$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa File: 539AFA66240F11EF8FFD251CC4F9AE02.roa (raw, json) Hash identifier: VYTkuogIKVhc0T1gFsjAQwO+jPYLwvMq35fhCz4GPJ8= Subject key identifier: 36:DE:D2:1E:3A:85:EE:D6:19:68:F3:BF:F9:8C:F3:ED:E8:B5:5D:D3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CCB Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa Signing time: Thu 06 Jun 2024 14:16:12 +0000 ROA not before: Thu 06 Jun 2024 14:16:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 210384 IP address blocks: 2406:840:9860::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3275 (0xccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jun 6 14:16:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6661c4ac-bc6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6b:a5:3b:79:ac:83:0b:c4:bb:7c:1a:6a:09: 01:7a:77:f6:98:6b:e1:74:d0:04:69:21:c4:6d:cd: 83:48:41:16:99:02:de:24:5c:c3:b0:e9:cf:1b:d6: b8:90:bf:ae:4e:d7:56:90:7d:f0:8f:47:95:34:86: 23:b7:0c:9e:18:72:da:a3:d2:44:1f:81:3b:d8:b6: bf:af:f1:81:92:ce:47:c6:90:69:37:b0:ca:d1:45: 38:7c:13:e1:d3:f2:5f:e5:c7:2d:1f:23:78:78:7d: d9:20:cb:60:60:04:43:c1:15:60:f6:74:c5:d9:ed: dd:a3:2b:f7:08:db:46:a6:c2:d3:24:f0:42:af:67: cb:c2:28:e5:d7:9a:41:9a:42:19:e4:a8:5b:08:11: cb:20:47:28:01:49:c1:2c:e7:ca:09:1b:34:53:d4: d4:a9:40:d3:bd:66:b6:ef:37:d9:4b:68:3a:40:b2: 50:4d:0d:d2:7b:78:a0:43:09:d9:72:39:87:41:c5: 74:1b:b6:42:bc:49:dc:cf:ba:0b:f8:6b:6a:ad:87: 51:ef:26:92:d3:b2:7f:43:65:6e:a2:0b:ef:78:d8: 1f:94:65:13:10:db:5b:1d:dc:04:8b:2b:b5:e7:3f: d6:38:98:14:9e:35:4c:bf:b4:aa:12:20:d4:0f:00: 10:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:DE:D2:1E:3A:85:EE:D6:19:68:F3:BF:F9:8C:F3:ED:E8:B5:5D:D3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/539AFA66240F11EF8FFD251CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9860::/44 Signature Algorithm: sha256WithRSAEncryption 6a:8b:bf:74:f8:f0:12:ed:39:a0:c2:73:52:cb:c9:be:78:98: 0f:87:af:00:4c:ee:d1:dd:86:82:0e:bc:dc:98:f2:ac:d6:b2: 22:4f:e3:5f:ab:ef:d0:1e:2b:1f:db:a9:18:19:c0:bf:1d:e5: 16:20:e6:94:73:68:c3:88:d1:c2:56:28:3e:ae:ae:7a:58:34: ef:b5:84:12:0f:76:77:37:77:00:e0:3f:c6:a4:dd:a9:fe:8d: 04:ce:ee:20:2e:35:85:d8:c4:cb:01:c8:31:a1:61:d0:8b:8d: 31:36:54:ca:63:59:49:d1:83:9c:9a:09:b0:42:29:dd:19:2c: e3:52:0f:d3:a4:0b:47:b0:2f:be:13:98:a0:92:13:9b:7f:2f: b3:0a:93:7e:56:5a:6a:fc:8e:75:36:6d:d1:77:2e:26:d4:0e: 51:cd:ab:ff:58:15:23:01:f0:25:e8:f6:8b:93:95:4d:a0:53: 32:7d:e6:53:3c:06:86:38:a9:12:ca:c5:55:03:2b:e8:b0:50: 4a:6a:eb:ea:15:38:9f:4c:b9:73:7c:3f:d4:25:90:97:e6:40: a3:5c:0c:af:c5:21:e5:72:1e:1e:34:cc:44:01:1e:4a:cf:75: 9a:fe:95:f1:d7:ae:82:2f:b3:19:1e:12:91:77:7a:6e:86:89: cc:ed:bb:f0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNjA2MTQxNjEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxYzRhYy1iYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72ulO3msgwvEu3waagkBenf2mGvhdNAEaSHEbc2DSEEWmQLeJFzDsOnPG9a4 kL+uTtdWkH3wj0eVNIYjtwyeGHLao9JEH4E72La/r/GBks5HxpBpN7DK0UU4fBPh 0/Jf5cctHyN4eH3ZIMtgYARDwRVg9nTF2e3doyv3CNtGpsLTJPBCr2fLwijl15pB mkIZ5KhbCBHLIEcoAUnBLOfKCRs0U9TUqUDTvWa27zfZS2g6QLJQTQ3Se3igQwnZ cjmHQcV0G7ZCvEncz7oL+GtqrYdR7yaS07J/Q2VuogvveNgflGUTENtbHdwEiyu1 5z/WOJgUnjVMv7SqEiDUDwAQowIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDbe0h46 he7WGWjzv/mM8+3otV3TMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTM5QUZBNjYy NDBGMTFFRjhGRkQyNTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAmGAwDQYJKoZIhvcNAQELBQADggEBAGqLv3T48BLt OaDCc1LLyb54mA+HrwBM7tHdhoIOvNyY8qzWsiJP41+r79AeKx/bqRgZwL8d5RYg 5pRzaMOI0cJWKD6urnpYNO+1hBIPdnc3dwDgP8ak3an+jQTO7iAuNYXYxMsByDGh YdCLjTE2VMpjWUnRg5yaCbBCKd0ZLONSD9OkC0ewL74TmKCSE5t/L7MKk35WWmr8 jnU2bdF3LibUDlHNq/9YFSMB8CXo9ouTlU2gUzJ95lM8BoY4qRLKxVUDK+iwUEpq 6+oVOJ9MuXN8P9QlkJfmQKNcDK/FIeVyHh40zEQBHkrPdZr+lfHXroIvsxkeEpF3 em6Gicztu/A= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org