$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa File: 6CDD5244825F11EBAD45B931C4F9AE02.roa (raw, json) Hash identifier: 6rmUZcthukqlLjgZ59oAtJAilaiC2SUBTtJrZgaeuMA= Subject key identifier: 4A:C7:0D:9A:CF:7A:4D:A7:CA:1E:73:59:9D:79:EC:7F:8F:C2:20:C3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A4B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa Signing time: Sun 14 May 2023 22:14:30 +0000 ROA not before: Sun 14 May 2023 22:14:30 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 141712 IP address blocks: 2406:840:e110::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:30 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d46-2adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:cf:ab:1c:8a:9a:75:fe:19:b9:8e:a9:f4: dc:12:ba:60:cf:33:28:92:df:bf:e4:c8:27:97:9b: 03:ee:99:5d:11:8e:43:39:8d:1e:33:5f:d2:94:e7: e1:87:19:4e:f4:73:30:84:80:39:b9:cd:c2:53:ad: b3:f3:ae:9b:57:2b:99:06:97:1f:a8:f5:4b:53:60: 06:89:b1:72:2b:6f:c6:0b:63:ce:6d:96:d4:ba:05: 91:5f:34:17:1c:e2:1e:77:f3:8d:0c:f0:fd:5e:b4: 79:fe:af:5b:7c:96:18:2e:96:8b:a9:ec:42:2e:7e: fe:5f:07:31:11:f3:03:02:26:28:67:cb:e9:b1:ce: 34:ee:e5:d2:31:14:3b:b5:b9:ab:01:59:00:33:af: 00:05:f1:d7:be:b8:52:8b:01:a1:a8:f0:91:7c:b5: 0f:e1:93:c3:bf:03:8c:e3:1b:5f:de:0a:29:80:11: 54:00:9a:f5:8e:32:ec:b0:d7:d6:0a:80:77:12:44: a2:c4:b4:df:88:83:cf:23:56:57:4c:83:31:c0:28: dc:e0:eb:2f:c5:56:71:d4:bc:ce:4f:4f:2b:c3:9b: da:58:0a:6d:85:21:fe:fd:21:13:ba:31:46:d3:d1: ba:55:b6:27:36:d4:15:8b:62:e0:6d:c7:11:61:8a: 16:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C7:0D:9A:CF:7A:4D:A7:CA:1E:73:59:9D:79:EC:7F:8F:C2:20:C3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6CDD5244825F11EBAD45B931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e110::/44 Signature Algorithm: sha256WithRSAEncryption 22:c6:3d:5b:7e:f9:5b:d4:c7:93:6d:3c:3c:16:24:4f:cd:25: 41:de:b5:97:f4:ee:d7:8e:82:91:94:d5:d9:69:0f:14:a8:a5: 94:7e:a6:41:09:9a:b3:06:8e:a6:2e:e2:f6:61:b4:d9:06:3b: d5:31:c0:06:46:16:87:4e:02:b7:51:d9:f4:c7:c9:58:a4:7b: 23:f4:77:72:b2:e4:23:67:0e:c4:12:5b:f4:c1:6e:a4:c4:b9: 08:91:84:d2:0e:49:0d:11:f4:43:4a:08:f1:84:cf:a6:9a:b5: 39:be:14:22:76:fa:27:bd:5e:80:4e:e5:14:b9:a4:f7:48:fb: 4f:6e:0f:0e:a0:10:af:f1:5d:72:97:0c:8f:00:c5:6f:1e:e6: 03:16:58:1c:f8:b8:a8:b7:22:cb:c2:f9:53:6c:3f:1d:f1:78: 01:2e:6e:75:b8:26:b6:07:83:99:0f:7b:68:28:07:99:89:50: 46:69:cb:17:f9:cb:a0:b6:53:0d:ba:82:7f:00:28:e5:29:52: 1c:70:b4:9e:1a:43:64:0b:fa:f0:2f:33:6d:2c:e1:7f:2c:84: a4:bc:bb:fb:31:83:19:ed:07:84:35:9c:6e:fd:93:66:d7:de: 86:29:c4:9f:68:76:7f:76:2a:4e:94:7d:32:5d:07:b3:0a:6a: 62:25:1e:22 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ0Ni0yYWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOvPqxyKmnX+GbmOqfTcErpgzzMokt+/5Mgnl5sD7pldEY5DOY0eM1/SlOfh hxlO9HMwhIA5uc3CU62z866bVyuZBpcfqPVLU2AGibFyK2/GC2PObZbUugWRXzQX HOIed/ONDPD9XrR5/q9bfJYYLpaLqexCLn7+XwcxEfMDAiYoZ8vpsc407uXSMRQ7 tbmrAVkAM68ABfHXvrhSiwGhqPCRfLUP4ZPDvwOM4xtf3gopgBFUAJr1jjLssNfW CoB3EkSixLTfiIPPI1ZXTIMxwCjc4OsvxVZx1LzOT08rw5vaWApthSH+/SETujFG 09G6VbYnNtQVi2LgbccRYYoWJwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFErHDZrP ek2nyh5zWZ157H+PwiDDMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkNERDUyNDQ4 MjVGMTFFQkFENDVCOTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4RAwDQYJKoZIhvcNAQELBQADggEBACLGPVt++VvU x5NtPDwWJE/NJUHetZf07teOgpGU1dlpDxSopZR+pkEJmrMGjqYu4vZhtNkGO9Ux wAZGFodOArdR2fTHyVikeyP0d3Ky5CNnDsQSW/TBbqTEuQiRhNIOSQ0R9ENKCPGE z6aatTm+FCJ2+ie9XoBO5RS5pPdI+09uDw6gEK/xXXKXDI8AxW8e5gMWWBz4uKi3 IsvC+VNsPx3xeAEubnW4JrYHg5kPe2goB5mJUEZpyxf5y6C2Uw26gn8AKOUpUhxw tJ4aQ2QL+vAvM20s4X8shKS8u/sxgxntB4Q1nG79k2bX3oYpxJ9odn92Kk6UfTJd B7MKamIlHiI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org