$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa File: A16CFB8E71DC11EFB72B3835C4F9AE02.roa (raw, json) Hash identifier: R369AdXrsXRJUXmVnvv/c1C4lwS/xQ6BUjKVW6w7bWU= Subject key identifier: F1:27:C1:58:ED:B4:C3:D4:4C:76:66:AA:C6:08:D2:99:5F:54:5C:34 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D77 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa Signing time: Sun 15 Sep 2024 13:33:56 +0000 ROA not before: Sun 15 Sep 2024 13:33:56 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153330 IP address blocks: 2406:840:9a00::/40 maxlen: 48 2406:840:ca00::/40 maxlen: 48 2406:840:cc00::/40 maxlen: 48 2406:840:cf00::/40 maxlen: 48 2406:840:fea2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3447 (0xd77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 15 13:33:56 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e6e243-839f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f3:f0:ab:b6:49:bd:57:4e:e4:ac:07:a3:a7: a2:f5:a6:11:b7:7e:72:1c:bb:9c:e7:27:37:55:23: df:a9:07:c3:95:df:9f:3b:10:68:5d:ec:52:49:9f: e8:c3:dc:68:f6:76:bd:0a:99:96:03:4f:92:73:df: 6d:c5:43:24:9c:1c:70:17:c7:cc:27:28:fb:f5:87: d5:8e:91:b7:87:b1:0d:4e:a7:03:02:1a:c4:b7:a4: db:7d:bd:81:5d:9a:ed:ac:6c:c9:b4:dc:88:6d:98: 62:0e:59:59:ce:b8:79:1b:b5:7f:c1:a9:f1:bf:cd: f6:7a:9f:19:ef:b2:43:0c:e8:c0:e0:45:6a:55:9f: 2f:de:7f:78:51:de:3f:08:45:2f:ee:1e:8d:2d:d7: 25:d1:72:cd:98:3d:f6:61:23:0b:98:d9:70:c8:fe: 45:40:7e:72:74:22:a1:c1:92:cd:c8:25:4f:fc:94: 87:c5:f9:f1:2f:97:21:f8:e9:fa:59:68:35:32:fa: 96:99:14:6c:34:98:c4:80:c2:8a:03:02:6a:ef:3c: 0d:aa:55:cb:00:98:05:cf:e3:a5:71:c0:da:b1:37: 81:3a:64:11:0d:c2:36:5e:75:4f:59:8a:5e:e0:ae: 56:aa:32:98:b5:4f:b2:8e:7c:de:67:4e:36:f4:71: 19:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:27:C1:58:ED:B4:C3:D4:4C:76:66:AA:C6:08:D2:99:5F:54:5C:34 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A16CFB8E71DC11EFB72B3835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9a00::/40 2406:840:ca00::/40 2406:840:cc00::/40 2406:840:cf00::/40 2406:840:fea2::/48 Signature Algorithm: sha256WithRSAEncryption 02:df:80:e0:c3:75:1a:09:aa:93:cd:0b:05:c3:f2:80:52:8e: de:a2:50:f7:4f:df:73:08:e7:e8:9c:9b:b2:d8:72:19:19:5a: 9e:5b:d7:3e:21:6e:e5:71:4c:83:63:c7:80:1c:15:22:cb:ea: 14:a8:96:29:e9:da:b9:3f:c3:7d:15:ac:d5:9c:ed:0b:82:c0: 0e:6d:c0:e1:c1:f0:e1:ca:59:e6:85:37:c0:b2:0e:e6:a1:fe: b8:e7:bc:0f:cd:0c:ec:83:d5:a0:09:b9:9f:b5:cd:11:51:74: 26:e3:3b:24:1a:fa:dd:f6:82:45:e3:62:aa:84:af:48:67:9c: 1f:c6:e9:19:ae:35:05:eb:c3:09:3b:73:6c:2b:f6:f3:77:41: 6a:7a:ac:e1:e3:d0:0c:5e:b0:1f:ed:1e:cc:7d:11:69:ed:55: 54:a5:f4:e5:d0:fa:c2:07:33:4f:a8:2c:e2:a5:c1:e8:5e:1c: 08:41:43:ed:04:aa:bb:ca:59:cf:cc:2c:ad:17:e4:bf:c7:79: 33:cc:18:aa:21:16:e6:d9:ad:fb:46:6f:fb:39:c7:34:8c:bf: fc:d6:6b:ed:82:e8:f0:02:4d:ab:d4:f0:ea:e8:b9:00:c2:2d: d0:17:78:ec:aa:84:82:7a:2b:a7:40:70:35:ba:59:70:28:2f: b3:96:dc:9e -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTE1MTMzMzU2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2ZTI0My04MzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vPwq7ZJvVdO5KwHo6ei9aYRt35yHLuc5yc3VSPfqQfDld+fOxBoXexSSZ/o w9xo9na9CpmWA0+Sc99txUMknBxwF8fMJyj79YfVjpG3h7ENTqcDAhrEt6Tbfb2B XZrtrGzJtNyIbZhiDllZzrh5G7V/wanxv832ep8Z77JDDOjA4EVqVZ8v3n94Ud4/ CEUv7h6NLdcl0XLNmD32YSMLmNlwyP5FQH5ydCKhwZLNyCVP/JSHxfnxL5ch+On6 WWg1MvqWmRRsNJjEgMKKAwJq7zwNqlXLAJgFz+OlccDasTeBOmQRDcI2XnVPWYpe 4K5WqjKYtU+yjnzeZ0429HEZVwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFPEnwVjt tMPUTHZmqsYI0plfVFw0MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTE2Q0ZCOEU3 MURDMTFFRkI3MkIzODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMC8EAgACMCkDBgAkBghAmgMGACQGCEDKAwYAJAYIQMwDBgAkBghAzwMHACQG CED+ojANBgkqhkiG9w0BAQsFAAOCAQEAAt+A4MN1Ggmqk80LBcPygFKO3qJQ90/f cwjn6JybsthyGRlanlvXPiFu5XFMg2PHgBwVIsvqFKiWKenauT/DfRWs1ZztC4LA Dm3A4cHw4cpZ5oU3wLIO5qH+uOe8D80M7IPVoAm5n7XNEVF0JuM7JBr63faCReNi qoSvSGecH8bpGa41BevDCTtzbCv283dBanqs4ePQDF6wH+0ezH0Rae1VVKX05dD6 wgczT6gs4qXB6F4cCEFD7QSqu8pZz8wsrRfkv8d5M8wYqiEW5tmt+0Zv+znHNIy/ /NZr7YLo8AJNq9Tw6ui5AMIt0Bd47KqEgnorp0BwNbpZcCgvs5bcng== -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org