$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/56ECC32221C911EF86496625C4F9AE02.roa File: 56ECC32221C911EF86496625C4F9AE02.roa (raw, json) Hash identifier: VQ/atx04aJVviG/T1wBpAg8TWQjSbM5qvNOBphPLsQc= Subject key identifier: 94:A6:36:AF:B4:14:B9:35:6B:C8:A4:04:AD:97:0C:96:1C:6C:7B:26 Certificate issuer: /CN=A9167F0C/serialNumber=4E6142BD61B3EB5897CE01E8D45711DA50DCF565 Certificate serial: 0942 Authority key identifier: 4E:61:42:BD:61:B3:EB:58:97:CE:01:E8:D4:57:11:DA:50:DC:F5:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TmFCvWGz61iXzgHo1FcR2lDc9WU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/56ECC32221C911EF86496625C4F9AE02.roa Signing time: Mon 03 Jun 2024 16:50:10 +0000 ROA not before: Mon 03 Jun 2024 16:50:10 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134995 IP address blocks: 2402:6640::/32 maxlen: 32 2402:6640:5::/48 maxlen: 48 2402:6640:10::/48 maxlen: 48 2402:6640:11::/48 maxlen: 48 2402:6640:17::/48 maxlen: 48 2402:6640:18::/48 maxlen: 48 2402:6640:19::/48 maxlen: 48 2402:6640:20::/48 maxlen: 48 2402:6640:21::/48 maxlen: 48 2402:6640:22::/48 maxlen: 48 2402:6640:23::/48 maxlen: 48 2402:6640:24::/48 maxlen: 48 2402:6640:25::/48 maxlen: 48 2402:6640:26::/48 maxlen: 48 2402:6640:30::/48 maxlen: 48 2402:6640:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/TmFCvWGz61iXzgHo1FcR2lDc9WU.crl rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/TmFCvWGz61iXzgHo1FcR2lDc9WU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TmFCvWGz61iXzgHo1FcR2lDc9WU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Jun 2024 18:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2370 (0x942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F0C/serialNumber=4E6142BD61B3EB5897CE01E8D45711DA50DCF565 Validity Not Before: Jun 3 16:50:10 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=665df442-1e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6f:55:13:fc:55:5b:7f:7a:5d:9d:23:eb:ef: 9d:8f:de:65:37:3f:29:5c:33:c6:b7:f4:76:d6:63: 26:65:b9:a2:ff:d3:cd:86:65:b4:bd:04:f1:73:2e: 81:2f:c9:cb:2f:d8:a0:b2:fe:8e:82:f5:fd:07:71: 4e:f3:19:59:27:7f:46:c1:b5:cb:b4:db:5e:59:f0: 86:55:9b:c4:47:ac:ce:c4:b6:04:84:49:07:41:bd: 7a:fd:c3:59:3b:f1:be:6b:db:76:e8:06:96:e0:a7: 7d:86:53:d3:94:3a:fa:f6:38:9d:b5:80:75:7d:f4: 20:3d:fe:59:e9:2f:48:25:b7:44:1a:72:a6:75:3f: 7d:2c:58:be:79:54:f4:81:0f:5e:2a:dc:18:c1:61: e1:c7:ff:13:49:05:4c:0a:25:b7:c4:e1:a8:05:e4: 71:3e:af:6e:39:e7:19:2c:17:60:87:1d:8e:75:c2: b3:33:7e:24:78:d6:27:bc:bb:f3:b2:a9:62:a3:0f: bb:ca:50:d9:c3:fa:f9:22:87:df:c8:46:6f:65:a9: 6b:4c:9f:17:a6:28:bc:68:91:e1:26:f8:cd:1d:9f: b3:95:54:d5:dc:45:fb:3f:50:5b:d0:8d:6a:cc:6d: 8f:40:2e:be:d1:be:96:2d:2f:86:b4:92:5e:c5:76: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A6:36:AF:B4:14:B9:35:6B:C8:A4:04:AD:97:0C:96:1C:6C:7B:26 X509v3 Authority Key Identifier: keyid:4E:61:42:BD:61:B3:EB:58:97:CE:01:E8:D4:57:11:DA:50:DC:F5:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/TmFCvWGz61iXzgHo1FcR2lDc9WU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TmFCvWGz61iXzgHo1FcR2lDc9WU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/56ECC32221C911EF86496625C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:6640::/32 Signature Algorithm: sha256WithRSAEncryption 4e:ab:74:62:0c:dc:ef:1d:55:f9:63:e9:71:3b:b9:e7:4f:f2: fe:8d:f0:5a:a4:95:c7:e3:5f:ea:3d:d1:61:84:f6:35:5e:cd: 7d:74:16:cf:97:3a:ea:3f:09:ce:f7:b2:bb:c5:e3:fe:ae:9a: 8a:3a:c1:ab:b4:b1:87:5f:e9:3a:ba:20:2c:5c:e5:8e:94:d8: 37:2e:99:3d:2c:95:33:6d:3b:38:30:1b:4c:32:cd:b1:e9:38: 0b:ea:f1:9a:74:d1:da:e4:f1:b2:08:95:e3:5f:12:7e:23:d7: 62:23:08:7d:a3:79:7b:5c:6e:8a:2e:7e:29:3f:c6:60:61:d0: f9:87:2a:a5:1a:64:61:85:d8:54:7a:28:48:ee:bc:21:5a:8a: 87:d9:a6:eb:a0:6a:27:96:72:5d:80:3f:8b:b2:b1:9e:0c:19: ae:68:08:ec:25:47:01:9c:29:96:7c:06:db:3b:f8:f3:00:3d: 09:36:a0:30:23:7c:54:88:a8:b5:39:87:1e:89:82:bb:eb:ce: ad:50:c5:71:e9:48:8c:db:6e:54:0f:25:3f:e7:b7:67:92:e5: c9:a9:ab:e1:9f:ee:d0:c4:ea:0a:c6:e5:9c:7b:4c:9f:10:ec: f7:f1:4d:c8:09:0e:a1:aa:d8:ed:6d:61:9f:5f:b5:0b:1d:fe: c6:40:13:cb -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGMEMxMTAvBgNVBAUTKDRFNjE0MkJENjFCM0VCNTg5N0NFMDFFOEQ0NTcxMURB NTBEQ0Y1NjUwHhcNMjQwNjAzMTY1MDEwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkZjQ0Mi0xZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz29VE/xVW396XZ0j6++dj95lNz8pXDPGt/R21mMmZbmi/9PNhmW0vQTxcy6B L8nLL9igsv6OgvX9B3FO8xlZJ39GwbXLtNteWfCGVZvER6zOxLYEhEkHQb16/cNZ O/G+a9t26AaW4Kd9hlPTlDr69jidtYB1ffQgPf5Z6S9IJbdEGnKmdT99LFi+eVT0 gQ9eKtwYwWHhx/8TSQVMCiW3xOGoBeRxPq9uOecZLBdghx2OdcKzM34keNYnvLvz sqliow+7ylDZw/r5IoffyEZvZalrTJ8Xpii8aJHhJvjNHZ+zlVTV3EX7P1Bb0I1q zG2PQC6+0b6WLS+GtJJexXZjUQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJSmNq+0 FLk1a8ikBK2XDJYcbHsmMB8GA1UdIwQYMBaAFE5hQr1hs+tYl84B6NRXEdpQ3PVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0YwQy8wQTU4QTE5QTcw QUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9UbUZDdldHejYxaVh6Z0hvMUZjUjJsRGM5 V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RtRkN2V0d6NjFpWHpnSG8xRmNSMmxEYzlXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdGMEMvMEE1OEExOUE3MEFCMTFFOTgzMTdBNTdCQzRGOUFFMDIvNTZFQ0MzMjIy MUM5MTFFRjg2NDk2NjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAmZAMA0GCSqGSIb3DQEBCwUAA4IBAQBOq3RiDNzvHVX5 Y+lxO7nnT/L+jfBapJXH41/qPdFhhPY1Xs19dBbPlzrqPwnO97K7xeP+rpqKOsGr tLGHX+k6uiAsXOWOlNg3Lpk9LJUzbTs4MBtMMs2x6TgL6vGadNHa5PGyCJXjXxJ+ I9diIwh9o3l7XG6KLn4pP8ZgYdD5hyqlGmRhhdhUeihI7rwhWoqH2abroGonlnJd gD+LsrGeDBmuaAjsJUcBnCmWfAbbO/jzAD0JNqAwI3xUiKi1OYceiYK7686tUMVx 6UiM225UDyU/57dnkuXJqavhn+7QxOoKxuWce0yfEOz38U3ICQ6hqtjtbWGfX7UL Hf7GQBPL -----END CERTIFICATE-----Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-ams.rpki-client.org