$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa File: 6CDD5244825F11EBAD45B931C4F9AE02.roa (raw, json) Hash identifier: IjFuMAFSW2G4ZorSozkx13skS/KFPR+5drINOYfIUBU= Subject key identifier: D8:3B:04:D1:3F:55:1E:28:E4:75:94:0F:35:E3:65:D8:C9:D9:E2:6E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C66 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:47 +0000 ROA not before: Sun 26 May 2024 21:31:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141712 IP address blocks: 2406:840:e110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa43-dc5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:37:3b:2e:44:2b:80:aa:82:f0:b6:53:8c:75: 70:1e:f6:6d:ba:ac:d0:a8:26:ac:bf:cd:c3:a5:95: 0d:88:0a:6d:64:f3:e0:8c:57:d4:0b:b2:d3:2d:6e: 9f:ea:a2:1e:4d:d1:c9:98:72:4d:55:17:24:01:92: b1:fd:fb:3b:ef:14:d8:5c:39:a3:6a:d5:23:0c:ff: 3c:7a:77:2b:3d:3a:ba:57:eb:57:8d:c7:25:0e:ec: 77:ee:fb:0f:4e:a0:25:7e:45:df:12:a1:ed:1b:1a: 6c:5c:de:4b:83:56:73:ec:c5:2b:b0:3f:2c:4b:fb: fc:7a:d9:a8:32:f7:65:43:c4:9b:30:1a:1e:73:5b: 45:a7:d1:78:ab:8b:10:3a:13:e0:d5:62:4c:e1:d8: 6e:27:d3:8e:bd:7d:0c:7b:2a:14:e1:ec:96:c0:cd: 9e:5a:d1:c1:09:9a:a9:dd:cb:a6:1c:b4:49:09:9a: 77:75:ea:9f:0d:a1:d6:4d:13:0e:ea:2e:2e:61:c1: 78:b1:f2:2a:bf:bc:99:63:fd:96:5b:e5:2e:4c:0d: 44:07:c2:ed:d1:9e:28:e5:5b:7e:1e:dc:25:13:62: 39:d1:cb:d7:b6:ce:8d:9c:b8:27:0d:14:39:b3:c6: ca:01:f2:6f:74:d2:58:57:ff:3d:68:18:4e:5d:db: 90:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:3B:04:D1:3F:55:1E:28:E4:75:94:0F:35:E3:65:D8:C9:D9:E2:6E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e110::/44 Signature Algorithm: sha256WithRSAEncryption 77:8e:d3:a9:e8:92:f2:00:ee:8f:24:62:dd:8a:28:4b:b0:57: 0a:98:a7:cb:14:5a:9d:9e:7a:3a:02:59:74:8a:16:f6:ec:1b: 5f:c7:6c:c8:71:1e:cb:4e:a9:d7:a0:14:ed:97:c8:46:b7:a9: 00:db:1c:b6:55:1d:72:9d:12:a0:40:13:fb:0b:1f:03:3b:6c: 1d:18:37:db:b6:b1:98:d4:75:17:d8:3b:67:bd:7d:ce:be:71: e5:32:45:53:54:41:e6:5b:cc:73:74:5e:a7:55:f0:13:1c:56: dc:50:ed:f2:ce:72:77:aa:43:00:70:92:b0:87:0a:31:54:08: c9:71:a6:fb:38:a3:cf:9b:17:12:f4:7f:b7:16:98:77:f8:97: 86:ef:75:7f:f5:c3:68:b2:3b:4b:99:3c:be:c6:99:cc:82:6e: 7b:de:c3:13:df:8d:94:b7:39:05:60:b9:07:69:55:03:92:e8: dc:61:75:d6:25:bb:f1:e9:21:b0:ba:f1:c3:f4:26:7e:a8:a3: 95:23:65:50:e4:7f:5e:db:16:54:65:d2:07:51:d6:cf:29:a4: 78:cc:dc:f7:01:fd:40:c4:78:00:f3:e2:2c:ca:e4:6f:8d:b9: 58:b1:0b:b0:8c:45:f7:82:38:7e:9c:a0:ff:f0:7d:fa:55:c2: 7e:6f:6d:2a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTQ3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0My1kYzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDc7LkQrgKqC8LZTjHVwHvZtuqzQqCasv83DpZUNiAptZPPgjFfUC7LTLW6f 6qIeTdHJmHJNVRckAZKx/fs77xTYXDmjatUjDP88encrPTq6V+tXjcclDux37vsP TqAlfkXfEqHtGxpsXN5Lg1Zz7MUrsD8sS/v8etmoMvdlQ8SbMBoec1tFp9F4q4sQ OhPg1WJM4dhuJ9OOvX0MeyoU4eyWwM2eWtHBCZqp3cumHLRJCZp3deqfDaHWTRMO 6i4uYcF4sfIqv7yZY/2WW+UuTA1EB8Lt0Z4o5Vt+HtwlE2I50cvXts6NnLgnDRQ5 s8bKAfJvdNJYV/89aBhOXduQxwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNg7BNE/ VR4o5HWUDzXjZdjJ2eJuMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkNERDUyNDQ4 MjVGMTFFQkFENDVCOTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4RAwDQYJKoZIhvcNAQELBQADggEBAHeO06nokvIA 7o8kYt2KKEuwVwqYp8sUWp2eejoCWXSKFvbsG1/HbMhxHstOqdegFO2XyEa3qQDb HLZVHXKdEqBAE/sLHwM7bB0YN9u2sZjUdRfYO2e9fc6+ceUyRVNUQeZbzHN0XqdV 8BMcVtxQ7fLOcneqQwBwkrCHCjFUCMlxpvs4o8+bFxL0f7cWmHf4l4bvdX/1w2iy O0uZPL7GmcyCbnvewxPfjZS3OQVguQdpVQOS6NxhddYlu/HpIbC68cP0Jn6oo5Uj ZVDkf17bFlRl0gdR1s8ppHjM3PcB/UDEeADz4izK5G+NuVixC7CMRfeCOH6coP/w ffpVwn5vbSo= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org