$ rpki-client -vvf rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/4DD66E3C347F11EFB73F4074C4F9AE02.roa File: 4DD66E3C347F11EFB73F4074C4F9AE02.roa (raw, json) Hash identifier: IwMTYHcJhnDCmYuEYV2O2JwZjBRHGFoqwvNK7SHib0M= Subject key identifier: 28:E8:70:79:3C:56:6D:8A:CC:E6:64:07:65:78:2F:9A:D6:A7:AB:FA Certificate issuer: /CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Certificate serial: 010A Authority key identifier: A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/4DD66E3C347F11EFB73F4074C4F9AE02.roa Signing time: Thu 27 Jun 2024 12:18:05 +0000 ROA not before: Thu 27 Jun 2024 12:18:05 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 199436 IP address blocks: 2400:e3e0:aa00::/40 maxlen: 48 2400:e3e0:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BE9A/serialNumber=A79B82887031441990B18D1A05F9E271E7E7B8E6 Validity Not Before: Jun 27 12:18:05 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=667d587c-4951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:18:73:4f:7b:65:9c:75:e7:6f:8b:c9:14:9f: ad:6c:ff:86:55:d9:06:15:eb:42:0a:95:88:72:5e: 71:23:f6:9f:ad:2e:c7:24:87:f7:56:55:7e:9f:f6: b0:b9:1d:9a:d2:c0:43:cd:9d:56:09:da:61:a0:88: 86:3f:4d:2c:29:48:c3:12:65:92:1b:d1:9d:0c:ad: 9c:f6:9e:6c:75:85:b2:5f:29:23:02:76:ff:74:90: c6:a8:2a:7b:2c:99:31:e7:96:0c:5e:0b:5b:02:48: 96:b7:ca:b1:af:27:5d:b6:6e:9f:95:75:ba:32:7d: cc:cd:73:99:2b:8e:f5:bf:3d:41:85:79:cd:0b:21: e2:3f:24:01:5c:64:ae:11:5b:c0:97:bf:d2:fe:8b: 8f:9e:8e:73:da:e3:50:c4:09:da:80:df:1d:ea:fd: c7:dd:e7:a7:03:05:a2:fc:84:ed:81:4c:5c:7b:5b: ec:61:f0:c8:d9:72:5f:17:89:55:9e:4a:eb:9b:44: 60:5f:c2:ed:f1:e0:d3:27:5f:ec:38:0c:da:2d:80: 74:dd:93:19:40:18:49:e0:9c:cb:de:7f:10:ee:53: e2:92:b3:93:24:f1:c7:4c:4d:3f:16:6a:34:d9:a0: 3f:53:b9:44:b4:f0:d9:b3:c7:6a:bf:11:7c:3c:d7: 91:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E8:70:79:3C:56:6D:8A:CC:E6:64:07:65:78:2F:9A:D6:A7:AB:FA X509v3 Authority Key Identifier: keyid:A7:9B:82:88:70:31:44:19:90:B1:8D:1A:05:F9:E2:71:E7:E7:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/p5uCiHAxRBmQsY0aBfnicefnuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p5uCiHAxRBmQsY0aBfnicefnuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BE9A/8FA1F56EB85E11ED8E6F4213C4F9AE02/4DD66E3C347F11EFB73F4074C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:e3e0:aa00::/39 Signature Algorithm: sha256WithRSAEncryption 05:c3:b9:0f:db:ab:84:f5:fc:17:ab:32:75:a8:03:c5:7a:3f: ad:5b:f9:30:b6:fe:6d:97:31:9f:be:f4:85:6f:59:b2:1f:2e: 58:a2:34:37:34:2e:00:33:c1:90:a6:c0:51:4d:a5:15:9c:cc: 15:3b:8b:5e:e4:d0:7e:37:c7:e0:d9:35:f5:32:c0:25:48:41: 9e:d2:b6:8e:a7:90:b4:59:70:39:1c:42:70:a9:f6:ec:f2:fc: 12:ca:92:5d:ac:52:ad:12:22:61:3a:4e:f1:11:83:90:78:7f: db:e1:94:ed:76:c0:66:49:bf:11:ce:a5:6e:d3:67:e9:7d:2d: 71:05:be:87:78:e7:91:d9:f2:d2:dd:a6:d8:3c:25:fc:24:1c: d9:27:52:84:b4:3f:a4:6d:20:5a:5d:60:0b:df:68:2c:31:17: ae:36:39:14:32:22:1c:e8:25:b5:f1:95:06:90:dc:9c:20:6c: 71:7d:98:a8:b1:79:0c:7a:f6:52:49:ea:cd:08:0f:2c:03:19: 96:93:d9:98:c7:f2:cf:37:62:82:8b:d2:1b:a6:46:82:b3:a4: 89:d9:54:1c:d4:f0:ef:d5:c7:56:f0:63:99:62:d8:76:35:14: 4c:b9:ad:8a:e3:0c:e6:2d:da:85:5a:ba:0e:85:f4:15:57:79: c9:7d:64:b6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFOUExMTAvBgNVBAUTKEE3OUI4Mjg4NzAzMTQ0MTk5MEIxOEQxQTA1RjlFMjcx RTdFN0I4RTYwHhcNMjQwNjI3MTIxODA1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjdkNTg3Yy00OTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRhzT3tlnHXnb4vJFJ+tbP+GVdkGFetCCpWIcl5xI/afrS7HJIf3VlV+n/aw uR2a0sBDzZ1WCdphoIiGP00sKUjDEmWSG9GdDK2c9p5sdYWyXykjAnb/dJDGqCp7 LJkx55YMXgtbAkiWt8qxryddtm6flXW6Mn3MzXOZK471vz1BhXnNCyHiPyQBXGSu EVvAl7/S/ouPno5z2uNQxAnagN8d6v3H3eenAwWi/ITtgUxce1vsYfDI2XJfF4lV nkrrm0RgX8Lt8eDTJ1/sOAzaLYB03ZMZQBhJ4JzL3n8Q7lPikrOTJPHHTE0/Fmo0 2aA/U7lEtPDZs8dqvxF8PNeROQIDAQABo4IClzCCApMwHQYDVR0OBBYEFCjocHk8 Vm2KzOZkB2V4L5rWp6v6MB8GA1UdIwQYMBaAFKebgohwMUQZkLGNGgX54nHn57jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkU5QS84RkExRjU2RUI4 NUUxMUVEOEU2RjQyMTNDNEY5QUUwMi9wNXVDaUhBeFJCbVFzWTBhQmZuaWNlZm51 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A1dUNpSEF4UkJtUXNZMGFCZm5pY2VmbnVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFOUEvOEZBMUY1NkVCODVFMTFFRDhFNkY0MjEzQzRGOUFFMDIvNERENjZFM0Mz NDdGMTFFRkI3M0Y0MDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkAOPgqjANBgkqhkiG9w0BAQsFAAOCAQEABcO5D9urhPX8 F6sydagDxXo/rVv5MLb+bZcxn770hW9Zsh8uWKI0NzQuADPBkKbAUU2lFZzMFTuL XuTQfjfH4Nk19TLAJUhBntK2jqeQtFlwORxCcKn27PL8EsqSXaxSrRIiYTpO8RGD kHh/2+GU7XbAZkm/Ec6lbtNn6X0tcQW+h3jnkdny0t2m2Dwl/CQc2SdShLQ/pG0g Wl1gC99oLDEXrjY5FDIiHOgltfGVBpDcnCBscX2YqLF5DHr2UknqzQgPLAMZlpPZ mMfyzzdigovSG6ZGgrOkidlUHNTw79XHVvBjmWLYdjUUTLmtiuMM5i3ahVq6DoX0 FVd5yX1ktg== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org