$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa File: 3A7A29DE6AD411EEBEC80C30C4F9AE02.roa (raw, json) Hash identifier: RMikE04oADCkYPASNb4zFhLu3nnA2XD1Majjjm96Jy0= Subject key identifier: 06:60:E2:49:8F:82:6A:F7:4D:C0:6C:15:D9:B3:97:D3:D4:4E:F7:78 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B4C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa Signing time: Sat 14 Oct 2023 20:57:04 +0000 ROA not before: Sat 14 Oct 2023 20:57:04 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151331 IP address blocks: 2406:840:fed7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 14 20:57:04 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=652b00a0-8535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a3:26:ee:8b:bd:28:46:f6:f9:48:d6:03:96: ae:b4:92:9b:45:d2:96:d9:ed:8d:fa:4a:59:f4:28: 60:54:29:2a:3a:1f:4f:06:91:22:84:f9:87:5f:aa: 7e:a9:c5:11:8c:3a:ce:e0:99:16:5b:8d:c3:a2:33: cf:0b:5d:1e:93:f7:2e:a1:4a:ec:7e:a3:33:4c:af: 01:6e:a9:b7:4f:a4:84:a9:f8:a3:16:a7:d1:3c:5e: bb:9a:e6:4a:17:45:57:b0:b1:36:f0:3c:bf:79:11: ce:11:39:4a:f5:41:1a:36:6a:66:be:23:9f:bb:82: e6:d0:5d:a8:02:6e:26:7d:50:21:b8:51:b7:f7:e3: f4:ab:ce:24:29:9e:a2:bd:51:94:74:0f:6b:4f:cc: 8c:63:89:f3:71:99:56:aa:74:2c:92:3b:95:ee:cb: 78:8c:3b:eb:79:50:62:f7:89:0c:45:33:b6:78:17: 01:90:38:81:16:95:99:1c:83:7c:c9:4f:87:c2:3b: 80:4c:a0:20:7c:3f:30:e5:60:f0:83:0b:a9:83:2d: 9f:e8:c5:7f:56:50:ea:b3:8d:a0:7b:20:1a:1a:6f: c5:06:75:da:bc:9c:68:6f:c0:a0:80:18:be:b6:e8: 9e:6c:6a:47:90:84:f9:fa:1b:fe:0c:9c:f4:b7:6c: 7c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:60:E2:49:8F:82:6A:F7:4D:C0:6C:15:D9:B3:97:D3:D4:4E:F7:78 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/3A7A29DE6AD411EEBEC80C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fed7::/48 Signature Algorithm: sha256WithRSAEncryption 77:83:15:46:9d:7b:80:37:34:6f:26:50:21:59:d7:4b:07:e5: c6:cc:d8:4e:62:17:1b:16:a3:d3:f1:9c:c6:66:d8:f6:a7:7e: d7:b1:71:21:e6:66:b7:7a:8a:8b:ba:4c:92:f5:42:d7:c5:c7: b0:61:0f:8a:6e:d5:34:bf:0f:58:ce:03:86:a8:22:ca:39:da: 1b:3c:3d:92:97:b6:b7:a5:8f:25:e5:7f:28:70:52:c4:a1:08: 9d:77:2d:64:50:2d:9a:ff:05:97:5f:96:77:0b:6f:87:31:65: 4a:ae:87:47:39:b4:a2:e9:aa:fa:7c:ac:ea:9f:61:36:9d:4e: 54:3f:5c:8b:ae:e7:ba:cc:3e:a4:34:77:c9:f9:b2:f6:85:3d: 2c:36:c2:fe:89:60:d4:fb:7f:17:b1:76:5f:7c:42:67:91:c3: c4:f9:a0:8c:bd:34:33:2f:08:e4:c9:84:b9:64:2a:fe:0e:a6: 2f:dd:28:f4:3b:ef:17:46:d0:fa:54:62:cf:0d:c2:26:53:6c: 41:f3:11:a1:22:97:9a:2d:86:e7:4e:8d:45:fa:0c:6c:42:f4: e1:60:ea:34:dd:3c:f4:67:a3:98:cd:80:9f:65:ea:63:0c:d0: 7e:95:f6:13:3f:79:08:e3:68:25:ab:a3:79:bc:0a:9f:b9:c0: dd:56:a1:25 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMDE0MjA1NzA0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJiMDBhMC04NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaMm7ou9KEb2+UjWA5autJKbRdKW2e2N+kpZ9ChgVCkqOh9PBpEihPmHX6p+ qcURjDrO4JkWW43DojPPC10ek/cuoUrsfqMzTK8Bbqm3T6SEqfijFqfRPF67muZK F0VXsLE28Dy/eRHOETlK9UEaNmpmviOfu4Lm0F2oAm4mfVAhuFG39+P0q84kKZ6i vVGUdA9rT8yMY4nzcZlWqnQskjuV7st4jDvreVBi94kMRTO2eBcBkDiBFpWZHIN8 yU+HwjuATKAgfD8w5WDwgwupgy2f6MV/VlDqs42geyAaGm/FBnXavJxob8CggBi+ tuiebGpHkIT5+hv+DJz0t2x80QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAZg4kmP gmr3TcBsFdmzl9PUTvd4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvM0E3QTI5REU2 QUQ0MTFFRUJFQzgwQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/tcwDQYJKoZIhvcNAQELBQADggEBAHeDFUade4A3 NG8mUCFZ10sH5cbM2E5iFxsWo9PxnMZm2PanftexcSHmZrd6iou6TJL1QtfFx7Bh D4pu1TS/D1jOA4aoIso52hs8PZKXtreljyXlfyhwUsShCJ13LWRQLZr/BZdflncL b4cxZUquh0c5tKLpqvp8rOqfYTadTlQ/XIuu57rMPqQ0d8n5svaFPSw2wv6JYNT7 fxexdl98QmeRw8T5oIy9NDMvCOTJhLlkKv4Opi/dKPQ77xdG0PpUYs8NwiZTbEHz EaEil5othudOjUX6DGxC9OFg6jTdPPRno5jNgJ9l6mMM0H6V9hM/eQjjaCWro3m8 Cp+5wN1WoSU= -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:01 2024 by rpki-client on console-fra.rpki-client.org