$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa File: 8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa (raw, json) Hash identifier: Smb8FVURFKC3m7o10r8QWyGcKvfaOvh1xY2tx4Qk4ok= Subject key identifier: BD:D6:17:08:F2:7E:A2:EA:CE:F7:75:51:7F:0C:9E:E2:0A:1D:5B:E1 Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: F7 Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa Signing time: Wed 07 Aug 2024 05:26:20 +0000 ROA not before: Wed 07 Aug 2024 05:26:20 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 10111 IP address blocks: 2401:e60:10::/44 maxlen: 44 2401:e60:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Aug 7 05:26:20 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b3057c-ec63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b5:48:ae:b4:d4:4f:c4:e7:0e:6f:5d:76:cf: 95:62:ce:ce:73:d4:36:9c:25:20:af:12:eb:e5:46: 72:19:99:e8:52:b2:3e:50:1e:d1:79:6c:41:65:04: 69:ed:45:2d:eb:46:d6:47:fc:c6:5f:a2:61:61:62: 1b:b7:45:79:a6:d9:c7:6a:7a:99:4e:99:73:65:a5: ba:cc:72:58:1b:2e:80:77:a5:13:cd:1c:16:8c:0e: 28:05:12:d9:0d:fb:e5:e4:ca:7e:98:9d:b1:53:09: f6:b9:53:45:eb:ba:b5:09:c9:3e:f9:e8:aa:38:80: cb:5e:0e:a7:e7:c2:45:c8:db:01:5b:6f:d2:d9:0d: d1:5b:87:04:ca:3e:2a:ee:d7:95:1a:10:54:5e:47: e2:23:22:1a:3a:08:6c:d2:c5:11:56:1f:7e:2b:ff: ff:53:8c:31:5d:47:cb:c8:cd:81:d5:ec:39:aa:b0: 16:2c:11:47:f6:77:0b:2f:d8:aa:4c:f6:8e:c6:a0: 86:06:15:e0:42:7f:da:2c:2a:0e:8b:c2:53:4a:ca: 50:c0:7d:70:dc:ac:25:ba:e1:25:7a:da:80:4c:03: 0c:79:37:d8:f1:8a:9f:84:d4:52:c5:aa:a0:13:26: 33:e3:3f:15:8b:0b:3d:d1:cf:56:97:81:d3:c8:52: 2c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D6:17:08:F2:7E:A2:EA:CE:F7:75:51:7F:0C:9E:E2:0A:1D:5B:E1 X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/8FD9EFB21C4B11EFA5B6383EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e60:10::/44 Signature Algorithm: sha256WithRSAEncryption 6b:83:2c:74:22:5b:28:b5:ad:2e:4f:9d:3a:70:88:8b:af:1e: b8:2f:e5:f1:d0:f2:46:d3:6b:6f:11:02:0f:d7:69:2b:46:79: de:c8:e2:6c:a2:c3:6b:b8:bd:2f:17:d1:c2:fa:57:c7:6d:eb: ab:3a:d6:c8:cf:bd:b4:ff:d3:90:3b:b9:22:cd:11:c1:6d:79: b1:9a:7a:3e:44:ff:a1:ab:3f:91:b1:fb:d0:ba:6c:c8:c3:fb: 2c:c1:37:6f:12:04:ab:0b:3b:b9:67:d1:0e:7d:50:f5:13:f4: cc:47:2f:6a:1e:e6:db:dc:e1:43:2f:df:f2:be:b0:3b:e5:9c: 59:c5:96:e8:ed:8b:b0:f7:a5:f0:dc:5c:b7:ee:fb:e1:52:75: 80:90:b5:af:13:b4:d1:7a:d4:9d:9b:71:31:c3:9a:3e:80:dc: 9e:7e:1d:f9:1d:04:e2:9c:8f:e0:26:96:59:41:67:57:65:55: f7:8d:10:3b:cb:dd:62:51:fc:97:76:f9:92:21:82:25:30:ee: 26:b8:5e:8f:e5:48:5a:a9:d3:21:55:59:12:2e:32:72:d8:73: 0b:6f:11:de:67:14:3e:5e:e8:4f:c2:3a:a6:7b:aa:c4:78:b5: 69:3c:69:00:ee:3f:0c:d7:e3:66:c2:72:c8:21:d9:d9:ad:3a: 36:63:ea:0e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjQwODA3MDUyNjIwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMDU3Yy1lYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrVIrrTUT8TnDm9dds+VYs7Oc9Q2nCUgrxLr5UZyGZnoUrI+UB7ReWxBZQRp 7UUt60bWR/zGX6JhYWIbt0V5ptnHanqZTplzZaW6zHJYGy6Ad6UTzRwWjA4oBRLZ Dfvl5Mp+mJ2xUwn2uVNF67q1Cck++eiqOIDLXg6n58JFyNsBW2/S2Q3RW4cEyj4q 7teVGhBUXkfiIyIaOghs0sURVh9+K///U4wxXUfLyM2B1ew5qrAWLBFH9ncLL9iq TPaOxqCGBhXgQn/aLCoOi8JTSspQwH1w3KwluuEletqATAMMeTfY8YqfhNRSxaqg EyYz4z8Viws90c9Wl4HTyFIs+wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFL3WFwjy fqLqzvd1UX8MnuIKHVvhMB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvOEZEOUVGQjIx QzRCMTFFRkE1QjYzODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAQ5gABAwDQYJKoZIhvcNAQELBQADggEBAGuDLHQiWyi1 rS5PnTpwiIuvHrgv5fHQ8kbTa28RAg/XaStGed7I4myiw2u4vS8X0cL6V8dt66s6 1sjPvbT/05A7uSLNEcFtebGaej5E/6GrP5Gx+9C6bMjD+yzBN28SBKsLO7ln0Q59 UPUT9MxHL2oe5tvc4UMv3/K+sDvlnFnFlujti7D3pfDcXLfu++FSdYCQta8TtNF6 1J2bcTHDmj6A3J5+HfkdBOKcj+AmlllBZ1dlVfeNEDvL3WJR/Jd2+ZIhgiUw7ia4 Xo/lSFqp0yFVWRIuMnLYcwtvEd5nFD5e6E/COqZ7qsR4tWk8aQDuPwzX42bCcsgh 2dmtOjZj6g4= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:59 2024 by rpki-client on console-fra.rpki-client.org