$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa File: 2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa (raw, json) Hash identifier: IQHK/H8Vkj7HfelcdvZEUBS0sUo2HnbHgroYORtj6Cw= Subject key identifier: 2D:4E:A4:1D:80:5E:BC:7C:D4:7A:DA:7E:10:88:C0:F6:AE:51:CA:3F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C4F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:26 +0000 ROA not before: Sun 26 May 2024 21:31:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134488 IP address blocks: 2406:840:e800::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3151 (0xc4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa2e-793b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:15:01:d0:52:18:dd:6d:02:89:f5:0c:ae:d0: 16:f8:60:fd:c6:75:66:2b:eb:be:6d:10:16:2b:8f: 0e:c9:2b:f8:06:8f:96:39:f1:fe:74:78:ff:7f:8a: 66:cf:27:87:68:05:3b:a6:be:8a:79:f3:87:a7:3c: 35:6f:13:aa:67:b5:08:ee:f6:4c:cc:ab:83:f3:a7: c4:bd:47:07:f8:37:4f:6a:6b:a6:70:d7:c4:05:19: 5d:75:2b:d7:5f:e3:26:88:59:f0:8b:b5:b7:5b:ac: fd:93:fa:2f:70:71:5f:2a:01:6f:1e:42:fb:98:70: d6:a8:9d:e3:2d:95:0c:06:e6:db:59:7e:69:6a:b1: 8b:f9:38:8b:96:a5:69:c9:9c:d2:fe:4f:96:ce:da: aa:a5:aa:ae:f6:38:7e:38:d0:38:92:33:0e:1c:50: 4e:e8:f2:50:a0:1d:87:25:93:0b:7e:9c:11:1a:89: 7f:aa:18:d6:f4:48:49:39:4f:5b:2e:b0:11:da:38: 1a:6c:60:0a:6d:e0:6e:44:ff:07:c5:90:f4:d8:41: 0e:67:6b:ca:92:27:78:bd:86:67:5f:02:84:9d:eb: 13:3a:de:05:c4:2d:9f:f3:eb:e1:5b:7d:68:19:8a: ba:00:bb:89:86:b5:13:5a:57:e4:fb:0f:56:1f:7f: 8f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4E:A4:1D:80:5E:BC:7C:D4:7A:DA:7E:10:88:C0:F6:AE:51:CA:3F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e800::/44 Signature Algorithm: sha256WithRSAEncryption 91:b1:43:d4:be:b1:cb:f8:44:7a:78:37:df:ed:f7:ab:9b:b8: 29:04:2c:a8:86:59:bb:d2:c7:43:6e:ab:85:1b:52:b7:6d:f7: 2b:7b:24:5d:79:d0:8f:fe:46:bf:f0:02:04:8f:ab:87:c2:ae: 89:53:17:35:48:5c:93:8b:75:fb:20:32:26:14:d4:ce:4e:21: 7d:49:8a:57:4d:3d:38:ab:dd:f2:11:6a:46:f3:38:79:00:bf: 74:d2:da:21:33:13:ab:c7:42:91:36:32:17:89:79:9e:d7:31: 50:39:84:e6:ea:da:41:8f:d9:5b:18:6d:4a:b2:00:53:98:5a: 0f:93:70:4b:21:79:ed:a4:16:06:2b:9f:26:65:0b:ec:46:a8: cc:18:7d:61:e0:8e:62:8c:bc:f0:0b:03:17:e0:50:4f:a7:85: 29:f0:f8:c6:00:1c:2d:55:86:1a:8f:25:2f:53:e1:81:a2:74: 80:7b:5e:58:6b:74:c1:2d:f5:01:c6:6c:dc:2e:bb:21:3b:87: 5a:27:57:0e:65:6d:d3:aa:63:8d:ba:19:cc:31:ec:02:c1:4d: 98:8e:2f:7e:c4:8e:0d:53:d6:41:58:57:2b:28:d0:c2:3a:c3: d2:fa:24:69:35:98:d0:7c:38:e5:aa:87:4c:67:30:f5:63:ec: a2:af:87:a6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEyZS03OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRUB0FIY3W0CifUMrtAW+GD9xnVmK+u+bRAWK48OySv4Bo+WOfH+dHj/f4pm zyeHaAU7pr6KefOHpzw1bxOqZ7UI7vZMzKuD86fEvUcH+DdPamumcNfEBRlddSvX X+MmiFnwi7W3W6z9k/ovcHFfKgFvHkL7mHDWqJ3jLZUMBubbWX5parGL+TiLlqVp yZzS/k+Wztqqpaqu9jh+ONA4kjMOHFBO6PJQoB2HJZMLfpwRGol/qhjW9EhJOU9b LrAR2jgabGAKbeBuRP8HxZD02EEOZ2vKkid4vYZnXwKEnesTOt4FxC2f8+vhW31o GYq6ALuJhrUTWlfk+w9WH3+PLQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC1OpB2A Xrx81HrafhCIwPauUco/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkFFNDU5REM0 QTVCMTFFQkI3QjRCQTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA6AAwDQYJKoZIhvcNAQELBQADggEBAJGxQ9S+scv4 RHp4N9/t96ubuCkELKiGWbvSx0Nuq4UbUrdt9yt7JF150I/+Rr/wAgSPq4fCrolT FzVIXJOLdfsgMiYU1M5OIX1JildNPTir3fIRakbzOHkAv3TS2iEzE6vHQpE2MheJ eZ7XMVA5hObq2kGP2VsYbUqyAFOYWg+TcEshee2kFgYrnyZlC+xGqMwYfWHgjmKM vPALAxfgUE+nhSnw+MYAHC1VhhqPJS9T4YGidIB7XlhrdMEt9QHGbNwuuyE7h1on Vw5lbdOqY426Gcwx7ALBTZiOL37Ejg1T1kFYVyso0MI6w9L6JGk1mNB8OOWqh0xn MPVj7KKvh6Y= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org