$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa File: 1CF2F758E04711EAAA35044CC4F9AE02.roa (raw, json) Hash identifier: HA2F9bmr84Bz03MWaTttGhTuLDICEsHiRmjwKoM8j1w= Subject key identifier: D2:48:3E:0F:48:E2:A3:FD:0B:EB:13:C8:8F:7A:37:78:F5:77:44:2F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C55 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:32 +0000 ROA not before: Sun 26 May 2024 21:31:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137835 IP address blocks: 2406:840:f440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa33-6117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cc:66:40:64:41:92:83:01:23:6e:5f:35:bf: 45:5d:fc:f3:ce:20:a8:e3:b4:8f:f7:04:31:49:26: 46:aa:72:75:a1:e8:84:b2:50:43:b5:bc:69:f4:08: 6b:35:1f:fb:15:34:2a:9e:55:f6:a5:ac:01:29:0f: c7:92:6c:6d:c3:92:1d:28:cc:a9:b8:f2:da:91:df: 92:4e:b9:d6:c0:5f:b0:6a:bd:2b:fe:e4:3a:2d:28: e2:12:e3:b8:44:1e:4f:e0:d4:41:20:0e:fb:2b:ba: 4e:66:99:0d:b2:62:8e:cb:c4:d1:35:5f:3c:cc:5d: e2:55:22:f3:56:f4:27:a4:fb:e8:c6:10:96:64:b1: 28:0e:3f:c1:5a:f9:8e:2f:27:81:57:20:29:0e:2c: c9:36:ec:44:1e:ed:45:e1:54:02:8b:12:82:ec:ae: e0:22:f3:96:bc:ee:a9:2d:fb:da:29:6d:02:32:8d: 38:10:46:70:5d:4c:a7:48:09:5c:87:d7:68:1f:a0: 02:c2:24:5e:f4:e5:4c:6a:a0:3d:07:a8:9f:e7:0b: 91:10:c6:f3:e6:d6:c5:93:37:e4:f0:91:7e:67:f3: 82:00:7f:88:5d:d5:f8:b2:22:cc:93:be:16:85:17: 03:e4:41:fb:59:a1:a6:af:e4:d1:e3:d0:b7:a6:45: ba:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:48:3E:0F:48:E2:A3:FD:0B:EB:13:C8:8F:7A:37:78:F5:77:44:2F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f440::/44 Signature Algorithm: sha256WithRSAEncryption 92:00:59:4c:7a:65:23:26:e9:f6:7b:73:e9:ab:b4:eb:23:e4: 6c:ee:48:8a:db:95:ff:76:06:85:68:ec:ce:d4:76:6b:28:d1: bc:33:5e:27:e9:4d:04:b4:7f:89:1a:10:68:de:57:fd:e0:9e: 48:18:14:97:ba:2d:3c:19:2a:11:b6:86:9d:94:58:3a:e8:65: b1:fa:5d:0b:67:fa:50:9d:8b:9b:d5:6b:9b:4d:17:b4:ce:ec: 15:ef:87:c9:64:54:3a:ed:7f:b2:4f:12:8b:5a:0d:75:3d:7a: c6:7e:31:5a:c1:fc:c6:af:93:9a:a7:85:f6:08:ab:d8:56:ca: c3:53:50:63:27:fd:3c:99:0b:9e:81:b9:4f:bc:31:70:2f:cc: e8:12:4f:2f:e3:7c:78:5e:58:ca:b7:53:41:4c:41:81:f8:ee: dd:d6:15:7c:ff:e6:00:78:4e:f5:2e:5a:5d:5c:d9:52:22:50: 36:7b:19:cc:b1:2e:ca:bf:60:5a:20:bc:66:fb:a4:57:5c:07: b0:65:4c:2a:6c:15:df:74:85:e8:ed:46:1c:78:53:9a:dc:be: 94:15:90:29:47:84:1a:21:09:8e:12:b4:5e:9b:e8:5e:7a:e7: 72:9b:79:06:6f:90:e4:85:6f:66:e3:9c:00:79:10:8c:69:a1: 83:c3:94:63 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzMy02MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38xmQGRBkoMBI25fNb9FXfzzziCo47SP9wQxSSZGqnJ1oeiEslBDtbxp9Ahr NR/7FTQqnlX2pawBKQ/Hkmxtw5IdKMypuPLakd+STrnWwF+war0r/uQ6LSjiEuO4 RB5P4NRBIA77K7pOZpkNsmKOy8TRNV88zF3iVSLzVvQnpPvoxhCWZLEoDj/BWvmO LyeBVyApDizJNuxEHu1F4VQCixKC7K7gIvOWvO6pLfvaKW0CMo04EEZwXUynSAlc h9doH6ACwiRe9OVMaqA9B6if5wuREMbz5tbFkzfk8JF+Z/OCAH+IXdX4siLMk74W hRcD5EH7WaGmr+TR49C3pkW6fwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNJIPg9I 4qP9C+sTyI96N3j1d0QvMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUNGMkY3NThF MDQ3MTFFQUFBMzUwNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9EAwDQYJKoZIhvcNAQELBQADggEBAJIAWUx6ZSMm 6fZ7c+mrtOsj5GzuSIrblf92BoVo7M7Udmso0bwzXifpTQS0f4kaEGjeV/3gnkgY FJe6LTwZKhG2hp2UWDroZbH6XQtn+lCdi5vVa5tNF7TO7BXvh8lkVDrtf7JPEota DXU9esZ+MVrB/Mavk5qnhfYIq9hWysNTUGMn/TyZC56BuU+8MXAvzOgSTy/jfHhe WMq3U0FMQYH47t3WFXz/5gB4TvUuWl1c2VIiUDZ7GcyxLsq/YFogvGb7pFdcB7Bl TCpsFd90hejtRhx4U5rcvpQVkClHhBohCY4StF6b6F5653KbeQZvkOSFb2bjnAB5 EIxpoYPDlGM= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org