$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa File: 21A658D2BA5311EEB6DF2E4BC4F9AE02.roa (raw, json) Hash identifier: VXRUODPYEUPvMGFRwOkv+7SBUkWQMVp4x+4G0NwzR3Y= Subject key identifier: 74:F6:FA:5C:37:C5:A9:EF:26:AE:18:A1:39:20:80:2F:EA:DA:84:4F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CAE Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:55 +0000 ROA not before: Sun 26 May 2024 21:32:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 216056 IP address blocks: 2406:840:eef0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:55 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa87-a5fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:60:8b:af:57:c1:a0:f3:c9:91:3b:cc:38:21: 73:b7:b1:04:51:63:f6:3a:92:1b:54:b6:29:3d:2a: 83:7e:09:8b:02:04:b2:66:85:70:14:f6:8e:53:8c: 31:36:dd:9f:bd:e0:08:01:e5:cf:ad:f6:32:ff:f4: 2e:39:6d:1e:20:ac:85:21:c8:86:09:89:6d:4d:77: 9f:17:aa:f4:07:ba:43:20:19:41:57:cc:bc:26:50: 06:e3:3b:9e:6d:9b:78:71:db:1b:74:1f:4b:2f:70: c0:85:5e:72:e2:51:1b:46:b7:19:62:4f:9f:d2:b7: 12:ae:45:29:fe:68:06:3e:f6:ad:9e:e5:d4:5a:70: ff:64:fe:6d:eb:19:13:45:b8:47:41:38:b8:40:6a: 3a:44:4f:8c:ff:e3:ae:9c:ae:fa:56:1f:0b:78:ce: 75:2b:a9:43:1d:75:bb:72:19:a5:0e:83:cc:75:91: c7:57:9b:c4:28:b6:a0:10:fe:cc:a0:48:c8:46:10: 15:fd:9a:d3:6c:a9:c6:8b:37:a0:f1:ea:a3:25:55: 8f:c2:db:79:39:d4:93:64:75:23:5a:c3:22:32:f4: 0e:4d:76:41:22:48:52:b3:ba:d8:74:37:3d:0e:a1: 16:89:72:64:39:c9:6e:f9:75:fa:f7:62:33:5e:f1: 27:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F6:FA:5C:37:C5:A9:EF:26:AE:18:A1:39:20:80:2F:EA:DA:84:4F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eef0::/44 Signature Algorithm: sha256WithRSAEncryption 78:57:db:e4:ad:c1:0b:de:db:00:69:ae:45:a9:80:24:bd:09: 5a:1c:d4:c2:a8:bd:5d:f7:c2:ba:d8:47:a1:dc:98:2f:59:8b: 1a:50:e1:6f:cb:a6:fb:4a:bd:d4:a7:81:13:c5:fc:59:16:82: 43:27:d5:a2:a2:4d:f6:6a:1b:26:d9:a7:a4:02:f1:af:0c:a7: d1:ad:b3:bd:08:51:2a:9f:86:fc:82:ed:da:10:ca:58:88:8b: 2a:82:4c:81:05:37:4e:03:0f:6e:62:f5:f0:e5:66:49:30:8b: 76:cf:e2:44:d7:38:f5:5f:eb:31:02:ce:d0:ba:a6:4d:92:db: d6:46:30:8b:7f:cb:d8:1f:58:40:01:c6:37:4a:3d:58:a7:64: da:a6:c4:a2:24:8d:14:a8:5e:e9:af:b1:cf:06:cc:fb:db:4c: 22:c8:4e:16:4f:32:fe:c6:b3:7d:a6:60:98:9a:05:22:4e:33: c4:52:37:01:fc:47:07:36:14:75:a8:37:f8:97:0d:6a:e1:df: 28:44:b3:ce:71:78:34:fc:93:8e:45:f6:91:8c:d7:bc:6e:9b: 70:68:be:77:d6:90:8a:b1:ab:6a:6f:d9:e3:8d:42:18:40:c7: e1:13:af:d0:b6:85:a2:09:07:ca:cf:4f:09:5a:b9:60:56:38: b8:c1:17:10 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjU1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4Ny1hNWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGCLr1fBoPPJkTvMOCFzt7EEUWP2OpIbVLYpPSqDfgmLAgSyZoVwFPaOU4wx Nt2fveAIAeXPrfYy//QuOW0eIKyFIciGCYltTXefF6r0B7pDIBlBV8y8JlAG4zue bZt4cdsbdB9LL3DAhV5y4lEbRrcZYk+f0rcSrkUp/mgGPvatnuXUWnD/ZP5t6xkT RbhHQTi4QGo6RE+M/+OunK76Vh8LeM51K6lDHXW7chmlDoPMdZHHV5vEKLagEP7M oEjIRhAV/ZrTbKnGizeg8eqjJVWPwtt5OdSTZHUjWsMiMvQOTXZBIkhSs7rYdDc9 DqEWiXJkOclu+XX692IzXvEncQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHT2+lw3 xanvJq4YoTkggC/q2oRPMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjFBNjU4RDJC QTUzMTFFRUI2REYyRTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA7vAwDQYJKoZIhvcNAQELBQADggEBAHhX2+StwQve 2wBprkWpgCS9CVoc1MKovV33wrrYR6HcmC9ZixpQ4W/LpvtKvdSngRPF/FkWgkMn 1aKiTfZqGybZp6QC8a8Mp9Gts70IUSqfhvyC7doQyliIiyqCTIEFN04DD25i9fDl Zkkwi3bP4kTXOPVf6zECztC6pk2S29ZGMIt/y9gfWEABxjdKPVinZNqmxKIkjRSo Xumvsc8GzPvbTCLIThZPMv7Gs32mYJiaBSJOM8RSNwH8Rwc2FHWoN/iXDWrh3yhE s85xeDT8k45F9pGM17xum3BovnfWkIqxq2pv2eONQhhAx+ETr9C2haIJB8rPTwla uWBWOLjBFxA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org