$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa File: 4D9E29A8305311EF9CFFF238C4F9AE02.roa (raw, json) Hash identifier: qb3BJ6VPum0N37Y3mFlLsJHFaKFgEm26RoLZ15Rsubo= Subject key identifier: 54:89:88:CE:33:20:86:85:58:A3:D5:47:FB:98:BA:F3:3C:2E:4F:C4 Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 063B Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa Signing time: Sat 22 Jun 2024 23:57:53 +0000 ROA not before: Sat 22 Jun 2024 23:57:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 147196 IP address blocks: 2400:8180:21::/48 maxlen: 48 2400:8180:22::/48 maxlen: 48 2400:8180:23::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: Jun 22 23:57:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66776501-ef19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a9:f4:65:62:6d:97:44:a5:b7:2e:3d:87:d3: dc:3f:58:56:95:8d:42:2b:ab:7a:80:f4:c0:25:9c: 87:a5:0e:9e:6f:2b:e2:a9:d8:70:00:5d:f4:22:9d: 65:68:78:63:ce:a4:c4:aa:b3:bc:0c:c5:d2:a6:99: 6e:c5:98:fa:14:cc:06:ab:36:5a:4f:86:94:e2:8d: 44:70:31:5b:eb:6d:0c:1a:61:4c:af:38:fe:07:90: e9:25:cf:a4:d0:18:5f:b9:38:3e:dd:a2:96:c7:1a: 43:30:52:18:54:4e:bb:81:79:69:39:42:39:12:e9: b1:76:4e:4a:b0:5b:cf:b8:81:09:9b:3b:8d:41:d9: ad:e2:24:66:b1:a4:60:70:32:5a:ad:4b:90:de:86: b3:95:db:ae:e8:b6:ae:49:ff:f5:4b:bf:ed:67:c6: 13:2e:d7:6b:a6:5e:9d:99:5e:e7:ea:9d:01:40:d6: 3e:0c:e5:7b:1c:ef:aa:69:e8:07:0c:c2:f7:87:2c: c3:e5:79:ba:5f:f3:15:4f:d0:78:63:2d:d7:9b:b0: a6:89:1f:3c:ae:e7:de:6f:c4:a8:a7:9c:53:90:fb: c6:0f:5d:8c:8d:bd:6b:ab:4a:27:5a:11:b7:c7:a2: 05:10:df:af:6a:c7:8b:78:b1:5a:cd:16:a1:ca:f2: 7a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:89:88:CE:33:20:86:85:58:A3:D5:47:FB:98:BA:F3:3C:2E:4F:C4 X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/4D9E29A8305311EF9CFFF238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8180:21::-2400:8180:23:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 40:a9:28:7c:0a:bd:57:bc:3b:e8:32:72:88:25:0d:ea:ec:f7: c6:35:ee:24:20:29:29:42:e8:26:f4:0a:45:4d:47:0e:f8:fc: 9f:f4:0b:47:06:e8:55:15:2f:8c:3e:26:26:25:d7:aa:dd:51: 4a:94:e7:ee:86:b9:08:de:7b:90:18:af:3c:f6:1f:a6:5c:63: 39:94:83:32:5d:3b:af:04:62:ec:6b:c8:79:13:1a:48:68:24: 38:65:62:e8:93:5a:ed:b0:51:66:b2:ea:eb:bc:ee:73:68:e1: 53:04:0f:5e:0d:30:69:9e:21:7d:98:9f:71:67:e9:1a:0c:10: 01:09:fd:de:f7:8e:38:b0:6a:3f:de:e2:f6:b3:48:7d:d6:11: dc:ff:2d:d3:37:45:39:dd:ae:5b:a6:8a:3f:b8:46:43:a8:26: c3:38:6d:d9:c7:4a:70:30:83:f1:62:28:ab:da:15:9d:01:69: 84:7f:ef:0e:27:de:0c:32:c2:db:89:70:df:38:3b:cd:7e:ec: ac:30:18:ac:53:c5:09:38:05:4e:a6:4c:ad:f7:54:b9:10:1e: 01:b4:6f:79:3c:78:6d:a3:0c:eb:1b:c7:07:d5:e5:63:31:ca: 13:5d:97:bd:d9:96:38:33:0d:ce:ed:64:5f:19:05:6c:ec:9b: 51:c2:66:eb -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjQwNjIyMjM1NzUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3NjUwMS1lZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06n0ZWJtl0Slty49h9PcP1hWlY1CK6t6gPTAJZyHpQ6ebyviqdhwAF30Ip1l aHhjzqTEqrO8DMXSppluxZj6FMwGqzZaT4aU4o1EcDFb620MGmFMrzj+B5DpJc+k 0BhfuTg+3aKWxxpDMFIYVE67gXlpOUI5Eumxdk5KsFvPuIEJmzuNQdmt4iRmsaRg cDJarUuQ3oazlduu6LauSf/1S7/tZ8YTLtdrpl6dmV7n6p0BQNY+DOV7HO+qaegH DML3hyzD5Xm6X/MVT9B4Yy3Xm7CmiR88rufeb8Sop5xTkPvGD12Mjb1rq0onWhG3 x6IFEN+vaseLeLFazRahyvJ6sQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFSJiM4z IIaFWKPVR/uYuvM8Lk/EMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNEQ5RTI5QTgz MDUzMTFFRjlDRkZGMjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQAgYAAIQMHAiQAgYAAIDANBgkqhkiG9w0BAQsFAAOC AQEAQKkofAq9V7w76DJyiCUN6uz3xjXuJCApKULoJvQKRU1HDvj8n/QLRwboVRUv jD4mJiXXqt1RSpTn7oa5CN57kBivPPYfplxjOZSDMl07rwRi7GvIeRMaSGgkOGVi 6JNa7bBRZrLq67zuc2jhUwQPXg0waZ4hfZifcWfpGgwQAQn93veOOLBqP97i9rNI fdYR3P8t0zdFOd2uW6aKP7hGQ6gmwzht2cdKcDCD8WIoq9oVnQFphH/vDifeDDLC 24lw3zg7zX7srDAYrFPFCTgFTqZMrfdUuRAeAbRveTx4baMM6xvHB9XlYzHKE12X vdmWODMNzu1kXxkFbOybUcJm6w== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org