$ rpki-client -vvf rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa File: 3BE03ECC7D4D11EE93D62E30C4F9AE02.roa (raw, json) Hash identifier: +PmKxO27F3AHIJ3oHg1od1w1E6envfjFt6OCrfWbtQk= Subject key identifier: 80:EF:81:0B:98:BC:C3:89:52:26:4A:3F:C2:F1:4A:E1:BA:2F:DC:47 Certificate issuer: /CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Certificate serial: 77 Authority key identifier: C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa Signing time: Sat 15 Jun 2024 08:48:44 +0000 ROA not before: Sat 15 Jun 2024 08:48:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 0 IP address blocks: 2001:dec:4000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Validity Not Before: Jun 15 08:48:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666d556c-3e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:55:ca:78:f7:b5:0a:78:3b:03:6d:b6:15: e0:37:b7:78:20:99:9e:5f:cc:e8:e1:30:08:33:96: b8:44:2c:f1:ef:d8:1f:21:6d:90:ee:59:46:f0:46: 9d:22:a2:d9:f7:0f:8a:ad:32:96:03:24:13:93:76: 40:fb:21:41:29:34:ae:e4:9b:71:f9:f4:67:55:28: 99:8d:95:41:8e:7f:46:87:2c:b3:8a:8f:35:a6:c6: 54:d5:06:b6:e7:eb:04:a3:b9:7e:b5:96:2b:d0:bc: 8f:aa:33:2d:bb:0f:29:84:87:87:ae:ec:6a:c6:64: 62:24:28:02:c7:ed:bc:61:b7:cd:bf:ab:8b:4a:31: cd:95:4c:4a:0e:d1:0a:fd:f6:87:64:41:8b:45:ac: 17:99:c6:16:aa:0c:75:4a:e6:28:29:ad:6d:88:30: 37:60:89:53:11:d7:41:c9:bc:f3:d3:93:c2:e3:3f: 6f:e7:ad:c7:6a:49:44:24:a3:12:c7:0f:77:d7:45: 82:89:59:d2:1f:81:84:b3:ec:89:b7:7c:4b:e3:84: 9b:3e:8d:e1:d5:18:09:f8:39:64:14:c1:c2:0c:2b: 5f:35:d7:d9:f1:7a:5b:d8:60:2b:2a:8d:a5:e6:37: ca:e8:fe:b3:c0:53:a8:24:06:36:14:eb:01:2f:62: 14:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EF:81:0B:98:BC:C3:89:52:26:4A:3F:C2:F1:4A:E1:BA:2F:DC:47 X509v3 Authority Key Identifier: keyid:C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dec:4000::/48 Signature Algorithm: sha256WithRSAEncryption 01:4b:46:be:ce:90:c8:da:97:a8:52:b9:00:a4:24:4c:00:f9: 02:74:5d:6d:87:2e:d6:af:4f:50:78:80:c7:af:c0:6b:6a:dc: 24:c8:3e:d2:a9:84:04:bd:b9:2d:27:00:f3:74:ea:44:9e:e4: 04:6c:05:b2:83:2c:0e:1a:2a:ca:03:60:68:ba:3d:25:89:bf: aa:35:3b:e6:7b:7d:be:dd:27:cb:23:6f:c8:76:a8:ba:87:a6: ed:9e:76:a9:3d:09:dd:c6:0d:63:d3:11:3a:eb:07:52:43:20: eb:b2:98:f1:80:cb:5f:27:f5:7c:15:c9:08:61:fc:8c:26:2d: 8f:7b:36:c6:bf:70:7d:d8:c9:3e:c2:35:f5:37:84:b1:18:41: 63:f2:f5:e7:b3:3f:d1:dc:d3:e1:14:e7:7d:91:65:f8:39:6b: b9:c7:10:b1:83:2e:c6:8a:06:1f:94:6f:c1:0b:30:6a:69:39: ff:16:61:fd:38:eb:79:49:a3:33:fd:63:7e:61:cb:10:3d:ac: 38:e8:70:9c:2a:01:f0:cd:ed:77:2e:97:52:64:ea:f3:66:cc: 46:62:74:e8:e1:c6:2a:f3:af:ac:8e:7e:ab:98:da:ba:2e:51: f5:e1:9d:7a:8a:e9:44:f3:6d:3a:8c:66:94:42:7d:21:1a:89: f6:fa:95:f8 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjBGNjExMC8GA1UEBRMoQzBBRUY3MDc3RjUyNjIyNTY3MTc5QUNFNTZBRDVFRThD RDY0NjA0RTAeFw0yNDA2MTUwODQ4NDRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmQ1NTZjLTNlNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8/1XKePe1Cng7A222FeA3t3ggmZ5fzOjhMAgzlrhELPHv2B8hbZDuWUbwRp0i otn3D4qtMpYDJBOTdkD7IUEpNK7km3H59GdVKJmNlUGOf0aHLLOKjzWmxlTVBrbn 6wSjuX61livQvI+qMy27DymEh4eu7GrGZGIkKALH7bxht82/q4tKMc2VTEoO0Qr9 9odkQYtFrBeZxhaqDHVK5igprW2IMDdgiVMR10HJvPPTk8LjP2/nrcdqSUQkoxLH D3fXRYKJWdIfgYSz7Im3fEvjhJs+jeHVGAn4OWQUwcIMK18119nxelvYYCsqjaXm N8ro/rPAU6gkBjYU6wEvYhR3AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUgO+BC5i8 w4lSJko/wvFK4bov3EcwHwYDVR0jBBgwFoAUwK73B39SYiVnF5rOVq1e6M1kYE4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMEY2L0ZFRTA1QkVDN0NB QzExRUU4QTI4ODQ2RkM0RjlBRTAyL3dLNzNCMzlTWWlWbkY1ck9WcTFlNk0xa1lF NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd0s3M0IzOVNZaVZuRjVyT1ZxMWU2TTFrWUU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjBGNi9GRUUwNUJFQzdDQUMxMUVFOEEyODg0NkZDNEY5QUUwMi8zQkUwM0VDQzdE NEQxMUVFOTNENjJFMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDexAADANBgkqhkiG9w0BAQsFAAOCAQEAAUtGvs6QyNqX qFK5AKQkTAD5AnRdbYcu1q9PUHiAx6/Aa2rcJMg+0qmEBL25LScA83TqRJ7kBGwF soMsDhoqygNgaLo9JYm/qjU75nt9vt0nyyNvyHaouoem7Z52qT0J3cYNY9MROusH UkMg67KY8YDLXyf1fBXJCGH8jCYtj3s2xr9wfdjJPsI19TeEsRhBY/L157M/0dzT 4RTnfZFl+DlruccQsYMuxooGH5RvwQswamk5/xZh/TjreUmjM/1jfmHLED2sOOhw nCoB8M3tdy6XUmTq82bMRmJ06OHGKvOvrI5+q5jaui5R9eGdeorpRPNtOoxmlEJ9 IRqJ9vqV+A== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:59 2024 by rpki-client on console-fra.rpki-client.org