$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa File: 355D028E4AB511EF87AB161BC4F9AE02.roa (raw, json) Hash identifier: 7N4zwktijhcoSzq/syq+xMGP53IngavGiy1rD5KOTZo= Subject key identifier: F2:2C:17:F7:74:FC:D1:F5:E6:55:BF:A4:46:D2:01:A6:98:3B:D3:21 Certificate issuer: /CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Certificate serial: 54 Authority key identifier: 1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa Signing time: Thu 25 Jul 2024 18:39:22 +0000 ROA not before: Thu 25 Jul 2024 18:39:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136557 IP address blocks: 2401:8360:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D72/serialNumber=1EB9AE8BF5959FE8BF2EB82B923B717EFF3106C5 Validity Not Before: Jul 25 18:39:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66a29bd9-206c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:d6:69:19:70:78:de:f3:16:1f:e3:e9:1c: b9:f9:10:97:85:3c:42:98:5b:53:f6:7f:52:e8:5b: d8:42:b8:fc:58:99:56:ae:77:a3:d4:b0:05:ed:1b: 9a:e0:67:bd:50:ed:8f:09:e0:40:51:a2:07:62:33: 80:25:47:a7:07:f1:7e:e3:f7:e6:d8:1d:01:a2:6a: 35:56:ad:f4:28:1a:ea:4f:3d:f3:b5:3d:54:3f:27: f9:8d:1b:9f:ec:83:ac:0b:75:6a:4d:70:51:a1:0a: b5:3a:e2:11:1b:b2:e1:eb:31:e5:c1:a8:5f:0d:18: d2:33:83:62:3a:37:36:24:c3:89:e1:ff:7a:44:dd: 84:10:be:33:82:42:cb:6a:eb:bf:ea:e7:dc:d2:2c: 1c:bc:ed:c5:a1:24:a0:6b:fd:6a:04:ab:2a:aa:27: 06:52:0d:45:d9:4c:a6:fc:aa:7e:77:af:44:48:40: 06:71:8d:41:f4:d6:3c:d5:15:5b:cf:a2:51:33:e7: bd:6b:8e:ea:2f:15:96:60:32:89:d7:bd:4d:91:43: 90:42:41:19:da:0d:6c:e1:73:19:a8:07:f3:2a:d8: ce:dc:99:ee:44:d4:3b:ee:b9:73:4b:b9:e8:7c:55: 11:f7:d5:bc:33:a6:1b:0a:24:a4:80:ff:41:c6:20: 2a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2C:17:F7:74:FC:D1:F5:E6:55:BF:A4:46:D2:01:A6:98:3B:D3:21 X509v3 Authority Key Identifier: keyid:1E:B9:AE:8B:F5:95:9F:E8:BF:2E:B8:2B:92:3B:71:7E:FF:31:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hrmui_WVn-i_Lrgrkjtxfv8xBsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D72/8B25AD04D22B11EEBC145343C4F9AE02/355D028E4AB511EF87AB161BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8360:1::/48 Signature Algorithm: sha256WithRSAEncryption 57:f6:4b:04:ad:19:d8:99:84:9c:c8:1e:49:cf:bb:ef:b8:9e: 15:3a:6c:db:23:8c:29:09:ab:f6:d8:5d:ee:23:05:8f:30:6b: 72:ca:25:e3:33:77:49:25:37:d5:5f:18:12:d9:1f:05:19:30: 27:80:4a:bf:d8:65:b3:e2:b8:86:94:eb:d0:e9:85:bc:e9:a0: 7d:ed:cb:d6:46:a2:6e:20:5e:bd:e4:0a:4a:aa:6c:52:8d:38: ce:d2:72:af:c3:70:e1:a2:d9:1f:94:3c:7e:29:e5:48:58:75: 9e:97:9a:a6:46:88:a8:2c:68:8c:5a:08:69:f9:33:3b:31:bf: 87:93:95:df:f4:38:44:47:e0:a4:a8:ec:3e:db:be:d4:e3:c9: b8:c1:8e:b2:ab:d9:d1:e5:fd:01:3d:a1:ac:e4:9d:2a:10:e2: 85:a8:a1:a7:98:28:97:c1:c5:fa:b0:e4:44:43:12:8b:a4:f8: d2:e3:a0:1f:6c:ac:27:cc:6d:13:ff:08:78:5e:a4:03:a0:6b: 31:dc:e4:c8:c8:38:08:e3:ee:4b:d7:ed:03:36:40:e0:49:1a: 87:5e:d0:f6:68:38:9a:3f:d3:d8:ba:e3:92:1d:cc:ee:fb:b2: 47:18:40:ac:f6:66:33:9a:1d:3d:d5:58:22:30:ae:4e:4b:d2: 7b:98:ff:be -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MEQ3MjExMC8GA1UEBRMoMUVCOUFFOEJGNTk1OUZFOEJGMkVCODJCOTIzQjcxN0VG RjMxMDZDNTAeFw0yNDA3MjUxODM5MjJaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTI5YmQ5LTIwNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyGNZpGXB43vMWH+PpHLn5EJeFPEKYW1P2f1LoW9hCuPxYmVaud6PUsAXtG5rg Z71Q7Y8J4EBRogdiM4AlR6cH8X7j9+bYHQGiajVWrfQoGupPPfO1PVQ/J/mNG5/s g6wLdWpNcFGhCrU64hEbsuHrMeXBqF8NGNIzg2I6NzYkw4nh/3pE3YQQvjOCQstq 67/q59zSLBy87cWhJKBr/WoEqyqqJwZSDUXZTKb8qn53r0RIQAZxjUH01jzVFVvP olEz571rjuovFZZgMonXvU2RQ5BCQRnaDWzhcxmoB/Mq2M7cme5E1DvuuXNLueh8 VRH31bwzphsKJKSA/0HGICoRAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU8iwX93T8 0fXmVb+kRtIBppg70yEwHwYDVR0jBBgwFoAUHrmui/WVn+i/Lrgrkjtxfv8xBsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwRDcyLzhCMjVBRDA0RDIy QjExRUVCQzE0NTM0M0M0RjlBRTAyL0hybXVpX1dWbi1pX0xyZ3JranR4ZnY4eEJz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSHJtdWlfV1ZuLWlfTHJncmtqdHhmdjh4QnNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQ3Mi84QjI1QUQwNEQyMkIxMUVFQkMxNDUzNDNDNEY5QUUwMi8zNTVEMDI4RTRB QjUxMUVGODdBQjE2MUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBg2AAATANBgkqhkiG9w0BAQsFAAOCAQEAV/ZLBK0Z2JmE nMgeSc+777ieFTps2yOMKQmr9thd7iMFjzBrcsol4zN3SSU31V8YEtkfBRkwJ4BK v9hls+K4hpTr0OmFvOmgfe3L1kaibiBeveQKSqpsUo04ztJyr8Nw4aLZH5Q8finl SFh1npeapkaIqCxojFoIafkzOzG/h5OV3/Q4REfgpKjsPtu+1OPJuMGOsqvZ0eX9 AT2hrOSdKhDihaihp5gol8HF+rDkREMSi6T40uOgH2ysJ8xtE/8IeF6kA6BrMdzk yMg4COPuS9ftAzZA4Ekah17Q9mg4mj/T2Lrjkh3M7vuyRxhArPZmM5odPdVYIjCu TkvSe5j/vg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:46 2024 by rpki-client on console-fra.rpki-client.org