$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa File: 40123778C4EE11EEB870DA3AC4F9AE02.roa (raw, json) Hash identifier: m9ipixOfBXjksole7Rg2RHyvLe1hs+nPL8OTcpiTAaE= Subject key identifier: 49:E8:CF:7B:99:FE:8B:FA:77:F9:3B:23:7F:14:4A:42:86:12:AB:F0 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CAC Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:53 +0000 ROA not before: Sun 26 May 2024 21:32:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 215575 IP address blocks: 2406:840:e520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa85-4a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:af:cc:ec:9a:af:0b:a5:00:be:fc:a2:be:9a: 31:11:34:86:08:17:1f:84:cb:e7:a5:4e:59:1f:52: 28:39:df:cf:96:4e:a0:da:55:e3:19:d3:9f:e3:49: 3a:50:1f:a2:22:f3:f9:32:3e:f4:fb:c4:cf:5f:9c: 87:74:b3:2a:d2:c1:6c:dc:73:05:d0:1f:2e:89:4e: a6:70:40:06:a6:fd:17:dd:18:63:3b:5a:eb:75:a6: 8c:15:3c:22:03:3d:60:cc:91:e6:fa:67:cd:f0:ac: db:1b:a5:da:0e:f1:fd:8f:1d:52:10:a5:7c:db:bf: 2d:d7:46:6d:7e:87:ad:79:20:9c:69:cf:ac:2d:54: 66:31:db:00:19:15:05:90:08:e7:0d:81:ae:c5:6f: 54:3e:ca:a7:37:ba:b5:d4:ac:7a:b9:41:9d:b8:32: 17:0b:c0:3c:44:80:2b:68:77:fe:99:89:4d:1c:40: dd:ba:12:28:10:4b:73:4b:8a:ee:c4:7a:1e:de:80: 29:27:54:32:fa:dd:a8:65:2d:56:f4:af:84:cc:bb: 56:29:15:2f:e0:4a:7a:66:6d:e4:36:86:d3:ed:e3: 1b:53:d4:68:a2:9c:c2:14:14:ef:79:1e:58:e4:12: 20:85:e9:d8:d8:57:db:9a:57:c2:ba:ab:99:cf:eb: be:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E8:CF:7B:99:FE:8B:FA:77:F9:3B:23:7F:14:4A:42:86:12:AB:F0 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/40123778C4EE11EEB870DA3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e520::/44 Signature Algorithm: sha256WithRSAEncryption 84:a3:44:1a:cc:4c:aa:38:c1:d8:36:1e:62:e5:20:24:92:b2: b6:70:f4:6b:a7:21:74:09:31:40:7e:73:62:79:f0:4e:88:e2: 5e:d7:60:51:da:6f:4c:02:78:73:fc:23:eb:4c:12:84:67:ac: 76:05:e1:43:7a:05:de:a5:4c:c8:6f:2f:3a:94:ea:c6:08:05: 34:4d:e9:97:e0:bb:5d:f0:91:8b:dd:59:55:80:37:d8:5f:2f: a5:d9:cb:ea:80:18:45:ee:fc:78:68:ca:c2:ec:c8:b7:e3:a0: db:72:d7:e6:37:3d:fa:80:5b:d2:99:09:9f:de:19:2c:6a:98: f7:c8:ed:ea:d4:a3:b9:cb:c1:00:94:9e:a3:e8:3b:33:1f:cf: 5a:5a:d8:5a:80:6c:55:6f:c4:61:d2:fe:ac:82:ed:d2:c7:e9: f1:3f:61:e9:25:ed:9c:8d:b7:3d:f2:5f:c6:bc:03:02:2b:16: f1:65:65:0a:6d:dc:e7:bc:64:15:9a:66:bf:ca:05:60:81:ef: da:15:e7:2f:dc:72:c4:b7:24:47:55:ed:48:4b:da:53:f3:e1: 7e:00:63:98:ba:33:79:70:5c:71:b1:b6:50:3f:35:fa:43:57: 95:a1:d4:33:11:0c:f0:91:73:7c:77:ca:bd:2a:eb:1d:3e:53: 8a:9f:ee:d3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4NS00YTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq/M7JqvC6UAvvyivpoxETSGCBcfhMvnpU5ZH1IoOd/Plk6g2lXjGdOf40k6 UB+iIvP5Mj70+8TPX5yHdLMq0sFs3HMF0B8uiU6mcEAGpv0X3RhjO1rrdaaMFTwi Az1gzJHm+mfN8KzbG6XaDvH9jx1SEKV8278t10ZtfoeteSCcac+sLVRmMdsAGRUF kAjnDYGuxW9UPsqnN7q11Kx6uUGduDIXC8A8RIAraHf+mYlNHEDduhIoEEtzS4ru xHoe3oApJ1Qy+t2oZS1W9K+EzLtWKRUv4Ep6Zm3kNobT7eMbU9RoopzCFBTveR5Y 5BIghenY2FfbmlfCuquZz+u+hQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEnoz3uZ /ov6d/k7I38USkKGEqvwMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDAxMjM3NzhD NEVFMTFFRUI4NzBEQTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA5SAwDQYJKoZIhvcNAQELBQADggEBAISjRBrMTKo4 wdg2HmLlICSSsrZw9GunIXQJMUB+c2J58E6I4l7XYFHab0wCeHP8I+tMEoRnrHYF 4UN6Bd6lTMhvLzqU6sYIBTRN6Zfgu13wkYvdWVWAN9hfL6XZy+qAGEXu/HhoysLs yLfjoNty1+Y3PfqAW9KZCZ/eGSxqmPfI7erUo7nLwQCUnqPoOzMfz1pa2FqAbFVv xGHS/qyC7dLH6fE/Yekl7ZyNtz3yX8a8AwIrFvFlZQpt3Oe8ZBWaZr/KBWCB79oV 5y/ccsS3JEdV7UhL2lPz4X4AY5i6M3lwXHGxtlA/NfpDV5Wh1DMRDPCRc3x3yr0q 6x0+U4qf7tM= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org