$ rpki-client -vvf rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/593105685BB711EE8E69584CC4F9AE02.roa File: 593105685BB711EE8E69584CC4F9AE02.roa (raw, json) Hash identifier: Cw4LGgU8zBpFJVs77QKeXG/iRSPr70U86IHDhCD7tPo= Subject key identifier: 98:4D:38:F1:7C:41:FA:6D:0A:82:27:19:99:7F:4E:BE:8C:78:C2:62 Certificate issuer: /CN=A9198996/serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Certificate serial: 0295 Authority key identifier: 69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/593105685BB711EE8E69584CC4F9AE02.roa Signing time: Thu 13 Jun 2024 18:16:42 +0000 ROA not before: Thu 13 Jun 2024 18:16:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132088 IP address blocks: 2402:e940:20::/44 maxlen: 44 2402:e940:30::/44 maxlen: 44 2402:e940:40::/44 maxlen: 44 2402:e940:60::/44 maxlen: 44 2402:e940:70::/44 maxlen: 44 2402:e940:80::/44 maxlen: 44 2402:e940:90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198996/serialNumber=692135608683755E94D8ECA57D8B0B358ECE1718 Validity Not Before: Jun 13 18:16:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666b378a-ec97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f4:11:f2:aa:6b:89:af:11:fc:13:75:38:17: bd:04:e3:7f:83:a7:4e:81:f3:de:32:a1:2d:3e:ec: 73:5f:ac:d3:10:4e:51:aa:c4:4b:6d:5a:4e:38:1d: 48:9e:da:74:f9:0f:8d:c1:12:ce:32:97:5f:03:92: 05:39:ac:8a:4d:88:57:99:ab:d4:ba:fd:b9:b2:f1: 50:89:33:fd:c0:b7:94:81:31:5b:55:e8:a6:34:ca: 66:65:82:1a:e6:ff:dd:cf:0f:a0:4f:c5:ed:82:1a: 71:f5:e0:9c:25:a8:8f:85:d5:73:82:6c:1e:ec:46: 4b:55:98:47:ab:f4:46:7e:d1:59:86:5c:42:23:a0: a9:eb:fc:a7:f1:4d:b2:32:70:08:58:0b:ed:b8:46: a9:cb:40:2f:67:d1:f2:a8:63:21:3a:61:ec:d2:22: 4e:a7:f2:81:f3:4f:aa:83:fd:91:ab:06:be:35:c0: 82:25:86:44:8d:6a:ac:06:9e:fb:5f:0b:bb:ad:7b: 8a:45:91:da:23:87:d1:a2:8f:6d:13:83:d2:a7:1a: 8e:52:eb:d9:89:85:b0:d7:62:e7:4e:de:20:6f:c0: dc:2b:a3:47:1a:93:75:c2:62:f4:05:42:da:b3:4d: db:45:8d:4f:9f:22:ec:de:e7:96:4a:95:55:37:64: 31:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4D:38:F1:7C:41:FA:6D:0A:82:27:19:99:7F:4E:BE:8C:78:C2:62 X509v3 Authority Key Identifier: keyid:69:21:35:60:86:83:75:5E:94:D8:EC:A5:7D:8B:0B:35:8E:CE:17:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/aSE1YIaDdV6U2OylfYsLNY7OFxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aSE1YIaDdV6U2OylfYsLNY7OFxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198996/66030F5ED06011ECBA40FC83C4F9AE02/593105685BB711EE8E69584CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:e940:20::-2402:e940:4f:ffff:ffff:ffff:ffff:ffff 2402:e940:60::-2402:e940:9f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3a:2e:74:b1:37:99:9e:8e:c3:3c:1a:f3:92:3b:34:63:82:a0: 2a:54:71:6a:34:ec:59:91:7c:fe:3c:77:78:81:d3:f7:90:95: 45:f6:a1:be:28:34:45:ae:ff:38:71:19:2b:cc:d6:21:5f:7f: f2:60:0b:79:fb:49:a5:25:00:25:3b:f8:43:89:1f:23:45:98: 66:4e:fe:f8:90:82:c3:83:56:56:f0:3a:1a:47:be:a5:49:f5: 2c:8d:50:e3:37:88:2c:0b:33:b0:4b:0f:4a:63:bb:f8:9a:5d: 5b:37:ef:dd:f5:4a:0a:df:fb:5d:73:61:ea:2b:ef:0f:fa:2a: 36:a7:27:06:33:8a:a2:69:3a:48:ee:38:71:d2:8f:39:b2:ab: cd:f7:07:41:ee:76:99:66:eb:ff:b3:dc:38:76:c5:20:cc:d1: ef:36:dc:a2:b8:58:3b:50:3d:7b:d0:ad:a8:5c:1b:e5:63:f3: fc:2d:4c:0c:10:37:76:ed:9a:04:66:1b:76:5b:94:fa:3e:69: 67:9b:20:30:bc:70:15:bd:12:ac:84:3d:c8:69:6a:29:c3:39: f3:f9:b7:16:5d:98:f3:bc:e4:be:54:15:d3:74:06:06:ef:0f: c3:ed:c9:03:c1:ab:2d:19:49:36:a0:08:14:37:ca:de:bd:14: 0c:32:ee:f3 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg5OTYxMTAvBgNVBAUTKDY5MjEzNTYwODY4Mzc1NUU5NEQ4RUNBNTdEOEIwQjM1 OEVDRTE3MTgwHhcNMjQwNjEzMTgxNjQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZiMzc4YS1lYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfQR8qpria8R/BN1OBe9BON/g6dOgfPeMqEtPuxzX6zTEE5RqsRLbVpOOB1I ntp0+Q+NwRLOMpdfA5IFOayKTYhXmavUuv25svFQiTP9wLeUgTFbVeimNMpmZYIa 5v/dzw+gT8Xtghpx9eCcJaiPhdVzgmwe7EZLVZhHq/RGftFZhlxCI6Cp6/yn8U2y MnAIWAvtuEapy0AvZ9HyqGMhOmHs0iJOp/KB80+qg/2Rqwa+NcCCJYZEjWqsBp77 Xwu7rXuKRZHaI4fRoo9tE4PSpxqOUuvZiYWw12LnTt4gb8DcK6NHGpN1wmL0BULa s03bRY1PnyLs3ueWSpVVN2QxCQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFJhNOPF8 QfptCoInGZl/Tr6MeMJiMB8GA1UdIwQYMBaAFGkhNWCGg3VelNjspX2LCzWOzhcY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODk5Ni82NjAzMEY1RUQw NjAxMUVDQkE0MEZDODNDNEY5QUUwMi9hU0UxWUlhRGRWNlUyT3lsZllzTE5ZN09G eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FTRTFZSWFEZFY2VTJPeWxmWXNMTlk3T0Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg5OTYvNjYwMzBGNUVEMDYwMTFFQ0JBNDBGQzgzQzRGOUFFMDIvNTkzMTA1Njg1 QkI3MTFFRThFNjk1ODRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgACMCgwEgMHBSQC6UAAIAMHBCQC6UAAQDASAwcFJALpQABgAwcFJALp QACAMA0GCSqGSIb3DQEBCwUAA4IBAQA6LnSxN5mejsM8GvOSOzRjgqAqVHFqNOxZ kXz+PHd4gdP3kJVF9qG+KDRFrv84cRkrzNYhX3/yYAt5+0mlJQAlO/hDiR8jRZhm Tv74kILDg1ZW8DoaR76lSfUsjVDjN4gsCzOwSw9KY7v4ml1bN+/d9UoK3/tdc2Hq K+8P+io2pycGM4qiaTpI7jhx0o85sqvN9wdB7naZZuv/s9w4dsUgzNHvNtyiuFg7 UD170K2oXBvlY/P8LUwMEDd27ZoEZht2W5T6PmlnmyAwvHAVvRKshD3IaWopwznz +bcWXZjzvOS+VBXTdAYG7w/D7ckDwastGUk2oAgUN8revRQMMu7z -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org