$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa File: 2FDC8EDAD99911ED92E86C7BC4F9AE02.roa (raw, json) Hash identifier: TVx/c75PhmcFOmp8LnzuiT4BWOXRce5hQeHO4QpPyNQ= Subject key identifier: 00:6D:17:7C:F7:9E:21:7F:EB:A2:36:51:53:1C:70:82:26:2B:36:49 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C7B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:08 +0000 ROA not before: Sun 26 May 2024 21:32:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151187 IP address blocks: 2406:840:9800::/43 maxlen: 48 2406:840:fed3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa57-f17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:07:3f:24:56:6e:dc:b8:25:70:38:e3:bc: 11:c0:32:92:92:e5:4a:0a:59:bf:af:61:ba:c6:95: c7:1a:54:39:04:89:ea:fe:0a:cc:4b:55:3d:10:48: 0e:6d:79:fb:3b:90:b1:c7:67:cb:7c:ab:ac:73:b8: 8f:4d:fe:61:15:50:a2:a2:e1:4b:3c:e1:76:1f:6a: dd:34:46:39:a1:ed:23:29:ba:79:18:4d:28:26:65: 7a:a5:fe:c7:ce:47:b1:8d:24:2a:de:2a:53:be:a6: 78:8e:01:f7:64:31:7f:ad:05:8a:cc:ed:18:7e:5c: f9:cf:8e:3f:f1:44:22:15:ab:bd:11:d2:3c:63:5c: 8e:f6:6a:27:50:51:0a:a1:a4:dd:56:6a:e6:b1:e3: 4d:5e:c1:ab:7a:a5:45:f2:50:ef:56:26:0a:09:a0: 07:a6:a4:fe:76:b5:73:a9:af:e7:72:c3:f4:ec:64: c2:1a:2a:a3:2a:51:bb:7a:50:cf:ff:48:f3:82:5c: ad:6c:7b:eb:ca:4f:e5:0b:26:16:60:48:9e:16:b2: d0:df:34:42:41:01:4d:1a:a6:31:83:61:a8:08:8e: 59:29:79:7e:b1:9e:25:dd:02:73:eb:ad:df:59:b9: 9a:e8:11:ce:01:11:43:cc:51:03:9d:ab:57:01:62: b1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6D:17:7C:F7:9E:21:7F:EB:A2:36:51:53:1C:70:82:26:2B:36:49 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9800::/43 2406:840:fed3::/48 Signature Algorithm: sha256WithRSAEncryption 43:0c:ed:ab:20:74:69:74:f3:a1:b0:4f:71:3d:13:56:b4:fe: 3d:f8:bd:ac:6a:f9:ed:42:dd:71:12:b4:74:9c:e0:d7:c2:99: ec:04:02:9d:05:1d:42:e9:7c:fc:26:0c:9b:a5:a4:26:33:2a: e4:62:be:c7:7c:6a:92:62:1c:60:86:13:35:a0:96:11:56:26: 1f:6f:4f:ca:f6:90:eb:83:07:3f:dc:a0:8d:b5:85:c5:31:d8: 1d:dc:35:4e:de:69:bf:23:02:4c:63:9f:f7:08:3d:8e:69:a1: 09:1b:db:a1:a9:e2:a7:80:1e:d5:5f:55:23:1c:48:a2:b6:08: 93:ec:b7:17:23:54:df:ad:09:14:ba:71:79:40:2d:fe:eb:b7: 20:e3:95:57:98:10:e8:89:96:0a:81:a2:5e:83:e0:f8:90:8e: 04:64:68:1e:c0:8b:f2:ff:c1:26:2e:20:af:0c:94:c3:69:4c: 49:da:e9:1b:1d:f0:dc:d1:26:c3:cc:38:4b:4a:54:f4:b9:1d: 88:76:ef:a2:4f:d3:3e:30:4e:e3:2d:c1:e6:7d:90:24:17:99: e4:f1:79:15:81:fe:f3:55:cb:22:c2:ce:93:aa:a7:62:95:ff: a5:f7:b6:7f:cf:0a:4e:6e:0d:80:cb:f5:85:22:b3:de:cf:1a: 6d:35:87:2c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1Ny1mMTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveIHPyRWbty4JXA447wRwDKSkuVKClm/r2G6xpXHGlQ5BInq/grMS1U9EEgO bXn7O5Cxx2fLfKusc7iPTf5hFVCiouFLPOF2H2rdNEY5oe0jKbp5GE0oJmV6pf7H zkexjSQq3ipTvqZ4jgH3ZDF/rQWKzO0Yflz5z44/8UQiFau9EdI8Y1yO9monUFEK oaTdVmrmseNNXsGreqVF8lDvViYKCaAHpqT+drVzqa/ncsP07GTCGiqjKlG7elDP /0jzglytbHvryk/lCyYWYEieFrLQ3zRCQQFNGqYxg2GoCI5ZKXl+sZ4l3QJz663f Wbma6BHOARFDzFEDnatXAWKxQQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFABtF3z3 niF/66I2UVMccIImKzZJMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkZEQzhFREFE OTk5MTFFRDkyRTg2QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwUkBghAmAADBwAkBghA/tMwDQYJKoZIhvcNAQELBQADggEB AEMM7asgdGl086GwT3E9E1a0/j34vaxq+e1C3XEStHSc4NfCmewEAp0FHULpfPwm DJulpCYzKuRivsd8apJiHGCGEzWglhFWJh9vT8r2kOuDBz/coI21hcUx2B3cNU7e ab8jAkxjn/cIPY5poQkb26Gp4qeAHtVfVSMcSKK2CJPstxcjVN+tCRS6cXlALf7r tyDjlVeYEOiJlgqBol6D4PiQjgRkaB7Ai/L/wSYuIK8MlMNpTEna6Rsd8NzRJsPM OEtKVPS5HYh276JP0z4wTuMtweZ9kCQXmeTxeRWB/vNVyyLCzpOqp2KV/6X3tn/P Ck5uDYDL9YUis97PGm01hyw= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org