$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa File: 17A651BCA40E11EEAAB83671C4F9AE02.roa (raw, json) Hash identifier: hF9MKD/FwgF9cY8hvh9m1ZRU6ZbNvnTiLbcgCIT5wPc= Subject key identifier: E3:E4:9F:0D:86:84:29:F8:0A:CC:58:09:2C:55:11:A2:7D:3E:2E:3D Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 047F Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:16:07 +0000 ROA not before: Tue 03 Sep 2024 01:16:07 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 47869 IP address blocks: 2401:df40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 01:16:07 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d66357-751b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:f8:8a:89:1e:ff:cf:1e:bb:41:d8:68:d6: 2b:f4:a4:89:bf:4b:1d:53:cb:35:8c:28:9b:52:f7: 54:41:45:83:2f:f6:06:06:f0:38:0b:2d:9d:54:e1: bb:ab:b4:2d:41:b7:26:cd:d8:a8:17:5d:7b:b9:cc: 9c:27:00:96:79:69:1e:a4:5e:da:db:9a:0d:b2:08: 12:dd:da:e2:ac:93:12:33:88:77:64:b8:d9:8a:95: a7:09:0d:e4:c0:9b:a7:f6:5b:e1:ff:30:cc:bf:25: 68:98:fb:09:e9:f0:2b:67:3f:d8:45:fa:c9:07:5e: ee:76:2e:59:0f:5e:37:9c:a1:7a:fa:7c:c5:c5:a3: 04:18:ba:08:b1:e2:02:41:3d:dc:d6:72:da:20:7e: 01:1e:2f:2e:7b:38:9a:cd:ac:09:78:76:e2:54:7b: 0b:64:d5:b8:ee:72:fd:53:b0:bc:dd:b3:aa:14:08: a6:99:24:e0:e6:8d:bc:15:3f:0e:cb:6d:85:01:0b: 97:87:01:d2:a0:c5:36:e2:17:1e:0c:bf:7f:0c:0f: 16:58:ba:09:e0:df:3e:b7:2e:0b:cc:7a:9c:c9:49: c7:b1:4a:ad:f2:08:d8:1e:2e:4c:fa:95:db:12:a3: eb:5f:a9:b7:86:97:a8:e9:d1:2f:6a:4a:be:9e:33: 72:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E4:9F:0D:86:84:29:F8:0A:CC:58:09:2C:55:11:A2:7D:3E:2E:3D X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:1::/48 Signature Algorithm: sha256WithRSAEncryption 23:c4:14:3b:83:3b:61:7f:77:38:dc:1c:de:7c:34:e5:1c:fb: 89:0c:f8:94:e4:ac:f3:49:01:fa:15:ca:6f:99:ba:89:97:8f: 16:27:1d:ba:09:69:3e:8d:c5:66:70:de:72:4d:6b:49:f9:e5: da:c7:dc:3d:b9:ca:a8:cb:9c:16:58:3d:b2:9a:ea:1d:e0:1f: 31:25:a9:29:f3:c3:dd:58:86:80:7f:18:34:7a:ea:a1:e6:1e: d9:3c:2e:16:21:cd:02:5d:70:e4:0f:07:23:cf:3e:76:f6:c9: 75:ee:e1:d3:4c:91:cc:f4:b6:45:eb:4b:68:a6:9a:c5:0b:d8: af:aa:da:81:fb:ec:a7:3f:8b:7a:d2:11:e7:e9:74:2c:50:62: 6a:bf:e3:ef:df:c6:15:dc:b5:26:db:12:63:ff:5d:f8:9d:99: 65:ac:87:2d:f2:21:b3:f9:56:20:bd:ee:44:83:20:59:8d:19: 30:ce:74:23:91:03:53:21:ac:64:65:2f:8a:c3:02:47:cd:c1: 8d:e3:0a:bb:ab:d4:29:0a:a2:ab:3a:35:67:78:4c:cb:51:cb: 9b:57:82:25:c4:84:d0:26:a1:1b:b3:92:e7:00:0f:df:7e:30: 40:69:ce:e3:f1:59:f4:0d:62:fd:6a:3d:6f:2c:6d:f4:5e:f3: b0:1d:3e:d6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwOTAzMDExNjA3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjM1Ny03NTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunz4ioke/88eu0HYaNYr9KSJv0sdU8s1jCibUvdUQUWDL/YGBvA4Cy2dVOG7 q7QtQbcmzdioF117ucycJwCWeWkepF7a25oNsggS3drirJMSM4h3ZLjZipWnCQ3k wJun9lvh/zDMvyVomPsJ6fArZz/YRfrJB17udi5ZD143nKF6+nzFxaMEGLoIseIC QT3c1nLaIH4BHi8ueziazawJeHbiVHsLZNW47nL9U7C83bOqFAimmSTg5o28FT8O y22FAQuXhwHSoMU24hceDL9/DA8WWLoJ4N8+ty4LzHqcyUnHsUqt8gjYHi5M+pXb EqPrX6m3hpeo6dEvakq+njNy/wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOPknw2G hCn4CsxYCSxVEaJ9Pi49MB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMTdBNjUxQkNB NDBFMTFFRUFBQjgzNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAEwDQYJKoZIhvcNAQELBQADggEBACPEFDuDO2F/ dzjcHN58NOUc+4kM+JTkrPNJAfoVym+ZuomXjxYnHboJaT6NxWZw3nJNa0n55drH 3D25yqjLnBZYPbKa6h3gHzElqSnzw91YhoB/GDR66qHmHtk8LhYhzQJdcOQPByPP Pnb2yXXu4dNMkcz0tkXrS2immsUL2K+q2oH77Kc/i3rSEefpdCxQYmq/4+/fxhXc tSbbEmP/XfidmWWshy3yIbP5ViC97kSDIFmNGTDOdCORA1MhrGRlL4rDAkfNwY3j Crur1CkKoqs6NWd4TMtRy5tXgiXEhNAmoRuzkucAD99+MEBpzuPxWfQNYv1qPW8s bfRe87AdPtY= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:22 2024 by rpki-client on console-fra.rpki-client.org