$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa File: 6A8D54D4411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: HSWuSO+WXHEw/g+ePnQfMmOXbuv8pja5VSvfWZoQvWQ= Subject key identifier: 5D:FF:1C:06:78:80:51:78:21:BD:31:7B:5A:7C:97:C4:3C:00:5A:7B Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C84 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:17 +0000 ROA not before: Sun 26 May 2024 21:32:17 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151673 IP address blocks: 2406:840:efa0::/44 maxlen: 48 2406:840:fede::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3204 (0xc84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:17 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa61-7a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b1:7c:96:34:bf:00:99:96:05:dd:e1:6e:ac: d7:68:f9:11:a1:31:b9:a4:b6:e8:6b:20:ad:77:c0: 61:99:28:bb:40:e3:5b:5e:67:a7:be:da:49:7b:b8: 4e:b7:5b:c2:8b:69:cf:da:d2:af:d1:32:93:0d:79: 51:8d:57:db:14:fe:2f:5d:3a:c3:1e:8b:15:74:8a: 5e:04:48:5d:16:2f:a9:21:7e:df:5e:28:a9:72:76: 65:7e:90:ad:95:bf:d8:2c:96:f3:fd:6c:5f:44:f0: 45:4b:a2:f4:be:c0:93:0a:f5:12:5a:c0:ea:b2:cd: 01:05:9e:d9:a2:6e:ae:4c:5f:f4:7c:bb:a8:83:91: 5c:d9:3a:cf:1a:a2:0b:1a:9d:a0:08:da:02:bf:9d: 8f:a4:7d:91:ce:5e:f4:9b:78:15:ed:09:0e:6b:de: bd:e8:93:ad:e3:a9:74:26:64:14:47:f3:b5:86:e7: 0c:c2:a7:1c:72:a6:b8:a6:8a:eb:e9:d1:14:70:a7: 2d:e0:e7:78:d3:27:fe:b6:05:50:1b:ee:59:26:5b: a7:59:5a:78:df:a4:c7:df:ce:77:f4:34:b8:00:7e: c4:bb:48:39:42:b9:c9:f6:11:40:47:45:11:85:f6: 43:b3:58:d2:71:4f:26:e5:04:0a:40:90:5d:96:b7: 18:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FF:1C:06:78:80:51:78:21:BD:31:7B:5A:7C:97:C4:3C:00:5A:7B X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:efa0::/44 2406:840:fede::/48 Signature Algorithm: sha256WithRSAEncryption ab:ad:8d:f3:bc:3c:be:93:31:1b:e8:b4:e4:33:90:b1:47:f2: 81:ca:11:85:2b:55:5a:cf:23:26:4e:c4:60:b9:15:d7:b0:51: e2:78:a3:78:a1:c5:c9:77:1d:25:24:73:2e:69:7a:79:be:40: fa:00:9c:93:99:f7:d7:8f:be:43:f9:86:dd:bd:61:27:60:07: b8:dd:6a:b2:ed:ea:c9:41:f2:f9:8d:ab:92:6b:28:eb:3f:c7: 14:43:cf:55:3f:d2:ea:9f:64:b4:7a:1f:0b:e7:43:28:98:94: 9d:92:84:bb:ee:1f:1f:fb:c6:60:2c:12:dc:a9:ad:16:f3:dc: b7:97:e4:15:50:b4:38:b2:fd:f8:5e:18:43:c5:6e:c4:07:32: 2e:2e:87:7f:f4:c8:09:f7:1f:5b:17:8f:9e:2d:23:44:0d:d7: 76:e6:ec:fa:3b:a3:27:70:13:cd:a8:b4:a7:d4:1f:3d:da:80: 62:c7:72:96:67:0c:cc:ac:64:02:ac:23:4b:e2:36:60:e4:04: 72:20:a3:f3:58:fb:ee:61:9a:99:ee:94:98:5b:1a:05:50:31: 75:db:c8:eb:0c:90:71:32:a4:a3:62:50:d1:92:c6:b9:ab:56: e0:0f:09:13:14:3b:05:bd:75:43:43:31:96:19:49:94:84:99: 8b:71:27:79 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjE3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2MS03YTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47F8ljS/AJmWBd3hbqzXaPkRoTG5pLboayCtd8BhmSi7QONbXmenvtpJe7hO t1vCi2nP2tKv0TKTDXlRjVfbFP4vXTrDHosVdIpeBEhdFi+pIX7fXiipcnZlfpCt lb/YLJbz/WxfRPBFS6L0vsCTCvUSWsDqss0BBZ7Zom6uTF/0fLuog5Fc2TrPGqIL Gp2gCNoCv52PpH2Rzl70m3gV7QkOa9696JOt46l0JmQUR/O1hucMwqcccqa4porr 6dEUcKct4Od40yf+tgVQG+5ZJlunWVp436TH38539DS4AH7Eu0g5QrnJ9hFAR0UR hfZDs1jScU8m5QQKQJBdlrcYGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFF3/HAZ4 gFF4Ib0xe1p8l8Q8AFp7MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkE4RDU0RDQ0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA76ADBwAkBghA/t4wDQYJKoZIhvcNAQELBQADggEB AKutjfO8PL6TMRvotOQzkLFH8oHKEYUrVVrPIyZOxGC5FdewUeJ4o3ihxcl3HSUk cy5penm+QPoAnJOZ99ePvkP5ht29YSdgB7jdarLt6slB8vmNq5JrKOs/xxRDz1U/ 0uqfZLR6HwvnQyiYlJ2ShLvuHx/7xmAsEtyprRbz3LeX5BVQtDiy/fheGEPFbsQH Mi4uh3/0yAn3H1sXj54tI0QN13bm7Po7oydwE82otKfUHz3agGLHcpZnDMysZAKs I0viNmDkBHIgo/NY++5hmpnulJhbGgVQMXXbyOsMkHEypKNiUNGSxrmrVuAPCRMU OwW9dUNDMZYZSZSEmYtxJ3k= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org