$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa File: 207389BE7C1A11EBABA86F44C4F9AE02.roa (raw, json) Hash identifier: MJHSsNcdfN7ff9rbbys7YPfb4pY/dmWEgtOrWEJGe7g= Subject key identifier: ED:48:B7:C6:5A:39:6B:E3:5D:FA:85:88:37:96:1C:91:BA:99:67:D4 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C63 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:44 +0000 ROA not before: Sun 26 May 2024 21:31:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141237 IP address blocks: 2406:840:e1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa40-f912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:f3:cd:c3:22:ad:1d:50:c3:2c:db:4a:61: 21:1d:72:69:5a:d7:91:1f:8f:f2:0d:81:a9:0f:6c: c0:05:08:3c:26:83:6f:a1:ea:89:8f:0d:6f:b1:c1: be:23:4b:82:12:6e:53:85:5a:f4:5f:a8:97:8c:d5: 22:b8:92:db:5d:8d:a2:3e:19:b2:5b:16:30:d7:bc: 6a:97:d2:44:dd:29:0a:63:75:29:14:7c:70:40:ec: 5f:16:b5:de:29:0c:93:90:74:bd:2c:ee:e9:fc:28: 6c:27:2b:c2:91:f6:7a:0d:95:32:c2:59:f4:08:8e: 2d:11:09:3e:41:b3:53:0e:4b:e0:77:34:53:d3:77: 83:10:f9:05:8c:1b:2d:2e:08:c7:a3:84:ca:12:d0: 6b:c9:ca:f2:df:48:f0:4e:a0:37:0f:0b:7e:ee:da: 0d:52:66:a0:05:69:3b:fb:24:bd:4a:bd:ed:ed:20: b6:a8:90:00:1d:95:0f:b1:fd:e5:e6:4c:e5:93:25: 6d:ec:10:c2:ab:d7:f9:08:e5:86:ba:12:a7:09:94: 7e:1e:d8:55:ed:96:5e:86:1a:56:76:02:11:ed:63: 29:53:2f:80:e8:e3:bf:22:96:b8:2e:dc:fd:f3:39: 32:06:7e:9f:b3:6d:18:1b:b2:cf:7a:34:11:de:ab: dd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:48:B7:C6:5A:39:6B:E3:5D:FA:85:88:37:96:1C:91:BA:99:67:D4 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/207389BE7C1A11EBABA86F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e1e0::/44 Signature Algorithm: sha256WithRSAEncryption 83:4a:65:3b:e1:3c:99:03:fd:d2:b1:c8:f3:98:d0:5d:94:85: 35:36:13:20:62:89:1c:07:a8:e4:94:43:0e:89:1b:8f:11:9d: cc:74:6b:b4:6d:ac:3c:1e:da:f7:a4:de:61:34:21:7f:19:d5: e2:3a:5b:d6:b7:af:12:0f:09:44:13:9f:23:6b:d3:f2:8b:6e: 6c:70:1f:b3:b9:ad:c6:f2:d2:a2:28:da:ab:8d:95:ee:9c:82: 0c:2c:42:a9:a0:4b:c6:76:6e:a4:06:ab:8a:4b:b6:a3:95:3f: dc:43:0c:7e:a4:86:45:19:21:9f:d0:67:4d:be:49:a8:eb:67: e0:70:de:eb:ab:ab:2a:6c:6b:ef:3f:99:d3:a8:cb:64:5d:73: 56:1f:7e:6f:2a:5d:49:5d:a9:65:4c:96:31:ec:ee:8f:fa:be: b1:91:79:5d:ce:4b:e7:7c:7b:a6:84:a0:09:90:90:53:3c:a5: b7:ea:96:28:97:82:9a:6a:db:b9:a7:07:ab:9c:f5:7b:65:63: a3:bb:9d:37:dd:3a:98:73:20:fa:24:46:31:9c:b3:29:77:b5: 58:6b:90:c8:55:e9:a9:fe:97:b2:f4:2b:26:d1:6e:ad:0e:c7: cf:86:e9:c4:9a:56:e7:03:c4:68:2c:4e:78:1e:ac:3b:7f:6c: bb:63:81:1c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0MC1mOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssHzzcMirR1QwyzbSmEhHXJpWteRH4/yDYGpD2zABQg8JoNvoeqJjw1vscG+ I0uCEm5ThVr0X6iXjNUiuJLbXY2iPhmyWxYw17xql9JE3SkKY3UpFHxwQOxfFrXe KQyTkHS9LO7p/ChsJyvCkfZ6DZUywln0CI4tEQk+QbNTDkvgdzRT03eDEPkFjBst LgjHo4TKEtBrycry30jwTqA3Dwt+7toNUmagBWk7+yS9Sr3t7SC2qJAAHZUPsf3l 5kzlkyVt7BDCq9f5COWGuhKnCZR+HthV7ZZehhpWdgIR7WMpUy+A6OO/Ipa4Ltz9 8zkyBn6fs20YG7LPejQR3qvd8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFO1It8Za OWvjXfqFiDeWHJG6mWfUMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjA3Mzg5QkU3 QzFBMTFFQkFCQTg2RjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4eAwDQYJKoZIhvcNAQELBQADggEBAINKZTvhPJkD /dKxyPOY0F2UhTU2EyBiiRwHqOSUQw6JG48Rncx0a7RtrDwe2vek3mE0IX8Z1eI6 W9a3rxIPCUQTnyNr0/KLbmxwH7O5rcby0qIo2quNle6cggwsQqmgS8Z2bqQGq4pL tqOVP9xDDH6khkUZIZ/QZ02+SajrZ+Bw3uurqypsa+8/mdOoy2Rdc1Yffm8qXUld qWVMljHs7o/6vrGReV3OS+d8e6aEoAmQkFM8pbfqliiXgppq27mnB6uc9XtlY6O7 nTfdOphzIPokRjGcsyl3tVhrkMhV6an+l7L0KybRbq0Ox8+G6cSaVucDxGgsTnge rDt/bLtjgRw= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org