$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa File: 9B24119EC81411EEA71B4757C4F9AE02.roa (raw, json) Hash identifier: 9Tmi5kndMjZngD+uCp66ik1qRZCTR7Mw4UisAL8F1CQ= Subject key identifier: A7:DB:60:F8:63:52:D7:1B:01:AD:5A:F1:AB:3B:47:02:5E:41:CE:4D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D73 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa Signing time: Sun 15 Sep 2024 13:29:17 +0000 ROA not before: Sun 15 Sep 2024 13:29:17 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139791 IP address blocks: 2406:840:9d00::/40 maxlen: 48 2406:840:c700::/40 maxlen: 48 2406:840:c900::/40 maxlen: 48 2406:840:e900::/40 maxlen: 48 2406:840:feca::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 15 13:29:17 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e6e12d-29ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:06:a4:88:7d:4c:2c:1a:68:b1:19:9c:13: 3b:8a:31:c8:82:70:73:a3:3f:db:aa:2a:db:28:0f: 8d:6b:2b:d6:48:57:51:9a:9c:34:fe:4f:22:3e:19: 12:12:3a:b9:ef:37:18:1a:b1:ae:4a:f4:84:63:ee: da:8b:f8:86:36:b0:2e:e6:8d:0a:03:90:21:86:1c: 2d:d4:7b:a6:a1:e2:1d:75:78:5b:cf:e2:45:79:22: 2b:4a:b6:c7:00:d3:31:9b:4b:c6:bf:af:08:f0:8a: 8f:07:da:55:a8:d5:e0:fc:90:12:15:f8:c3:54:b8: ac:31:20:7d:fb:db:0e:e8:75:53:f9:8c:ae:8b:6d: ea:9e:dd:18:29:6d:bd:b3:54:a5:dd:32:fc:b2:45: a8:d9:62:75:f0:b6:a7:c6:d0:3c:50:33:7a:55:35: 35:e6:ef:4b:60:38:42:b0:b2:fa:49:ce:90:1f:52: 81:44:63:5d:80:92:0a:ee:d7:84:0d:96:2b:bf:55: 36:6b:f2:94:3c:2f:2f:d0:dc:a5:49:41:ff:3d:fb: 12:92:5d:c9:04:0d:c8:99:fd:23:af:7f:9e:35:4b: 6f:fc:2e:53:4b:45:16:a1:b5:86:a6:95:4e:57:2e: 11:41:0b:40:6f:7c:9c:8e:43:0e:a2:65:f6:ee:ff: 08:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DB:60:F8:63:52:D7:1B:01:AD:5A:F1:AB:3B:47:02:5E:41:CE:4D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9d00::/40 2406:840:c700::/40 2406:840:c900::/40 2406:840:e900::/40 2406:840:feca::/48 Signature Algorithm: sha256WithRSAEncryption 6d:a2:e1:cb:66:26:99:36:01:99:18:72:66:aa:7a:b0:38:b9: cd:5f:1f:dd:ee:84:c0:44:5d:3e:57:6a:a5:50:7f:c6:19:d7: ab:50:b4:ff:42:86:54:2f:18:f7:e3:01:c9:fc:69:fe:07:04: 26:d2:6e:2e:12:d7:2e:9d:46:c2:c0:57:18:86:e1:59:a3:54: d7:f5:68:3a:4e:e7:4b:4a:a5:a7:c7:e1:2c:87:b7:d4:58:5f: 60:fd:69:64:da:c0:0a:b9:1c:d4:68:fc:d5:80:9a:c2:3c:74: 0c:48:41:fb:b3:1d:bc:9b:4d:a3:b5:fd:69:3c:d6:7d:e2:5c: 03:74:53:89:fc:b3:5b:28:2d:60:87:92:36:2b:8d:28:88:98: 79:f5:82:07:69:ac:df:0e:2f:77:aa:97:66:4f:df:49:4d:3c: 48:f2:00:49:01:94:c6:df:d7:7e:ab:c7:ad:45:ca:2d:ff:de: c1:a4:9f:e6:39:f2:47:c6:c6:56:8e:60:53:5d:74:5a:64:b4: 85:0b:cc:cc:64:f7:0b:b9:69:ce:e5:c4:03:ff:a7:ef:b9:8b: 65:cc:64:bd:e0:d5:ce:83:9b:3c:79:25:60:21:f4:b9:eb:44: 1b:04:80:04:3e:05:85:00:3f:8b:87:b6:74:f8:90:bb:3f:68: 9b:75:bd:95 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTE1MTMyOTE3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2ZTEyZC0yOWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzAGpIh9TCwaaLEZnBM7ijHIgnBzoz/bqirbKA+NayvWSFdRmpw0/k8iPhkS Ejq57zcYGrGuSvSEY+7ai/iGNrAu5o0KA5Ahhhwt1HumoeIddXhbz+JFeSIrSrbH ANMxm0vGv68I8IqPB9pVqNXg/JASFfjDVLisMSB9+9sO6HVT+Yyui23qnt0YKW29 s1Sl3TL8skWo2WJ18LanxtA8UDN6VTU15u9LYDhCsLL6Sc6QH1KBRGNdgJIK7teE DZYrv1U2a/KUPC8v0NylSUH/PfsSkl3JBA3Imf0jr3+eNUtv/C5TS0UWobWGppVO Vy4RQQtAb3ycjkMOomX27v8IwQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKfbYPhj UtcbAa1a8as7RwJeQc5NMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOUIyNDExOUVD ODE0MTFFRUE3MUI0NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAnQMGACQGCEDHAwYAJAYIQMkDBgAkBghA6QMHACQG CED+yjANBgkqhkiG9w0BAQsFAAOCAQEAbaLhy2YmmTYBmRhyZqp6sDi5zV8f3e6E wERdPldqpVB/xhnXq1C0/0KGVC8Y9+MByfxp/gcEJtJuLhLXLp1GwsBXGIbhWaNU 1/VoOk7nS0qlp8fhLIe31FhfYP1pZNrACrkc1Gj81YCawjx0DEhB+7MdvJtNo7X9 aTzWfeJcA3RTifyzWygtYIeSNiuNKIiYefWCB2ms3w4vd6qXZk/fSU08SPIASQGU xt/XfqvHrUXKLf/ewaSf5jnyR8bGVo5gU110WmS0hQvMzGT3C7lpzuXEA/+n77mL ZcxkveDVzoObPHklYCH0uetEGwSABD4FhQA/i4e2dPiQuz9om3W9lQ== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org