$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa File: 672D5E3EDAFE11EE986FFF5BC4F9AE02.roa (raw, json) Hash identifier: SBasMlZNSPR1cq/JJWpNgY97cNef/JDRcRyGYHtGhM8= Subject key identifier: 5E:E7:4F:06:9A:1D:9A:3C:2A:0F:63:92:9A:39:0A:CB:5A:C1:D2:03 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D76 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa Signing time: Sun 15 Sep 2024 13:33:55 +0000 ROA not before: Sun 15 Sep 2024 13:33:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152631 IP address blocks: 2406:840:9c00::/40 maxlen: 48 2406:840:c800::/40 maxlen: 48 2406:840:ce00::/40 maxlen: 48 2406:840:fb00::/40 maxlen: 48 2406:840:fecb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3446 (0xd76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 15 13:33:55 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e6e242-e0e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:01:e4:4d:70:dd:65:c2:f4:32:8c:c8:c2: 7a:1a:c6:2c:41:8d:d4:82:4b:ed:04:5a:42:a1:93: af:75:bc:c3:82:7c:da:b2:dd:11:07:5e:f2:a4:b2: e7:5e:8f:f7:21:28:af:f3:e4:72:a5:54:30:f2:93: fa:b4:78:20:44:fa:37:d0:b3:c1:04:bd:92:86:c1: e8:a1:bb:f9:45:f9:e8:9f:ec:f4:3e:37:ee:27:a3: 22:cb:64:61:02:2f:bf:9c:4f:b6:d3:a9:d8:fb:99: d0:48:5c:7d:65:76:94:1f:46:cd:b2:4c:ad:7f:9a: ae:aa:57:ec:b3:e7:9b:6c:fb:45:a5:78:d7:7e:73: 91:fd:d1:92:a7:80:ec:de:22:da:98:c4:04:08:f0: 93:2d:c3:75:4a:2a:d8:74:4d:35:2d:97:f2:70:24: 7c:bd:d2:9f:9d:be:3a:9b:ec:e4:44:82:47:bb:03: a4:0c:58:6d:4d:a4:cf:cf:7c:db:c7:87:ef:4f:1a: 62:7f:33:29:4a:9d:29:3b:95:a1:a3:fc:58:97:0e: 4f:63:f2:d6:59:e9:25:57:10:65:0f:1a:2c:59:ea: 73:57:f3:c0:6e:6f:f6:9c:03:7b:b7:b8:a4:fc:02: e7:a6:de:20:a1:fa:15:6b:60:f3:4c:63:a7:e9:2e: 57:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E7:4F:06:9A:1D:9A:3C:2A:0F:63:92:9A:39:0A:CB:5A:C1:D2:03 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9c00::/40 2406:840:c800::/40 2406:840:ce00::/40 2406:840:fb00::/40 2406:840:fecb::/48 Signature Algorithm: sha256WithRSAEncryption 2a:fa:99:77:3b:e7:e7:a8:1b:01:a8:1a:cf:89:a3:34:37:ac: 60:99:1f:c6:8f:8f:c1:25:9a:eb:d7:47:4f:3b:6f:5d:59:b1: 19:32:5f:a3:2b:fd:e4:0e:6f:3d:e7:a4:59:55:eb:5b:ad:c1: 3c:d1:d3:e6:c6:36:46:7e:d5:eb:1c:9c:09:ee:b4:2f:a6:04: 5f:dd:d5:db:8a:b9:b6:b6:10:41:4d:87:49:dc:b3:09:ad:f2: 16:df:65:e2:be:94:ad:78:7e:88:f5:f8:0d:35:98:42:9b:9c: 3e:66:f5:64:9f:74:d7:fd:4b:9e:3d:66:08:d9:bb:ea:e0:a6: c5:b7:99:6c:16:89:3e:db:8e:08:d8:4d:72:a1:b2:49:c4:5b: a3:31:23:2f:58:76:b3:a5:5a:b2:72:c7:85:3f:19:f7:62:8f: ff:61:a0:0f:1e:58:3f:62:0c:6b:6c:2b:d7:ae:55:13:01:44: 3b:5e:75:11:9f:1b:47:35:0d:9c:f2:6f:d0:e0:4f:70:35:8f: bd:48:36:b9:68:90:74:3e:53:bd:99:74:26:35:4d:85:1f:3d: c1:18:cb:d8:2b:76:71:b3:62:e2:f7:bd:1c:0d:0a:0f:ec:e8: 98:6e:aa:7f:0e:f2:bb:c8:bc:e9:2a:af:60:3c:a9:45:19:17: c2:14:1f:93 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTE1MTMzMzU1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2ZTI0Mi1lMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtikB5E1w3WXC9DKMyMJ6GsYsQY3UgkvtBFpCoZOvdbzDgnzast0RB17ypLLn Xo/3ISiv8+RypVQw8pP6tHggRPo30LPBBL2ShsHoobv5Rfnon+z0PjfuJ6Miy2Rh Ai+/nE+206nY+5nQSFx9ZXaUH0bNskytf5quqlfss+ebbPtFpXjXfnOR/dGSp4Ds 3iLamMQECPCTLcN1SirYdE01LZfycCR8vdKfnb46m+zkRIJHuwOkDFhtTaTPz3zb x4fvTxpifzMpSp0pO5Who/xYlw5PY/LWWeklVxBlDxosWepzV/PAbm/2nAN7t7ik /ALnpt4gofoVa2DzTGOn6S5XywIDAQABo4ICuDCCArQwHQYDVR0OBBYEFF7nTwaa HZo8Kg9jkpo5CstawdIDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjcyRDVFM0VE QUZFMTFFRTk4NkZGRjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAnAMGACQGCEDIAwYAJAYIQM4DBgAkBghA+wMHACQG CED+yzANBgkqhkiG9w0BAQsFAAOCAQEAKvqZdzvn56gbAagaz4mjNDesYJkfxo+P wSWa69dHTztvXVmxGTJfoyv95A5vPeekWVXrW63BPNHT5sY2Rn7V6xycCe60L6YE X93V24q5trYQQU2HSdyzCa3yFt9l4r6UrXh+iPX4DTWYQpucPmb1ZJ901/1Lnj1m CNm76uCmxbeZbBaJPtuOCNhNcqGyScRbozEjL1h2s6VasnLHhT8Z92KP/2GgDx5Y P2IMa2wr165VEwFEO151EZ8bRzUNnPJv0OBPcDWPvUg2uWiQdD5TvZl0JjVNhR89 wRjL2Ct2cbNi4ve9HA0KD+zomG6qfw7yu8i86SqvYDypRRkXwhQfkw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org