$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa File: 4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa (raw, json) Hash identifier: ySBb3NgDZpymqY0CfpJc0RSV4NJZhiBrxD6Dje+rFYE= Subject key identifier: B9:E7:D5:E1:4C:3A:98:DA:18:4E:74:7E:EF:FC:9D:4F:90:7F:04:ED Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0DBC Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa Signing time: Thu 14 Nov 2024 14:13:51 +0000 ROA not before: Thu 14 Nov 2024 14:13:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153458 IP address blocks: 2406:840:e2c0::/44 maxlen: 48 2406:840:feac::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3516 (0xdbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Nov 14 14:13:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6736059f-0cc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:45:e5:9a:5e:4d:7c:e8:cf:d2:bf:23:5c:78: e7:d1:30:03:f7:7f:16:b5:c9:68:f0:6e:14:6b:82: 09:23:42:0f:e6:7f:74:02:53:5f:5f:12:49:9a:e5: 20:5a:92:a3:ad:aa:9e:38:5b:47:ed:6d:91:be:1e: cd:76:a2:d7:94:32:a3:c5:72:1b:b3:08:b2:85:9e: 29:1c:ef:87:ef:a1:fe:c9:a1:6e:c8:29:7a:22:82: 58:fe:9f:4d:6c:26:99:bd:35:d2:c6:bd:32:b7:8b: 03:e4:45:91:2a:3c:6f:9f:83:55:70:e1:8a:ff:06: a6:51:59:12:3a:e0:a0:25:30:24:81:02:dc:6f:1c: ae:8b:25:39:42:8d:2e:56:94:a5:36:a4:58:19:6b: 99:71:94:10:ba:10:aa:0c:18:c3:15:88:6c:01:f4: 35:ad:f4:7a:63:e6:b2:d5:c1:ed:2b:31:4d:b3:4d: c2:a7:db:77:82:b8:ba:0c:2f:7b:48:40:48:12:6c: fa:1c:03:b2:33:ae:3f:f6:c8:69:4b:9c:4d:a1:3f: 1b:62:5d:f0:0f:54:84:3e:ad:18:91:a1:1d:c2:82: 8d:f3:88:b6:50:53:70:77:ff:43:dd:63:9f:71:56: c1:f5:f7:fd:c9:62:3e:23:47:2b:ab:87:70:d5:d9: e3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E7:D5:E1:4C:3A:98:DA:18:4E:74:7E:EF:FC:9D:4F:90:7F:04:ED X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4A0DC3DCA29211EFA2E3BE76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e2c0::/44 2406:840:feac::/48 Signature Algorithm: sha256WithRSAEncryption 7d:3e:08:92:09:37:55:ee:92:55:e9:0f:4f:f3:22:ff:21:d3: 19:81:e6:9b:bc:1d:a1:e9:42:c2:9c:29:9e:73:d8:ce:05:30: 3c:63:66:76:2a:0a:49:84:33:07:83:5b:25:09:df:3e:36:9b: 58:71:36:43:6a:a8:55:61:50:6a:50:11:55:88:9e:5b:80:f5: b9:68:fc:c2:65:2d:70:82:4f:8e:a5:70:29:71:ea:9f:a4:65: b9:69:e4:2b:13:b2:01:76:7d:78:94:d6:6c:6c:43:34:eb:86: f6:32:67:11:06:0a:e8:19:c1:20:c3:8a:7a:80:43:9a:d2:34: f6:ec:87:70:c3:96:fa:b7:e7:43:df:cb:e5:0e:d7:f0:2f:95: 6f:02:b4:fc:6a:17:ac:d9:9c:0c:6f:7a:c1:f3:fe:91:3a:41: 38:05:27:da:d3:1c:ae:65:09:88:7f:1b:24:66:2f:a4:3e:fa: 57:8b:62:a1:34:a8:79:cb:1a:0e:d4:9a:dc:63:a1:77:7d:a8: b8:f5:cc:95:51:65:53:cc:66:24:5d:01:f8:e7:d0:e8:24:a3: 63:63:f2:89:34:46:34:d6:b5:61:5f:fb:73:e1:87:61:8f:55: 33:61:39:c9:3f:9a:2f:c8:58:cb:99:6f:b4:4c:43:ac:0b:d7: 99:16:02:34 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMTE0MTQxMzUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2MDU5Zi0wY2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEXlml5NfOjP0r8jXHjn0TAD938Wtclo8G4Ua4IJI0IP5n90AlNfXxJJmuUg WpKjraqeOFtH7W2Rvh7NdqLXlDKjxXIbswiyhZ4pHO+H76H+yaFuyCl6IoJY/p9N bCaZvTXSxr0yt4sD5EWRKjxvn4NVcOGK/wamUVkSOuCgJTAkgQLcbxyuiyU5Qo0u VpSlNqRYGWuZcZQQuhCqDBjDFYhsAfQ1rfR6Y+ay1cHtKzFNs03Cp9t3gri6DC97 SEBIEmz6HAOyM64/9shpS5xNoT8bYl3wD1SEPq0YkaEdwoKN84i2UFNwd/9D3WOf cVbB9ff9yWI+I0crq4dw1dnjKQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLnn1eFM OpjaGE50fu/8nU+QfwTtMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEEwREMzRENB MjkyMTFFRkEyRTNCRTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4sADBwAkBghA/qwwDQYJKoZIhvcNAQELBQADggEB AH0+CJIJN1XuklXpD0/zIv8h0xmB5pu8HaHpQsKcKZ5z2M4FMDxjZnYqCkmEMweD WyUJ3z42m1hxNkNqqFVhUGpQEVWInluA9blo/MJlLXCCT46lcClx6p+kZblp5CsT sgF2fXiU1mxsQzTrhvYyZxEGCugZwSDDinqAQ5rSNPbsh3DDlvq350Pfy+UO1/Av lW8CtPxqF6zZnAxvesHz/pE6QTgFJ9rTHK5lCYh/GyRmL6Q++leLYqE0qHnLGg7U mtxjoXd9qLj1zJVRZVPMZiRdAfjn0Ogko2Nj8ok0RjTWtWFf+3Phh2GPVTNhOck/ mi/IWMuZb7RMQ6wL15kWAjQ= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:12 2024 by rpki-client on console-fra.rpki-client.org