$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa File: 6B1184C0411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: D7LZo0AdECFIuYKmV7wlGH815rJGQKkLIfIkvNLt0Pk= Subject key identifier: BE:DE:19:5C:21:B3:84:86:9D:36:A2:F9:C0:38:E6:D6:24:2C:64:3A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C85 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:18 +0000 ROA not before: Sun 26 May 2024 21:32:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151674 IP address blocks: 2406:840:e720::/44 maxlen: 48 2406:840:fedf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3205 (0xc85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa62-9da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:12:39:6d:54:ed:3a:b0:b2:57:38:52:15: 73:96:5d:6c:f7:e7:f9:ce:be:50:c0:7b:e2:61:48: 81:82:96:b2:ec:90:25:db:f6:80:ee:69:8a:77:99: d6:83:7d:de:9c:aa:89:c5:20:82:d4:15:2f:60:fb: 56:1f:b5:01:a7:cb:83:ac:63:dc:f2:60:d7:ef:af: 62:88:33:4a:b6:a8:51:3f:b1:9c:a7:39:67:9d:bc: 13:40:5b:ce:0d:c4:37:b2:6c:06:b0:94:97:60:69: a0:22:d2:40:f8:8f:4a:5f:eb:a9:b8:7f:bc:d2:0b: 6f:41:40:ed:65:05:78:1c:3d:d8:15:89:39:a9:c0: 99:9b:4d:03:a8:77:06:1d:72:d8:f2:69:26:84:ff: 71:2f:4a:6d:59:52:9c:b0:29:b9:c9:b0:ce:b7:fd: 81:cc:31:38:bf:79:15:bc:a1:6f:33:bf:e5:e6:fc: 35:e3:b0:34:bb:7e:b4:77:dd:06:e2:38:2d:9b:a2: ab:34:8e:4a:18:7c:2f:0f:f9:6c:37:82:38:63:55: 87:c4:cb:0b:f3:d2:52:46:2e:14:b5:81:07:94:a5: 41:5f:98:51:b0:18:f1:8c:71:27:bb:60:73:dd:65: 1b:ac:93:7f:35:ed:1c:e7:31:a5:08:5d:c8:01:64: 40:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DE:19:5C:21:B3:84:86:9D:36:A2:F9:C0:38:E6:D6:24:2C:64:3A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e720::/44 2406:840:fedf::/48 Signature Algorithm: sha256WithRSAEncryption 2a:86:27:6c:2a:c2:7d:d4:52:82:58:dd:10:ae:5e:61:1d:99: ec:e7:e2:b1:88:08:fb:2f:5b:9f:47:f9:56:53:2f:a4:b7:8d: 5a:3a:01:0f:4f:ea:08:ff:50:30:98:ab:55:12:d2:0a:1e:42: b3:11:c2:46:1a:16:0f:54:a5:a5:bc:4e:5f:c2:61:01:9c:f8: d5:1a:6f:94:11:6f:bb:ee:bc:a7:57:0a:d5:3a:c9:4c:b9:1e: 63:09:91:6e:97:a7:8c:44:99:58:3d:cc:09:1a:67:1a:1a:29: 3c:cb:e4:c8:3c:36:fb:31:4c:fd:9b:7d:d7:06:b7:4e:23:63: 22:06:f2:dc:1b:0d:ae:88:4f:5d:81:dd:3f:21:5e:bf:dd:88: 19:32:31:cb:77:1a:4f:28:f1:91:60:61:60:23:73:ff:b3:d6: 00:68:a1:8a:77:f9:9d:6d:ae:21:16:f8:aa:7e:24:fe:a5:55: 35:d9:6e:1e:cd:1a:4e:b7:9a:09:64:7f:14:d3:58:98:09:96: f1:f9:77:56:3a:22:e8:f6:69:41:7c:ac:ed:b1:23:c3:8d:39: 8c:07:0e:b9:ca:d4:7e:f7:fa:bc:b2:2e:f6:a5:d8:3c:e2:0e: 8d:9e:78:3e:d9:f1:0d:6d:28:d5:08:f8:b7:a0:d5:ba:43:1f: dd:06:58:3f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjE4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2Mi05ZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjMSOW1U7Tqwslc4UhVzll1s9+f5zr5QwHviYUiBgpay7JAl2/aA7mmKd5nW g33enKqJxSCC1BUvYPtWH7UBp8uDrGPc8mDX769iiDNKtqhRP7GcpzlnnbwTQFvO DcQ3smwGsJSXYGmgItJA+I9KX+upuH+80gtvQUDtZQV4HD3YFYk5qcCZm00DqHcG HXLY8mkmhP9xL0ptWVKcsCm5ybDOt/2BzDE4v3kVvKFvM7/l5vw147A0u360d90G 4jgtm6KrNI5KGHwvD/lsN4I4Y1WHxMsL89JSRi4UtYEHlKVBX5hRsBjxjHEnu2Bz 3WUbrJN/Ne0c5zGlCF3IAWRA4QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL7eGVwh s4SGnTai+cA45tYkLGQ6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkIxMTg0QzA0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA5yADBwAkBghA/t8wDQYJKoZIhvcNAQELBQADggEB ACqGJ2wqwn3UUoJY3RCuXmEdmezn4rGICPsvW59H+VZTL6S3jVo6AQ9P6gj/UDCY q1US0goeQrMRwkYaFg9UpaW8Tl/CYQGc+NUab5QRb7vuvKdXCtU6yUy5HmMJkW6X p4xEmVg9zAkaZxoaKTzL5Mg8NvsxTP2bfdcGt04jYyIG8twbDa6IT12B3T8hXr/d iBkyMct3Gk8o8ZFgYWAjc/+z1gBooYp3+Z1triEW+Kp+JP6lVTXZbh7NGk63mglk fxTTWJgJlvH5d1Y6Iuj2aUF8rO2xI8ONOYwHDrnK1H73+ryyLval2DziDo2eeD7Z 8Q1tKNUI+Leg1bpDH90GWD8= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:05 2024 by rpki-client on console-ams.rpki-client.org