$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa File: 41B221EC862211EA87D9337EC4F9AE02.roa (raw, json) Hash identifier: I21isgiTGPs2by1WtHJxPGTMlL0JGTWpvaX5hhByIEg= Subject key identifier: 29:A3:32:89:95:64:64:93:6B:97:52:15:0F:90:44:51:8F:2B:D1:B9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CB5 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa Signing time: Sun 26 May 2024 21:33:02 +0000 ROA not before: Sun 26 May 2024 21:33:02 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 4842 IP address blocks: 2406:840:f990::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:33:02 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa8d-c125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2e:e4:e0:7f:19:cd:45:2a:ee:c5:a2:77:49: dd:4b:6c:20:b0:d1:47:98:c3:6c:8b:bf:88:64:e0: 6d:e4:25:7d:ce:55:8c:2c:fe:87:4a:7a:05:24:ed: 7f:47:4d:15:35:8a:90:74:96:55:e9:03:71:24:1c: 06:30:a9:45:a5:5b:60:2e:b1:00:f6:44:f7:8c:e4: fc:40:d5:43:f1:89:51:15:34:ae:fd:3f:47:0c:ca: 71:0f:a4:9c:4b:57:7c:f2:d8:98:e4:3d:10:0e:d3: 2c:59:e0:36:d5:d1:69:cb:5b:ec:79:15:bc:ec:86: 20:d2:c5:ad:1c:c2:2e:5c:8c:0f:de:d7:36:69:2e: 78:76:e6:c0:b2:0e:8d:8a:e4:94:c5:ff:ac:1b:c3: ae:d7:91:49:36:17:23:00:9f:d9:76:71:e2:3f:05: ba:89:62:6f:30:a6:b3:c6:b1:95:6c:0c:c5:93:7d: 54:f5:d4:c1:a2:24:65:21:cd:de:e7:28:67:26:8d: 0e:9a:74:b2:98:79:d5:a1:69:41:7f:45:34:3f:66: 08:62:83:48:85:38:a9:b8:ae:d1:f9:d3:69:2c:e2: 11:ee:03:8f:ad:2e:2b:c3:e8:09:86:80:6f:e0:97: 64:f9:87:78:1e:a2:97:5b:6a:85:2d:01:ab:31:ef: f2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A3:32:89:95:64:64:93:6B:97:52:15:0F:90:44:51:8F:2B:D1:B9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f990::/44 Signature Algorithm: sha256WithRSAEncryption 8d:9b:be:13:fa:d9:17:af:e3:04:dd:7e:e8:2c:22:fc:ce:4c: 0d:ec:2b:56:ad:c9:0e:99:4b:bb:de:63:d4:7f:d1:e8:06:b2: 6a:1a:b5:ab:f1:62:92:e7:c1:c2:8d:2f:e8:e3:b8:12:22:7d: b8:0c:ed:9a:b8:c1:e2:cb:8c:48:2b:ff:98:ed:87:ef:d1:fa: ac:1b:03:2a:d2:e7:61:c3:80:01:8c:c8:4a:c0:ab:4f:d3:e4: cf:c7:f8:e0:26:81:57:11:b8:27:19:c8:6b:4b:d5:6d:97:1e: ad:1e:26:22:71:1d:9c:16:3d:4e:ae:10:ef:2b:8a:b3:45:24: ce:0e:70:8d:c0:60:c9:cf:74:c7:8d:b6:4e:6a:25:30:88:82: 77:7a:ab:a7:81:3b:ae:91:ed:4e:7d:3f:60:06:36:ed:1d:18: d5:72:b7:34:65:db:be:3f:e9:d6:ac:ab:a3:65:94:71:0d:22: 87:91:3a:c1:74:97:12:d0:6b:10:e1:ca:eb:8f:e1:fe:7d:b7: 1a:15:0d:aa:20:52:0e:df:8e:bd:94:6d:41:5a:58:1f:59:35: 40:e1:cf:2b:8e:6f:79:34:b3:9a:79:73:64:d3:1a:52:d7:f0: d2:b3:3f:d4:e0:1f:2a:b1:1d:fe:30:1b:09:65:dc:dd:54:e4: bf:6e:45:77 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMzAyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4ZC1jMTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6y7k4H8ZzUUq7sWid0ndS2wgsNFHmMNsi7+IZOBt5CV9zlWMLP6HSnoFJO1/ R00VNYqQdJZV6QNxJBwGMKlFpVtgLrEA9kT3jOT8QNVD8YlRFTSu/T9HDMpxD6Sc S1d88tiY5D0QDtMsWeA21dFpy1vseRW87IYg0sWtHMIuXIwP3tc2aS54dubAsg6N iuSUxf+sG8Ou15FJNhcjAJ/ZdnHiPwW6iWJvMKazxrGVbAzFk31U9dTBoiRlIc3e 5yhnJo0OmnSymHnVoWlBf0U0P2YIYoNIhTipuK7R+dNpLOIR7gOPrS4rw+gJhoBv 4Jdk+Yd4HqKXW2qFLQGrMe/y0QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCmjMomV ZGSTa5dSFQ+QRFGPK9G5MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDFCMjIxRUM4 NjIyMTFFQTg3RDkzMzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+ZAwDQYJKoZIhvcNAQELBQADggEBAI2bvhP62Rev 4wTdfugsIvzOTA3sK1atyQ6ZS7veY9R/0egGsmoatavxYpLnwcKNL+jjuBIifbgM 7Zq4weLLjEgr/5jth+/R+qwbAyrS52HDgAGMyErAq0/T5M/H+OAmgVcRuCcZyGtL 1W2XHq0eJiJxHZwWPU6uEO8rirNFJM4OcI3AYMnPdMeNtk5qJTCIgnd6q6eBO66R 7U59P2AGNu0dGNVytzRl274/6dasq6NllHENIoeROsF0lxLQaxDhyuuP4f59txoV DaogUg7fjr2UbUFaWB9ZNUDhzyuOb3k0s5p5c2TTGlLX8NKzP9TgHyqxHf4wGwll 3N1U5L9uRXc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org