$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa File: 571134E859FF11EDBDFB474BC4F9AE02.roa (raw, json) Hash identifier: m15c+2nqALHdlbEyhk3hr8IolQTRVZpNKymfhVnMASo= Subject key identifier: 88:A5:28:77:22:20:D6:67:22:43:A0:A3:D2:C3:43:B1:B8:D4:26:7F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CB6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa Signing time: Sun 26 May 2024 21:33:04 +0000 ROA not before: Sun 26 May 2024 21:33:04 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 61302 IP address blocks: 2406:840:e240::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3254 (0xcb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:33:04 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa8f-6b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8f:3f:4c:17:94:cf:50:26:b6:c8:04:ff:8e: a0:da:ce:e4:db:da:b4:45:8a:41:2c:b8:70:71:c4: 33:8c:5f:ca:ad:a3:2d:01:70:69:a9:f1:f7:80:b3: ee:95:5c:ab:58:f3:a6:32:0c:76:19:39:a0:0b:09: 48:c4:46:77:78:ca:65:2f:52:dc:84:6f:a0:f2:a7: 10:09:b4:08:3e:a2:8a:da:09:82:b6:88:5c:c7:f0: 2b:ed:07:58:de:d4:33:40:d5:95:5a:8a:64:3f:d1: a5:d1:2d:72:5f:15:58:6c:c9:53:0c:bc:24:20:83: 52:b3:17:e5:44:52:9b:f7:54:4d:e6:99:67:9e:31: aa:7e:25:4d:ae:68:cb:b3:d6:64:66:90:1d:e5:91: 63:21:69:f0:ec:50:ce:d3:7b:79:eb:1e:e4:5f:91: 46:c9:ea:c9:f3:96:75:29:05:1c:53:a5:b2:3f:31: 8c:be:13:7a:39:53:9c:6b:2c:e2:6c:7a:73:ca:8c: c4:2f:92:55:24:c0:3c:8c:ad:9c:6c:55:3e:a6:dd: 62:da:39:b0:97:e5:76:86:0c:ef:87:c1:35:4b:00: 57:0c:bd:8c:27:a5:0c:96:b7:6a:ec:bf:b8:57:3e: 18:b3:ee:da:3c:8c:92:5f:5c:02:25:37:02:6e:cf: bf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A5:28:77:22:20:D6:67:22:43:A0:A3:D2:C3:43:B1:B8:D4:26:7F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e240::/44 Signature Algorithm: sha256WithRSAEncryption 3a:47:28:eb:2d:e5:c2:dd:9a:03:db:8e:fc:6e:32:7d:b5:57: f6:4e:30:9e:53:96:aa:51:3d:e1:2f:01:3f:91:ae:95:e0:23: ce:ae:3d:45:cf:87:3c:3c:39:09:bd:92:4c:57:8a:3f:04:ed: 5f:05:d1:24:d5:20:8c:0f:ad:20:fd:59:e1:98:14:4c:af:0d: 86:ee:f0:15:21:a5:47:57:49:09:98:d3:03:81:b6:a7:1a:ce: 12:8c:06:6d:7f:17:ea:eb:02:bf:d5:98:d1:e5:15:0d:ef:bf: b7:a0:f7:35:42:c8:92:ee:c5:5f:28:b9:c8:42:2a:2f:aa:09: 71:61:6e:8e:cd:e3:1f:a3:dc:bc:ad:c0:e6:94:b5:34:90:ec: a6:da:d2:c9:20:49:fe:4b:f8:2c:a1:fd:9e:11:00:84:fb:be: c6:d1:4b:e7:39:a8:4a:8e:d4:22:84:f5:10:52:7a:fa:7f:f2: 2f:68:a3:ab:33:c7:ee:85:9f:57:10:fb:31:0e:22:6f:f0:dd: 34:a2:b4:47:7b:0b:52:07:78:96:c4:71:7e:48:45:e8:1c:5e: bd:cc:51:7b:f9:ad:f8:89:cd:ed:eb:a7:55:79:aa:cc:e4:63: 43:bb:c2:23:39:9a:91:c1:f9:b8:30:77:eb:b9:bf:4a:e5:50: 86:75:b8:88 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMzA0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4Zi02YjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlY8/TBeUz1AmtsgE/46g2s7k29q0RYpBLLhwccQzjF/KraMtAXBpqfH3gLPu lVyrWPOmMgx2GTmgCwlIxEZ3eMplL1LchG+g8qcQCbQIPqKK2gmCtohcx/Ar7QdY 3tQzQNWVWopkP9Gl0S1yXxVYbMlTDLwkIINSsxflRFKb91RN5plnnjGqfiVNrmjL s9ZkZpAd5ZFjIWnw7FDO03t56x7kX5FGyerJ85Z1KQUcU6WyPzGMvhN6OVOcayzi bHpzyozEL5JVJMA8jK2cbFU+pt1i2jmwl+V2hgzvh8E1SwBXDL2MJ6UMlrdq7L+4 Vz4Ys+7aPIySX1wCJTcCbs+/IQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIilKHci INZnIkOgo9LDQ7G41CZ/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTcxMTM0RTg1 OUZGMTFFREJERkI0NzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4kAwDQYJKoZIhvcNAQELBQADggEBADpHKOst5cLd mgPbjvxuMn21V/ZOMJ5TlqpRPeEvAT+RrpXgI86uPUXPhzw8OQm9kkxXij8E7V8F 0STVIIwPrSD9WeGYFEyvDYbu8BUhpUdXSQmY0wOBtqcazhKMBm1/F+rrAr/VmNHl FQ3vv7eg9zVCyJLuxV8ouchCKi+qCXFhbo7N4x+j3LytwOaUtTSQ7Kba0skgSf5L +Cyh/Z4RAIT7vsbRS+c5qEqO1CKE9RBSevp/8i9oo6szx+6Fn1cQ+zEOIm/w3TSi tEd7C1IHeJbEcX5IRegcXr3MUXv5rfiJze3rp1V5qszkY0O7wiM5mpHB+bgwd+u5 v0rlUIZ1uIg= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org