$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa File: 624BB126331A11EFAB575211C4F9AE02.roa (raw, json) Hash identifier: p9zmdLvs0V9xtt8DBoATZ6F4oiKZ9CpoDqlQtYuXmno= Subject key identifier: 3D:F5:EA:86:45:B7:AE:F6:89:07:D7:E6:FD:C0:98:81:63:DD:E6:E7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CF6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa Signing time: Tue 25 Jun 2024 17:43:08 +0000 ROA not before: Tue 25 Jun 2024 17:43:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153033 IP address blocks: 2406:840:fdb0::/44 maxlen: 48 2406:840:fe93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3318 (0xcf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jun 25 17:43:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667b01ac-6be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e6:b0:60:ba:df:b7:f8:67:12:ad:b7:af:2e: 40:1e:de:2d:8b:00:a3:e8:01:12:da:c6:c9:c9:65: f5:a7:3e:5a:5f:b5:6c:d9:3b:15:69:55:c1:b0:bc: bc:d2:2f:0f:51:09:21:1f:de:09:92:65:02:16:18: d2:d8:18:9f:59:21:56:a6:84:f0:52:b1:b0:38:d5: bf:35:f3:b4:8e:1b:5e:b5:f1:81:c9:16:be:81:79: d6:ca:0c:9d:26:6b:45:eb:da:b4:f7:3f:3d:2d:8d: 66:4b:aa:97:86:76:81:81:68:43:16:68:68:46:3f: 57:27:73:23:1d:a4:89:37:91:42:37:27:41:ce:31: 20:a0:e8:f0:1e:76:74:95:7e:05:d5:24:f1:54:b5: 80:e0:a5:8f:d5:bb:1e:13:a2:ea:5f:75:de:e0:80: 43:2c:1b:14:6c:c9:a9:c0:4a:f5:09:fc:6b:41:b3: 77:04:2b:91:2e:2f:74:68:7c:a0:47:19:89:74:f6: f7:13:66:1d:0b:6b:9e:38:f7:41:64:cc:d5:d5:7a: cd:b4:be:d6:b2:2b:4f:11:e9:03:5d:c2:b4:21:d1: f1:9b:ee:2d:67:c3:97:c8:6c:06:52:67:2b:56:94: be:0d:03:7b:7a:f5:0d:42:59:03:d9:ec:53:71:53: a2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F5:EA:86:45:B7:AE:F6:89:07:D7:E6:FD:C0:98:81:63:DD:E6:E7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/624BB126331A11EFAB575211C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fdb0::/44 2406:840:fe93::/48 Signature Algorithm: sha256WithRSAEncryption 07:cb:2b:ac:cd:8a:c1:fe:13:b5:73:29:b8:62:10:94:8c:a5: a7:85:1a:02:95:db:3b:3c:46:67:bc:36:1a:6f:82:cf:74:ae: 48:26:a4:61:20:e0:50:0c:e0:9a:16:34:db:cf:3c:ec:3d:4c: 3a:95:a8:59:61:86:57:c8:64:6d:f8:8d:dc:5b:db:f7:e3:c3: c6:d6:46:69:0e:70:af:ae:16:db:f4:2d:3e:05:5a:f6:bc:55: 4a:b8:44:bf:d7:c1:40:13:da:e6:5f:7f:d3:b5:38:a3:c7:a3: 15:5c:dc:1d:03:5e:08:a6:ae:22:11:68:0f:f6:32:2f:4a:f1: e9:dd:66:91:94:6e:49:aa:78:d1:fb:83:39:50:0d:1e:a9:e1: ea:c0:db:1d:5d:ca:e0:63:a3:20:f9:86:a7:3e:2f:be:68:d1: db:c6:55:e4:3c:40:42:7b:08:56:e0:be:be:aa:d1:30:f2:ed: a1:9c:e7:a8:b1:69:be:0e:3e:50:9a:63:67:a3:e3:9d:4e:f0: db:ed:1e:03:bf:5d:a1:0d:ac:4f:bc:75:01:c8:ca:24:23:2a: d2:76:e4:98:e2:44:8d:ba:a8:40:77:f1:4e:3b:b3:5a:64:6d: 99:c2:e9:43:2e:d0:0f:fd:9a:de:fd:00:7a:5d:74:19:e7:8b: ae:bf:a3:7d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNjI1MTc0MzA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdiMDFhYy02YmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+awYLrft/hnEq23ry5AHt4tiwCj6AES2sbJyWX1pz5aX7Vs2TsVaVXBsLy8 0i8PUQkhH94JkmUCFhjS2BifWSFWpoTwUrGwONW/NfO0jhtetfGByRa+gXnWygyd JmtF69q09z89LY1mS6qXhnaBgWhDFmhoRj9XJ3MjHaSJN5FCNydBzjEgoOjwHnZ0 lX4F1STxVLWA4KWP1bseE6LqX3Xe4IBDLBsUbMmpwEr1CfxrQbN3BCuRLi90aHyg RxmJdPb3E2YdC2ueOPdBZMzV1XrNtL7WsitPEekDXcK0IdHxm+4tZ8OXyGwGUmcr VpS+DQN7evUNQlkD2exTcVOinwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFD316oZF t672iQfX5v3AmIFj3ebnMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjI0QkIxMjYz MzFBMTFFRkFCNTc1MjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/bADBwAkBghA/pMwDQYJKoZIhvcNAQELBQADggEB AAfLK6zNisH+E7VzKbhiEJSMpaeFGgKV2zs8Rme8Nhpvgs90rkgmpGEg4FAM4JoW NNvPPOw9TDqVqFlhhlfIZG34jdxb2/fjw8bWRmkOcK+uFtv0LT4FWva8VUq4RL/X wUAT2uZff9O1OKPHoxVc3B0DXgimriIRaA/2Mi9K8endZpGUbkmqeNH7gzlQDR6p 4erA2x1dyuBjoyD5hqc+L75o0dvGVeQ8QEJ7CFbgvr6q0TDy7aGc56ixab4OPlCa Y2ej451O8NvtHgO/XaENrE+8dQHIyiQjKtJ25JjiRI26qEB38U47s1pkbZnC6UMu 0A/9mt79AHpddBnni66/o30= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:05 2024 by rpki-client on console-ams.rpki-client.org