$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa File: 7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa (raw, json) Hash identifier: oAqverS3PW1jTUnqoZDPCzlZF8XEuJtPKEV4LygEZSk= Subject key identifier: 45:FB:3E:BB:4B:85:44:2F:14:FD:6C:01:7E:2A:15:42:83:BB:03:E3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A58 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:45 +0000 ROA not before: Sun 14 May 2023 22:14:45 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 142641 IP address blocks: 2406:840:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:45 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d55-8f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:38:24:05:f0:af:e0:7a:8c:58:95:2a:a4:b8: 9c:2c:9b:68:9f:76:37:b9:19:01:71:75:58:ec:ce: 3e:49:38:9f:14:cd:60:20:81:6d:37:61:1b:39:a3: f2:cd:07:11:a8:10:92:6b:2a:a5:f4:7a:56:4f:ea: b4:f2:b7:14:5d:bf:5d:85:7f:08:ae:07:c9:fd:eb: 58:7e:0e:a4:33:00:68:9e:25:e5:99:7c:52:e2:c2: 29:8d:f0:a2:11:40:81:b2:96:68:06:e9:89:73:56: 7c:26:7f:b5:b2:16:c7:19:82:fc:4d:9d:50:fb:44: 93:55:f1:d8:03:f9:d8:f8:21:ee:12:88:f1:8c:62: 16:c0:e8:39:09:3c:a4:5d:c0:72:b5:9f:48:66:69: ad:66:f4:e9:70:95:3e:55:3d:fe:95:b4:fd:44:e1: c2:6c:d0:de:a0:95:46:72:03:ef:44:53:4a:2a:a7: bd:d7:a6:30:a3:3b:74:b5:05:c6:84:ad:5d:aa:3f: 98:3b:32:70:5a:b0:d6:92:b6:ac:ba:f5:89:cf:3f: ea:45:af:48:dd:17:12:ff:ae:d3:d5:fd:e3:ce:85: c3:82:17:59:8c:74:3b:ce:5c:38:49:b4:9b:73:68: fa:fc:e2:24:b0:6b:4d:70:5c:d0:50:5d:99:30:e5: 68:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FB:3E:BB:4B:85:44:2F:14:FD:6C:01:7E:2A:15:42:83:BB:03:E3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7FD58B60CC3111ECB2C4EA3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 98:25:4e:57:d2:a7:bf:ad:1e:85:e2:d3:80:9a:9d:e9:47:a2: 3b:d6:df:af:c2:6f:4a:ca:a8:77:5d:f4:be:b9:02:45:75:16: 2c:62:cb:a6:df:c0:2d:ea:e7:28:f2:fa:dc:5d:f4:53:7e:94: 51:9c:05:9d:18:5e:c4:ac:93:bd:71:d8:e1:cc:03:6d:60:a2: fe:e1:8f:31:8c:f4:43:a6:dc:08:a1:db:54:bd:6c:6a:5e:bf: bf:bb:fc:17:9a:1a:a5:4b:79:5a:8d:77:3b:9c:92:2d:c0:c0: 68:a2:32:82:73:50:c4:19:03:ea:6f:d4:10:8a:50:ac:85:e7: d9:3c:0b:3f:a1:66:59:12:30:60:99:df:12:10:52:ed:66:48: 94:aa:f7:56:67:60:1f:08:05:f5:52:56:b0:d6:c6:ff:ae:41: 46:73:71:7d:4a:b9:8a:75:de:6d:41:99:f6:c2:c1:9a:e3:b1: 38:5f:e3:8c:d1:a8:48:62:c1:7e:8e:14:df:79:63:dc:43:ef: 06:68:0b:3a:8a:53:48:0e:3b:b4:cf:a3:54:c6:7a:5b:60:77: 10:59:d0:b5:46:61:b1:b7:1c:20:b0:e6:6f:14:5b:44:ea:03: 7c:73:ff:17:ec:8b:d1:39:e7:9f:a9:85:98:f3:c6:4f:1a:fb: f9:74:6c:7d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDQ1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ1NS04ZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTgkBfCv4HqMWJUqpLicLJton3Y3uRkBcXVY7M4+STifFM1gIIFtN2EbOaPy zQcRqBCSayql9HpWT+q08rcUXb9dhX8IrgfJ/etYfg6kMwBoniXlmXxS4sIpjfCi EUCBspZoBumJc1Z8Jn+1shbHGYL8TZ1Q+0STVfHYA/nY+CHuEojxjGIWwOg5CTyk XcBytZ9IZmmtZvTpcJU+VT3+lbT9ROHCbNDeoJVGcgPvRFNKKqe916Ywozt0tQXG hK1dqj+YOzJwWrDWkrasuvWJzz/qRa9I3RcS/67T1f3jzoXDghdZjHQ7zlw4SbSb c2j6/OIksGtNcFzQUF2ZMOVoKQIDAQABo4IClzCCApMwHQYDVR0OBBYEFEX7PrtL hUQvFP1sAX4qFUKDuwPjMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvN0ZENThCNjBD QzMxMTFFQ0IyQzRFQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBghA/zANBgkqhkiG9w0BAQsFAAOCAQEAmCVOV9Knv60e heLTgJqd6UeiO9bfr8JvSsqod130vrkCRXUWLGLLpt/ALernKPL63F30U36UUZwF nRhexKyTvXHY4cwDbWCi/uGPMYz0Q6bcCKHbVL1sal6/v7v8F5oapUt5Wo13O5yS LcDAaKIygnNQxBkD6m/UEIpQrIXn2TwLP6FmWRIwYJnfEhBS7WZIlKr3VmdgHwgF 9VJWsNbG/65BRnNxfUq5inXebUGZ9sLBmuOxOF/jjNGoSGLBfo4U33lj3EPvBmgL OopTSA47tM+jVMZ6W2B3EFnQtUZhsbccILDmbxRbROoDfHP/F+yL0Tnnn6mFmPPG Txr7+XRsfQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org