$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1154663A54C311EFB296F71BC4F9AE02.roa File: 1154663A54C311EFB296F71BC4F9AE02.roa (raw, json) Hash identifier: NBOdX2Zi9CJrw5IoWGBF1LCaGMOu79sWqLGNP0ZoCbA= Subject key identifier: B2:D0:4F:BB:51:5A:64:35:AE:0F:53:7F:DF:A2:64:FB:85:EB:B6:E2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D31 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1154663A54C311EFB296F71BC4F9AE02.roa Signing time: Wed 07 Aug 2024 13:43:46 +0000 ROA not before: Wed 07 Aug 2024 13:43:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153186 IP address blocks: 2406:840:fc40::/44 maxlen: 48 2406:840:fefa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3377 (0xd31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 7 13:43:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b37a12-79c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:75:25:d7:e7:e4:e7:82:b3:91:e3:e8:66:04: 56:5f:e2:18:7a:34:a3:4a:f1:24:0d:3f:66:2f:86: fb:ab:79:8f:d0:8b:51:b5:dc:cc:0e:cd:ed:c2:e4: e7:9c:54:9a:0a:a0:ce:f7:32:51:27:06:2b:d1:ee: 90:70:46:74:3f:86:8f:42:38:30:1f:ed:45:b5:b4: d3:87:c9:68:9b:ae:9c:6c:18:d6:bd:b4:49:4e:9d: 07:9f:ab:d1:40:ed:9c:2e:da:29:26:1d:93:cc:5a: b1:6d:dc:76:ef:2d:8f:2d:b0:74:7c:7a:10:1e:b9: 2e:e1:8c:f1:5d:4b:c3:10:ad:22:2e:fc:29:44:5b: ca:79:96:13:e6:e0:7b:4d:c6:b9:dc:93:53:f3:ea: 75:21:2d:8e:f8:62:18:60:04:90:05:2c:f0:76:96: b8:07:41:ba:18:95:09:15:dd:11:6d:e4:0e:1d:cb: 0a:cc:3f:45:0d:02:ef:d9:10:13:aa:05:be:f6:5d: 15:95:7e:1d:f4:35:cf:14:ea:ae:30:3f:1a:de:2f: 0a:04:a7:54:3c:b9:58:ec:04:46:38:62:16:52:85: 5a:ba:ac:bc:c9:f0:be:e9:fb:80:8d:6a:24:80:6e: 2b:49:ff:5d:93:1f:5c:6e:26:49:d7:b4:e7:18:6b: df:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D0:4F:BB:51:5A:64:35:AE:0F:53:7F:DF:A2:64:FB:85:EB:B6:E2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1154663A54C311EFB296F71BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc40::/44 2406:840:fefa::/48 Signature Algorithm: sha256WithRSAEncryption 1b:23:91:c9:6a:30:9d:e8:bd:ac:e8:f3:b5:6b:9c:b7:a1:b2: 16:51:9a:ec:df:91:d4:6a:38:34:85:4c:db:87:27:c1:b3:bd: d8:ae:2e:47:0b:fd:b5:60:5a:f6:32:30:f4:bf:fb:8c:24:54: f1:99:d8:2d:22:bc:bb:2c:d9:0c:59:84:bb:24:5f:5e:67:8b: 87:2c:ad:e2:8d:e0:35:21:ac:f1:79:c0:71:a5:25:8f:16:b1: 4e:9a:da:39:9c:03:3e:09:22:df:0c:7b:92:e3:ec:c6:2f:91: 8d:5a:6c:7f:c6:f0:1f:4f:c4:ad:0d:7b:15:5a:47:34:26:42: 80:c8:d8:aa:c4:bf:ea:05:57:ae:a0:95:20:fa:20:79:bb:b2: 70:b9:13:2c:75:7e:3e:fa:c2:b2:55:68:85:41:55:ea:12:7c: d2:b8:f8:2e:ec:1d:4f:c2:c4:b8:a4:92:8a:d2:f5:1d:8d:b8: 83:a5:73:69:cb:88:5c:a9:87:c2:25:2b:4d:82:04:f2:19:0f: c2:97:a8:8d:27:9f:2d:a8:98:76:fa:4b:9c:e2:f9:d7:3d:38: 7d:1a:3b:15:40:00:f8:47:04:1d:cc:a6:53:50:d7:3a:1e:c2: 4b:cf:1c:ac:06:b5:d1:a8:bc:79:01:a9:cf:d4:62:ee:5f:a8: 29:0e:c3:c3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwODA3MTM0MzQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzN2ExMi03OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Ul1+fk54KzkePoZgRWX+IYejSjSvEkDT9mL4b7q3mP0ItRtdzMDs3twuTn nFSaCqDO9zJRJwYr0e6QcEZ0P4aPQjgwH+1FtbTTh8lom66cbBjWvbRJTp0Hn6vR QO2cLtopJh2TzFqxbdx27y2PLbB0fHoQHrku4YzxXUvDEK0iLvwpRFvKeZYT5uB7 Tca53JNT8+p1IS2O+GIYYASQBSzwdpa4B0G6GJUJFd0RbeQOHcsKzD9FDQLv2RAT qgW+9l0VlX4d9DXPFOquMD8a3i8KBKdUPLlY7ARGOGIWUoVauqy8yfC+6fuAjWok gG4rSf9dkx9cbiZJ17TnGGvfCQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLLQT7tR WmQ1rg9Tf9+iZPuF67biMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTE1NDY2M0E1 NEMzMTFFRkIyOTZGNzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/EADBwAkBghA/vowDQYJKoZIhvcNAQELBQADggEB ABsjkclqMJ3ovazo87VrnLehshZRmuzfkdRqODSFTNuHJ8GzvdiuLkcL/bVgWvYy MPS/+4wkVPGZ2C0ivLss2QxZhLskX15ni4csreKN4DUhrPF5wHGlJY8WsU6a2jmc Az4JIt8Me5Lj7MYvkY1abH/G8B9PxK0NexVaRzQmQoDI2KrEv+oFV66glSD6IHm7 snC5Eyx1fj76wrJVaIVBVeoSfNK4+C7sHU/CxLikkorS9R2NuIOlc2nLiFyph8Il K02CBPIZD8KXqI0nny2omHb6S5zi+dc9OH0aOxVAAPhHBB3MplNQ1zoewkvPHKwG tdGovHkBqc/UYu5fqCkOw8M= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org