$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa File: 8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa (raw, json) Hash identifier: 21HOHvAqPbv2C+1coM0JAU3OQQnrP4MdzBs+ci+TjL4= Subject key identifier: F4:55:05:6D:13:0C:57:D8:4B:E7:F6:FA:8A:39:81:AE:60:DB:B4:01 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C77 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:03 +0000 ROA not before: Sun 26 May 2024 21:32:03 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150173 IP address blocks: 2406:840:fa00::/44 maxlen: 48 2406:840:fed1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:03 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa53-71d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:c4:83:04:bf:35:e4:3f:8f:d4:d7:57:8f: 1b:55:52:2e:05:92:ae:31:5a:33:ad:14:55:eb:d2: 74:11:65:6e:3c:33:a8:ac:c8:30:f7:7a:96:71:93: 08:6c:f8:15:96:e1:b9:40:fa:64:e2:29:9f:6f:2e: 24:cf:10:97:b1:33:20:80:2f:18:23:9f:84:6a:4e: a5:9b:67:96:ab:c9:57:93:03:23:4b:20:3b:02:7c: e3:31:9f:8f:3e:79:30:38:a5:77:7e:f5:18:5d:b7: 44:91:26:47:0b:ce:ff:e8:a5:a8:33:74:20:c0:5e: a5:a4:8a:1e:76:2f:ad:ae:e6:29:42:11:10:9a:ba: aa:30:4e:a9:43:25:fc:2d:86:6a:7e:b7:da:6b:54: 97:2a:20:66:c7:83:66:28:13:9b:40:47:d4:0a:a7: 3c:2c:22:37:2c:9f:6a:45:42:ff:75:6d:55:7d:30: 24:34:54:a6:c9:60:0b:57:c1:f1:fa:3b:53:f1:ce: 36:e6:56:dd:63:f9:a5:7b:f8:c3:d5:a9:f9:2d:f9: 79:5f:f9:97:0b:8c:63:ec:16:cc:e1:a2:72:a9:7e: 2d:47:9f:a8:14:25:cf:f1:c0:4e:9e:a8:38:17:62: f0:18:17:3c:1c:26:24:1d:2f:dc:f1:60:c5:38:e5: 08:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:55:05:6D:13:0C:57:D8:4B:E7:F6:FA:8A:39:81:AE:60:DB:B4:01 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fa00::/44 2406:840:fed1::/48 Signature Algorithm: sha256WithRSAEncryption 1d:2e:96:b1:34:85:23:fe:5d:b9:df:81:3d:f7:2a:7a:9d:be: c2:0c:87:f1:b4:57:ad:03:8a:49:ac:29:7e:b2:5c:e0:48:bd: 76:ca:a6:60:a5:5e:13:1a:36:1c:c0:6a:e6:e5:8c:32:5d:16: 04:53:d7:d5:58:88:24:f6:fa:9e:5d:6e:4b:93:1b:07:9f:70: 72:7c:24:33:ea:dc:6e:85:11:c3:de:7b:90:cb:92:b7:a8:ce: b0:af:e9:09:33:9c:c4:cc:df:97:74:10:31:1b:1b:7f:a6:a3: ac:de:70:d0:3e:f8:dc:01:01:2c:88:ad:ea:9d:0e:6e:ce:0f: e7:db:1c:75:cd:3c:eb:b5:8e:16:15:ee:88:ff:e6:86:75:53: 8a:fc:dd:bd:ef:cc:44:30:1f:df:34:34:78:27:39:da:86:03: 51:97:ba:27:21:73:f7:3b:73:45:55:2d:6d:80:ad:43:84:8f: e9:af:c8:3c:5c:22:67:5a:b5:35:06:93:cd:7e:4f:db:44:08: 9e:5b:0f:1a:e3:18:78:d4:8d:22:a6:b7:e5:70:ca:09:35:77: fa:3b:60:d8:97:97:d5:03:ba:b3:df:39:5f:71:35:d7:0c:61: 80:de:3b:b6:ec:c6:2a:0f:6c:63:b7:e4:9b:ef:cd:7d:a2:6f: 26:42:ac:79 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjAzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1My03MWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mLEgwS/NeQ/j9TXV48bVVIuBZKuMVozrRRV69J0EWVuPDOorMgw93qWcZMI bPgVluG5QPpk4imfby4kzxCXsTMggC8YI5+Eak6lm2eWq8lXkwMjSyA7AnzjMZ+P PnkwOKV3fvUYXbdEkSZHC87/6KWoM3QgwF6lpIoedi+truYpQhEQmrqqME6pQyX8 LYZqfrfaa1SXKiBmx4NmKBObQEfUCqc8LCI3LJ9qRUL/dW1VfTAkNFSmyWALV8Hx +jtT8c425lbdY/mle/jD1an5Lfl5X/mXC4xj7BbM4aJyqX4tR5+oFCXP8cBOnqg4 F2LwGBc8HCYkHS/c8WDFOOUImQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPRVBW0T DFfYS+f2+oo5ga5g27QBMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEFCQUI5QjQy MzlFMTFFREFEM0JBMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA+gADBwAkBghA/tEwDQYJKoZIhvcNAQELBQADggEB AB0ulrE0hSP+XbnfgT33KnqdvsIMh/G0V60DikmsKX6yXOBIvXbKpmClXhMaNhzA aubljDJdFgRT19VYiCT2+p5dbkuTGwefcHJ8JDPq3G6FEcPee5DLkreozrCv6Qkz nMTM35d0EDEbG3+mo6zecNA++NwBASyIreqdDm7OD+fbHHXNPOu1jhYV7oj/5oZ1 U4r83b3vzEQwH980NHgnOdqGA1GXuichc/c7c0VVLW2ArUOEj+mvyDxcImdatTUG k81+T9tECJ5bDxrjGHjUjSKmt+Vwygk1d/o7YNiXl9UDurPfOV9xNdcMYYDeO7bs xioPbGO35JvvzX2ibyZCrHk= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org