$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa File: 89941464091011EFB4285910C4F9AE02.roa (raw, json) Hash identifier: eKs41FKn+lcRVLiZz/y/9uw3bxbn0nruQ5Fybvx5epA= Subject key identifier: 81:83:69:EA:A7:C1:61:01:CF:B1:A5:38:A6:AB:C2:E8:02:8E:F1:0A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CA8 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:49 +0000 ROA not before: Sun 26 May 2024 21:32:49 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 212027 IP address blocks: 2406:840:e520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:49 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa81-d732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:ea:c8:b8:1a:2f:27:c3:a7:69:95:8d:81: bb:5d:9d:3d:74:2d:27:08:d4:6a:3c:88:d9:71:a2: 06:c2:82:07:d7:b2:ab:5c:42:95:d6:d2:cb:be:f4: 4a:8b:df:ad:7c:ce:89:b6:62:29:96:c3:a2:8e:fc: a5:5e:62:b6:99:5d:4a:87:84:6a:d7:9c:78:3d:45: 1a:ba:f2:2b:cc:8b:2d:61:07:f7:03:6b:2b:e5:24: fc:d5:db:9f:2c:d8:a5:a0:2e:a9:9d:65:21:0a:1d: 82:8c:c7:3d:1f:29:d0:80:f6:49:aa:9c:a0:2c:dd: 89:5a:dd:66:5a:1d:42:32:3e:10:13:7b:ae:98:c4: 57:f0:26:c8:55:72:cb:0c:8c:21:99:f1:84:8d:0b: 83:cb:99:ba:da:f2:35:bc:2f:15:c4:38:cc:86:33: 34:9d:19:8e:ae:74:e8:63:e9:10:d1:36:f9:ac:95: e5:8c:76:54:52:6f:44:dd:0e:9c:e8:a2:f1:57:9c: 64:94:d6:2f:a8:0a:c3:f4:2c:fe:ac:27:7c:fb:a0: f6:81:97:c3:83:40:bd:48:0a:e5:4f:e7:a6:e9:8f: 0f:88:e6:ea:58:f2:30:f8:21:a1:35:14:23:3a:1b: 9d:78:1f:2f:ae:c8:c1:23:2e:eb:a5:de:53:32:c0: 32:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:83:69:EA:A7:C1:61:01:CF:B1:A5:38:A6:AB:C2:E8:02:8E:F1:0A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/89941464091011EFB4285910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e520::/44 Signature Algorithm: sha256WithRSAEncryption 74:a4:bc:10:df:fc:a7:2b:af:e7:d1:10:c4:31:4c:98:b7:69: 55:0b:27:45:50:21:4d:4b:6f:43:03:5d:33:8c:57:3a:a3:71: ef:1c:57:db:f3:ff:2e:39:3c:2d:41:32:e3:72:71:a1:2c:fa: e0:21:b6:28:b7:37:1f:24:2f:67:a0:ab:e2:28:c3:73:22:9a: bd:2a:10:2f:2d:45:47:80:11:fe:58:2c:a4:aa:b2:44:4c:f8: ec:5e:1d:69:10:5e:5e:7a:0b:c7:67:75:80:f1:24:8d:73:30: c8:3f:9c:04:35:76:43:be:22:9f:1b:d7:a7:0a:ed:d0:01:2d: af:2b:b2:1e:2f:19:d0:c0:16:ae:f9:88:45:42:57:ae:06:29: ba:d8:b4:32:de:6b:24:1a:67:9e:38:cb:e4:75:94:ce:2b:2d: 45:82:e6:2c:ba:00:ff:b6:6c:ce:99:38:37:de:51:b9:fd:41: 34:56:fd:8b:de:cb:1f:67:1b:5e:08:0e:b6:d9:e5:e6:56:3e: 58:4c:a2:ea:34:1b:c4:68:c2:23:19:9a:17:d5:4d:0f:85:31: 20:b3:ee:09:ee:a2:1e:25:8e:ec:f4:5b:85:22:7a:aa:d3:b2: 77:79:f7:4f:e8:18:8e:65:2a:0a:78:f6:f1:9d:26:22:6b:a3: 54:e1:0e:33 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjQ5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4MS1kNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooXqyLgaLyfDp2mVjYG7XZ09dC0nCNRqPIjZcaIGwoIH17KrXEKV1tLLvvRK i9+tfM6JtmIplsOijvylXmK2mV1Kh4Rq15x4PUUauvIrzIstYQf3A2sr5ST81duf LNiloC6pnWUhCh2CjMc9HynQgPZJqpygLN2JWt1mWh1CMj4QE3uumMRX8CbIVXLL DIwhmfGEjQuDy5m62vI1vC8VxDjMhjM0nRmOrnToY+kQ0Tb5rJXljHZUUm9E3Q6c 6KLxV5xklNYvqArD9Cz+rCd8+6D2gZfDg0C9SArlT+em6Y8PiObqWPIw+CGhNRQj OhudeB8vrsjBIy7rpd5TMsAygQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIGDaeqn wWEBz7GlOKarwugCjvEKMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODk5NDE0NjQw OTEwMTFFRkI0Mjg1OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA5SAwDQYJKoZIhvcNAQELBQADggEBAHSkvBDf/Kcr r+fREMQxTJi3aVULJ0VQIU1Lb0MDXTOMVzqjce8cV9vz/y45PC1BMuNycaEs+uAh tii3Nx8kL2egq+Iow3Mimr0qEC8tRUeAEf5YLKSqskRM+OxeHWkQXl56C8dndYDx JI1zMMg/nAQ1dkO+Ip8b16cK7dABLa8rsh4vGdDAFq75iEVCV64GKbrYtDLeayQa Z544y+R1lM4rLUWC5iy6AP+2bM6ZODfeUbn9QTRW/Yveyx9nG14IDrbZ5eZWPlhM ouo0G8RowiMZmhfVTQ+FMSCz7gnuoh4ljuz0W4UieqrTsnd590/oGI5lKgp49vGd JiJro1ThDjM= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org