$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa File: 7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa (raw, json) Hash identifier: IlZVtE1B8VfF3EQ3+NzRaL372hdE79HC5opoyZOkCZI= Subject key identifier: 60:F4:67:76:53:11:32:FE:15:82:B1:C0:EF:E6:E5:FD:7A:DF:BE:B9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C70 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:57 +0000 ROA not before: Sun 26 May 2024 21:31:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142641 IP address blocks: 2406:840:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa4c-9293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:90:a4:26:ad:71:fb:f6:7f:9d:32:a1:5e:7f: 04:b8:32:c0:a0:0f:06:6c:4d:66:23:ba:ce:5f:f1: b9:12:26:5c:da:35:e8:b9:2b:b5:03:ec:24:7d:7b: 1e:b2:e8:d2:b1:22:69:a1:95:89:1c:ee:8d:38:72: 98:cb:c5:d0:0a:c8:99:61:b6:99:19:6e:6e:a9:fa: e9:28:fe:b7:2f:99:40:fa:1e:f9:6f:0d:cd:f1:f0: 92:88:e6:4b:d8:78:fc:ae:02:2b:d3:1e:a5:c3:92: bd:7e:3d:14:fa:3d:b3:10:47:d7:44:65:86:09:3c: 72:0a:85:17:c0:4f:9b:e7:2d:a1:79:5b:03:b7:e5: 9e:14:8d:dc:a7:ee:44:33:7e:67:cc:42:c5:16:fc: c1:72:89:a9:1b:ab:9b:1d:45:3a:1f:eb:7f:04:c3: 4d:f5:d4:5a:98:5e:7e:d9:7c:18:37:a1:ab:63:eb: ee:3e:54:7a:6e:14:ff:6b:1c:fd:9a:84:ad:20:48: ac:a5:e9:51:95:d8:77:df:ae:18:d3:1d:55:31:6c: fa:d4:34:5b:f1:c8:8a:08:12:59:21:c3:22:b6:e3: ec:9b:1f:b4:b5:41:63:6e:88:50:94:88:25:00:11: 83:bc:4c:3b:46:a3:73:33:0c:a3:ab:43:1d:47:3d: 95:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F4:67:76:53:11:32:FE:15:82:B1:C0:EF:E6:E5:FD:7A:DF:BE:B9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:df:c6:63:d9:db:d3:95:57:02:3f:22:74:ca:d7:7a:92:96: 2e:03:60:97:5a:36:44:aa:3a:7c:10:1a:9d:55:d6:9a:ed:52: 58:ad:0b:ec:1e:08:73:7a:36:c1:e6:cd:a6:30:45:ed:ce:ce: cd:64:a1:74:7d:bf:18:cc:20:35:dd:45:d9:9f:1b:5e:08:70: 4d:81:0d:10:8d:e1:d5:d2:14:b8:63:a9:b6:5b:35:f9:ce:8b: a1:ed:32:e5:bd:0f:f5:26:1f:ff:b4:86:42:65:32:ac:ac:ff: b1:01:b4:e5:79:d5:61:0d:6d:a7:b1:8f:14:2a:23:b9:80:3d: 3e:c0:60:4b:fb:9d:d3:b4:c5:53:07:e2:fb:04:91:bb:16:81: a5:d5:be:c3:59:80:b6:ff:02:e3:a2:0b:6e:bb:90:d4:97:d1: f5:1c:89:df:aa:96:fd:26:df:5a:1d:bc:12:df:12:66:58:60: 2c:17:c6:6b:e5:48:7f:9c:36:96:2a:65:01:e4:27:6a:6a:32: 32:01:3f:0e:5d:f7:35:76:17:47:3f:c7:1e:92:e4:b6:30:fa: 3e:ef:7f:9c:31:ad:ff:90:c0:5c:e2:1a:03:a4:c2:97:ff:7c: 9f:19:df:d6:5a:d1:ee:47:b3:14:15:fa:cf:62:d6:39:53:7b: 71:93:e1:08 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0Yy05MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJCkJq1x+/Z/nTKhXn8EuDLAoA8GbE1mI7rOX/G5EiZc2jXouSu1A+wkfXse sujSsSJpoZWJHO6NOHKYy8XQCsiZYbaZGW5uqfrpKP63L5lA+h75bw3N8fCSiOZL 2Hj8rgIr0x6lw5K9fj0U+j2zEEfXRGWGCTxyCoUXwE+b5y2heVsDt+WeFI3cp+5E M35nzELFFvzBcompG6ubHUU6H+t/BMNN9dRamF5+2XwYN6GrY+vuPlR6bhT/axz9 moStIEispelRldh3364Y0x1VMWz61DRb8ciKCBJZIcMituPsmx+0tUFjbohQlIgl ABGDvEw7RqNzMwyjq0MdRz2VkQIDAQABo4IClzCCApMwHQYDVR0OBBYEFGD0Z3ZT ETL+FYKxwO/m5f163765MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvN0ZENThCNjBD QzMxMTFFQ0IyQzRFQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBghA/zANBgkqhkiG9w0BAQsFAAOCAQEAnt/GY9nb05VX Aj8idMrXepKWLgNgl1o2RKo6fBAanVXWmu1SWK0L7B4Ic3o2webNpjBF7c7OzWSh dH2/GMwgNd1F2Z8bXghwTYENEI3h1dIUuGOptls1+c6Loe0y5b0P9SYf/7SGQmUy rKz/sQG05XnVYQ1tp7GPFCojuYA9PsBgS/ud07TFUwfi+wSRuxaBpdW+w1mAtv8C 46ILbruQ1JfR9RyJ36qW/SbfWh28Et8SZlhgLBfGa+VIf5w2liplAeQnamoyMgE/ Dl33NXYXRz/HHpLktjD6Pu9/nDGt/5DAXOIaA6TCl/98nxnf1lrR7kezFBX6z2LW OVN7cZPhCA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org