$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa File: 979DE50A71DC11EFAC022E35C4F9AE02.roa (raw, json) Hash identifier: 7EFIGXySNBMr68pOsen8ldtrckHmnZzgdn32oag1I/s= Subject key identifier: 14:17:68:67:35:81:F5:BD:92:C8:04:39:9F:0D:9D:AF:83:DD:45:70 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D6B Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa Signing time: Fri 13 Sep 2024 14:29:32 +0000 ROA not before: Fri 13 Sep 2024 14:29:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149510 IP address blocks: 2406:840:fc90::/44 maxlen: 48 2406:840:fea7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3435 (0xd6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 13 14:29:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e44c4c-d9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:3a:ef:2c:f4:92:c0:96:c7:01:b1:bc:54:f6: 8f:86:2f:98:35:4a:46:87:51:25:f0:65:aa:f8:67: dc:17:05:ea:d0:bb:4d:7b:17:a4:88:64:ae:df:eb: 1a:3b:41:00:5f:4d:76:7a:5f:10:6b:ea:17:44:57: 46:3a:dc:93:ab:83:9d:d8:63:98:7f:64:20:20:00: e9:d3:af:98:f0:5a:65:24:14:98:f4:43:69:a4:d8: b0:4c:14:f3:77:6d:f7:76:f7:22:40:d0:85:d4:3d: 5b:94:83:5e:f7:08:23:db:1f:35:6d:31:af:bc:b9: 04:65:60:0c:a6:4e:2d:e7:4f:65:83:90:b7:ed:df: a7:8a:7b:6c:48:35:2a:d2:1c:a9:94:b8:eb:19:28: 06:b4:51:e7:35:4c:a6:b4:4e:7c:8b:4c:f4:c0:61: 28:ca:d9:56:14:33:06:75:ba:27:97:8e:f4:ad:af: fb:e4:52:ab:3b:e9:f9:b4:69:6c:56:e6:83:39:03: 34:27:2f:fe:38:5a:99:70:d5:ee:2c:92:c7:d6:1e: 0a:0d:88:98:a3:34:ad:32:17:17:b6:19:7a:08:f6: 11:26:8f:ab:df:c3:71:a8:0e:73:e6:7e:91:3b:4f: 9d:06:0b:4f:23:aa:ff:4d:31:85:9c:d6:3f:54:92: b2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:17:68:67:35:81:F5:BD:92:C8:04:39:9F:0D:9D:AF:83:DD:45:70 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/979DE50A71DC11EFAC022E35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc90::/44 2406:840:fea7::/48 Signature Algorithm: sha256WithRSAEncryption 18:9a:e7:56:c0:93:64:ab:ba:d0:40:01:6d:e1:ea:6d:12:ed: b8:15:36:95:5a:ef:c3:7b:e3:14:8e:73:1f:3e:31:aa:0f:13: 4b:da:17:4c:48:6f:4f:1d:12:69:d5:65:3d:82:c0:af:f6:ed: ab:93:62:7d:5c:1f:54:d1:c9:ba:44:a6:15:a7:d3:a4:b1:4b: c6:c6:2f:96:cc:2a:25:20:1d:62:6e:de:d0:3d:1f:fe:48:05: 72:89:d2:cc:4d:31:8d:5c:22:c1:bb:a0:cd:a4:62:ad:aa:6b: 65:ac:d8:2d:cc:1e:b2:5a:dc:35:d1:7c:f0:33:74:9b:a6:db: 16:08:b7:75:62:3a:17:f9:4a:8d:e1:8e:00:71:72:b2:a7:d8: f6:90:ba:2d:2e:15:a1:f3:0c:21:cb:77:95:f6:8a:4d:a2:1d: 29:c5:9e:00:d6:2f:07:23:06:fe:94:6f:37:8c:c4:cd:0b:0f: d7:0f:0e:7c:97:47:1c:a0:4e:88:1a:d1:2b:a7:11:d1:e9:e0: e5:29:ed:15:20:41:5e:99:8d:e6:85:41:93:c4:60:1a:2f:0d: 52:f2:6e:f6:74:50:52:91:ee:15:fb:9a:9b:a5:93:c3:5a:94: c3:c3:d7:a5:19:06:11:62:48:04:46:3d:66:40:d4:af:a7:c8: eb:b5:a6:af -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTEzMTQyOTMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0NGM0Yy1kOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+TrvLPSSwJbHAbG8VPaPhi+YNUpGh1El8GWq+GfcFwXq0LtNexekiGSu3+sa O0EAX012el8Qa+oXRFdGOtyTq4Od2GOYf2QgIADp06+Y8FplJBSY9ENppNiwTBTz d233dvciQNCF1D1blINe9wgj2x81bTGvvLkEZWAMpk4t509lg5C37d+nintsSDUq 0hyplLjrGSgGtFHnNUymtE58i0z0wGEoytlWFDMGdbonl470ra/75FKrO+n5tGls VuaDOQM0Jy/+OFqZcNXuLJLH1h4KDYiYozStMhcXthl6CPYRJo+r38NxqA5z5n6R O0+dBgtPI6r/TTGFnNY/VJKyzQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBQXaGc1 gfW9ksgEOZ8Nna+D3UVwMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTc5REU1MEE3 MURDMTFFRkFDMDIyRTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/JADBwAkBghA/qcwDQYJKoZIhvcNAQELBQADggEB ABia51bAk2SrutBAAW3h6m0S7bgVNpVa78N74xSOcx8+MaoPE0vaF0xIb08dEmnV ZT2CwK/27auTYn1cH1TRybpEphWn06SxS8bGL5bMKiUgHWJu3tA9H/5IBXKJ0sxN MY1cIsG7oM2kYq2qa2Ws2C3MHrJa3DXRfPAzdJum2xYIt3ViOhf5So3hjgBxcrKn 2PaQui0uFaHzDCHLd5X2ik2iHSnFngDWLwcjBv6UbzeMxM0LD9cPDnyXRxygToga 0SunEdHp4OUp7RUgQV6ZjeaFQZPEYBovDVLybvZ0UFKR7hX7mpulk8NalMPD16UZ BhFiSARGPWZA1K+nyOu1pq8= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org