$ rpki-client -vvf rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/D26FE5F62BC511EEA4569A67C4F9AE02.roa File: D26FE5F62BC511EEA4569A67C4F9AE02.roa (raw, json) Hash identifier: sPA6kkeXfyxzUJ9CfoLtWsr8zuNenkE2WtbZA0pAxxc= Subject key identifier: 19:43:4C:0D:71:AF:93:10:41:4B:D1:F9:4A:35:DA:9D:6C:C3:5C:04 Certificate issuer: /CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573 Certificate serial: 03E7 Authority key identifier: 46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/D26FE5F62BC511EEA4569A67C4F9AE02.roa Signing time: Sat 25 Nov 2023 01:52:40 +0000 ROA not before: Sat 25 Nov 2023 01:52:40 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151338 IP address blocks: 2407:d840:20::/48 maxlen: 48 2407:d840:21::/48 maxlen: 48 2407:d840:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/RpIsVlRABAvZmv1OMp7Z3rb5JXM.crl rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/RpIsVlRABAvZmv1OMp7Z3rb5JXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B2EC/serialNumber=46922C565440040BD99AFD4E329ED9DEB6F92573 Validity Not Before: Nov 25 01:52:40 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65615368-cf90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:81:84:f6:b2:dd:e2:49:48:9a:dd:e5:f4:de: 99:39:30:b1:76:9d:92:21:46:68:65:2a:7f:e4:34: 49:76:2e:3f:50:c6:9a:bf:f9:17:30:c3:db:80:64: 1a:df:66:ae:cb:43:78:22:c8:78:76:0f:ac:dc:ff: df:a6:a0:8c:29:4d:b5:72:b2:b9:23:ce:40:f3:75: a2:36:7c:da:68:67:f9:35:78:66:32:54:a9:a2:d8: cf:9e:44:c6:c5:9a:f5:3a:a5:a4:35:a1:ec:af:7a: 05:79:79:01:a6:71:44:00:e5:f7:41:fc:02:32:4e: c8:fd:14:35:14:53:07:aa:e7:e6:99:b5:e0:a3:01: a6:98:c1:3a:9a:80:4d:4b:68:38:e2:f1:ea:e7:c8: 9c:20:9b:71:d2:77:43:73:b5:cd:25:e6:3a:57:1f: bb:f9:45:90:88:33:c6:f4:02:9d:9a:4f:99:cb:92: e7:30:2b:1e:0d:05:c8:7c:49:f9:e1:eb:9d:d4:40: 25:f8:ef:c0:31:8e:2f:cf:87:c1:37:15:c4:2c:3d: b2:99:78:1c:b3:fd:88:37:cf:0d:16:21:70:68:f5: 58:ef:0d:90:be:ee:6e:1e:7d:4c:a5:8e:ff:c2:aa: eb:24:e8:e2:d1:c3:34:d9:51:15:bd:a2:32:61:34: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:43:4C:0D:71:AF:93:10:41:4B:D1:F9:4A:35:DA:9D:6C:C3:5C:04 X509v3 Authority Key Identifier: keyid:46:92:2C:56:54:40:04:0B:D9:9A:FD:4E:32:9E:D9:DE:B6:F9:25:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/RpIsVlRABAvZmv1OMp7Z3rb5JXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RpIsVlRABAvZmv1OMp7Z3rb5JXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B2EC/842759562B0911EC851B980EC4F9AE02/D26FE5F62BC511EEA4569A67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:d840:20::/47 2407:d840:200::/40 Signature Algorithm: sha256WithRSAEncryption 75:b0:fc:f4:d5:01:56:de:e0:11:60:a2:84:1b:3d:38:a4:44: 77:3c:a1:74:57:a0:33:1b:d5:ac:38:62:ef:5e:4a:c6:63:4c: 06:bb:9a:31:1b:63:5f:86:a2:b2:49:d2:b0:8b:bc:64:e1:21: 18:46:0a:43:a8:60:1b:87:d1:d7:7e:b5:73:8d:27:f2:4d:11: 3c:28:4a:73:dc:7f:a0:53:b4:78:bf:7d:bf:30:bb:18:43:b9: c3:56:16:05:59:41:a6:ad:c2:89:d6:6a:e4:69:7f:5c:55:4a: 1c:d2:4a:24:55:2b:90:c6:8b:d9:28:4f:87:ec:4a:be:12:2a: 59:18:40:61:a1:bc:f0:b2:80:7f:ca:3f:0a:77:99:37:56:ea: cf:a7:88:12:8d:1b:44:73:ca:5c:3d:75:34:95:20:60:f8:64: 01:7d:00:72:0f:89:92:91:6c:58:c6:13:de:fd:73:45:d6:2a: e4:d9:1f:ab:3e:29:be:10:03:cc:1a:44:6f:b1:cd:51:be:4b: 11:c1:da:2e:aa:84:11:8b:6e:44:69:2b:1d:ba:97:a3:93:1e: f0:70:83:d6:bc:77:a3:bb:48:c7:31:af:31:45:10:aa:b1:19: f2:7e:2d:0d:7b:fb:cc:18:bc:50:fb:36:c4:6a:9a:97:d2:c9: e6:eb:80:bb -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIyRUMxMTAvBgNVBAUTKDQ2OTIyQzU2NTQ0MDA0MEJEOTlBRkQ0RTMyOUVEOURF QjZGOTI1NzMwHhcNMjMxMTI1MDE1MjQwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYxNTM2OC1jZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIGE9rLd4klImt3l9N6ZOTCxdp2SIUZoZSp/5DRJdi4/UMaav/kXMMPbgGQa 32auy0N4Ish4dg+s3P/fpqCMKU21crK5I85A83WiNnzaaGf5NXhmMlSpotjPnkTG xZr1OqWkNaHsr3oFeXkBpnFEAOX3QfwCMk7I/RQ1FFMHqufmmbXgowGmmME6moBN S2g44vHq58icIJtx0ndDc7XNJeY6Vx+7+UWQiDPG9AKdmk+Zy5LnMCseDQXIfEn5 4eud1EAl+O/AMY4vz4fBNxXELD2ymXgcs/2IN88NFiFwaPVY7w2Qvu5uHn1MpY7/ wqrrJOji0cM02VEVvaIyYTT1bwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFBlDTA1x r5MQQUvR+Uo12p1sw1wEMB8GA1UdIwQYMBaAFEaSLFZUQAQL2Zr9TjKe2d62+SVz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjJFQy84NDI3NTk1NjJC MDkxMUVDODUxQjk4MEVDNEY5QUUwMi9ScElzVmxSQUJBdlptdjFPTXA3WjNyYjVK WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JwSXNWbFJBQkF2Wm12MU9NcDdaM3JiNUpYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUIyRUMvODQyNzU5NTYyQjA5MTFFQzg1MUI5ODBFQzRGOUFFMDIvRDI2RkU1RjYy QkM1MTFFRUE0NTY5QTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBwEkB9hAACADBgAkB9hAAjANBgkqhkiG9w0BAQsFAAOCAQEA dbD89NUBVt7gEWCihBs9OKREdzyhdFegMxvVrDhi715KxmNMBruaMRtjX4aisknS sIu8ZOEhGEYKQ6hgG4fR1361c40n8k0RPChKc9x/oFO0eL99vzC7GEO5w1YWBVlB pq3CidZq5Gl/XFVKHNJKJFUrkMaL2ShPh+xKvhIqWRhAYaG88LKAf8o/CneZN1bq z6eIEo0bRHPKXD11NJUgYPhkAX0Acg+JkpFsWMYT3v1zRdYq5Nkfqz4pvhADzBpE b7HNUb5LEcHaLqqEEYtuRGkrHbqXo5Me8HCD1rx3o7tIxzGvMUUQqrEZ8n4tDXv7 zBi8UPs2xGqal9LJ5uuAuw== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:02 2024 by rpki-client on console-fra.rpki-client.org