$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa File: 3713C692E4C911EDB49CA55BC4F9AE02.roa (raw, json) Hash identifier: U6gd9TaSh7vz3qzM9wLsWCk5r1rBSZy70yAWXFJQGMI= Subject key identifier: B6:3E:2A:FB:41:29:7E:F3:9B:81:F9:F8:F7:D5:C2:EB:02:60:09:EF Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B90 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa Signing time: Tue 19 Dec 2023 13:53:57 +0000 ROA not before: Tue 19 Dec 2023 13:53:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151202 IP address blocks: 2406:840:f0a0::/44 maxlen: 48 2406:840:fe75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Dec 19 13:53:57 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6581a075-d6fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:62:8f:94:33:14:55:cb:f5:ad:d1:ef:f2:4e: 2c:99:31:1b:21:11:eb:2b:08:11:70:d2:9f:d4:a6: 28:f8:9b:21:13:1c:62:a8:01:d4:2d:e1:4b:5e:70: 71:be:5f:a1:19:72:ce:3f:2c:64:31:d9:89:b0:01: 46:7c:97:66:52:ad:f1:6d:63:0a:c1:6c:d5:7f:03: 70:89:7a:a4:3c:36:df:f9:f8:85:40:e0:21:6b:3c: 5e:1a:85:6a:7a:2e:32:fe:b1:31:f7:fa:03:91:9e: 6a:e7:b6:d5:04:3c:13:a2:1a:44:d0:00:08:7e:94: df:80:d1:c3:1d:4d:17:33:34:0c:50:40:86:26:2e: 33:5a:94:a1:08:09:f7:8f:46:14:d2:00:89:eb:04: 78:8a:b5:75:51:61:50:a6:be:aa:9b:db:f6:07:be: 5b:b5:a5:41:8e:2e:9c:f5:a8:15:b0:a8:1e:0a:1b: d0:9a:ab:14:af:4e:5c:b4:25:b9:0e:f1:17:66:c3: e1:e8:8a:37:78:61:55:f6:a4:4b:f8:1c:20:f7:00: e9:72:72:7e:70:ec:f9:6a:b9:7f:81:cc:18:cf:c1: ca:59:dc:50:b0:ff:6d:6c:43:01:7a:ba:c1:c9:77: ee:be:77:e2:a8:3c:3a:00:a2:a9:43:f0:45:fa:5c: c1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3E:2A:FB:41:29:7E:F3:9B:81:F9:F8:F7:D5:C2:EB:02:60:09:EF X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3713C692E4C911EDB49CA55BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f0a0::/44 2406:840:fe75::/48 Signature Algorithm: sha256WithRSAEncryption 5e:9c:d5:84:8c:63:e8:d3:b1:81:ca:ce:92:dd:da:ae:f3:35: e0:39:0c:f9:c1:11:95:33:39:4d:b6:d1:f7:53:89:9d:99:db: c3:93:23:6a:d0:59:54:d2:ea:05:df:05:67:c8:29:18:3a:93: ab:2d:5d:b3:4d:05:31:d2:01:78:19:a5:21:13:87:ba:ca:50: 83:6b:f3:dc:33:43:78:3e:79:d2:5d:e0:08:90:7a:39:35:d0: 6f:81:fc:5b:b4:4a:cb:b6:32:37:48:d3:e6:9a:d6:d8:3e:3c: 39:fd:7a:d6:a4:8f:8d:71:17:05:23:54:f3:03:55:da:85:c8: 10:f7:d1:79:55:97:40:58:54:42:c0:81:bf:cf:30:d8:c2:57: 4a:39:92:4a:34:a0:04:65:3d:d3:41:ef:f4:45:e9:fb:39:e5: af:21:d3:5a:1d:d9:b8:45:2d:c9:36:f1:75:e1:9a:39:4d:47: 9c:27:7f:d5:69:31:09:76:7e:aa:07:25:53:49:3d:48:f6:1d: 5b:ce:2b:a9:21:cd:4c:91:e4:f2:69:9a:87:a4:6a:78:63:64: 14:64:75:b9:64:25:b2:42:e8:46:b3:39:eb:e0:50:5a:d9:e3: 5b:66:fb:b1:d6:d7:86:9d:34:65:47:f0:49:4e:14:a0:88:de: 39:c0:7c:61 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMjE5MTM1MzU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgxYTA3NS1kNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWKPlDMUVcv1rdHv8k4smTEbIRHrKwgRcNKf1KYo+JshExxiqAHULeFLXnBx vl+hGXLOPyxkMdmJsAFGfJdmUq3xbWMKwWzVfwNwiXqkPDbf+fiFQOAhazxeGoVq ei4y/rEx9/oDkZ5q57bVBDwTohpE0AAIfpTfgNHDHU0XMzQMUECGJi4zWpShCAn3 j0YU0gCJ6wR4irV1UWFQpr6qm9v2B75btaVBji6c9agVsKgeChvQmqsUr05ctCW5 DvEXZsPh6Io3eGFV9qRL+Bwg9wDpcnJ+cOz5arl/gcwYz8HKWdxQsP9tbEMBerrB yXfuvnfiqDw6AKKpQ/BF+lzBuQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLY+KvtB KX7zm4H5+PfVwusCYAnvMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMzcxM0M2OTJF NEM5MTFFREI0OUNBNTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA8KADBwAkBghA/nUwDQYJKoZIhvcNAQELBQADggEB AF6c1YSMY+jTsYHKzpLd2q7zNeA5DPnBEZUzOU220fdTiZ2Z28OTI2rQWVTS6gXf BWfIKRg6k6stXbNNBTHSAXgZpSETh7rKUINr89wzQ3g+edJd4AiQejk10G+B/Fu0 Ssu2MjdI0+aa1tg+PDn9etakj41xFwUjVPMDVdqFyBD30XlVl0BYVELAgb/PMNjC V0o5kko0oARlPdNB7/RF6fs55a8h01od2bhFLck28XXhmjlNR5wnf9VpMQl2fqoH JVNJPUj2HVvOK6khzUyR5PJpmoekanhjZBRkdblkJbJC6EazOevgUFrZ41tm+7HW 14adNGVH8ElOFKCI3jnAfGE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org