$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa File: 2BF73076743511EFA2B5387BC4F9AE02.roa (raw, json) Hash identifier: yfAxPxVtKXtJcx2s5lQ/h+j7skXZ3nwuMMW4KcevfUI= Subject key identifier: AE:B6:70:E8:7A:AD:05:33:F4:28:73:44:60:03:2D:18:EA:07:D1:56 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D7D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa Signing time: Mon 16 Sep 2024 14:08:39 +0000 ROA not before: Mon 16 Sep 2024 14:08:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151814 IP address blocks: 2406:840:9400::/40 maxlen: 48 2406:840:c600::/40 maxlen: 48 2406:840:e400::/40 maxlen: 48 2406:840:f500::/40 maxlen: 48 2406:840:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3453 (0xd7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 16 14:08:39 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e83be7-ea90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3c:7b:3c:92:e9:b0:6e:23:6b:f1:e0:1e:f0: 70:d2:8a:47:41:5c:5a:a2:14:26:4d:fc:94:58:f0: e6:cc:8a:9a:81:05:58:03:60:8b:bf:8d:09:2c:37: 0a:d4:7d:84:b7:eb:1d:37:6b:cb:45:d5:91:e0:b7: 4b:e0:f7:9e:f2:0b:1a:b1:75:c3:14:c5:dd:11:d1: 6f:65:f4:2a:88:63:dd:62:89:6d:22:ae:34:34:8e: 68:e2:a3:12:5c:16:da:76:0e:37:13:cb:54:60:91: 56:7e:db:7c:e8:40:b7:2e:8b:e7:87:93:ed:50:d2: 73:61:1c:15:ff:b5:46:76:42:26:5e:01:fc:5b:4a: 2a:2d:b4:7f:08:a9:31:14:4c:bc:98:8c:79:6b:9e: 60:eb:78:ba:37:a2:59:a1:58:25:18:76:b9:74:d4: e4:0e:59:91:52:01:91:3c:51:fc:00:33:8e:fc:29: cc:9b:14:2d:f3:33:f5:0a:0a:fe:3d:f2:ca:4e:46: 65:1d:69:19:1c:08:0c:b8:f9:89:40:49:e0:19:cb: 9b:d1:9e:41:a9:b2:f0:95:ee:41:f6:7c:d0:e1:d2: 02:db:3f:8d:78:37:b9:98:b4:83:d5:59:50:20:96: 27:58:7e:3d:f7:72:bd:8f:ad:25:99:86:bb:b6:40: 94:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B6:70:E8:7A:AD:05:33:F4:28:73:44:60:03:2D:18:EA:07:D1:56 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2BF73076743511EFA2B5387BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9400::/40 2406:840:c600::/40 2406:840:e400::/40 2406:840:f500::/40 2406:840:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 73:9d:fb:24:2c:a1:df:d7:2d:91:bf:44:50:f3:cd:a6:45:65: 32:9a:a6:1a:18:1b:77:ae:52:fc:df:4a:30:0c:1f:1c:77:67: 48:71:a2:f3:8a:ea:a7:dd:59:9c:60:d5:89:37:54:6c:28:a2: 73:6b:52:17:3b:60:5b:f8:75:32:49:16:0b:29:4b:d1:05:b3: e9:f6:35:b0:16:ea:bb:41:32:7c:74:08:f2:fe:9a:8a:fb:7a: 1c:75:c8:29:13:d4:8b:db:a0:92:09:45:5f:14:0a:8c:3a:41: 48:5c:73:33:e8:37:3b:63:82:18:08:ed:4a:82:ba:07:9c:b5: 1c:03:00:ba:3f:17:f0:8e:c7:b6:cd:11:37:13:fb:91:2f:02: 18:50:49:3d:3f:21:c0:18:61:bf:9a:73:ba:93:27:50:41:dc: 67:b7:18:16:ae:c4:bf:62:f6:b6:56:fb:01:40:55:d8:81:8a: 38:47:f9:b8:22:05:aa:84:8d:f2:8f:72:e5:b1:cf:ea:bb:88: 6e:fb:d0:c8:44:c8:7c:6f:f5:36:87:8b:60:3d:8c:de:ec:14: 3c:0f:58:e4:2e:eb:c7:7b:72:29:5f:6c:ed:41:ef:cd:f4:35: dd:75:1a:bf:87:88:fa:f6:da:1b:f2:80:4e:49:67:94:c1:47: 18:d5:b3:36 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTE2MTQwODM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4M2JlNy1lYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTx7PJLpsG4ja/HgHvBw0opHQVxaohQmTfyUWPDmzIqagQVYA2CLv40JLDcK 1H2Et+sdN2vLRdWR4LdL4Pee8gsasXXDFMXdEdFvZfQqiGPdYoltIq40NI5o4qMS XBbadg43E8tUYJFWftt86EC3Lovnh5PtUNJzYRwV/7VGdkImXgH8W0oqLbR/CKkx FEy8mIx5a55g63i6N6JZoVglGHa5dNTkDlmRUgGRPFH8ADOO/CnMmxQt8zP1Cgr+ PfLKTkZlHWkZHAgMuPmJQEngGcub0Z5BqbLwle5B9nzQ4dIC2z+NeDe5mLSD1VlQ IJYnWH4993K9j60lmYa7tkCUJwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFK62cOh6 rQUz9ChzRGADLRjqB9FWMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkJGNzMwNzY3 NDM1MTFFRkEyQjUzODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAlAMGACQGCEDGAwYAJAYIQOQDBgAkBghA9QMHACQG CED+wDANBgkqhkiG9w0BAQsFAAOCAQEAc537JCyh39ctkb9EUPPNpkVlMpqmGhgb d65S/N9KMAwfHHdnSHGi84rqp91ZnGDViTdUbCiic2tSFztgW/h1MkkWCylL0QWz 6fY1sBbqu0EyfHQI8v6aivt6HHXIKRPUi9ugkglFXxQKjDpBSFxzM+g3O2OCGAjt SoK6B5y1HAMAuj8X8I7Hts0RNxP7kS8CGFBJPT8hwBhhv5pzupMnUEHcZ7cYFq7E v2L2tlb7AUBV2IGKOEf5uCIFqoSN8o9y5bHP6ruIbvvQyETIfG/1NoeLYD2M3uwU PA9Y5C7rx3tyKV9s7UHvzfQ13XUav4eI+vbaG/KATklnlMFHGNWzNg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org