$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa File: 1FE119E6482111EE8400F57AC4F9AE02.roa (raw, json) Hash identifier: GlEts3ceBnlBYVeKIC0cwHm9UmSUKVy16kT6w1Bgj2I= Subject key identifier: 64:05:44:4E:18:09:B7:37:AE:A9:F4:31:57:FA:62:D3:FD:62:7E:FF Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C87 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:20 +0000 ROA not before: Sun 26 May 2024 21:32:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151785 IP address blocks: 2406:840:9300::/40 maxlen: 48 2406:840:f680::/44 maxlen: 48 2406:840:fe73::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa64-f29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:c1:20:08:e9:1c:37:cd:ae:8d:73:4a:ec: 11:43:d9:55:da:7d:68:a8:17:6f:98:be:8a:4a:5b: f0:d6:6e:a6:62:e1:6e:a3:36:16:b7:04:16:87:35: 40:db:b5:55:b8:95:8f:72:36:85:2f:1b:42:07:24: e9:bd:20:1a:58:57:fd:f5:5f:45:a4:b4:41:53:d2: 00:98:6e:4c:33:ba:24:57:95:31:ba:56:ca:5f:0f: 16:cf:a5:a0:7a:35:b1:64:80:0f:65:36:2a:4e:56: d6:85:72:bb:85:9d:1e:6a:54:6a:2d:bf:1b:b6:b2: 04:9c:a8:4f:f1:e4:cf:c9:47:c4:31:ce:c6:bb:47: 10:39:b5:38:ec:aa:a2:40:89:ac:0b:4e:fb:1d:4b: fe:ef:8f:28:4c:d0:29:ac:b7:a6:6c:0d:ba:8e:ef: 75:77:87:d0:e0:60:32:0a:b6:c8:71:3a:fb:67:51: 8c:79:a0:6a:fc:75:b7:04:1b:c5:e9:99:01:ef:e8: fb:60:bb:14:66:5a:4b:b9:01:a8:6e:7e:3b:ee:66: 59:9d:e4:8c:06:15:f0:67:04:ee:fa:b6:e1:89:de: 44:d8:b4:cc:3e:63:eb:0d:b7:d8:7e:b2:29:c4:01: 00:7c:9a:76:27:45:9b:e4:ff:cb:1c:0c:c5:47:1e: 52:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:05:44:4E:18:09:B7:37:AE:A9:F4:31:57:FA:62:D3:FD:62:7E:FF X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1FE119E6482111EE8400F57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9300::/40 2406:840:f680::/44 2406:840:fe73::/48 Signature Algorithm: sha256WithRSAEncryption 87:3c:54:bd:02:fe:e9:1b:54:7d:c0:3c:4e:bb:91:d0:a0:64: d1:8f:cb:7a:e6:f7:05:98:8a:21:f1:b7:00:ba:40:d3:62:85: 18:98:f5:f9:68:f5:f8:54:af:6a:3e:af:8d:01:e2:4b:56:e6: 34:f9:7b:a4:73:36:ab:bd:94:87:28:eb:cd:d2:90:c0:14:c8: f9:07:7d:69:5d:71:db:ac:e6:b9:a2:10:e3:fd:0f:e9:68:fc: 1b:e9:6f:22:4e:b9:d7:69:f4:f0:e6:bb:ee:11:97:2a:7e:20: 90:fc:61:b9:1e:f8:69:a3:ae:10:17:71:37:ca:f9:5d:8c:55: ed:95:76:2d:95:ae:36:3f:f3:a5:6c:2c:2e:12:11:1a:58:33: 1f:a4:10:81:18:ae:08:83:c4:0d:ed:a6:45:6c:39:91:19:1a: b9:f0:f3:dc:52:f8:7c:d3:8a:c2:38:bf:c2:4d:1d:df:73:a4: b9:ee:64:04:f7:68:47:a3:c3:08:11:2c:44:2e:5a:55:d6:80: 4c:d0:0f:1d:39:4a:87:d8:d3:62:cd:f2:c7:5b:17:66:7c:54: 53:77:a7:4e:93:f4:80:8f:d4:0f:51:36:4f:57:a3:48:52:c0: 3e:0d:57:10:46:46:40:83:12:64:c5:ab:5b:a6:1e:1c:88:46: 72:b5:8d:3f -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2NC1mMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rPBIAjpHDfNro1zSuwRQ9lV2n1oqBdvmL6KSlvw1m6mYuFuozYWtwQWhzVA 27VVuJWPcjaFLxtCByTpvSAaWFf99V9FpLRBU9IAmG5MM7okV5UxulbKXw8Wz6Wg ejWxZIAPZTYqTlbWhXK7hZ0ealRqLb8btrIEnKhP8eTPyUfEMc7Gu0cQObU47Kqi QImsC077HUv+748oTNAprLembA26ju91d4fQ4GAyCrbIcTr7Z1GMeaBq/HW3BBvF 6ZkB7+j7YLsUZlpLuQGobn477mZZneSMBhXwZwTu+rbhid5E2LTMPmPrDbfYfrIp xAEAfJp2J0Wb5P/LHAzFRx5S1QIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGQFRE4Y Cbc3rqn0MVf6YtP9Yn7/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUZFMTE5RTY0 ODIxMTFFRTg0MDBGNTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBoDBgAkBghAkwMHBCQGCED2gAMHACQGCED+czANBgkqhkiG9w0B AQsFAAOCAQEAhzxUvQL+6RtUfcA8TruR0KBk0Y/Leub3BZiKIfG3ALpA02KFGJj1 +Wj1+FSvaj6vjQHiS1bmNPl7pHM2q72UhyjrzdKQwBTI+Qd9aV1x26zmuaIQ4/0P 6Wj8G+lvIk6512n08Oa77hGXKn4gkPxhuR74aaOuEBdxN8r5XYxV7ZV2LZWuNj/z pWwsLhIRGlgzH6QQgRiuCIPEDe2mRWw5kRkaufDz3FL4fNOKwji/wk0d33Okue5k BPdoR6PDCBEsRC5aVdaATNAPHTlKh9jTYs3yx1sXZnxUU3enTpP0gI/UD1E2T1ej SFLAPg1XEEZGQIMSZMWrW6YeHIhGcrWNPw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org