$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12F6CA2854C311EFB296F71BC4F9AE02.roa File: 12F6CA2854C311EFB296F71BC4F9AE02.roa (raw, json) Hash identifier: QVV0mfrn5qKw8+l1qpdhRvxT9fw5BiAB3Z+Tq2akmOA= Subject key identifier: E3:A7:3E:D5:9D:B9:EC:DF:82:BC:42:19:2B:70:99:07:34:4B:F5:C9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D34 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12F6CA2854C311EFB296F71BC4F9AE02.roa Signing time: Wed 07 Aug 2024 13:43:49 +0000 ROA not before: Wed 07 Aug 2024 13:43:49 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153190 IP address blocks: 2406:840:fc70::/44 maxlen: 48 2406:840:fedc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 7 13:43:49 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b37a14-9aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:26:2a:9e:d6:c1:f1:d8:4b:70:50:a6:ae:25: 11:b2:52:da:6d:b5:38:43:1a:f1:98:8f:6d:e3:46: a1:f1:92:27:f4:35:a9:cb:01:bb:4d:7d:1b:ce:23: 44:0d:bc:df:c6:89:09:84:b9:37:c8:92:d8:e7:6d: 93:ad:e2:3e:af:d6:b0:f1:4a:e5:a2:6b:fd:8b:8d: 90:1a:16:da:4e:19:bc:d1:95:a4:f0:1e:04:8e:d6: fc:02:a8:62:89:96:a6:7d:c0:d7:f2:6e:c4:67:54: 7d:ea:f8:d0:5d:dd:69:45:87:1e:27:a4:96:8a:41: 7e:4b:0e:34:da:4f:e4:1e:ec:68:52:3e:36:14:21: 2b:96:c7:ef:71:87:e3:e2:ad:06:ca:f6:71:79:69: ba:b6:08:bd:16:72:dc:36:b7:be:69:40:8f:bc:42: 10:f2:b3:c9:41:24:95:d2:35:d1:be:db:a2:55:00: 28:e7:e9:ff:16:3f:8b:94:44:e8:29:08:ac:86:4c: 26:c4:c0:5f:a0:5d:e1:67:fe:55:9c:d4:ac:c4:fb: c1:21:9e:1a:e9:d8:ab:4a:1e:c6:c5:94:e4:af:de: 2b:26:3e:bb:bf:2c:f1:0f:ea:5a:f4:3b:29:d3:1a: 9b:2d:e2:7a:1e:b8:f1:34:32:11:18:8f:80:e1:22: 41:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A7:3E:D5:9D:B9:EC:DF:82:BC:42:19:2B:70:99:07:34:4B:F5:C9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12F6CA2854C311EFB296F71BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc70::/44 2406:840:fedc::/48 Signature Algorithm: sha256WithRSAEncryption 95:30:19:82:85:83:e8:b0:1b:83:5b:67:63:da:bc:45:cc:8c: ce:b8:fd:20:20:b6:1f:0b:18:ff:07:88:c8:c4:62:95:5e:42: 4e:2e:6c:ad:18:f8:3c:36:d7:79:e0:6e:37:37:02:9a:2b:0e: 9e:5c:04:ce:57:ff:dd:8e:84:bb:2b:47:ee:33:61:9d:18:46: 2a:24:7e:27:02:b9:d6:31:fb:72:de:d6:f6:75:e0:50:07:0a: 27:c0:d1:02:de:de:f6:5c:68:a5:cc:b4:08:ca:c4:f5:64:c4: f9:5c:6a:46:fa:4c:ed:0a:2b:af:f5:02:10:75:9e:31:5b:0f: 62:7b:e4:e6:26:06:bb:74:6d:70:59:76:da:e0:b3:4a:55:2b: f3:8d:db:ec:d3:24:f0:61:90:25:b7:2c:4d:b6:d3:75:80:4f: d9:c0:b9:12:bd:70:c3:31:36:1f:84:35:23:89:15:fc:02:68: 03:37:59:8c:a7:e8:4b:c7:0f:ee:b8:ef:a9:92:47:67:47:51: 52:b2:d9:c0:e2:1e:14:71:a2:61:1c:43:98:98:b4:76:92:ff: 31:7e:5d:44:4d:40:dc:65:74:b1:11:66:35:ca:f9:bf:30:35: 43:c6:f5:5f:52:1e:cf:83:7f:63:08:81:46:10:04:4a:60:2d: 54:01:d1:59 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwODA3MTM0MzQ5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzN2ExNC05YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SYqntbB8dhLcFCmriURslLabbU4QxrxmI9t40ah8ZIn9DWpywG7TX0bziNE DbzfxokJhLk3yJLY522TreI+r9aw8Urlomv9i42QGhbaThm80ZWk8B4Ejtb8Aqhi iZamfcDX8m7EZ1R96vjQXd1pRYceJ6SWikF+Sw402k/kHuxoUj42FCErlsfvcYfj 4q0GyvZxeWm6tgi9FnLcNre+aUCPvEIQ8rPJQSSV0jXRvtuiVQAo5+n/Fj+LlETo KQishkwmxMBfoF3hZ/5VnNSsxPvBIZ4a6dirSh7GxZTkr94rJj67vyzxD+pa9Dsp 0xqbLeJ6HrjxNDIRGI+A4SJBEQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOOnPtWd uezfgrxCGStwmQc0S/XJMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTJGNkNBMjg1 NEMzMTFFRkIyOTZGNzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/HADBwAkBghA/twwDQYJKoZIhvcNAQELBQADggEB AJUwGYKFg+iwG4NbZ2PavEXMjM64/SAgth8LGP8HiMjEYpVeQk4ubK0Y+Dw213ng bjc3AporDp5cBM5X/92OhLsrR+4zYZ0YRiokficCudYx+3Le1vZ14FAHCifA0QLe 3vZcaKXMtAjKxPVkxPlcakb6TO0KK6/1AhB1njFbD2J75OYmBrt0bXBZdtrgs0pV K/ON2+zTJPBhkCW3LE2203WAT9nAuRK9cMMxNh+ENSOJFfwCaAM3WYyn6EvHD+64 76mSR2dHUVKy2cDiHhRxomEcQ5iYtHaS/zF+XURNQNxldLERZjXK+b8wNUPG9V9S Hs+Df2MIgUYQBEpgLVQB0Vk= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org