$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa File: 3F4717D0D89B11E9AB8A5F14C4F9AE02.roa (raw, json) Hash identifier: ZFxOYk9WO/J/w3FwhQLpiH06alNpUvPAH3xbqWHjhG4= Subject key identifier: AA:FE:A7:67:1F:01:8E:DC:17:C2:A2:1F:BE:68:DE:96:17:B8:31:D3 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3420 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:50 +0000 ROA not before: Tue 30 Jul 2024 16:02:50 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 46047 IP address blocks: 2405:1dc0::/32 maxlen: 32 2405:1dc0::/36 maxlen: 36 2405:1dc0:1000::/36 maxlen: 36 2405:1dc0:2000::/36 maxlen: 36 2405:1dc0:3000::/36 maxlen: 36 2405:1dc0:4000::/36 maxlen: 36 2405:1dc0:5000::/36 maxlen: 36 2405:1dc0:6000::/36 maxlen: 36 2405:1dc0:7000::/36 maxlen: 36 2405:1dc0:8000::/36 maxlen: 36 2405:1dc0:9000::/36 maxlen: 36 2405:1dc0:a000::/36 maxlen: 36 2405:1dc0:b000::/36 maxlen: 36 2405:1dc0:c000::/36 maxlen: 36 2405:1dc0:d000::/36 maxlen: 36 2405:1dc0:e000::/36 maxlen: 36 2405:1dc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13344 (0x3420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:50 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90eaa-ba3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:0b:49:ef:d4:4a:3a:6d:53:2b:a0:e9:b2:66: 37:29:4f:77:b6:89:4c:2e:9f:6e:63:b2:16:e8:4d: 70:91:73:66:7e:29:82:b6:87:39:4a:55:fc:37:a7: 28:20:cd:06:60:bd:29:37:74:e5:79:ab:ec:9f:47: 2b:93:82:64:a9:8c:55:f8:e7:04:ae:fe:bc:ba:d8: 82:60:fe:d7:1f:c6:74:43:07:61:45:71:a6:af:c2: 3d:31:35:32:92:c5:e3:c0:31:6a:62:95:55:c0:55: 27:50:91:58:f4:43:4d:5d:98:8b:c7:33:85:13:1f: 73:f7:4c:21:22:bd:38:65:80:83:65:a6:79:2b:3e: 4b:d6:b8:79:70:fe:d8:61:41:05:48:76:de:c9:28: 1c:d6:2f:7b:f4:4a:70:ff:68:42:da:67:56:b1:f5: 6e:05:31:fe:dd:e1:0f:e6:8e:0d:36:98:0d:44:1b: 25:e5:89:11:fe:ee:b0:1e:e7:30:fb:7c:07:09:99: 5e:52:fc:76:84:bb:d3:74:d6:63:53:e8:b9:ea:98: bc:95:c8:cb:8e:6a:07:57:ec:06:11:e3:f5:74:24: e5:03:f5:c5:f7:41:78:10:7a:fd:98:c4:c5:2e:34: 8b:de:ee:92:61:9b:f9:b4:ea:41:02:5e:da:10:63: b8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FE:A7:67:1F:01:8E:DC:17:C2:A2:1F:BE:68:DE:96:17:B8:31:D3 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 72:e7:6b:77:f3:3e:9d:a3:93:02:24:1f:3b:ca:95:c7:10:96: 37:db:85:a5:b1:cf:e4:27:29:62:b0:cb:1e:8a:29:97:68:1b: c2:07:34:8d:69:9d:38:50:04:02:6c:7c:0f:49:ee:23:30:bb: 6a:b7:0d:9b:36:67:c8:4b:5d:6b:c5:9b:bc:0e:10:16:86:b8: 2c:2d:81:c1:5c:7d:96:ee:be:94:89:ec:6d:b6:0d:01:95:5e: e1:0e:16:77:32:80:58:50:f0:95:c8:90:ab:ec:07:21:23:bd: ed:0f:80:ac:e5:43:1e:bf:d5:00:16:9e:f3:19:80:14:ab:bb: 43:67:ce:2a:b3:91:73:88:e9:e2:7b:f1:56:23:35:03:46:84: 61:39:30:d8:4e:07:28:ee:07:14:53:e6:da:9f:68:68:aa:f9: 33:d1:8a:c5:8a:aa:22:41:6c:60:0d:56:53:bc:6b:c4:f3:1a: 0d:cb:3f:79:22:3b:7c:82:bc:75:44:78:87:a9:95:a1:e8:90: ee:38:06:c2:31:da:c2:0b:c3:32:97:a6:77:4c:fb:a2:30:18: 1a:45:24:95:76:f2:b8:67:78:51:ff:61:ee:8d:88:3b:29:e1: dd:4b:f7:86:e5:c3:4c:35:d7:85:35:01:fd:96:42:4b:4d:2e: 2b:e9:92:16 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjUwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVhYS1iYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/AtJ79RKOm1TK6DpsmY3KU93tolMLp9uY7IW6E1wkXNmfimCtoc5SlX8N6co IM0GYL0pN3Tleavsn0crk4JkqYxV+OcErv68utiCYP7XH8Z0QwdhRXGmr8I9MTUy ksXjwDFqYpVVwFUnUJFY9ENNXZiLxzOFEx9z90whIr04ZYCDZaZ5Kz5L1rh5cP7Y YUEFSHbeySgc1i979Epw/2hC2mdWsfVuBTH+3eEP5o4NNpgNRBsl5YkR/u6wHucw +3wHCZleUvx2hLvTdNZjU+i56pi8lcjLjmoHV+wGEeP1dCTlA/XF90F4EHr9mMTF LjSL3u6SYZv5tOpBAl7aEGO4cwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKr+p2cf AY7cF8KiH75o3pYXuDHTMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y0NzE3RDBE ODlCMTFFOUFCOEE1RjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBR3AMA0GCSqGSIb3DQEBCwUAA4IBAQBy52t38z6do5MC JB87ypXHEJY324Wlsc/kJylisMseiimXaBvCBzSNaZ04UAQCbHwPSe4jMLtqtw2b NmfIS11rxZu8DhAWhrgsLYHBXH2W7r6Uiexttg0BlV7hDhZ3MoBYUPCVyJCr7Ach I73tD4Cs5UMev9UAFp7zGYAUq7tDZ84qs5FziOnie/FWIzUDRoRhOTDYTgco7gcU U+ban2hoqvkz0YrFiqoiQWxgDVZTvGvE8xoNyz95Ijt8grx1RHiHqZWh6JDuOAbC MdrCC8Myl6Z3TPuiMBgaRSSVdvK4Z3hR/2HujYg7KeHdS/eG5cNMNdeFNQH9lkJL TS4r6ZIW -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:35 2024 by rpki-client on console-ams.rpki-client.org