$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1335102E52DE11EC8E8CB053C4F9AE02.roa File: 1335102E52DE11EC8E8CB053C4F9AE02.roa (raw, json) Hash identifier: hO2Xa6GB1yG6hoJPQNgsc/GYaq9AfIqr/N7CrDocVaE= Subject key identifier: 1C:5F:00:38:93:EF:71:6F:7A:96:83:AE:46:91:28:56:34:65:23:28 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C64 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1335102E52DE11EC8E8CB053C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:45 +0000 ROA not before: Sun 26 May 2024 21:31:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141429 IP address blocks: 2406:840:e0c0::/44 maxlen: 48 2406:840:e0d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa41-343b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8b:2e:98:03:15:81:a7:76:73:d5:db:1f:07: 7a:6c:1d:77:57:76:53:3a:e0:51:f0:3f:ed:6a:25: ee:88:7d:70:71:26:13:12:28:10:66:f0:88:c3:b0: 56:28:bf:9f:dd:50:0c:6f:fb:24:b7:ed:50:94:4e: b0:5d:69:1c:a7:07:bf:e2:5e:38:29:e4:63:28:83: bd:02:cc:c6:94:71:63:ac:30:20:66:f0:dd:43:24: 68:38:ab:ab:6d:91:71:56:4c:e0:65:b4:5d:e5:c0: 48:db:32:80:ee:b6:0d:2c:3e:ea:a1:08:c7:f9:fb: 89:f2:12:4e:18:c3:e1:29:a3:20:80:4f:20:9d:09: 5d:18:55:38:25:3b:a0:34:ab:2f:94:15:47:7a:44: 34:c4:75:d3:22:e8:a0:5f:41:61:d7:04:c6:8b:fb: 98:33:10:6a:64:97:b5:1e:0a:21:3e:76:2f:fd:29: 9a:1b:5a:6c:f1:76:ed:c5:a3:0f:ca:2d:d5:24:6a: 19:fd:63:5d:00:3b:ae:65:dc:92:ee:6e:53:13:4a: 01:4a:92:3a:14:26:ba:a0:a6:ef:54:9d:ac:dd:0b: 00:3c:3b:27:e5:19:4c:c4:0e:76:da:4d:43:a5:80: a5:f5:b2:3b:20:ee:96:e5:d3:80:fe:5a:de:26:a4: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:5F:00:38:93:EF:71:6F:7A:96:83:AE:46:91:28:56:34:65:23:28 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1335102E52DE11EC8E8CB053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e0c0::/43 Signature Algorithm: sha256WithRSAEncryption 17:ab:32:94:37:c7:bf:77:6b:35:97:c3:8f:41:19:a1:82:29: 22:70:cb:5a:b8:7b:93:34:c3:61:4a:77:47:62:01:e2:38:c2: 9e:73:d0:b3:6f:d3:2c:24:35:61:08:86:a9:dd:c6:d5:13:bd: e1:9e:99:10:c7:2d:f6:d5:d2:74:70:a1:56:66:4c:b3:34:90: c9:a6:a4:96:80:87:95:64:a4:33:0c:f6:0d:ed:8f:5c:9a:6d: 1e:00:42:b1:ca:64:de:66:ed:7a:fc:f9:f8:8e:56:15:1d:a7: 0e:ad:70:db:4f:46:7f:99:0e:1f:25:01:13:59:98:91:4f:bc: b4:61:76:9c:bb:7d:fc:23:5d:3d:67:ca:a8:48:ab:07:09:c0: 57:14:df:0a:8a:d4:46:1b:4a:18:07:38:68:e0:35:60:b8:73: 83:12:02:0b:e1:49:81:c1:24:97:ab:8e:d8:21:af:90:5e:2f: b7:1a:02:cf:d0:8b:7a:88:9f:7c:81:85:43:ff:a8:de:1b:bf: ad:ae:87:27:03:7f:21:c2:c0:a1:f4:cd:14:8c:50:2e:a4:cf: b5:76:4f:7a:b1:8f:2f:71:fe:86:5b:fe:a1:a6:17:e4:a3:5c: ab:04:3d:3b:5b:ac:f3:d2:52:ed:c3:ab:3a:c2:38:3f:73:fd: 37:bf:74:22 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0MS0zNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIsumAMVgad2c9XbHwd6bB13V3ZTOuBR8D/taiXuiH1wcSYTEigQZvCIw7BW KL+f3VAMb/skt+1QlE6wXWkcpwe/4l44KeRjKIO9AszGlHFjrDAgZvDdQyRoOKur bZFxVkzgZbRd5cBI2zKA7rYNLD7qoQjH+fuJ8hJOGMPhKaMggE8gnQldGFU4JTug NKsvlBVHekQ0xHXTIuigX0Fh1wTGi/uYMxBqZJe1HgohPnYv/SmaG1ps8XbtxaMP yi3VJGoZ/WNdADuuZdyS7m5TE0oBSpI6FCa6oKbvVJ2s3QsAPDsn5RlMxA522k1D pYCl9bI7IO6W5dOA/lreJqRy+wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBxfADiT 73FvepaDrkaRKFY0ZSMoMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTMzNTEwMkU1 MkRFMTFFQzhFOENCMDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwUkBghA4MAwDQYJKoZIhvcNAQELBQADggEBABerMpQ3x793 azWXw49BGaGCKSJwy1q4e5M0w2FKd0diAeI4wp5z0LNv0ywkNWEIhqndxtUTveGe mRDHLfbV0nRwoVZmTLM0kMmmpJaAh5VkpDMM9g3tj1yabR4AQrHKZN5m7Xr8+fiO VhUdpw6tcNtPRn+ZDh8lARNZmJFPvLRhdpy7ffwjXT1nyqhIqwcJwFcU3wqK1EYb ShgHOGjgNWC4c4MSAgvhSYHBJJerjtghr5BeL7caAs/Qi3qIn3yBhUP/qN4bv62u hycDfyHCwKH0zRSMUC6kz7V2T3qxjy9x/oZb/qGmF+SjXKsEPTtbrPPSUu3DqzrC OD9z/Te/dCI= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:12 2024 by rpki-client on console-fra.rpki-client.org