$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa File: 4C7803900ED011EFABFC2A57C4F9AE02.roa (raw, json) Hash identifier: Og3dCcassCvwM3ibz+auc6pzjGfu5FYoWttw0NQjAtw= Subject key identifier: 59:D2:83:50:6B:69:CB:12:A0:D1:20:25:9B:D6:31:97:AF:86:10:D7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D56 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa Signing time: Tue 10 Sep 2024 16:36:57 +0000 ROA not before: Tue 10 Sep 2024 16:36:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 7721 IP address blocks: 2406:840:9970::/44 maxlen: 48 2406:840:eed0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 10 16:36:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e075a9-500a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6e:57:a5:ff:f5:42:1d:e6:71:8b:ad:76:db: f1:80:b9:74:c6:02:e3:88:e0:0b:d7:2f:35:05:88: d7:19:96:7d:84:46:e0:88:c9:29:7a:40:97:8f:93: a4:69:49:0b:a6:02:5d:07:de:b9:68:92:26:2f:6e: a0:42:b2:7a:cb:9c:3f:38:fe:a2:f4:52:dc:07:f2: a1:eb:c6:d5:ed:0b:49:6b:41:73:da:e4:62:5f:38: eb:45:17:f2:10:7b:79:04:90:88:4d:0c:2f:5e:ac: 40:3c:4d:61:90:bb:cf:fc:ce:25:9f:d6:27:1b:6b: 43:0a:40:59:73:a9:67:4b:ec:45:d0:d7:bc:fb:3d: bb:44:31:03:c2:fa:e5:d0:be:13:9c:df:69:93:ff: ba:a4:b3:ba:08:b8:6a:51:af:38:88:fe:f7:8a:75: 5b:62:bd:e4:2a:78:cb:65:b1:3a:83:56:29:bf:2f: 50:b7:2f:5d:5f:1b:cc:a4:27:64:1a:b2:2f:c7:02: ca:c0:a7:4a:ad:2e:69:aa:50:b9:bb:bf:e1:ee:0a: 6e:a8:aa:b3:54:4d:57:5a:74:e3:52:eb:d3:95:f9: 3f:29:07:bb:03:ee:8b:27:62:12:9a:97:ca:35:54: c7:4f:ae:52:ca:c1:c6:cd:aa:d4:b5:ca:7c:13:74: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D2:83:50:6B:69:CB:12:A0:D1:20:25:9B:D6:31:97:AF:86:10:D7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/4C7803900ED011EFABFC2A57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9970::/44 2406:840:eed0::/44 Signature Algorithm: sha256WithRSAEncryption 99:28:73:01:1b:ce:11:f7:c8:30:0d:07:55:b8:24:c9:3a:30: 01:40:72:33:90:86:f1:80:fc:30:71:91:9d:ed:7e:35:53:c3: a3:97:07:97:8e:20:b5:8d:cc:c9:13:46:b8:ec:4c:b1:52:79: cb:b4:53:51:bf:1b:fc:1e:b1:98:9f:a4:34:75:9d:e2:11:17: b7:9a:8d:c9:31:93:aa:60:24:71:c1:c2:7a:6d:39:35:bf:1b: 39:e2:74:5d:7e:62:cd:5b:06:28:3e:50:d9:5c:dc:af:f7:ef: 7c:c0:d8:7d:83:cb:67:9e:dd:5d:e1:3b:22:3d:15:f1:ea:3d: 81:63:f9:a5:35:9e:9f:aa:53:9b:b0:c1:6b:41:25:28:7c:45: 4e:84:c5:de:7f:db:46:14:a9:3d:77:ee:cf:d3:bd:9d:da:f0: e5:67:55:61:47:0c:c1:1e:cb:e5:65:59:01:af:f1:6d:b9:1c: 07:60:14:92:1b:71:25:3f:82:b8:a8:fc:77:5c:74:98:11:51: 9b:c8:a6:ad:a7:88:06:6c:d2:ce:a9:1c:25:17:eb:c6:0a:f9: a3:d7:a9:c0:ea:50:c3:e7:85:5b:39:66:f9:3c:23:64:27:74: 50:a1:84:8b:22:43:d8:fc:f0:f2:7e:8b:ca:46:69:8b:8e:7c: 43:62:46:ea -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTEwMTYzNjU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwNzVhOS01MDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1m5Xpf/1Qh3mcYutdtvxgLl0xgLjiOAL1y81BYjXGZZ9hEbgiMkpekCXj5Ok aUkLpgJdB965aJImL26gQrJ6y5w/OP6i9FLcB/Kh68bV7QtJa0Fz2uRiXzjrRRfy EHt5BJCITQwvXqxAPE1hkLvP/M4ln9YnG2tDCkBZc6lnS+xF0Ne8+z27RDEDwvrl 0L4TnN9pk/+6pLO6CLhqUa84iP73inVbYr3kKnjLZbE6g1Ypvy9Qty9dXxvMpCdk GrIvxwLKwKdKrS5pqlC5u7/h7gpuqKqzVE1XWnTjUuvTlfk/KQe7A+6LJ2ISmpfK NVTHT65SysHGzarUtcp8E3QtpwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFnSg1Br acsSoNEgJZvWMZevhhDXMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNEM3ODAzOTAw RUQwMTFFRkFCRkMyQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAmXADBwQkBghA7tAwDQYJKoZIhvcNAQELBQADggEB AJkocwEbzhH3yDANB1W4JMk6MAFAcjOQhvGA/DBxkZ3tfjVTw6OXB5eOILWNzMkT RrjsTLFSecu0U1G/G/wesZifpDR1neIRF7eajckxk6pgJHHBwnptOTW/GznidF1+ Ys1bBig+UNlc3K/373zA2H2Dy2ee3V3hOyI9FfHqPYFj+aU1np+qU5uwwWtBJSh8 RU6Exd5/20YUqT137s/TvZ3a8OVnVWFHDMEey+VlWQGv8W25HAdgFJIbcSU/grio /HdcdJgRUZvIpq2niAZs0s6pHCUX68YK+aPXqcDqUMPnhVs5Zvk8I2QndFChhIsi Q9j88PJ+i8pGaYuOfENiRuo= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org