$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa File: 2689AA5C860911EAA740B02DC4F9AE02.roa (raw, json) Hash identifier: 65gV9+8U+BEG79nn3hsNv1M0ujKP0IZBNvFlE76qWL8= Subject key identifier: FD:49:CB:65:C1:18:A9:ED:4D:55:56:C1:13:81:13:C6:38:65:5D:C2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A73 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa Signing time: Sun 14 May 2023 22:15:19 +0000 ROA not before: Sun 14 May 2023 22:15:19 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 209218 IP address blocks: 2406:840:f660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2675 (0xa73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:19 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d76-b348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6f:4e:bc:f7:f2:3e:2b:fe:90:a3:aa:3b:b8: 73:73:5d:92:98:58:bf:5f:3b:9c:c7:44:35:43:8e: dd:6e:b9:46:9e:e3:c7:39:cc:81:1f:65:86:e7:9e: a1:06:67:4b:5d:0c:0b:ab:1e:e9:cb:99:9c:b9:17: f8:b9:20:a3:97:3d:d4:9f:e8:5f:25:d7:97:a8:c5: e7:bb:58:7e:eb:81:3b:48:c9:07:cb:c0:38:a1:b3: 3a:e4:f2:b5:80:36:65:5f:c7:12:56:d3:00:97:3c: 9a:b5:38:d2:de:05:95:c5:15:c8:af:65:29:c2:c8: e1:1d:cb:ea:ce:d4:a3:b6:1d:2a:a6:9a:3d:a6:89: 30:f6:89:a7:a4:63:af:95:d9:99:e3:de:02:8f:85: e5:8c:c4:43:b7:95:99:73:6f:a8:03:b5:92:59:dc: 3a:ec:92:c8:d9:5c:a0:3b:84:ba:aa:5c:1d:11:22: 31:d3:e7:88:9f:93:2c:90:36:56:bf:23:d8:42:7b: 24:45:51:bb:ce:5d:b5:56:3e:b5:1a:00:dc:5f:aa: bb:e9:21:06:20:be:fc:20:49:12:57:d5:d2:a4:fc: 9e:e8:c7:a8:33:47:2c:29:e6:80:dc:a5:fc:c3:16: 75:f1:05:5a:39:bb:0b:87:8b:b8:6d:4e:3e:b3:60: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:49:CB:65:C1:18:A9:ED:4D:55:56:C1:13:81:13:C6:38:65:5D:C2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2689AA5C860911EAA740B02DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f660::/44 Signature Algorithm: sha256WithRSAEncryption 15:d0:c8:21:13:0f:5d:b9:ef:c1:e2:1b:f3:bf:be:a5:83:50: 98:53:74:67:44:17:9b:3c:cc:1d:26:af:70:a7:3e:84:c9:5d: 91:32:4e:4f:88:2b:4f:06:3c:5a:69:5c:a8:bc:a3:23:fc:84: 90:29:07:ac:5f:b8:e0:74:ca:16:e6:eb:84:81:59:ee:62:7d: ec:ee:b7:55:42:0c:6d:6f:c4:78:c9:59:d5:f4:05:c4:04:90: a4:4b:63:45:ab:92:ea:35:a7:e6:09:1c:93:bf:e1:f0:69:35: 21:8a:d4:9b:fa:df:ed:74:08:8b:64:7d:8f:73:1f:ec:bb:1f: cb:33:2c:f9:e6:62:5e:bb:b2:32:97:0d:94:d2:44:77:ea:f9: 1a:d9:7b:4d:3b:19:93:7e:f7:3f:1d:ad:dd:75:bb:eb:86:59: d0:11:d8:17:1b:04:c2:6e:8e:6e:e7:88:7d:4f:0c:a2:3a:9c: ef:49:e2:17:6d:7e:2b:c7:62:db:0f:8f:f3:af:55:c2:df:01: ab:d1:72:0d:ff:a4:75:74:da:15:ab:a7:53:e9:ec:2e:01:04: e9:3f:72:54:e5:f4:84:8f:07:82:99:50:e5:9b:6b:59:ad:b5: da:d5:29:72:d9:38:1c:fb:39:f0:9b:b2:02:87:db:ec:f9:47: 97:33:a8:4f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTE5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ3Ni1iMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA729OvPfyPiv+kKOqO7hzc12SmFi/Xzucx0Q1Q47dbrlGnuPHOcyBH2WG556h BmdLXQwLqx7py5mcuRf4uSCjlz3Un+hfJdeXqMXnu1h+64E7SMkHy8A4obM65PK1 gDZlX8cSVtMAlzyatTjS3gWVxRXIr2UpwsjhHcvqztSjth0qppo9pokw9omnpGOv ldmZ494Cj4XljMRDt5WZc2+oA7WSWdw67JLI2VygO4S6qlwdESIx0+eIn5MskDZW vyPYQnskRVG7zl21Vj61GgDcX6q76SEGIL78IEkSV9XSpPye6MeoM0csKeaA3KX8 wxZ18QVaObsLh4u4bU4+s2D1cQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP1Jy2XB GKntTVVWwROBE8Y4ZV3CMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjY4OUFBNUM4 NjA5MTFFQUE3NDBCMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9mAwDQYJKoZIhvcNAQELBQADggEBABXQyCETD125 78HiG/O/vqWDUJhTdGdEF5s8zB0mr3CnPoTJXZEyTk+IK08GPFppXKi8oyP8hJAp B6xfuOB0yhbm64SBWe5ifezut1VCDG1vxHjJWdX0BcQEkKRLY0Wrkuo1p+YJHJO/ 4fBpNSGK1Jv63+10CItkfY9zH+y7H8szLPnmYl67sjKXDZTSRHfq+RrZe007GZN+ 9z8drd11u+uGWdAR2BcbBMJujm7niH1PDKI6nO9J4hdtfivHYtsPj/OvVcLfAavR cg3/pHV02hWrp1Pp7C4BBOk/clTl9ISPB4KZUOWba1mttdrVKXLZOBz7OfCbsgKH 2+z5R5czqE8= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:03 2024 by rpki-client on console-fra.rpki-client.org