$ rpki-client -vvf rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa File: 3159F676909F11EF8F63A455C4F9AE02.roa (raw, json) Hash identifier: LDp79TPJF0EkBzzSeNjHOBwJeVq7UC7uSjiKStxhRdk= Subject key identifier: 15:F3:78:0F:51:E1:94:62:49:97:62:51:73:11:41:04:A1:1C:EC:86 Certificate issuer: /CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A Certificate serial: 02 Authority key identifier: 54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa Signing time: Tue 22 Oct 2024 17:58:08 +0000 ROA not before: Tue 22 Oct 2024 17:58:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153371 IP address blocks: 2401:ce20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.crl rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 17:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A Validity Not Before: Oct 22 17:58:08 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6717e7af-ae52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:e0:1f:22:ee:e1:00:5a:1d:e8:99:a5:0a: 8e:91:b5:d5:ec:7e:e0:38:9e:14:d6:aa:08:ee:11: 8d:94:8d:6b:c4:0a:02:54:94:e9:c9:30:30:5f:cd: 61:01:d7:cc:18:b8:9f:6f:88:f3:56:8d:24:02:a7: a6:a3:40:34:2d:12:e9:e1:9c:25:a4:c1:0b:53:12: e4:51:ee:bd:12:ef:51:32:2d:a4:72:9b:6d:3d:b3: 41:7a:d3:ee:a0:01:12:c2:52:43:fb:1e:4a:d3:a2: 5f:b6:c1:1c:11:91:f4:5a:38:9c:af:a4:ba:00:c5: cf:5b:08:13:e5:98:48:ee:5d:6b:13:54:d7:4b:0e: 3b:39:86:3e:e7:fa:3a:b8:6c:1f:f8:bf:7f:52:4f: 3e:55:2f:63:4b:bd:be:39:72:8f:df:2a:c5:f3:80: 13:c0:de:0a:66:87:97:6e:3c:53:04:fc:19:39:05: 7b:63:cb:87:0e:fa:6c:e7:19:17:d1:d0:f1:35:1f: 0d:45:07:19:93:8a:6d:f4:89:03:86:b1:57:42:d6: 5d:0c:7e:c6:13:d6:2d:27:dd:50:a3:5d:8a:18:23: f5:7f:88:a1:2d:13:0a:32:7a:1c:c6:95:98:3e:8e: 62:22:e9:8d:a5:b8:b8:7c:41:56:70:60:dc:8c:03: ed:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F3:78:0F:51:E1:94:62:49:97:62:51:73:11:41:04:A1:1C:EC:86 X509v3 Authority Key Identifier: keyid:54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/3159F676909F11EF8F63A455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:ce20::/32 Signature Algorithm: sha256WithRSAEncryption 0d:d6:c7:b3:e9:95:cf:2f:b6:0d:44:db:0f:1a:2d:0a:51:f4: ec:1c:36:20:9e:6a:01:1e:19:76:f3:b8:61:dc:92:ac:a3:dd: 31:60:fd:b2:81:26:92:9e:99:fb:47:72:1d:1c:26:da:05:50: 5a:30:5d:81:e6:73:b2:4c:80:d8:34:78:36:f9:e4:64:52:89: f3:0c:bd:ac:ad:64:55:44:26:67:f1:c6:2f:37:e4:6a:75:63: e7:b6:0f:eb:21:76:9a:c6:f6:dc:83:15:86:ea:22:41:ef:18: 36:8c:63:30:61:51:33:ae:65:d0:bb:8e:9e:98:d4:e9:3f:83: 56:20:47:04:48:ad:02:a4:db:6e:15:39:3d:87:6f:f6:03:30: 7b:ef:54:a5:80:12:73:a7:64:4c:49:37:40:78:b0:a1:e6:08: a8:be:63:7a:ea:58:b7:1d:98:57:48:84:30:25:41:b1:61:4c: b1:8f:84:01:9c:2c:fa:54:1f:4f:e7:50:ce:eb:de:25:a4:41: 27:87:53:c8:a2:2d:30:ac:48:02:46:3f:90:05:17:a6:ac:08: 04:68:44:39:dd:5f:a2:91:46:90:ed:c2:ed:5e:2d:68:86:e2: 0a:12:f9:f6:e7:d2:5c:41:de:2c:e1:cc:9d:fc:0c:1a:bc:25: 24:2f:c2:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MDgxODExMC8GA1UEBRMoNTQ4NDMwRUFCODhFNEUzNzhGQjUwMDVBRkFFNUNBQjlD MDAwN0ExQTAeFw0yNDEwMjIxNzU4MDhaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTdlN2FmLWFlNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm3+AfIu7hAFod6JmlCo6RtdXsfuA4nhTWqgjuEY2UjWvECgJUlOnJMDBfzWEB 18wYuJ9viPNWjSQCp6ajQDQtEunhnCWkwQtTEuRR7r0S71EyLaRym209s0F60+6g ARLCUkP7HkrTol+2wRwRkfRaOJyvpLoAxc9bCBPlmEjuXWsTVNdLDjs5hj7n+jq4 bB/4v39STz5VL2NLvb45co/fKsXzgBPA3gpmh5duPFME/Bk5BXtjy4cO+mznGRfR 0PE1Hw1FBxmTim30iQOGsVdC1l0MfsYT1i0n3VCjXYoYI/V/iKEtEwoyehzGlZg+ jmIi6Y2luLh8QVZwYNyMA+0VAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUFfN4D1Hh lGJJl2JRcxFBBKEc7IYwHwYDVR0jBBgwFoAUVIQw6riOTjePtQBa+uXKucAAehow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwODE4LzdFMUY2QUUyOTA5 RDExRUY5NzE3RjY1MEM0RjlBRTAyL1ZJUXc2cmlPVGplUHRRQmEtdVhLdWNBQWVo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVklRdzZyaU9UamVQdFFCYS11WEt1Y0FBZWhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDgxOC83RTFGNkFFMjkwOUQxMUVGOTcxN0Y2NTBDNEY5QUUwMi8zMTU5RjY3Njkw OUYxMUVGOEY2M0E0NTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBziAwDQYJKoZIhvcNAQELBQADggEBAA3Wx7Pplc8vtg1E 2w8aLQpR9OwcNiCeagEeGXbzuGHckqyj3TFg/bKBJpKemftHch0cJtoFUFowXYHm c7JMgNg0eDb55GRSifMMvaytZFVEJmfxxi835Gp1Y+e2D+shdprG9tyDFYbqIkHv GDaMYzBhUTOuZdC7jp6Y1Ok/g1YgRwRIrQKk224VOT2Hb/YDMHvvVKWAEnOnZExJ N0B4sKHmCKi+Y3rqWLcdmFdIhDAlQbFhTLGPhAGcLPpUH0/nUM7r3iWkQSeHU8ii LTCsSAJGP5AFF6asCARoRDndX6KRRpDtwu1eLWiG4goS+fbn0lxB3izhzJ38DBq8 JSQvwkE= -----END CERTIFICATE-----Generated at Tue Oct 22 18:33:18 2024 by rpki-client on console-fra.rpki-client.org