$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa File: 961B87D456A111EEB7EDA93AC4F9AE02.roa (raw, json) Hash identifier: zy95IqzoZ0C5YZQ5Iw25kanABsUF+4j1w6oh8EVnAPE= Subject key identifier: 7D:C9:FC:B0:40:0B:2F:E5:CC:D0:F9:00:FC:74:4D:03:EB:07:DF:09 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C5A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:36 +0000 ROA not before: Sun 26 May 2024 21:31:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139216 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa38-4622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2f:b4:04:98:a1:d3:75:87:98:5e:4f:6c:e8: 9f:5d:fb:f0:10:d4:91:9b:4b:93:fa:bc:79:45:9d: 38:4f:79:42:2c:f5:84:d2:ba:56:63:b5:a7:3f:e7: 03:37:3d:df:74:a6:49:d6:2d:49:14:f3:35:29:24: 0f:1f:30:02:2e:17:5e:c1:6f:07:20:0f:5b:47:dc: 96:0f:fb:2a:e1:a5:92:f4:a9:09:3d:95:ac:bc:9e: de:9a:b4:36:f2:c6:d3:b8:e2:52:08:e5:3e:fa:e2: 1b:6e:80:40:97:69:35:a0:c8:75:c1:b5:2c:79:80: ef:27:36:5d:b0:6e:13:9e:2f:8c:44:d8:ad:d9:c5: 78:8c:87:98:f9:ed:68:09:cb:93:72:52:45:42:cf: 10:fb:9b:cc:89:a8:73:58:75:06:9a:f6:c3:b0:97: 57:b1:0c:26:30:e1:ef:fb:87:ca:8a:d5:bb:de:30: 68:79:39:fa:3d:86:8c:1e:4f:31:e1:aa:a8:95:45: ec:c2:62:5e:46:9f:35:42:de:85:0f:90:37:77:52: 2b:ce:6f:1a:2f:ad:18:bb:a2:e5:94:aa:16:91:87: 2f:73:fd:70:12:54:e5:d5:ac:d5:50:db:9c:8e:ef: ad:3a:d7:b6:82:12:3b:4d:66:53:b7:08:54:63:3a: 94:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C9:FC:B0:40:0B:2F:E5:CC:D0:F9:00:FC:74:4D:03:EB:07:DF:09 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption 85:e4:9b:d2:77:e3:66:2f:5c:18:eb:0e:60:23:5c:4a:85:03: 8e:87:fd:97:14:3f:55:36:63:ea:1c:07:5f:5f:da:da:24:dd: f0:e1:ef:cc:04:29:5e:5f:14:75:f1:da:df:02:99:09:7b:17: 1e:a9:2d:8d:ea:e5:51:f7:62:a1:32:5e:fb:e8:38:aa:3f:4f: 90:4c:f4:7d:49:e4:4a:a0:70:7f:69:a4:24:2a:26:8b:d5:df: ca:9e:94:a1:e1:e1:2f:dc:e8:d7:98:0a:f6:90:0d:13:39:aa: 0c:1f:00:99:38:a4:f4:86:5c:59:c7:e8:49:b3:b9:ad:1e:ed: 78:72:af:0e:88:6d:8f:d1:92:85:3a:1e:c9:64:2d:b5:99:c6: e6:1d:ca:69:e9:6a:12:b4:bd:0b:92:01:a9:98:bd:6d:27:06: 2e:52:eb:03:26:75:77:38:69:df:29:e6:d7:10:1e:7d:d9:c0: ef:66:2b:f7:07:35:20:54:69:92:6b:2c:00:7b:ee:35:35:ad: ef:97:1f:51:f3:76:70:d8:7a:c3:12:55:ca:d6:60:c8:c2:cf: c0:47:2a:2e:1f:a9:1a:e3:f5:89:88:1b:38:9b:b6:73:db:42: 62:1f:e0:59:a0:ed:ea:a4:c8:ed:54:59:b7:a1:69:c1:f4:88: dc:21:d5:28 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzOC00NjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S+0BJih03WHmF5PbOifXfvwENSRm0uT+rx5RZ04T3lCLPWE0rpWY7WnP+cD Nz3fdKZJ1i1JFPM1KSQPHzACLhdewW8HIA9bR9yWD/sq4aWS9KkJPZWsvJ7emrQ2 8sbTuOJSCOU++uIbboBAl2k1oMh1wbUseYDvJzZdsG4Tni+MRNit2cV4jIeY+e1o CcuTclJFQs8Q+5vMiahzWHUGmvbDsJdXsQwmMOHv+4fKitW73jBoeTn6PYaMHk8x 4aqolUXswmJeRp81Qt6FD5A3d1Irzm8aL60Yu6LllKoWkYcvc/1wElTl1azVUNuc ju+tOte2ghI7TWZTtwhUYzqUOwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH3J/LBA Cy/lzND5APx0TQPrB98JMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTYxQjg3RDQ1 NkExMTFFRUI3RURBOTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4OADBwQkBghA7uAwDQYJKoZIhvcNAQELBQADggEB AIXkm9J342YvXBjrDmAjXEqFA46H/ZcUP1U2Y+ocB19f2tok3fDh78wEKV5fFHXx 2t8CmQl7Fx6pLY3q5VH3YqEyXvvoOKo/T5BM9H1J5EqgcH9ppCQqJovV38qelKHh 4S/c6NeYCvaQDRM5qgwfAJk4pPSGXFnH6Emzua0e7Xhyrw6IbY/RkoU6HslkLbWZ xuYdymnpahK0vQuSAamYvW0nBi5S6wMmdXc4ad8p5tcQHn3ZwO9mK/cHNSBUaZJr LAB77jU1re+XH1HzdnDYesMSVcrWYMjCz8BHKi4fqRrj9YmIGzibtnPbQmIf4Fmg 7eqkyO1UWbehacH0iNwh1Sg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org