$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa File: 3713C692E4C911EDB49CA55BC4F9AE02.roa (raw, json) Hash identifier: 6vVmUfFmIuWJC2dOgSVAs0ZH74HWGh7B3y8csY1LzqI= Subject key identifier: FD:6F:6E:50:C7:DE:A0:C1:B0:6C:13:A4:26:73:A8:02:25:DF:2B:BA Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C7E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:11 +0000 ROA not before: Sun 26 May 2024 21:32:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151202 IP address blocks: 2406:840:f0a0::/44 maxlen: 48 2406:840:fe75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:11 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa5b-5ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6c:89:fa:d4:72:b4:0e:ea:86:ff:bb:ac:a0: bb:79:d3:1e:f7:59:a8:13:bc:66:4d:cd:e2:ae:dc: 43:d3:ce:d6:0a:c8:3c:93:c1:d9:18:05:3c:17:a3: e4:b5:ea:e4:ed:0c:44:57:b9:83:8e:5b:fd:ae:72: c0:3a:50:40:a5:92:f2:05:07:1a:24:fb:d2:ce:52: e9:2b:ef:3f:04:46:ff:4e:87:0f:9f:bb:6b:cf:c1: 3c:4a:7a:ff:43:bf:f0:15:3e:96:e3:19:e4:ad:6d: e7:ab:8a:17:f0:93:ee:83:94:5c:37:d1:60:e3:0b: e0:de:d8:7b:85:1f:db:d7:64:e1:df:87:77:4b:ca: 32:d1:92:43:78:dc:3a:76:99:33:c1:9e:fc:f2:8e: f5:74:b5:06:df:81:16:cc:48:2f:bd:68:bc:dd:4f: 17:6d:d0:8d:3b:0d:f5:e1:f1:0b:09:b0:7d:30:e9: 21:1c:18:a2:92:b5:c0:03:ab:96:e6:39:41:26:21: 48:26:ee:e6:31:15:13:91:f9:d1:63:69:9c:f7:96: 0f:ad:77:06:02:4f:6f:1e:d5:93:e4:8b:ff:1b:1b: 6c:95:c9:c6:7a:c5:07:6a:5b:1b:5f:d0:4d:a2:72: 83:ba:c4:13:de:b5:5c:69:da:41:a1:f3:1a:ab:67: 3b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6F:6E:50:C7:DE:A0:C1:B0:6C:13:A4:26:73:A8:02:25:DF:2B:BA X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f0a0::/44 2406:840:fe75::/48 Signature Algorithm: sha256WithRSAEncryption 1d:20:33:98:e4:bc:03:c5:63:1e:74:c1:9b:6d:1b:51:27:4b: 88:24:ff:0f:b9:e4:2e:00:57:11:ad:88:84:e5:6d:8d:bb:d8: 7a:3a:fe:08:a5:d4:8b:5e:b6:5b:93:3f:33:80:d9:c8:87:49: f8:ad:75:37:22:3a:4b:c5:a3:e4:b2:6a:f8:2a:73:37:2e:91: 83:f2:00:16:f1:57:b3:59:db:5c:b6:8f:c2:e4:32:51:30:2a: 65:11:31:c3:0e:fb:a8:a1:d1:3b:f0:35:c6:7b:c0:30:c8:ae: db:f0:00:6e:1c:6a:f6:10:d6:a1:44:c3:27:a2:60:c3:7e:eb: 00:43:11:f1:1a:a6:75:dd:15:51:64:59:75:4e:03:af:89:d9: 2f:93:7d:45:c1:b2:9c:41:f1:35:77:33:a2:8a:f2:40:09:2b: ef:e8:ae:33:5b:03:2f:d0:ee:e1:ea:13:e5:09:77:09:9a:8a: ed:22:c3:bb:a4:0c:7e:18:fe:62:50:6d:3e:0e:f6:a8:c1:6c: 9f:08:74:70:83:9a:57:c5:c7:e7:a7:53:84:24:8a:31:10:c3: 2c:fb:0d:47:4c:ac:cc:55:99:b6:4d:87:71:d4:a8:02:0e:a7: 93:a6:37:e9:bc:ec:e0:00:ab:5a:44:46:a6:4f:b5:b8:05:8a: ab:62:fe:56 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1Yi01Y2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GyJ+tRytA7qhv+7rKC7edMe91moE7xmTc3irtxD087WCsg8k8HZGAU8F6Pk terk7QxEV7mDjlv9rnLAOlBApZLyBQcaJPvSzlLpK+8/BEb/TocPn7trz8E8Snr/ Q7/wFT6W4xnkrW3nq4oX8JPug5RcN9Fg4wvg3th7hR/b12Th34d3S8oy0ZJDeNw6 dpkzwZ788o71dLUG34EWzEgvvWi83U8XbdCNOw314fELCbB9MOkhHBiikrXAA6uW 5jlBJiFIJu7mMRUTkfnRY2mc95YPrXcGAk9vHtWT5Iv/GxtslcnGesUHalsbX9BN onKDusQT3rVcadpBofMaq2c79QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFP1vblDH 3qDBsGwTpCZzqAIl3yu6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMzcxM0M2OTJF NEM5MTFFREI0OUNBNTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA8KADBwAkBghA/nUwDQYJKoZIhvcNAQELBQADggEB AB0gM5jkvAPFYx50wZttG1EnS4gk/w+55C4AVxGtiITlbY272Ho6/gil1ItetluT PzOA2ciHSfitdTciOkvFo+SyavgqczcukYPyABbxV7NZ21y2j8LkMlEwKmURMcMO +6ih0TvwNcZ7wDDIrtvwAG4cavYQ1qFEwyeiYMN+6wBDEfEapnXdFVFkWXVOA6+J 2S+TfUXBspxB8TV3M6KK8kAJK+/orjNbAy/Q7uHqE+UJdwmaiu0iw7ukDH4Y/mJQ bT4O9qjBbJ8IdHCDmlfFx+enU4QkijEQwyz7DUdMrMxVmbZNh3HUqAIOp5OmN+m8 7OAAq1pERqZPtbgFiqti/lY= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org