$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa File: 86F5AD8C0B6D11ED81E33B71C4F9AE02.roa (raw, json) Hash identifier: mmPyzlL8U+aG9blCz12u78Wmqx2nYLGhJ+8iSNDm5VI= Subject key identifier: 4B:B2:A1:0A:74:21:62:B8:BF:66:D4:C1:2E:0B:24:DC:4F:A0:FE:F6 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C76 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:02 +0000 ROA not before: Sun 26 May 2024 21:32:02 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150141 IP address blocks: 2406:840:e280::/44 maxlen: 48 2406:840:fef5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:02 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa52-f1f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0f:20:d6:1e:8f:1d:12:c9:6e:79:48:2a:7a: 86:03:3d:c2:47:d6:cf:04:3f:4c:8e:be:90:12:0e: 99:3e:9f:3e:95:9a:0b:19:16:6d:ce:5c:7e:cc:78: a1:7b:25:44:b7:b5:a3:77:a6:fe:fc:1a:bb:d4:90: d3:bf:68:43:14:74:68:63:25:36:64:9c:bd:af:46: ad:cb:3c:14:59:45:fe:b4:ef:fe:6a:17:78:e6:45: 87:aa:6f:da:58:77:f0:59:41:11:e2:7d:25:ec:b1: c7:e8:67:f0:e9:ca:95:66:9a:25:86:8a:40:39:12: a0:41:04:92:5e:7e:c8:a8:b2:a3:90:92:4c:67:e9: 6d:78:4c:ad:77:5a:91:71:b2:86:2e:27:23:4c:05: cf:f7:01:f0:32:8b:f9:01:bf:76:ec:d5:29:01:a3: bd:c3:b0:ed:c8:ac:68:64:2f:6c:ad:cf:e0:cc:e2: 9b:1d:4d:be:00:b7:c0:70:e9:cc:c1:e7:f7:d0:2c: e0:c5:37:b7:c8:e5:bc:3d:d4:b8:af:e9:fd:91:12: 23:bb:91:57:de:47:26:26:61:ae:57:13:42:e7:7f: 8a:4e:27:5c:02:c9:90:90:ab:58:30:76:11:08:e1: 81:c7:46:b6:c8:ef:c3:eb:51:d5:f3:5c:04:f8:9c: c7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B2:A1:0A:74:21:62:B8:BF:66:D4:C1:2E:0B:24:DC:4F:A0:FE:F6 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e280::/44 2406:840:fef5::/48 Signature Algorithm: sha256WithRSAEncryption 5e:72:21:e9:93:50:78:bc:85:5b:18:82:53:80:48:c0:f4:56: c6:21:0a:74:48:ff:09:63:88:92:97:5e:59:28:10:88:3c:57: 01:b6:a8:3d:4d:a3:e1:97:08:fb:a6:6d:cd:51:aa:dc:66:82: 08:77:43:4f:c3:e0:28:f5:42:41:be:fb:13:8a:2a:35:c1:39: 68:2a:39:ed:4b:83:2f:65:33:e4:99:2f:4a:0d:18:8e:4a:14: 65:af:61:28:e0:ef:b3:21:39:52:0c:67:52:4c:3f:fe:6e:f1: 9c:e7:59:5f:a9:19:ec:97:b0:6a:80:40:db:94:fd:4a:7f:77: d6:e5:be:11:fa:92:85:7c:0c:7b:c6:f0:d1:9f:c1:bb:16:d0: 73:32:26:2b:28:92:0b:4c:b5:5c:88:c5:75:60:9f:f1:aa:18: d9:f2:28:a6:bd:2e:89:95:12:d1:c5:b7:a8:dc:05:dd:99:8f: c2:b8:a0:a5:f9:3d:30:aa:08:87:50:fc:a1:3f:a3:a4:4e:5a: 15:53:e9:40:12:59:32:a4:6d:2e:9e:80:b5:38:ea:d7:22:bc: 81:b9:4d:8f:c1:a7:0c:8a:8f:11:ce:cf:da:20:b7:4d:bf:b9: cf:8a:a1:0e:b8:23:76:41:16:fe:f8:ac:62:43:9c:cd:ef:cd: 77:17:7d:4e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjAyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1Mi1mMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ8g1h6PHRLJbnlIKnqGAz3CR9bPBD9Mjr6QEg6ZPp8+lZoLGRZtzlx+zHih eyVEt7Wjd6b+/Bq71JDTv2hDFHRoYyU2ZJy9r0atyzwUWUX+tO/+ahd45kWHqm/a WHfwWUER4n0l7LHH6Gfw6cqVZpolhopAORKgQQSSXn7IqLKjkJJMZ+lteEytd1qR cbKGLicjTAXP9wHwMov5Ab927NUpAaO9w7DtyKxoZC9src/gzOKbHU2+ALfAcOnM wef30CzgxTe3yOW8PdS4r+n9kRIju5FX3kcmJmGuVxNC53+KTidcAsmQkKtYMHYR COGBx0a2yO/D61HV81wE+JzHCwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEuyoQp0 IWK4v2bUwS4LJNxPoP72MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZGNUFEOEMw QjZEMTFFRDgxRTMzQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4oADBwAkBghA/vUwDQYJKoZIhvcNAQELBQADggEB AF5yIemTUHi8hVsYglOASMD0VsYhCnRI/wljiJKXXlkoEIg8VwG2qD1No+GXCPum bc1Rqtxmggh3Q0/D4Cj1QkG++xOKKjXBOWgqOe1Lgy9lM+SZL0oNGI5KFGWvYSjg 77MhOVIMZ1JMP/5u8ZznWV+pGeyXsGqAQNuU/Up/d9blvhH6koV8DHvG8NGfwbsW 0HMyJisokgtMtVyIxXVgn/GqGNnyKKa9LomVEtHFt6jcBd2Zj8K4oKX5PTCqCIdQ /KE/o6ROWhVT6UASWTKkbS6egLU46tcivIG5TY/BpwyKjxHOz9ogt02/uc+KoQ64 I3ZBFv74rGJDnM3vzXcXfU4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org