGP8eG 6NnW26DWtXK3nk4YzFmWbD5foSvxLRqMMQutvWcE5mMoZHZLSY1+uYES1Ag8Ue+F jLnjbYtD3w== -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:55 2024 by rpki-client on console-ams.rpki-client.org