$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/59125552AAE411ED85DB9C62C4F9AE02.roa File: 59125552AAE411ED85DB9C62C4F9AE02.roa (raw, json) Hash identifier: Zae4AF0T1NSDdmDTN61gbTbumgbemmig1VSDXzLl5EM= Subject key identifier: 3C:76:E1:C4:E8:C2:3C:06:6F:1C:40:9C:44:3A:F6:39:B8:08:3D:10 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C98 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/59125552AAE411ED85DB9C62C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:36 +0000 ROA not before: Sun 26 May 2024 21:32:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 200078 IP address blocks: 2406:840:9980::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa74-69e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:45:a0:66:45:a9:43:49:94:07:e6:a0:08:10: 58:92:86:90:08:2d:c5:fb:6e:b2:16:58:b2:9c:d8: 56:54:b8:59:5d:2b:ce:84:e9:8c:c2:e5:5f:91:08: 9a:98:52:45:f8:4c:3f:67:b3:03:72:c0:f1:8a:e6: 67:6c:c9:25:eb:18:57:5f:24:24:dd:3d:25:b4:bc: 8e:85:bd:53:b9:1e:9a:54:ea:1a:bb:42:bb:2b:b4: 54:7a:ad:9a:b2:91:f7:b6:34:36:0b:41:0f:40:0b: 42:be:1a:4e:e2:c6:4c:cb:b4:91:41:89:b2:72:d9: 3c:3c:d0:3c:88:b1:28:a2:60:67:1d:1f:ac:da:d4: 43:b0:90:e5:b9:98:dd:78:47:04:75:ba:cf:15:ca: b3:8a:46:ea:e0:4b:8f:ff:b6:b7:6e:92:a9:2d:f2: d0:9b:b0:6b:f9:12:06:ab:6f:11:26:27:77:6f:e6: d0:28:6f:e4:03:17:75:f2:48:27:3e:f1:0b:8f:4c: 73:90:82:86:b2:b4:59:14:e8:04:6c:64:84:c3:e6: 21:d1:0f:cc:1a:e8:ad:a5:7b:96:fe:91:1c:4d:9b: ba:85:59:f0:20:38:3a:d7:81:04:7a:1e:01:72:83: db:4d:32:89:9a:06:23:e4:b9:0f:a9:05:fe:e0:ad: bd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:76:E1:C4:E8:C2:3C:06:6F:1C:40:9C:44:3A:F6:39:B8:08:3D:10 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/59125552AAE411ED85DB9C62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9980::/44 Signature Algorithm: sha256WithRSAEncryption 34:40:e8:34:72:22:67:af:cd:e5:dc:2b:bf:2a:35:bb:9b:56: 62:e1:52:b8:c9:03:f4:37:f7:08:2a:0a:a7:df:b1:7f:6e:9b: 9b:21:85:19:28:ce:38:ed:4a:b8:eb:16:96:88:08:ea:ff:6b: f4:e9:0e:49:9d:7d:25:7d:1d:dc:0e:a6:7a:db:e2:20:a4:ca: 94:fb:8c:e9:30:12:20:d0:b2:f8:8b:8f:10:ce:ae:f9:3b:ac: f3:ee:75:3d:12:d1:57:3e:51:3f:87:34:fd:ab:96:cb:50:c8: e1:0f:dc:e7:fc:9d:07:58:64:10:d5:b0:86:82:f9:4a:19:a1: 0f:69:66:16:f3:b0:05:83:28:24:16:c2:87:8f:70:ae:9d:e6: 37:56:37:e4:ab:de:f5:46:b1:b0:eb:6c:e5:3a:37:67:63:77: 0d:57:33:e7:bd:39:60:fa:db:5c:be:f6:d6:b2:2b:a3:c6:a0: 60:63:d5:fb:5b:83:58:9a:ee:83:d2:db:ab:b1:c9:1c:06:98: e1:4c:86:3e:5b:50:d9:96:3d:fc:04:e9:dc:f8:28:79:fe:52: 15:d9:3a:3e:77:cb:b3:53:aa:ef:09:56:66:24:cc:43:01:77: 2f:0d:1a:69:86:43:18:42:a7:38:dc:20:ed:f4:dd:bb:b6:4b: b5:8d:d3:d6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE3NC02OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0WgZkWpQ0mUB+agCBBYkoaQCC3F+26yFliynNhWVLhZXSvOhOmMwuVfkQia mFJF+Ew/Z7MDcsDxiuZnbMkl6xhXXyQk3T0ltLyOhb1TuR6aVOoau0K7K7RUeq2a spH3tjQ2C0EPQAtCvhpO4sZMy7SRQYmyctk8PNA8iLEoomBnHR+s2tRDsJDluZjd eEcEdbrPFcqzikbq4EuP/7a3bpKpLfLQm7Br+RIGq28RJid3b+bQKG/kAxd18kgn PvELj0xzkIKGsrRZFOgEbGSEw+Yh0Q/MGuitpXuW/pEcTZu6hVnwIDg614EEeh4B coPbTTKJmgYj5LkPqQX+4K29lQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDx24cTo wjwGbxxAnEQ69jm4CD0QMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNTkxMjU1NTJB QUU0MTFFRDg1REI5QzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAmYAwDQYJKoZIhvcNAQELBQADggEBADRA6DRyImev zeXcK78qNbubVmLhUrjJA/Q39wgqCqffsX9um5shhRkozjjtSrjrFpaICOr/a/Tp DkmdfSV9HdwOpnrb4iCkypT7jOkwEiDQsviLjxDOrvk7rPPudT0S0Vc+UT+HNP2r lstQyOEP3Of8nQdYZBDVsIaC+UoZoQ9pZhbzsAWDKCQWwoePcK6d5jdWN+Sr3vVG sbDrbOU6N2djdw1XM+e9OWD621y+9tayK6PGoGBj1ftbg1ia7oPS26uxyRwGmOFM hj5bUNmWPfwE6dz4KHn+UhXZOj53y7NTqu8JVmYkzEMBdy8NGmmGQxhCpzjcIO30 3bu2S7WN09Y= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org