$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9712DFD271DC11EFAC022E35C4F9AE02.roa File: 9712DFD271DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: h7y2qiEWKQhA7KeW2/t/+O6r+njZyTCfxQ2JSQHB47M= Subject key identifier: 94:96:6B:25:B1:D0:09:E5:AA:4C:BC:DC:4A:7E:33:C8:DE:77:13:A2 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D6A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9712DFD271DC11EFAC022E35C4F9AE02.roa Signing time: Fri 13 Sep 2024 14:29:31 +0000 ROA not before: Fri 13 Sep 2024 14:29:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137436 IP address blocks: 2406:840:fc20::/44 maxlen: 48 2406:840:fea6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 13 14:29:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e44c4b-dde9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:29:39:83:40:f4:a0:34:f4:e3:30:6c:58: 31:b9:19:f8:ff:66:9a:8b:5f:6d:6b:61:07:94:89: 8a:a4:6c:57:8f:e3:ce:1a:0b:16:67:fb:b7:72:6a: 3d:e7:5d:ab:b2:48:eb:2c:c9:7a:46:bb:b4:06:cf: ef:da:d8:e3:9d:52:33:a4:98:77:39:4d:19:56:f1: 29:b2:56:af:3b:e4:eb:90:00:b8:66:e0:86:e5:a6: c1:d3:7f:e7:c0:32:a6:df:5e:47:80:f9:2b:94:49: a6:1b:3c:70:96:80:85:4a:e6:47:0a:a1:ca:b7:0f: 90:67:a4:19:28:c9:cf:79:35:4f:f5:2e:fc:b7:e2: 6f:53:22:fb:28:ab:fa:02:85:f4:15:24:57:8a:9d: a8:6b:4d:07:74:ff:90:ae:73:94:ca:e6:59:da:5a: 38:92:25:8a:e9:3d:07:e4:15:92:b2:71:98:b2:18: 8b:59:73:42:0d:f3:36:b6:3c:ff:52:8f:7b:1b:f7: 3f:db:0c:74:5e:ca:79:e2:4d:59:ad:0c:ab:69:c1: 56:1d:e7:1d:54:9d:53:39:e8:42:1f:4b:59:a8:fa: b2:ed:f5:33:26:b5:9e:9b:a0:90:34:1c:a7:79:28: 4a:c2:76:d5:f6:99:05:30:e5:45:50:df:9f:33:c4: 88:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:96:6B:25:B1:D0:09:E5:AA:4C:BC:DC:4A:7E:33:C8:DE:77:13:A2 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9712DFD271DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc20::/44 2406:840:fea6::/48 Signature Algorithm: sha256WithRSAEncryption 9c:c4:24:ac:a4:8d:d7:25:00:b5:dc:e4:55:e1:0e:2a:66:ff: 88:f5:61:ee:29:52:72:53:db:be:d6:23:ed:2e:bd:b0:bc:4c: 4c:b1:d0:b1:c5:63:9a:c0:b7:dd:ac:06:58:bc:c1:aa:44:dd: f2:4c:a3:40:d4:82:ac:0e:ed:5a:c5:c8:64:6b:73:28:e0:06: 5c:dc:26:e4:94:bd:32:f4:57:b9:b5:8b:a1:e8:5d:5b:a0:32: 34:7b:6c:6e:c6:10:4f:42:24:61:4d:75:7a:9d:36:9f:4d:a8: ca:5a:20:f2:34:4b:d0:e1:08:a3:36:bf:cc:38:41:ac:b9:57: 26:4d:f4:4d:1e:81:1b:fb:f0:f0:91:d0:08:da:f4:f2:a8:06: ba:42:7d:6c:86:65:3e:57:19:b9:50:85:32:c6:e3:4e:87:f8: 69:7e:5c:a9:0c:a5:6f:32:a8:85:9a:1c:2e:b1:8e:a5:22:3f: dd:fe:c8:c9:36:10:a1:7e:a5:d6:b8:e1:da:05:f5:03:53:94: 91:fc:c2:59:f3:18:2b:64:4d:20:56:b8:51:97:df:bf:42:8c: f5:06:0f:7f:4e:73:36:52:ad:45:40:aa:86:b3:cd:7b:18:ab: db:06:26:43:51:51:28:66:42:d7:9d:ca:e7:e2:61:0c:4c:39: 52:61:2a:91 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTEzMTQyOTMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0NGM0Yi1kZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMQpOYNA9KA09OMwbFgxuRn4/2aai19ta2EHlImKpGxXj+POGgsWZ/u3cmo9 512rskjrLMl6Rru0Bs/v2tjjnVIzpJh3OU0ZVvEpslavO+TrkAC4ZuCG5abB03/n wDKm315HgPkrlEmmGzxwloCFSuZHCqHKtw+QZ6QZKMnPeTVP9S78t+JvUyL7KKv6 AoX0FSRXip2oa00HdP+QrnOUyuZZ2lo4kiWK6T0H5BWSsnGYshiLWXNCDfM2tjz/ Uo97G/c/2wx0Xsp54k1ZrQyracFWHecdVJ1TOehCH0tZqPqy7fUzJrWem6CQNByn eShKwnbV9pkFMOVFUN+fM8SInwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJSWayWx 0Anlqky83Ep+M8jedxOiMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTcxMkRGRDI3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/CADBwAkBghA/qYwDQYJKoZIhvcNAQELBQADggEB AJzEJKykjdclALXc5FXhDipm/4j1Ye4pUnJT277WI+0uvbC8TEyx0LHFY5rAt92s Bli8wapE3fJMo0DUgqwO7VrFyGRrcyjgBlzcJuSUvTL0V7m1i6HoXVugMjR7bG7G EE9CJGFNdXqdNp9NqMpaIPI0S9DhCKM2v8w4Qay5VyZN9E0egRv78PCR0Aja9PKo BrpCfWyGZT5XGblQhTLG406H+Gl+XKkMpW8yqIWaHC6xjqUiP93+yMk2EKF+pda4 4doF9QNTlJH8wlnzGCtkTSBWuFGX379CjPUGD39OczZSrUVAqoazzXsYq9sGJkNR UShmQtedyufiYQxMOVJhKpE= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org