$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa File: 9818EAFC71DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: M/JvQJACPKVY3sn3KAaI7DW2wKfwno3uNF3Zt0A7u+0= Subject key identifier: BA:A5:35:6F:3B:BA:4A:9B:0B:4F:8C:7A:66:AD:9E:9D:DE:D7:2E:9C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D6C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa Signing time: Fri 13 Sep 2024 14:29:33 +0000 ROA not before: Fri 13 Sep 2024 14:29:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153331 IP address blocks: 2406:840:fca0::/44 maxlen: 48 2406:840:fea5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 13 14:29:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e44c4d-8d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ba:85:d4:78:40:ab:7b:d8:dd:08:bf:f9:26: ce:66:02:b4:8d:ec:08:b6:80:f3:6b:ea:cb:18:17: 3f:ae:46:10:10:16:f4:43:37:7d:8a:a0:81:ca:96: cc:75:98:13:39:92:b2:6b:ce:65:c7:3a:ec:17:bc: 5c:fa:a2:32:2b:4c:62:ce:c2:77:d6:00:e0:ce:de: 36:ad:26:1f:57:d1:41:56:d9:75:9a:01:ca:8a:ff: 84:0e:fc:0f:4a:b6:6d:56:74:b7:75:09:9b:2d:9a: f2:4e:e0:65:9c:57:29:67:2e:83:a8:12:a8:5f:1f: 10:11:e4:27:0d:08:aa:37:ca:ea:57:83:a2:5e:81: c0:3c:87:47:bf:8b:6d:ee:2e:4c:62:6f:cb:4c:01: 55:15:fb:25:2e:4f:07:cd:e4:83:6d:3b:88:34:02: 3d:e0:c9:d5:90:b5:2f:67:e0:1d:c8:3d:44:23:65: d5:bd:ba:b2:3d:ab:02:9b:5e:2f:e1:fc:76:cd:da: 85:57:9a:6a:c1:f0:fc:b6:d0:b1:10:cb:71:db:87: 8f:ad:ee:cf:42:0a:35:81:df:5a:25:58:11:05:f8: 85:40:03:6c:97:23:17:e5:14:c4:26:52:fa:65:fc: 19:1c:c5:e4:2b:82:ec:87:8b:a6:fc:ca:79:81:1b: bd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A5:35:6F:3B:BA:4A:9B:0B:4F:8C:7A:66:AD:9E:9D:DE:D7:2E:9C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9818EAFC71DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fca0::/44 2406:840:fea5::/48 Signature Algorithm: sha256WithRSAEncryption 9d:51:c9:36:c6:94:14:92:18:c0:04:37:17:29:e6:ef:c4:31: d7:0d:8e:bc:85:e9:e9:3a:a3:63:3a:cb:d8:63:02:55:ee:3c: 58:1f:ac:78:22:e8:d0:4f:15:d2:3a:e3:57:b1:40:af:ca:e4: ea:cb:9d:f5:b0:9c:3b:2a:64:7e:6c:67:05:a0:1e:5f:b9:bb: a4:39:a1:a7:b3:a9:b8:c8:2f:93:b8:b1:b4:20:9e:82:ef:d9: 33:ef:3c:3d:9b:b7:dd:7c:e1:98:c2:95:07:56:83:35:a6:5e: c6:40:ab:db:e9:b7:4a:13:e4:54:f5:cc:ed:1d:01:c1:31:13: 04:06:94:fa:07:20:52:a3:35:bf:d9:e3:ca:6d:f3:ac:95:76: 3a:db:26:aa:b8:37:58:77:18:78:a5:69:c1:13:f8:c1:50:ad: af:17:4a:e9:be:3c:0e:da:fd:22:98:35:e7:0a:a4:d9:22:22: aa:c3:e5:3f:ab:a5:14:8a:8b:a1:29:74:96:f4:a1:f9:19:31: 7b:d2:a6:30:96:e0:bf:16:1a:d9:de:ee:95:ce:06:9b:5c:f8: dd:97:15:ed:55:0c:15:a2:71:38:4b:75:6c:59:0a:2c:95:be: 89:f3:55:91:c6:1b:44:ba:52:d9:24:13:a0:89:b2:8a:75:99: 1c:94:94:60 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTEzMTQyOTMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0NGM0ZC04ZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLqF1HhAq3vY3Qi/+SbOZgK0jewItoDza+rLGBc/rkYQEBb0Qzd9iqCBypbM dZgTOZKya85lxzrsF7xc+qIyK0xizsJ31gDgzt42rSYfV9FBVtl1mgHKiv+EDvwP SrZtVnS3dQmbLZryTuBlnFcpZy6DqBKoXx8QEeQnDQiqN8rqV4OiXoHAPIdHv4tt 7i5MYm/LTAFVFfslLk8HzeSDbTuINAI94MnVkLUvZ+AdyD1EI2XVvbqyPasCm14v 4fx2zdqFV5pqwfD8ttCxEMtx24ePre7PQgo1gd9aJVgRBfiFQANslyMX5RTEJlL6 ZfwZHMXkK4Lsh4um/Mp5gRu9OQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLqlNW87 ukqbC0+Mematnp3e1y6cMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTgxOEVBRkM3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/KADBwAkBghA/qUwDQYJKoZIhvcNAQELBQADggEB AJ1RyTbGlBSSGMAENxcp5u/EMdcNjryF6ek6o2M6y9hjAlXuPFgfrHgi6NBPFdI6 41exQK/K5OrLnfWwnDsqZH5sZwWgHl+5u6Q5oaezqbjIL5O4sbQgnoLv2TPvPD2b t9184ZjClQdWgzWmXsZAq9vpt0oT5FT1zO0dAcExEwQGlPoHIFKjNb/Z48pt86yV djrbJqq4N1h3GHilacET+MFQra8XSum+PA7a/SKYNecKpNkiIqrD5T+rpRSKi6Ep dJb0ofkZMXvSpjCW4L8WGtne7pXOBptc+N2XFe1VDBWicThLdWxZCiyVvonzVZHG G0S6UtkkE6CJsop1mRyUlGA= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:05 2024 by rpki-client on console-ams.rpki-client.org