$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa File: 98F3E1F44BDA11ED90671B29C4F9AE02.roa (raw, json) Hash identifier: lyliPgbr2ojB5Oi8pNmRm5/SaLoK6ackJ1aF98epGcc= Subject key identifier: C5:39:2E:49:CD:EE:88:A4:A4:54:B6:86:EC:DD:84:80:5B:EB:E7:1D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C7A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:05 +0000 ROA not before: Sun 26 May 2024 21:32:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150373 IP address blocks: 2406:840:e340::/44 maxlen: 48 2406:840:fed4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa55-32b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:2b:58:36:e9:3f:01:fc:e6:09:5f:09:2c: fa:4c:47:c3:bc:e6:69:65:53:7f:cf:d0:a0:52:70: a3:36:89:42:8e:50:40:e0:7f:3c:6c:25:1c:de:91: a3:5f:0d:fe:d0:06:de:ac:aa:c5:11:47:01:cb:3b: fe:23:08:a9:7a:1c:8f:3a:da:b5:2c:1d:06:1c:78: 08:55:66:86:7c:a9:47:ae:f3:b4:fb:08:f8:05:80: ca:51:9b:f7:59:90:84:34:e5:e4:23:4d:f6:c9:a6: 6e:ab:c2:f3:1d:d2:46:18:9c:f2:d5:21:3d:4b:1f: e9:78:d5:86:27:62:28:8f:fd:b5:93:91:bc:dd:f9: 75:41:4d:1c:30:fc:4e:07:40:f2:dd:d6:58:e3:2e: a9:68:c9:00:ff:d4:5e:dd:3d:9e:cd:bc:83:c6:c6: a2:33:64:20:4d:3a:74:0e:9a:63:54:22:e7:28:3b: 15:b5:33:3b:74:58:6d:2f:1f:d8:dd:37:3a:2f:14: 97:ec:e1:c9:9b:07:da:74:f5:df:51:6c:c9:ae:78: a7:3a:f6:7c:68:52:41:6b:a9:e6:f4:15:06:89:ee: 0c:1f:a5:3c:51:17:ad:66:a5:de:a1:bc:1f:ee:d4: c3:63:b9:a6:ef:bf:64:de:bf:c5:46:d7:86:2c:69: 44:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:39:2E:49:CD:EE:88:A4:A4:54:B6:86:EC:DD:84:80:5B:EB:E7:1D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e340::/44 2406:840:fed4::/48 Signature Algorithm: sha256WithRSAEncryption 5b:87:ce:19:17:42:f2:a9:b0:a1:84:7c:50:77:21:2a:20:98: 0f:27:68:41:8c:b9:18:21:34:58:a6:36:7c:86:f4:a0:3a:70: 9a:aa:1b:90:34:d6:10:1b:77:e1:f3:f5:76:57:a4:4d:ed:f8: 9c:de:4f:43:be:23:dd:57:69:da:1f:b4:cf:60:0a:80:c0:9f: c6:68:db:5a:e3:fc:d0:7f:71:0e:79:97:74:a9:5d:99:b3:87: 1d:e9:40:ab:f5:72:b6:26:26:e4:7e:0a:16:85:83:f9:49:d4: f4:cf:26:72:e5:a2:4c:73:59:ac:81:87:dc:48:a7:ce:00:02: 62:a5:2b:f9:df:bc:c7:8f:ba:a5:bc:ec:df:20:75:f3:4e:9f: 99:02:10:98:c5:93:83:f0:dc:e4:b7:49:e6:25:66:74:62:45: 93:aa:e9:73:f7:23:2d:8c:68:18:56:92:92:71:6f:fe:b2:a0: 96:89:2d:e0:2f:17:f3:68:28:ff:67:7e:85:ed:b4:44:6a:de: 51:24:7e:ed:bb:4d:55:83:b0:23:43:3f:4c:a8:1f:2f:db:63: 22:9b:36:29:be:75:ae:a7:22:22:d7:28:f3:6f:3a:15:9f:3d: 8c:c2:92:a0:af:83:88:9c:bd:3b:73:c5:e5:68:24:86:b5:f8: 47:10:58:3e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1NS0zMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1krWDbpPwH85glfCSz6TEfDvOZpZVN/z9CgUnCjNolCjlBA4H88bCUc3pGj Xw3+0AberKrFEUcByzv+IwipehyPOtq1LB0GHHgIVWaGfKlHrvO0+wj4BYDKUZv3 WZCENOXkI032yaZuq8LzHdJGGJzy1SE9Sx/peNWGJ2Ioj/21k5G83fl1QU0cMPxO B0Dy3dZY4y6paMkA/9Re3T2ezbyDxsaiM2QgTTp0DppjVCLnKDsVtTM7dFhtLx/Y 3Tc6LxSX7OHJmwfadPXfUWzJrninOvZ8aFJBa6nm9BUGie4MH6U8URetZqXeobwf 7tTDY7mm779k3r/FRteGLGlEkQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMU5LknN 7oikpFS2huzdhIBb6+cdMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOThGM0UxRjQ0 QkRBMTFFRDkwNjcxQjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA40ADBwAkBghA/tQwDQYJKoZIhvcNAQELBQADggEB AFuHzhkXQvKpsKGEfFB3ISogmA8naEGMuRghNFimNnyG9KA6cJqqG5A01hAbd+Hz 9XZXpE3t+JzeT0O+I91XadoftM9gCoDAn8Zo21rj/NB/cQ55l3SpXZmzhx3pQKv1 crYmJuR+ChaFg/lJ1PTPJnLlokxzWayBh9xIp84AAmKlK/nfvMePuqW87N8gdfNO n5kCEJjFk4Pw3OS3SeYlZnRiRZOq6XP3Iy2MaBhWkpJxb/6yoJaJLeAvF/NoKP9n foXttERq3lEkfu27TVWDsCNDP0yoHy/bYyKbNim+da6nIiLXKPNvOhWfPYzCkqCv g4icvTtzxeVoJIa1+EcQWD4= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org