$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/627CDAE66FE011EF937A9931C4F9AE02.roa File: 627CDAE66FE011EF937A9931C4F9AE02.roa (raw, json) Hash identifier: 0dZCq3mcoe7yTjElCP6apZ/TBsiHHQlqjfreRDLi3PQ= Subject key identifier: D7:0A:11:8F:39:C5:C9:97:5F:A7:BC:89:03:8B:43:8E:FE:7D:9C:29 Certificate issuer: /CN=A918549C/serialNumber=52EDFEDFEA1535C13EE8A00E55FC7D51446D67D4 Certificate serial: 1A Authority key identifier: 52:ED:FE:DF:EA:15:35:C1:3E:E8:A0:0E:55:FC:7D:51:44:6D:67:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/627CDAE66FE011EF937A9931C4F9AE02.roa Signing time: Wed 11 Sep 2024 01:51:39 +0000 ROA not before: Wed 11 Sep 2024 01:51:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141153 IP address blocks: 2001:df3:7540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.crl rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C/serialNumber=52EDFEDFEA1535C13EE8A00E55FC7D51446D67D4 Validity Not Before: Sep 11 01:51:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66e0f7ab-335d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:ff:c6:87:dd:14:55:41:a9:76:e8:0d:d2: 47:a9:ed:a8:08:1b:87:04:48:75:99:c8:bf:59:c7: 1c:7a:70:ab:ce:8b:75:cc:fd:49:ed:d0:b6:e9:2d: 7d:46:51:51:c5:a3:2e:52:f5:0b:d9:33:1b:9e:46: 10:68:32:19:82:90:29:31:5c:8e:67:e1:6a:35:c3: 46:aa:0b:f1:0d:e2:67:4f:a2:91:27:32:45:6f:97: b6:30:06:82:08:47:97:42:cc:de:76:62:41:75:75: 48:85:16:27:36:87:fb:cc:e8:25:d3:2a:6a:91:22: c1:70:84:47:6d:87:0c:b0:30:c5:3a:61:3a:77:ef: eb:7d:36:e9:45:b3:f0:69:56:a5:bb:13:28:fd:0e: ac:92:9e:76:e1:3b:c5:87:2b:a3:5f:18:ab:fc:fa: 51:1e:93:30:ee:a6:5b:0f:56:8e:72:fa:24:e2:ae: fc:81:51:ab:30:7b:99:fa:75:73:2b:4a:25:cc:77: 35:8c:e6:cb:62:6a:48:10:a2:e3:0d:82:5b:86:6b: 78:a1:95:05:4c:5e:3a:81:27:3f:3e:b1:de:8b:77: 2e:74:cf:72:48:4f:b9:3a:bd:e1:e6:5b:ab:90:b0: da:42:c8:d8:4c:4b:40:21:3c:d8:5a:9d:03:a6:ab: dc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0A:11:8F:39:C5:C9:97:5F:A7:BC:89:03:8B:43:8E:FE:7D:9C:29 X509v3 Authority Key Identifier: keyid:52:ED:FE:DF:EA:15:35:C1:3E:E8:A0:0E:55:FC:7D:51:44:6D:67:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uu3-3-oVNcE-6KAOVfx9UURtZ9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/E6AB2CDE4A3111EFB7BBD51CC4F9AE02/627CDAE66FE011EF937A9931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7540::/48 Signature Algorithm: sha256WithRSAEncryption 68:d9:4e:3a:ee:91:a7:ae:6c:01:18:02:b6:6c:7e:7f:20:92: 79:67:73:53:bb:db:20:43:fb:a1:bc:08:6f:f5:09:b0:df:a5: c2:d0:22:ea:e8:a9:9d:2d:d6:90:ba:2a:10:17:16:02:71:df: 87:74:9c:ff:90:67:28:01:f1:a1:1b:6b:29:cb:b4:b3:3b:42: f1:81:cb:ba:76:5d:08:a7:25:15:86:b2:f5:06:74:41:ef:d1: 4b:7b:12:d4:63:50:c1:bd:fb:20:62:c9:6e:fd:f8:d4:69:d4: c5:48:c2:7a:7f:82:bb:f4:e5:c3:7d:f1:1b:dd:21:76:80:11: 21:26:52:f4:a5:6e:32:73:98:6d:f8:d2:a9:c4:9f:aa:9a:74: 06:bf:dd:e3:e6:79:a4:f5:f7:33:2d:cc:45:9b:bb:0d:98:b0: 17:21:ce:45:7a:d9:2f:1c:78:68:eb:78:f7:c2:fe:bf:e3:2d: 4c:b8:6b:41:cf:ee:88:fb:15:6c:cd:9e:96:f1:f8:ea:b3:c5: 9d:ff:0d:0b:e9:99:14:71:c1:20:c9:6e:7c:e3:cc:56:73:55: f0:ef:b5:26:2e:b2:b8:e8:54:98:f7:4e:7a:38:83:fd:1a:da: 69:76:a1:57:96:b2:c9:7d:d7:35:f9:41:76:7c:e5:ba:81:fe: bf:58:37:d3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTQ5QzExMC8GA1UEBRMoNTJFREZFREZFQTE1MzVDMTNFRThBMDBFNTVGQzdENTE0 NDZENjdENDAeFw0yNDA5MTEwMTUxMzlaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTBmN2FiLTMzNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8Qv/Gh90UVUGpdugN0kep7agIG4cESHWZyL9Zxxx6cKvOi3XM/Unt0LbpLX1G UVHFoy5S9QvZMxueRhBoMhmCkCkxXI5n4Wo1w0aqC/EN4mdPopEnMkVvl7YwBoII R5dCzN52YkF1dUiFFic2h/vM6CXTKmqRIsFwhEdthwywMMU6YTp37+t9NulFs/Bp VqW7Eyj9DqySnnbhO8WHK6NfGKv8+lEekzDuplsPVo5y+iTirvyBUaswe5n6dXMr SiXMdzWM5stiakgQouMNgluGa3ihlQVMXjqBJz8+sd6Ldy50z3JIT7k6veHmW6uQ sNpCyNhMS0AhPNhanQOmq9w3AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU1woRjznF yZdfp7yJA4tDjv59nCkwHwYDVR0jBBgwFoAUUu3+3+oVNcE+6KAOVfx9UURtZ9Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1NDlDL0U2QUIyQ0RFNEEz MTExRUZCN0JCRDUxQ0M0RjlBRTAyL1V1My0zLW9WTmNFLTZLQU9WZng5VVVSdFo5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVXUzLTMtb1ZOY0UtNktBT1ZmeDlVVVJ0WjlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9FNkFCMkNERTRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi82MjdDREFFNjZG RTAxMUVGOTM3QTk5MzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfN1QDANBgkqhkiG9w0BAQsFAAOCAQEAaNlOOu6Rp65s ARgCtmx+fyCSeWdzU7vbIEP7obwIb/UJsN+lwtAi6uipnS3WkLoqEBcWAnHfh3Sc /5BnKAHxoRtrKcu0sztC8YHLunZdCKclFYay9QZ0Qe/RS3sS1GNQwb37IGLJbv34 1GnUxUjCen+Cu/Tlw33xG90hdoARISZS9KVuMnOYbfjSqcSfqpp0Br/d4+Z5pPX3 My3MRZu7DZiwFyHORXrZLxx4aOt498L+v+MtTLhrQc/uiPsVbM2elvH46rPFnf8N C+mZFHHBIMlufOPMVnNV8O+1Ji6yuOhUmPdOejiD/RraaXahV5ayyX3XNflBdnzl uoH+v1g30w== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org