$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa File: 445DBF2E1B9C11EEB9C23D62C4F9AE02.roa (raw, json) Hash identifier: 2JOpGVJgtqkBl5WYF5cUK5/hunXlB29K6g3S/fpQbAg= Subject key identifier: 23:9E:F1:03:24:6E:71:B2:BD:9B:BF:64:59:87:55:7C:8A:DA:1D:54 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C83 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:17 +0000 ROA not before: Sun 26 May 2024 21:32:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151494 IP address blocks: 2406:840:9150::/44 maxlen: 48 2406:840:feda::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3203 (0xc83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa60-9a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9e:b0:41:9b:b3:79:25:7e:8c:e2:af:ba:5a: 38:e6:35:d8:38:e1:d8:a4:7d:dd:ea:70:77:68:7b: 43:de:04:4d:f6:0d:4e:cc:d1:e9:8c:d8:cf:4e:9b: 68:a8:f1:3c:01:75:ee:ae:93:8b:16:32:95:a7:f8: 51:65:b9:aa:ba:67:3f:93:2e:45:c8:e6:ae:12:86: 01:a4:ce:52:65:9d:2e:26:de:a2:62:97:76:63:1d: 4a:a3:54:46:5d:ff:8d:28:94:35:37:d5:05:89:b1: 46:19:99:2d:5f:16:ac:cb:0c:b4:5f:11:b8:f9:fa: b9:43:60:f9:fc:22:1e:ba:ca:e2:bc:cf:3e:b6:c1: 14:ab:ef:c4:eb:07:cb:8f:d1:93:ba:db:e1:ca:03: a0:59:f6:4d:d7:36:52:84:10:38:4f:09:52:83:0e: 3b:88:53:b1:37:a4:91:e4:01:a0:1a:36:86:6f:7b: ff:22:cd:26:62:da:b3:e2:78:74:eb:d7:b7:25:0d: f6:c7:b8:df:bc:49:ea:50:20:40:60:80:be:da:1e: a3:b6:39:83:57:e0:47:a5:0a:95:ed:fc:60:87:6b: 1e:61:af:2c:6f:9f:02:4c:96:10:b6:69:66:93:66: 28:dc:1f:4c:1c:da:7a:62:ad:4a:49:f2:d6:58:18: 87:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9E:F1:03:24:6E:71:B2:BD:9B:BF:64:59:87:55:7C:8A:DA:1D:54 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9150::/44 2406:840:feda::/48 Signature Algorithm: sha256WithRSAEncryption 9e:ea:d2:b7:42:10:33:0d:53:48:ac:b6:63:e0:96:96:ef:db: a5:ba:60:a0:53:27:be:95:51:a1:c1:2a:f7:2f:4b:cf:21:25: 6e:e9:16:82:fe:53:17:f1:6a:57:92:95:26:37:bc:3f:bd:ed: 2f:ad:c5:0f:77:06:66:d9:a1:8d:ee:a7:9a:cf:13:5b:a7:ee: b5:40:75:87:b0:d6:19:ba:d6:63:33:65:14:20:5b:35:52:3b: 4d:67:40:54:2c:50:37:85:0c:f5:d4:9a:ba:cf:dd:7a:e0:cb: e5:20:b6:40:91:3b:53:36:c4:ab:b7:47:94:54:09:76:c8:f0: 99:86:e0:9b:ad:81:0d:12:34:79:42:8c:0c:10:9d:89:f9:49: 65:43:79:d0:d4:23:32:15:bd:4a:9b:da:60:1e:46:09:de:02: 47:71:ae:4a:d2:37:b3:63:f4:d0:b7:e3:8e:58:93:38:9e:47: f8:cb:51:75:69:84:bd:98:e6:f2:af:3f:b6:df:98:b4:50:fb: 15:6b:b6:a6:c5:e8:8c:fc:4c:4a:2a:b2:36:dd:67:76:f9:4a: 55:eb:44:f2:c3:87:4d:a6:f5:76:6d:8e:e2:d7:5a:6f:2f:f1: de:a7:a0:c6:7b:f7:bd:d5:31:83:f9:b5:c2:2c:c1:0e:85:8c: c4:ea:6f:db -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2MC05YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5J6wQZuzeSV+jOKvulo45jXYOOHYpH3d6nB3aHtD3gRN9g1OzNHpjNjPTpto qPE8AXXurpOLFjKVp/hRZbmqumc/ky5FyOauEoYBpM5SZZ0uJt6iYpd2Yx1Ko1RG Xf+NKJQ1N9UFibFGGZktXxasywy0XxG4+fq5Q2D5/CIeusrivM8+tsEUq+/E6wfL j9GTutvhygOgWfZN1zZShBA4TwlSgw47iFOxN6SR5AGgGjaGb3v/Is0mYtqz4nh0 69e3JQ32x7jfvEnqUCBAYIC+2h6jtjmDV+BHpQqV7fxgh2seYa8sb58CTJYQtmlm k2Yo3B9MHNp6Yq1KSfLWWBiHdQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCOe8QMk bnGyvZu/ZFmHVXyK2h1UMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDQ1REJGMkUx QjlDMTFFRUI5QzIzRDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAkVADBwAkBghA/towDQYJKoZIhvcNAQELBQADggEB AJ7q0rdCEDMNU0istmPglpbv26W6YKBTJ76VUaHBKvcvS88hJW7pFoL+UxfxaleS lSY3vD+97S+txQ93BmbZoY3up5rPE1un7rVAdYew1hm61mMzZRQgWzVSO01nQFQs UDeFDPXUmrrP3Xrgy+UgtkCRO1M2xKu3R5RUCXbI8JmG4JutgQ0SNHlCjAwQnYn5 SWVDedDUIzIVvUqb2mAeRgneAkdxrkrSN7Nj9NC3445YkzieR/jLUXVphL2Y5vKv P7bfmLRQ+xVrtqbF6Iz8TEoqsjbdZ3b5SlXrRPLDh02m9XZtjuLXWm8v8d6noMZ7 973VMYP5tcIswQ6FjMTqb9s= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org