$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa File: 0900F7CA7AE611EF8CE1F784C4F9AE02.roa (raw, json) Hash identifier: W140YuUw38RWGHye5n3YkyDF6hOcdpwcpeuapHj9/oU= Subject key identifier: 16:DB:19:BF:08:0B:D4:22:DE:78:FF:D9:81:78:41:BC:3D:04:E3:9F Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 0144 Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:56:56 +0000 ROA not before: Wed 25 Sep 2024 02:56:56 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 215304 IP address blocks: 2400:e3e0:aa00::/40 maxlen: 48 2400:e3e0:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: Sep 25 02:56:56 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66f37bf8-a88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9b:f5:fa:54:9b:2f:bb:21:28:a7:a7:87:02: 46:23:cc:72:33:01:7a:f7:e9:a9:44:e9:1c:fb:ce: 19:e1:aa:c1:dc:9c:86:b8:bf:bb:10:66:42:05:0e: 92:7a:b0:f1:a7:76:9c:51:d3:75:ed:3c:54:79:2d: c1:5c:07:f9:d8:2f:76:a4:74:a5:c2:7a:41:0d:2e: 83:eb:34:94:05:2f:b5:06:93:80:da:d6:dc:01:47: b6:70:8c:0a:1d:68:6f:a5:dd:98:76:ba:71:a4:76: cd:6e:f1:f7:d0:35:13:08:cf:63:da:8a:31:9b:27: e9:89:43:c4:6e:8a:b2:94:45:8d:8c:e3:b1:8b:bb: 1a:92:36:a6:6d:84:38:7c:78:e4:a5:f9:f5:5c:01: ab:79:f3:77:98:25:a5:b4:1c:20:ea:f6:7c:f5:d5: ca:a4:de:bf:a9:ed:02:4b:82:65:2b:39:15:85:d8: ce:5f:6a:e4:a5:a5:b9:c9:95:2c:27:36:0e:c1:25: 83:17:4f:ba:be:75:79:45:4e:77:e8:44:38:44:80: c4:fe:ba:df:24:c9:15:2a:99:da:08:78:6e:a8:c6: 9a:76:9a:ca:8d:9f:61:01:ef:ef:c4:af:dd:85:15: bc:85:da:33:3b:17:ca:34:f8:51:d3:5d:5c:fd:9e: f6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DB:19:BF:08:0B:D4:22:DE:78:FF:D9:81:78:41:BC:3D:04:E3:9F X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/0900F7CA7AE611EF8CE1F784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:aa00::/39 Signature Algorithm: sha256WithRSAEncryption 2f:f2:06:bf:78:98:22:31:f3:6f:0a:7e:f4:ea:6e:d3:70:a9: 3f:a7:fd:e3:82:fd:b2:26:b4:9b:4c:89:df:ec:f5:92:a3:84: dd:f3:f1:5e:e9:e3:cc:13:38:5d:e7:49:68:3e:29:52:55:eb: 93:c9:24:db:71:1f:85:21:1d:b5:c1:0e:af:09:8a:1f:c1:49: 33:6a:b0:d2:57:3e:3a:d2:53:7c:b5:6e:87:5c:9e:1b:1a:ef: 5a:9b:a8:a3:4d:94:e2:c8:02:e8:ec:bc:17:25:26:3a:d6:db: ef:10:41:78:21:23:b0:26:5f:1a:e3:d8:91:5a:0f:56:20:3d: 42:a7:4d:e7:f5:5b:1c:32:11:08:b2:fa:8d:be:f4:19:53:95: cf:30:84:13:24:3e:33:75:fa:52:87:fd:95:36:f3:f7:7d:c5: dc:bc:0e:8c:ac:db:70:28:2e:00:90:d0:78:a2:01:78:84:41: b8:98:29:d6:1a:02:f8:a3:f0:62:e8:17:2b:d4:cf:d1:8e:fc: e3:a9:b3:7c:2e:04:2a:1c:30:47:3e:95:d2:1a:f8:bf:07:d4: 3d:8a:03:bb:ee:b2:7a:9e:5f:b9:ba:c8:3d:b2:15:c7:c2:73: 61:0e:89:88:94:e0:3d:fe:00:5d:ed:be:ca:38:a1:8d:fd:c7: 16:7a:29:d4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjQwOTI1MDI1NjU2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzN2JmOC1hODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Jv1+lSbL7shKKenhwJGI8xyMwF69+mpROkc+84Z4arB3JyGuL+7EGZCBQ6S erDxp3acUdN17TxUeS3BXAf52C92pHSlwnpBDS6D6zSUBS+1BpOA2tbcAUe2cIwK HWhvpd2YdrpxpHbNbvH30DUTCM9j2ooxmyfpiUPEboqylEWNjOOxi7sakjambYQ4 fHjkpfn1XAGrefN3mCWltBwg6vZ89dXKpN6/qe0CS4JlKzkVhdjOX2rkpaW5yZUs JzYOwSWDF0+6vnV5RU536EQ4RIDE/rrfJMkVKpnaCHhuqMaadprKjZ9hAe/vxK/d hRW8hdozOxfKNPhR011c/Z726wIDAQABo4IClzCCApMwHQYDVR0OBBYEFBbbGb8I C9Qi3nj/2YF4Qbw9BOOfMB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvMDkwMEY3Q0E3 QUU2MTFFRjhDRTFGNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkAOPgqjANBgkqhkiG9w0BAQsFAAOCAQEAL/IGv3iYIjHz bwp+9Opu03CpP6f944L9sia0m0yJ3+z1kqOE3fPxXunjzBM4XedJaD4pUlXrk8kk 23EfhSEdtcEOrwmKH8FJM2qw0lc+OtJTfLVuh1yeGxrvWpuoo02U4sgC6Oy8FyUm Otbb7xBBeCEjsCZfGuPYkVoPViA9QqdN5/VbHDIRCLL6jb70GVOVzzCEEyQ+M3X6 Uof9lTbz933F3LwOjKzbcCguAJDQeKIBeIRBuJgp1hoC+KPwYugXK9TP0Y7846mz fC4EKhwwRz6V0hr4vwfUPYoDu+6yep5fubrIPbIVx8JzYQ6JiJTgPf4AXe2+yjih jf3HFnop1A== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:02 2024 by rpki-client on console-fra.rpki-client.org