$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC2F7380B1C411EAAB5E9562C4F9AE02.roa File: AC2F7380B1C411EAAB5E9562C4F9AE02.roa (raw, json) Hash identifier: 1vJx8B9gyKDDAvJP1bKxdrJ0m1m95hOGwaBt3GRXizo= Subject key identifier: D9:E8:0D:CF:1A:29:7A:D8:7C:D7:EC:58:8B:B4:94:2D:12:68:80:FA Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CAA Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC2F7380B1C411EAAB5E9562C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:51 +0000 ROA not before: Sun 26 May 2024 21:32:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 213069 IP address blocks: 2406:840:e010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa83-2735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:40:f2:09:58:dd:dc:c1:cc:aa:25:a0:29:4f: bc:ea:a7:c7:a6:22:f5:39:20:a5:04:d4:bf:99:8a: 1c:c1:72:23:7a:35:b7:8d:05:be:b9:cc:48:a6:8e: 00:1e:85:6b:e6:2e:4c:4c:64:3e:70:cd:9b:83:20: 6d:62:63:cd:93:fd:51:ed:82:3c:2c:7d:65:e6:84: 3d:60:e1:ee:3d:70:bd:f7:90:9e:6c:b7:c2:48:33: 42:44:e2:10:d4:a3:64:8f:4b:41:19:3a:b8:ee:51: 50:f8:b3:f4:c5:26:5a:77:70:07:bb:e3:c1:d0:02: fb:16:7c:d2:72:dc:60:72:15:42:2e:17:a6:5d:52: f5:64:e7:37:47:b1:1b:0e:f3:f6:6b:4d:ef:40:ac: 93:18:50:05:5f:3d:df:f6:d2:48:76:d4:6e:c8:b0: bd:e1:10:12:eb:13:fb:d5:8f:c4:5c:bd:00:f4:38: f4:5d:99:93:ae:b8:d4:18:55:0a:da:88:05:22:e8: d8:9c:72:56:c0:d2:b6:b4:dd:de:fd:c9:c4:3f:65: ae:e4:0a:56:b3:e6:b8:80:0f:38:a5:8b:16:88:57: 3d:12:ab:3e:24:d9:27:0c:9e:c3:7f:26:49:88:be: 69:8c:7a:45:40:2c:e1:59:85:23:5a:08:39:cc:f9: 02:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E8:0D:CF:1A:29:7A:D8:7C:D7:EC:58:8B:B4:94:2D:12:68:80:FA X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AC2F7380B1C411EAAB5E9562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e010::/44 Signature Algorithm: sha256WithRSAEncryption 76:f2:17:01:7e:33:ef:7e:35:ae:08:f6:38:1d:98:ab:c0:b8: ea:3f:e9:f1:93:7d:f5:70:b7:f4:0a:83:95:01:49:81:e4:25: 59:fd:5c:db:c9:47:59:a8:36:6e:98:10:84:02:62:eb:24:c0: 96:c3:89:a4:a5:5c:26:ef:a0:1d:38:81:dd:34:c3:1c:4a:51: 51:91:0d:06:69:94:1f:c1:39:23:26:bd:c4:ef:b2:97:e4:f6: 1f:80:d3:a7:50:41:70:cf:c2:ad:28:c8:bc:e3:9e:1f:ef:17: 1a:50:93:98:9f:79:b5:86:59:fa:79:0d:00:56:46:d5:ab:f3: e0:0b:a3:5e:f4:f8:c6:8d:8f:2d:8f:21:f0:27:9e:f4:93:55: 65:a2:b6:ff:22:01:cb:0c:16:a7:14:38:2a:25:96:7a:30:6d: 27:20:cc:01:68:0c:ee:35:12:2a:18:1c:26:5e:71:7d:93:b3: cd:3d:9d:65:39:40:3b:b9:60:b0:21:1a:d3:e7:9b:25:bb:bc: 6d:f1:1a:56:75:bb:08:44:8f:ab:6e:de:23:80:f6:07:27:4e: 54:af:d8:5f:fd:94:10:10:af:3d:45:5d:41:b4:30:b1:c6:12: da:1d:8b:cc:9b:cd:8f:b1:d8:15:cd:03:7e:93:73:57:ae:2a: f6:b1:f7:0b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4My0yNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EDyCVjd3MHMqiWgKU+86qfHpiL1OSClBNS/mYocwXIjejW3jQW+ucxIpo4A HoVr5i5MTGQ+cM2bgyBtYmPNk/1R7YI8LH1l5oQ9YOHuPXC995CebLfCSDNCROIQ 1KNkj0tBGTq47lFQ+LP0xSZad3AHu+PB0AL7FnzSctxgchVCLhemXVL1ZOc3R7Eb DvP2a03vQKyTGFAFXz3f9tJIdtRuyLC94RAS6xP71Y/EXL0A9Dj0XZmTrrjUGFUK 2ogFIujYnHJWwNK2tN3e/cnEP2Wu5ApWs+a4gA84pYsWiFc9Eqs+JNknDJ7DfyZJ iL5pjHpFQCzhWYUjWgg5zPkCfwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNnoDc8a KXrYfNfsWIu0lC0SaID6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUMyRjczODBC MUM0MTFFQUFCNUU5NTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4BAwDQYJKoZIhvcNAQELBQADggEBAHbyFwF+M+9+ Na4I9jgdmKvAuOo/6fGTffVwt/QKg5UBSYHkJVn9XNvJR1moNm6YEIQCYuskwJbD iaSlXCbvoB04gd00wxxKUVGRDQZplB/BOSMmvcTvspfk9h+A06dQQXDPwq0oyLzj nh/vFxpQk5ifebWGWfp5DQBWRtWr8+ALo170+MaNjy2PIfAnnvSTVWWitv8iAcsM FqcUOCollnowbScgzAFoDO41EioYHCZecX2Ts809nWU5QDu5YLAhGtPnmyW7vG3x GlZ1uwhEj6tu3iOA9gcnTlSv2F/9lBAQrz1FXUG0MLHGEtodi8ybzY+x2BXNA36T c1euKvax9ws= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org