$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/B2E4A482E4D611EDB15EDE36C4F9AE02.roa File: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (raw, json) Hash identifier: d1W5JywmHjLqObvdK9tSNHN2RsDjV33NPPuORYy/wG0= Subject key identifier: 62:B4:FC:E5:8E:C6:50:51:A5:D6:35:AA:FC:96:CE:A4:83:51:31:92 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 12E5 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/B2E4A482E4D611EDB15EDE36C4F9AE02.roa Signing time: Mon 14 Oct 2024 17:25:21 +0000 ROA not before: Mon 14 Oct 2024 17:25:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138938 IP address blocks: 2403:b4c0:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4837 (0x12e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Oct 14 17:25:21 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670d5401-024c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:94:e4:d3:01:b4:e0:89:29:03:d6:60:ac: f8:96:53:21:49:97:d1:02:a4:68:63:e5:2a:56:cb: 34:a1:fa:77:85:51:8c:b7:03:14:b8:1a:7f:80:07: c4:38:64:f9:1a:db:49:13:d8:6a:e4:b0:a4:65:18: de:4e:34:05:ec:52:3f:4f:15:76:9d:96:39:ff:d4: d6:58:9d:c9:f4:c2:c3:d7:0f:20:52:ab:d2:3c:9c: 3e:8d:12:10:59:1a:62:4a:bd:a4:44:42:94:ea:10: a1:a2:62:60:da:06:c3:a5:e5:9b:58:44:18:6b:e4: 31:89:7a:56:04:6c:6b:7b:43:2c:3f:16:83:7d:08: 3c:f1:78:5e:e1:a3:e0:e6:92:69:fb:92:b7:78:43: 3b:9f:7f:94:01:a3:8b:dc:0c:4f:77:6c:b3:88:3a: c0:d7:5e:9e:1a:95:5f:ca:3c:ab:b7:44:65:75:ed: f3:63:9f:a1:6d:9c:35:ea:ba:ba:f5:00:20:a4:9f: 22:ad:c9:73:40:ce:8e:82:9c:0b:d9:74:99:d5:e8: 91:a4:f5:35:22:11:37:05:a9:75:3a:c6:f6:d0:a2: 11:7e:da:43:08:29:19:05:fd:50:da:46:dc:91:85: c3:2e:87:da:34:e6:f9:1c:96:ea:3a:21:8b:b5:fa: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B4:FC:E5:8E:C6:50:51:A5:D6:35:AA:FC:96:CE:A4:83:51:31:92 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/B2E4A482E4D611EDB15EDE36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:b4c0:4000::/36 Signature Algorithm: sha256WithRSAEncryption 99:ac:82:43:18:dd:e0:01:0d:c1:c5:cf:6f:18:91:d2:de:7e: 16:6b:3b:c8:ce:45:45:db:ed:20:67:ac:11:03:f1:5f:a1:b3: 44:11:ba:07:bb:e0:4c:81:22:78:57:cc:53:45:61:fd:7f:c4: 49:3f:da:ef:32:00:7d:2e:59:25:a3:c3:ff:11:eb:c8:f5:36: fc:29:79:fe:0b:52:2d:86:40:d8:af:36:4f:84:1d:fd:e0:ce: 84:80:2d:48:90:a5:7d:99:5b:48:90:80:35:de:fb:5a:fc:2a: bb:4f:ab:d8:56:35:b0:5d:02:43:62:4c:fe:b4:4d:92:2a:3b: 25:9e:43:1e:3d:9b:66:0f:43:13:c6:ff:09:2d:36:71:29:50: e1:dd:d2:c4:dd:72:6b:be:54:c6:80:76:4a:71:d3:94:2d:ef: 8d:00:e2:d3:a4:fb:97:08:59:b8:6a:b8:5c:df:f9:06:fa:3c: af:6f:e2:bf:ba:a6:45:39:b5:0f:75:26:10:99:38:94:d1:5e: fb:d6:01:50:08:86:e7:80:90:54:43:71:22:b2:5e:64:2c:af: 76:bc:9c:39:0f:48:e2:38:9a:8f:b5:4c:68:85:e1:2c:47:e9: 97:2f:b9:ae:8d:f2:b6:5f:1f:a8:ea:44:84:9b:e1:a7:aa:1e: b8:92:da:8b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICEuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjQxMDE0MTcyNTIxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkNTQwMS0wMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfqU5NMBtOCJKQPWYKz4llMhSZfRAqRoY+UqVss0ofp3hVGMtwMUuBp/gAfE OGT5GttJE9hq5LCkZRjeTjQF7FI/TxV2nZY5/9TWWJ3J9MLD1w8gUqvSPJw+jRIQ WRpiSr2kREKU6hChomJg2gbDpeWbWEQYa+QxiXpWBGxre0MsPxaDfQg88Xhe4aPg 5pJp+5K3eEM7n3+UAaOL3AxPd2yziDrA116eGpVfyjyrt0Rlde3zY5+hbZw16rq6 9QAgpJ8irclzQM6OgpwL2XSZ1eiRpPU1IhE3Bal1Osb20KIRftpDCCkZBf1Q2kbc kYXDLofaNOb5HJbqOiGLtfrDlQIDAQABo4IClzCCApMwHQYDVR0OBBYEFGK0/OWO xlBRpdY1qvyWzqSDUTGSMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvQkNFREY0NDJCMEJGMTFFODg2MzkyMjM3QzRGOUFFMDIvQjJFNEE0ODJF NEQ2MTFFREIxNUVERTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA7TAQDANBgkqhkiG9w0BAQsFAAOCAQEAmayCQxjd4AEN wcXPbxiR0t5+Fms7yM5FRdvtIGesEQPxX6GzRBG6B7vgTIEieFfMU0Vh/X/EST/a 7zIAfS5ZJaPD/xHryPU2/Cl5/gtSLYZA2K82T4Qd/eDOhIAtSJClfZlbSJCANd77 Wvwqu0+r2FY1sF0CQ2JM/rRNkio7JZ5DHj2bZg9DE8b/CS02cSlQ4d3SxN1ya75U xoB2SnHTlC3vjQDi06T7lwhZuGq4XN/5Bvo8r2/iv7qmRTm1D3UmEJk4lNFe+9YB UAiG54CQVENxIrJeZCyvdrycOQ9I4jiaj7VMaIXhLEfply+5ro3ytl8fqOpEhJvh p6oeuJLaiw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org