$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa File: 2689AA5C860911EAA740B02DC4F9AE02.roa (raw, json) Hash identifier: e5oV8SY5/2iy4mRvgEQJHpJ9RuqnI+flRKqdyF1PhB0= Subject key identifier: 1E:28:B8:1F:8D:C6:20:A9:1D:D3:D9:D6:E1:29:C7:62:0C:C2:12:04 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CA1 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:44 +0000 ROA not before: Sun 26 May 2024 21:32:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 209218 IP address blocks: 2406:840:f660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa7b-ed2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:27:d8:a8:aa:de:55:e4:19:80:62:09:36: 1a:f8:37:f8:d8:70:f6:55:54:c2:61:71:83:3e:55: e2:f8:66:bf:57:60:ad:82:1f:76:0b:af:a4:8c:7f: ff:47:a1:9f:f0:71:45:c9:12:5d:ec:c8:54:2a:23: 71:cf:8d:16:37:41:be:cd:f6:50:e1:6c:bc:ef:10: ca:da:f1:ea:7a:12:99:bc:11:e8:af:bf:2b:03:b7: 0f:41:32:80:bb:37:de:c7:9c:dc:4b:87:ef:96:ea: 03:29:11:91:99:8c:f2:9e:4c:10:6e:8c:60:f5:72: 68:4a:0d:1d:27:ea:eb:aa:8b:42:ef:d5:06:62:9c: 28:c7:f2:3c:1b:ed:70:43:c3:58:a9:b9:c5:c1:73: 51:ff:d2:43:10:b2:e7:55:50:31:2d:4c:f6:0e:4b: df:8b:51:cc:9c:e2:7a:65:46:7b:1c:60:01:f4:f5: 91:b6:c3:3a:c5:57:99:cf:40:a8:23:76:54:0b:3e: f7:80:ca:d5:65:da:33:63:25:4a:2b:49:f5:dc:14: 13:64:c6:58:66:9b:18:21:b4:cc:47:cd:3f:c4:63: be:69:a9:58:54:76:d4:6a:16:d6:68:16:a3:90:90: 12:ff:40:5a:36:85:06:1a:1e:2b:90:f4:ab:25:a7: 6f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:28:B8:1F:8D:C6:20:A9:1D:D3:D9:D6:E1:29:C7:62:0C:C2:12:04 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f660::/44 Signature Algorithm: sha256WithRSAEncryption 10:31:99:69:62:2e:ad:17:aa:63:01:9d:7e:af:d1:0a:9c:03: bb:4c:9c:c1:69:d1:b5:ab:2c:40:7d:24:ca:8b:6c:8d:8b:a9: 4d:6a:ba:08:16:46:86:80:5a:22:d5:86:1a:b0:e8:63:d1:1c: b4:50:ba:d5:9b:32:81:58:4f:e9:e3:d9:6d:92:9b:27:d9:68: 33:43:f5:33:28:e1:7c:e0:51:5f:42:02:18:1d:68:47:9a:0a: 45:33:42:35:f2:f2:a2:38:0e:da:f9:a8:b6:f9:5d:02:19:9f: 49:b8:15:6b:b3:7b:7a:1c:81:d3:bd:e2:a4:36:ed:51:b8:ea: e5:c5:9d:c7:26:25:c1:3f:82:d7:4b:91:ca:a9:d9:70:f0:f3: 21:7b:51:26:ba:ef:4c:7d:f5:96:bf:8d:f1:d3:43:3f:68:83: c5:36:22:a8:be:5f:a6:b8:07:72:c5:1d:a2:f2:4a:49:98:84: da:aa:bc:d3:ff:dc:27:18:dc:a7:a9:4b:6f:a6:5f:64:0e:0b: c3:19:1f:0b:40:ef:e2:50:62:f7:50:69:2b:9a:5b:7b:e7:af: b6:f0:a3:83:5c:9d:c6:a9:68:e7:22:3e:7f:33:f0:8b:c6:2a: 83:7f:88:1b:63:cf:d5:cb:34:13:b7:51:43:d1:b0:08:2c:9f: 2b:d9:52:2c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE3Yi1lZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunwn2Kiq3lXkGYBiCTYa+Df42HD2VVTCYXGDPlXi+Ga/V2Ctgh92C6+kjH// R6Gf8HFFyRJd7MhUKiNxz40WN0G+zfZQ4Wy87xDK2vHqehKZvBHor78rA7cPQTKA uzfex5zcS4fvluoDKRGRmYzynkwQboxg9XJoSg0dJ+rrqotC79UGYpwox/I8G+1w Q8NYqbnFwXNR/9JDELLnVVAxLUz2Dkvfi1HMnOJ6ZUZ7HGAB9PWRtsM6xVeZz0Co I3ZUCz73gMrVZdozYyVKK0n13BQTZMZYZpsYIbTMR80/xGO+aalYVHbUahbWaBaj kJAS/0BaNoUGGh4rkPSrJadvuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB4ouB+N xiCpHdPZ1uEpx2IMwhIEMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjY4OUFBNUM4 NjA5MTFFQUE3NDBCMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9mAwDQYJKoZIhvcNAQELBQADggEBABAxmWliLq0X qmMBnX6v0QqcA7tMnMFp0bWrLEB9JMqLbI2LqU1quggWRoaAWiLVhhqw6GPRHLRQ utWbMoFYT+nj2W2SmyfZaDND9TMo4XzgUV9CAhgdaEeaCkUzQjXy8qI4Dtr5qLb5 XQIZn0m4FWuze3ocgdO94qQ27VG46uXFnccmJcE/gtdLkcqp2XDw8yF7USa670x9 9Za/jfHTQz9og8U2Iqi+X6a4B3LFHaLySkmYhNqqvNP/3CcY3KepS2+mX2QOC8MZ HwtA7+JQYvdQaSuaW3vnr7bwo4NcncapaOciPn8z8IvGKoN/iBtjz9XLNBO3UUPR sAgsnyvZUiw= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org