$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa File: 928BCB08860A11EA89578D31C4F9AE02.roa (raw, json) Hash identifier: e/8enY3Hhud7Tfm8rvIF6QB0Tr/XW8braczdPjiGFUk= Subject key identifier: DB:61:2E:63:89:71:6B:F2:65:CD:5B:C1:66:6B:19:E8:39:98:B2:A7 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CA3 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:45 +0000 ROA not before: Sun 26 May 2024 21:32:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 209306 IP address blocks: 2406:840:fee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa7d-a85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:1c:1e:be:49:b8:a8:de:fd:32:1a:7e:5c: bf:d5:b3:7c:6f:a3:c3:f3:37:51:43:9a:6c:28:24: 02:d4:76:84:e4:85:81:7e:c3:f8:5f:2f:e3:47:54: 92:bf:d2:95:53:66:54:42:17:a0:e2:7f:d6:a3:ca: 19:c4:b8:e7:6a:62:e8:7b:fc:5b:cc:bd:92:55:97: 4b:9c:a8:3b:ed:4f:89:66:66:1c:f3:f0:31:c1:ad: 3b:16:1b:44:0c:b4:2b:8d:1e:6c:10:c9:80:70:0e: 6b:ae:72:bd:53:b2:bc:71:b4:6c:5c:b5:f0:2b:01: 1e:0e:2b:d0:0e:1e:ea:48:87:1a:0d:8e:04:e6:98: 79:ce:66:d1:7f:a9:55:53:2e:72:ea:59:8f:e0:ab: d1:6d:6c:28:dc:83:6b:a1:01:7a:79:f7:11:02:35: 35:4d:07:c6:ad:0e:e5:db:7d:d7:c6:92:a8:da:2e: f1:7d:63:76:5f:da:b7:ab:49:32:83:05:54:33:56: c2:a8:45:fd:1d:41:4e:30:0b:91:8a:22:c1:37:45: d7:43:9f:53:20:20:f7:9c:59:04:98:41:0b:3f:d3: b2:c7:ca:a5:d6:1f:a1:7b:aa:79:0f:06:c3:ed:c8: 23:24:67:95:eb:81:72:00:e6:43:6b:95:ff:52:0b: 7a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:61:2E:63:89:71:6B:F2:65:CD:5B:C1:66:6B:19:E8:39:98:B2:A7 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/928BCB08860A11EA89578D31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fee0::/44 Signature Algorithm: sha256WithRSAEncryption 40:51:00:fa:fa:be:b3:c8:6f:29:af:a7:65:2b:d9:f4:1d:84: 77:1d:c0:a8:8c:83:23:80:45:d7:e4:2d:35:af:5e:67:64:49: 3b:1c:73:f4:82:b1:d9:1b:d0:99:0f:48:b4:35:90:73:20:95: 88:09:02:6f:26:e3:69:20:f8:d7:8a:f6:11:c5:f0:18:d3:ef: a8:1a:0b:2a:19:be:8f:27:66:af:9f:c8:4b:b8:4b:f7:87:5d: da:e6:3a:1e:97:dc:e6:0d:c1:94:f9:49:54:0c:3b:b1:f2:6e: 91:4e:8a:70:92:2a:6e:41:25:13:7e:16:85:03:79:39:be:3b: 84:ca:f5:0c:d8:50:93:47:cd:1f:d9:92:87:b9:83:94:bd:76: 0f:80:fb:1c:5d:fc:7d:19:12:64:8b:c9:a9:37:b4:aa:39:99: 90:45:a7:fe:8b:6e:fc:dd:af:db:43:a0:9a:4c:d6:b0:7d:e4: 95:15:36:5e:6f:e7:d0:1b:f6:38:b2:b9:f0:50:0d:cd:07:53: af:36:64:c2:f3:7f:43:f1:df:cc:4b:63:ac:50:a1:d3:0e:55: eb:69:6d:9c:45:7a:06:15:1d:25:9f:ee:81:51:e3:a9:c6:04: 63:5e:c0:0e:87:1b:7f:8a:75:d5:0c:54:ca:91:a0:66:c0:37: 1a:69:17:6c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE3ZC1hODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9kcHr5JuKje/TIafly/1bN8b6PD8zdRQ5psKCQC1HaE5IWBfsP4Xy/jR1SS v9KVU2ZUQheg4n/Wo8oZxLjnamLoe/xbzL2SVZdLnKg77U+JZmYc8/Axwa07FhtE DLQrjR5sEMmAcA5rrnK9U7K8cbRsXLXwKwEeDivQDh7qSIcaDY4E5ph5zmbRf6lV Uy5y6lmP4KvRbWwo3INroQF6efcRAjU1TQfGrQ7l233XxpKo2i7xfWN2X9q3q0ky gwVUM1bCqEX9HUFOMAuRiiLBN0XXQ59TICD3nFkEmEELP9Oyx8ql1h+he6p5DwbD 7cgjJGeV64FyAOZDa5X/Ugt67wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNthLmOJ cWvyZc1bwWZrGeg5mLKnMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTI4QkNCMDg4 NjBBMTFFQTg5NTc4RDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA/uAwDQYJKoZIhvcNAQELBQADggEBAEBRAPr6vrPI bymvp2Ur2fQdhHcdwKiMgyOARdfkLTWvXmdkSTscc/SCsdkb0JkPSLQ1kHMglYgJ Am8m42kg+NeK9hHF8BjT76gaCyoZvo8nZq+fyEu4S/eHXdrmOh6X3OYNwZT5SVQM O7HybpFOinCSKm5BJRN+FoUDeTm+O4TK9QzYUJNHzR/Zkoe5g5S9dg+A+xxd/H0Z EmSLyak3tKo5mZBFp/6Lbvzdr9tDoJpM1rB95JUVNl5v59Ab9jiyufBQDc0HU682 ZMLzf0Px38xLY6xQodMOVetpbZxFegYVHSWf7oFR46nGBGNewA6HG3+KddUMVMqR oGbANxppF2w= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org