$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/870D7C40A34111EB96C9B92CC4F9AE02.roa File: 870D7C40A34111EB96C9B92CC4F9AE02.roa (raw, json) Hash identifier: h2f5wbeZ3c4rfIx+b8/aFlJIzajVRs76ZAvQCJYTc0w= Subject key identifier: C1:C1:74:F0:F0:F5:AD:4C:8D:E0:D1:5F:68:32:28:36:2D:AA:8C:63 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C69 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/870D7C40A34111EB96C9B92CC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:50 +0000 ROA not before: Sun 26 May 2024 21:31:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142112 IP address blocks: 2406:840:e200::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa45-b2e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:1c:67:48:52:17:61:0d:95:20:ec:1c:0f: b8:f8:aa:d6:f5:c7:8e:4c:37:31:e4:8b:7c:44:b1: 09:09:45:bd:17:bf:8f:8e:df:f8:d1:9c:25:e1:f8: ac:6d:37:6e:cc:0b:1e:c6:74:0b:af:95:90:b1:a4: fd:49:71:93:d8:e9:d7:39:c1:d2:a0:99:fa:0d:72: e0:54:07:e2:c0:74:06:37:0c:bf:c3:10:ee:a3:3c: 24:cf:0a:df:16:7c:17:d0:0c:c4:47:5c:ab:c7:50: c5:fb:3e:ba:37:37:b0:67:3e:14:66:b0:6b:86:83: e7:08:87:2e:fa:8e:13:45:26:c7:81:f6:eb:c6:51: 7b:9f:3a:03:d1:0c:a8:c6:f8:dc:c7:d3:bd:7c:cc: b1:1a:6d:00:ee:e4:3f:20:eb:d6:70:97:b2:65:a6: f6:9f:c6:b3:b3:cc:5f:ec:b2:ee:42:39:4f:12:27: 2d:bb:6a:e6:19:b1:50:14:44:a8:8e:fc:04:60:78: 8f:37:a3:2f:a7:27:13:05:a0:23:a6:52:ce:76:17: fc:fb:37:0f:e8:11:a5:e8:fa:a3:c2:c4:ba:26:81: a7:6f:3b:2d:4c:b1:a9:78:f5:c3:66:4a:ab:fc:1a: f3:a4:d1:7e:ae:1e:a8:6a:8d:27:06:18:9b:f1:8e: e1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C1:74:F0:F0:F5:AD:4C:8D:E0:D1:5F:68:32:28:36:2D:AA:8C:63 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/870D7C40A34111EB96C9B92CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e200::/44 Signature Algorithm: sha256WithRSAEncryption 9c:66:a5:ab:bb:e3:26:35:b3:de:c2:e4:b0:d4:6d:f7:98:b0: 02:34:34:0b:ab:a8:ab:18:56:32:e7:ad:1b:4d:9c:82:2e:ae: 66:d7:35:87:a5:15:a6:08:f7:7d:60:e0:55:c5:b0:30:f4:5c: 4a:bc:e3:c8:8e:01:84:30:e9:b5:fa:ab:a7:ea:a6:d3:1b:d1: 8d:c9:3c:28:77:97:39:c4:71:2b:f4:5d:8c:c0:09:72:8e:d3: b7:0a:40:d0:fc:5f:8e:6e:2a:b6:39:8f:cc:7e:b9:27:50:62: de:56:37:14:0f:1b:8c:77:35:33:28:a0:25:82:56:50:cf:75: 79:15:9b:10:d2:6a:dd:f2:b2:df:17:d7:b3:1e:1d:26:77:ae: d4:90:11:d2:f6:60:66:e3:1c:92:a4:28:3d:54:89:80:be:10: 88:c3:d8:23:cc:62:aa:ce:15:f7:3b:79:0a:98:87:aa:ea:64: b7:d1:6a:94:84:b9:fe:fb:09:86:3f:24:b0:e0:05:9f:01:ae: ed:52:48:af:5e:45:dd:5a:81:23:fe:fd:fa:bf:0e:3e:62:01: 16:3e:ba:f4:67:27:0b:c2:ce:6a:5e:9e:f8:86:0a:2c:e6:80: 2d:8e:ba:c3:15:9f:ee:de:4b:a8:0e:35:18:80:89:a0:56:39: 1e:9f:6d:e5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0NS1iMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c4cZ0hSF2ENlSDsHA+4+KrW9ceOTDcx5It8RLEJCUW9F7+Pjt/40Zwl4fis bTduzAsexnQLr5WQsaT9SXGT2OnXOcHSoJn6DXLgVAfiwHQGNwy/wxDuozwkzwrf FnwX0AzER1yrx1DF+z66NzewZz4UZrBrhoPnCIcu+o4TRSbHgfbrxlF7nzoD0Qyo xvjcx9O9fMyxGm0A7uQ/IOvWcJeyZab2n8azs8xf7LLuQjlPEictu2rmGbFQFESo jvwEYHiPN6MvpycTBaAjplLOdhf8+zcP6BGl6PqjwsS6JoGnbzstTLGpePXDZkqr /BrzpNF+rh6oao0nBhib8Y7h4wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMHBdPDw 9a1MjeDRX2gyKDYtqoxjMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODcwRDdDNDBB MzQxMTFFQjk2QzlCOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4gAwDQYJKoZIhvcNAQELBQADggEBAJxmpau74yY1 s97C5LDUbfeYsAI0NAurqKsYVjLnrRtNnIIurmbXNYelFaYI931g4FXFsDD0XEq8 48iOAYQw6bX6q6fqptMb0Y3JPCh3lznEcSv0XYzACXKO07cKQND8X45uKrY5j8x+ uSdQYt5WNxQPG4x3NTMooCWCVlDPdXkVmxDSat3yst8X17MeHSZ3rtSQEdL2YGbj HJKkKD1UiYC+EIjD2CPMYqrOFfc7eQqYh6rqZLfRapSEuf77CYY/JLDgBZ8Bru1S SK9eRd1agSP+/fq/Dj5iARY+uvRnJwvCzmpenviGCizmgC2OusMVn+7eS6gONRiA iaBWOR6fbeU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org