$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa File: 189A3E5816C811EFAA6A4727C4F9AE02.roa (raw, json) Hash identifier: gvoNoi8Y8AJxEEuCczaev2cQ6LZPongT+G0ECg+EOV0= Subject key identifier: C7:8E:96:D5:ED:4C:7F:F3:13:AB:30:83:FB:E2:9F:FD:2E:C5:F5:B3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C49 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:21 +0000 ROA not before: Sun 26 May 2024 21:31:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132479 IP address blocks: 2406:840:fdd0::/44 maxlen: 48 2406:840:fecf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa28-294c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:96:07:b1:e4:e4:ab:ca:ee:6e:6d:25:84:72: 33:8f:ec:84:73:7e:c2:a4:20:11:9d:5d:d8:dc:e7: 2b:cb:ab:ee:5a:29:e1:77:f8:0a:b9:11:60:0e:82: 81:5a:7c:39:67:cc:66:05:89:92:ef:19:a6:38:26: 02:4b:1c:79:71:1a:e4:08:f5:b1:1e:cb:82:26:f1: 40:84:95:eb:25:a6:a6:2a:57:f3:d6:2f:23:96:fc: 04:77:79:9d:b7:b7:ae:fe:ee:25:a1:cb:95:79:43: 6f:11:07:ac:1f:ae:7a:fe:f9:6e:0a:20:bd:13:4b: 1a:1c:b9:5f:dd:ce:0b:ff:71:4b:5c:99:ea:56:91: 58:9b:3b:6d:d4:46:f0:1e:da:be:e2:05:90:aa:33: 8b:d0:15:07:e5:f8:ab:56:8c:73:4b:eb:bf:fe:5b: b3:8a:7a:9f:d5:7d:5c:d9:ba:75:93:4e:5f:e1:3b: 69:67:7f:09:a2:71:c0:35:de:5e:c5:57:bf:6e:c6: 60:3e:6b:6c:1f:a3:d9:5c:ef:8b:ef:af:25:ba:52: 86:d1:88:38:57:e6:33:5d:4e:ac:38:94:ac:d0:c3: f1:85:a4:2f:c7:ab:47:a0:3e:9f:f2:6e:25:fd:bd: e1:46:99:f7:fd:d5:cc:b3:32:12:27:e2:ae:dd:90: d6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:8E:96:D5:ED:4C:7F:F3:13:AB:30:83:FB:E2:9F:FD:2E:C5:F5:B3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/189A3E5816C811EFAA6A4727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fdd0::/44 2406:840:fecf::/48 Signature Algorithm: sha256WithRSAEncryption 30:b1:da:5a:43:be:37:98:88:b7:e6:88:dd:91:a4:14:8e:09: b6:c7:5d:3c:94:d9:56:a4:b9:aa:e1:02:d0:be:c7:70:f1:9b: 8e:b8:9f:a2:98:63:83:7c:cb:96:6d:0a:65:99:33:94:d9:f0: a3:6c:fe:98:0b:4a:e4:e5:1b:da:37:9e:f5:fe:f1:99:d1:c6: a6:25:1b:ed:73:78:6f:8c:64:ad:d5:4c:63:ef:a5:fa:0f:f1: 96:f6:58:dc:80:af:23:08:79:1b:9d:b2:37:84:05:ad:a9:0e: ba:cd:1f:54:87:9c:f1:d5:cb:76:24:ba:7c:7e:87:40:bf:cf: d8:8c:2d:b3:21:1e:f8:b7:cc:ab:f6:dd:85:ee:6a:85:a0:21: 3c:69:e0:d8:cb:92:ef:50:c6:46:98:28:fe:cd:ca:54:d1:bd: 01:c3:a5:2d:2f:d1:0b:e1:da:97:94:28:5a:fe:64:ee:57:7a: c9:33:ef:cb:3e:79:9b:dc:dd:43:d8:a1:09:94:99:7d:33:6d: 7d:89:ac:97:8a:2f:03:b7:94:04:9a:68:7b:a5:c0:5a:98:3e: 30:d0:a8:bc:f1:fe:a2:f0:51:b6:26:12:25:ee:44:52:a4:0a: b1:60:a8:68:a1:1d:38:34:13:04:a6:06:b9:46:e8:fc:f4:56: af:5c:4c:e1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEyOC0yOTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55YHseTkq8rubm0lhHIzj+yEc37CpCARnV3Y3Ocry6vuWinhd/gKuRFgDoKB Wnw5Z8xmBYmS7xmmOCYCSxx5cRrkCPWxHsuCJvFAhJXrJaamKlfz1i8jlvwEd3md t7eu/u4locuVeUNvEQesH656/vluCiC9E0saHLlf3c4L/3FLXJnqVpFYmztt1Ebw Htq+4gWQqjOL0BUH5firVoxzS+u//luzinqf1X1c2bp1k05f4TtpZ38JonHANd5e xVe/bsZgPmtsH6PZXO+L768lulKG0Yg4V+YzXU6sOJSs0MPxhaQvx6tHoD6f8m4l /b3hRpn3/dXMszISJ+Ku3ZDWwwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMeOltXt TH/zE6swg/vin/0uxfWzMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMTg5QTNFNTgx NkM4MTFFRkFBNkE0NzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/dADBwAkBghA/s8wDQYJKoZIhvcNAQELBQADggEB ADCx2lpDvjeYiLfmiN2RpBSOCbbHXTyU2VakuarhAtC+x3Dxm464n6KYY4N8y5Zt CmWZM5TZ8KNs/pgLSuTlG9o3nvX+8ZnRxqYlG+1zeG+MZK3VTGPvpfoP8Zb2WNyA ryMIeRudsjeEBa2pDrrNH1SHnPHVy3Ykunx+h0C/z9iMLbMhHvi3zKv23YXuaoWg ITxp4NjLku9QxkaYKP7NylTRvQHDpS0v0Qvh2peUKFr+ZO5Xeskz78s+eZvc3UPY oQmUmX0zbX2JrJeKLwO3lASaaHulwFqYPjDQqLzx/qLwUbYmEiXuRFKkCrFgqGih HTg0EwSmBrlG6Pz0Vq9cTOE= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:12 2024 by rpki-client on console-fra.rpki-client.org