$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa File: 1B033B22BA2911EF8CC06977C4F9AE02.roa (raw, json) Hash identifier: sE24KPjrti+rRD4WWw50nG1Gjsv9QNsPBNt3vrePPcM= Subject key identifier: 0E:6F:97:F1:38:15:84:23:DF:D0:6E:E9:1F:1F:0F:80:7A:AD:21:83 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0DE4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa Signing time: Sat 14 Dec 2024 14:38:38 +0000 ROA not before: Sat 14 Dec 2024 14:38:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 53343 IP address blocks: 2406:840:9690::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Feb 2025 19:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3556 (0xde4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: Dec 14 14:38:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=675d986e-144e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:47:d6:5d:6d:93:11:bf:6d:e8:bf:c7:dd: e7:58:4c:92:f3:dd:32:1e:4c:e4:e8:74:af:d8:af: ac:ee:27:8f:45:e9:e6:a6:c5:6d:4c:0b:ba:dc:85: ee:65:dc:eb:6e:bf:b6:9e:13:76:5e:4b:4e:83:54: 50:98:18:05:a5:5d:4f:3a:ae:16:83:ae:69:b6:47: f1:34:a0:5b:94:4d:f0:7b:50:b8:c2:42:ef:34:9d: 4e:0c:22:4c:94:43:1e:6e:13:97:42:b6:62:94:e0: c8:7b:56:b1:bc:1d:e6:c9:a9:10:6d:dc:f7:82:0f: 8c:5c:cc:6b:f6:9a:91:2c:57:f2:ed:cd:51:07:83: 98:1e:fe:63:cf:58:53:d9:8f:55:3f:1f:5b:01:31: e7:bf:15:f6:3f:55:a5:8d:da:88:a6:b8:4a:2c:1c: 91:10:4f:35:f3:95:6b:a2:76:f5:36:a7:c8:2f:ac: ca:4f:b2:e9:a0:2f:00:29:6c:ef:0a:ed:f8:1f:1b: a5:93:81:0f:69:cc:f0:bf:ad:d4:89:ef:da:79:ea: 5b:1e:45:c5:ac:fb:a8:ee:0f:dc:61:b7:b9:72:8c: a3:41:43:98:24:b4:87:37:5a:7d:0f:7c:5b:d6:d4: ad:e9:87:9a:b0:5c:1b:de:80:3c:54:0e:3c:5b:24: 16:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6F:97:F1:38:15:84:23:DF:D0:6E:E9:1F:1F:0F:80:7A:AD:21:83 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1B033B22BA2911EF8CC06977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9690::/44 Signature Algorithm: sha256WithRSAEncryption 64:70:cf:6a:58:98:4b:36:a5:e3:98:2b:3d:63:65:9f:74:d3: 7f:03:cc:2f:3d:d5:db:d4:65:9b:06:3d:d3:08:d7:c6:39:18: d6:f8:f9:ee:a0:73:a2:cb:48:f2:88:3a:35:1d:b2:88:09:f1: fc:2c:db:6f:a2:a5:db:b4:18:70:c3:b4:a1:7d:51:8b:1a:91: a2:c0:ad:85:19:87:da:49:bc:f8:f3:ef:b9:04:24:d3:0c:f1: 91:ff:24:c7:1c:31:bc:99:8c:7f:ec:2d:02:b6:74:f2:3e:b9: 21:a0:a8:fc:20:16:cb:d4:e2:18:9c:91:67:c6:10:e0:d3:a9: 5a:2d:ae:df:4d:9a:18:cb:61:7b:4d:41:c0:2b:e0:a6:ee:87: ab:cf:a5:0b:29:30:db:9c:48:44:0b:be:9d:11:d9:ad:5c:13: ae:2d:26:1e:5e:00:2c:5c:2a:a1:7c:82:27:df:e7:b2:3d:22: 8d:b0:0b:5e:3d:bf:a0:c8:e5:a4:26:9f:bd:8b:5b:64:da:83: af:a7:1d:4c:f4:08:e2:ea:10:5a:f7:f2:1b:a4:83:3f:92:01: 82:37:5f:b6:96:75:21:7f:ff:70:aa:c6:e6:bb:28:78:88:46: ee:8c:15:8a:51:b3:f0:02:4c:1b:ad:fd:ca:ca:d2:a0:9c:8c: 2b:b2:c2:f7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMjE0MTQzODM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkOTg2ZS0xNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGdH1l1tkxG/bei/x93nWEyS890yHkzk6HSv2K+s7iePRenmpsVtTAu63IXu Zdzrbr+2nhN2XktOg1RQmBgFpV1POq4Wg65ptkfxNKBblE3we1C4wkLvNJ1ODCJM lEMebhOXQrZilODIe1axvB3myakQbdz3gg+MXMxr9pqRLFfy7c1RB4OYHv5jz1hT 2Y9VPx9bATHnvxX2P1WljdqIprhKLByREE8185Vronb1NqfIL6zKT7LpoC8AKWzv Cu34Hxulk4EPaczwv63Uie/aeepbHkXFrPuo7g/cYbe5coyjQUOYJLSHN1p9D3xb 1tSt6YeasFwb3oA8VA48WyQW1QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFA5vl/E4 FYQj39Bu6R8fD4B6rSGDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUIwMzNCMjJC QTI5MTFFRjhDQzA2OTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAlpAwDQYJKoZIhvcNAQELBQADggEBAGRwz2pYmEs2 peOYKz1jZZ90038DzC891dvUZZsGPdMI18Y5GNb4+e6gc6LLSPKIOjUdsogJ8fws 22+ipdu0GHDDtKF9UYsakaLArYUZh9pJvPjz77kEJNMM8ZH/JMccMbyZjH/sLQK2 dPI+uSGgqPwgFsvU4hickWfGEODTqVotrt9NmhjLYXtNQcAr4Kbuh6vPpQspMNuc SEQLvp0R2a1cE64tJh5eACxcKqF8giff57I9Io2wC149v6DI5aQmn72LW2Tag6+n HUz0COLqEFr38hukgz+SAYI3X7aWdSF//3Cqxua7KHiIRu6MFYpRs/ACTBut/crK 0qCcjCuywvc= -----END CERTIFICATE-----Generated at Wed Feb 5 06:47:40 2025 by rpki-client