$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa File: 3A7A29DE6AD411EEBEC80C30C4F9AE02.roa (raw, json) Hash identifier: /OvMJCKQJymdXOHPrORUeEoETm8xaGbXA7HM7DEMMZM= Subject key identifier: DA:47:96:73:85:70:F2:93:7C:03:5D:4C:5A:47:60:37:57:66:94:D4 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C7F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:12 +0000 ROA not before: Sun 26 May 2024 21:32:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151331 IP address blocks: 2406:840:fed7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa5c-0f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:63:03:1e:de:17:d9:61:44:cd:31:a5:ee:b8: b6:39:a2:91:47:e6:8f:df:0f:da:f2:71:c2:aa:8d: 2e:0c:f5:af:2c:8d:1a:3f:4a:e3:55:ef:c4:f6:ce: 2c:1c:e5:1e:da:c2:68:74:da:a5:00:68:f6:6c:56: f4:45:66:6e:4e:a9:96:07:43:a2:4c:f6:c1:b0:4d: 91:1e:c1:3c:25:aa:ac:53:6c:64:db:a1:97:2f:0a: 47:71:41:0a:a5:d4:ec:e8:9d:47:4a:9e:6c:2e:65: 56:43:59:76:a4:1a:cd:f3:85:d7:1b:c5:a4:55:9b: de:5c:25:97:6f:e2:7b:b1:cc:4e:22:1f:53:25:81: eb:22:b0:ce:b7:b3:dc:5c:0f:86:85:50:5c:38:4d: 1c:2e:e4:e1:11:83:3c:de:70:89:f0:a2:50:8e:2a: 89:f7:96:76:a7:d2:7c:92:33:e0:2d:f2:07:15:77: cf:0e:2f:e5:44:1e:e0:0d:2d:62:a0:70:5d:32:84: b3:5f:a6:77:f7:50:2e:8f:4a:98:9c:48:f6:aa:d8: 72:e2:f2:d8:5c:94:88:72:37:fb:ce:40:1c:33:b3: 8d:c4:b0:f5:ae:08:95:5f:73:b2:70:9a:42:33:16: 66:69:5f:89:bd:ae:e3:d2:d5:db:34:51:2f:5e:48: 5c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:47:96:73:85:70:F2:93:7C:03:5D:4C:5A:47:60:37:57:66:94:D4 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fed7::/48 Signature Algorithm: sha256WithRSAEncryption 74:b0:af:0f:7a:da:08:6d:96:fe:94:bf:02:c8:7c:94:0d:1e: 21:18:10:f3:3f:30:3f:06:78:41:85:d5:5a:79:dd:c1:2f:97: 03:17:c4:be:ec:58:08:ad:7c:57:e4:c9:7b:64:ff:f5:12:af: 56:cb:9b:30:67:50:e2:c6:59:7a:63:9d:ab:b4:4a:0d:d9:2d: 1c:03:18:5c:3c:73:c8:5e:1b:e1:8c:93:71:b9:07:b6:80:0a: 60:4f:bc:58:d2:a0:1b:ed:98:2f:d9:47:7c:f3:c6:70:d1:55: 94:fa:23:5c:b2:63:64:9b:77:0e:a2:bc:f4:d9:7b:95:d0:81: 95:c4:85:9e:af:52:79:5d:10:e3:31:bf:fe:85:e6:3d:24:b7: c4:0b:80:3d:de:01:5c:6b:40:e8:29:f4:0e:63:0c:83:6a:5b: 1b:c9:f6:c6:ec:c4:d8:4c:d1:6f:e1:c1:ca:e3:34:67:36:05: 0c:6b:ba:b1:78:83:ef:07:62:11:bd:e1:2a:83:2d:fc:5c:2e: 62:d8:bc:48:d5:54:7a:ef:be:ad:90:5a:d4:30:05:94:f6:36: 7e:e1:48:3c:7e:3c:dd:a6:ec:b6:44:b3:f5:b0:1c:56:aa:21: 2b:e8:7f:57:94:67:31:73:92:be:ad:85:8c:63:70:e7:82:cd: 68:35:bc:fd -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1Yy0wZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGMDHt4X2WFEzTGl7ri2OaKRR+aP3w/a8nHCqo0uDPWvLI0aP0rjVe/E9s4s HOUe2sJodNqlAGj2bFb0RWZuTqmWB0OiTPbBsE2RHsE8JaqsU2xk26GXLwpHcUEK pdTs6J1HSp5sLmVWQ1l2pBrN84XXG8WkVZveXCWXb+J7scxOIh9TJYHrIrDOt7Pc XA+GhVBcOE0cLuThEYM83nCJ8KJQjiqJ95Z2p9J8kjPgLfIHFXfPDi/lRB7gDS1i oHBdMoSzX6Z391Auj0qYnEj2qthy4vLYXJSIcjf7zkAcM7ONxLD1rgiVX3OycJpC MxZmaV+Jva7j0tXbNFEvXkhc0wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNpHlnOF cPKTfANdTFpHYDdXZpTUMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvM0E3QTI5REU2 QUQ0MTFFRUJFQzgwQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/tcwDQYJKoZIhvcNAQELBQADggEBAHSwrw962ght lv6UvwLIfJQNHiEYEPM/MD8GeEGF1Vp53cEvlwMXxL7sWAitfFfkyXtk//USr1bL mzBnUOLGWXpjnau0Sg3ZLRwDGFw8c8heG+GMk3G5B7aACmBPvFjSoBvtmC/ZR3zz xnDRVZT6I1yyY2Sbdw6ivPTZe5XQgZXEhZ6vUnldEOMxv/6F5j0kt8QLgD3eAVxr QOgp9A5jDINqWxvJ9sbsxNhM0W/hwcrjNGc2BQxrurF4g+8HYhG94SqDLfxcLmLY vEjVVHrvvq2QWtQwBZT2Nn7hSDx+PN2m7LZEs/WwHFaqISvof1eUZzFzkr6thYxj cOeCzWg1vP0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org