$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa File: AE3E17129AD611EA9A86E163C4F9AE02.roa (raw, json) Hash identifier: ycjwUWV97WUpbBrEeLQwE+5xUtxUbUFykLRKZk7zgww= Subject key identifier: 2D:D6:0E:7C:00:C7:E6:BD:78:78:25:05:E3:E3:7D:0B:3C:47:E9:23 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CB4 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa Signing time: Sun 26 May 2024 21:33:00 +0000 ROA not before: Sun 26 May 2024 21:33:00 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 39753 IP address blocks: 2406:840:f100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:33:00 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa8c-e9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:22:62:49:29:66:36:e0:a7:ae:74:68:91:70: 10:ee:78:5d:f7:f3:d0:93:b6:b3:aa:ad:5b:1e:50: b6:7c:2a:ff:36:87:bf:bc:13:04:63:26:15:4d:01: ba:ad:fe:44:4d:ef:73:a8:26:2f:a0:ec:c6:8d:82: 36:f1:05:ee:4a:f2:27:e7:7b:1a:6c:8a:64:bd:af: 95:58:59:ab:31:ff:ac:88:12:e4:88:07:64:0f:06: 3b:80:34:7a:5a:7d:79:13:18:27:cb:65:7a:64:57: 6b:35:91:50:8a:c9:df:28:b2:a7:6c:a1:30:ff:61: e8:df:77:5d:7d:9c:91:9e:72:65:00:77:cf:b4:3d: fa:a2:87:f0:f1:8b:79:df:ea:b5:95:7e:dd:e3:68: 4e:85:6b:4b:78:41:59:8d:fa:df:95:ba:4c:ff:bf: 39:95:98:ad:84:5c:f5:4d:46:dd:25:9d:5d:63:0a: e7:88:88:33:13:8e:b0:10:50:3e:82:4d:69:92:f9: 70:5e:6b:d1:26:fe:a2:df:80:2e:18:b8:e2:ff:6c: ca:27:1f:69:80:8d:7f:da:9f:5b:8d:82:dd:b1:93: 50:50:b1:9a:4d:78:62:ef:4e:52:a7:9c:bc:a0:a0: 9c:70:c9:f8:f2:f3:3f:d2:c5:f7:50:75:24:70:59: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D6:0E:7C:00:C7:E6:BD:78:78:25:05:E3:E3:7D:0B:3C:47:E9:23 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f100::/44 Signature Algorithm: sha256WithRSAEncryption 51:9f:5c:0a:f6:d4:49:95:44:cc:92:e4:6b:d6:0b:0c:ff:28: 05:bc:a4:37:00:89:4c:25:ef:bf:f5:2e:e2:cc:8a:ce:61:a0: 8e:b7:eb:19:4e:0d:08:c9:c1:87:7f:94:8c:a4:d0:d0:b2:27: 2e:04:2f:8a:bd:37:36:47:be:56:af:6a:30:c5:96:bc:e9:38: 19:27:0e:cc:3a:64:7d:c4:29:71:68:d3:c3:9f:d1:04:d6:ef: 96:39:42:fc:ca:52:ca:4a:73:61:0a:99:70:dd:1e:76:dc:4d: c5:69:dd:c2:64:b2:76:a6:46:18:7f:e5:dc:ec:32:3d:ca:ef: d9:e9:e9:eb:c2:54:f4:4a:8b:b5:18:f3:1b:17:9d:f3:eb:bd: cb:fb:12:86:31:67:33:31:9c:16:5b:e0:6d:e9:96:b5:be:1b: 34:25:ab:bd:83:09:0a:14:79:07:34:89:c4:a5:ee:a8:31:c3: ec:86:5c:cb:fe:73:0b:16:46:ca:71:0c:da:70:75:be:eb:72: 3a:46:37:ea:4e:db:9e:01:f4:0c:94:c7:e3:65:be:8a:72:8a: b3:d7:eb:c1:80:48:8b:48:eb:e1:8c:39:90:31:90:bf:0a:32: 58:5e:3e:1f:fb:00:97:4c:99:fa:84:3d:3a:a2:c4:8c:37:a5: fc:74:82:d7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMzAwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4Yy1lOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyJiSSlmNuCnrnRokXAQ7nhd9/PQk7azqq1bHlC2fCr/Noe/vBMEYyYVTQG6 rf5ETe9zqCYvoOzGjYI28QXuSvIn53sabIpkva+VWFmrMf+siBLkiAdkDwY7gDR6 Wn15Exgny2V6ZFdrNZFQisnfKLKnbKEw/2Ho33ddfZyRnnJlAHfPtD36oofw8Yt5 3+q1lX7d42hOhWtLeEFZjfrflbpM/785lZithFz1TUbdJZ1dYwrniIgzE46wEFA+ gk1pkvlwXmvRJv6i34AuGLji/2zKJx9pgI1/2p9bjYLdsZNQULGaTXhi705Sp5y8 oKCccMn48vM/0sX3UHUkcFlaswIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC3WDnwA x+a9eHglBePjfQs8R+kjMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUUzRTE3MTI5 QUQ2MTFFQTlBODZFMTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA8QAwDQYJKoZIhvcNAQELBQADggEBAFGfXAr21EmV RMyS5GvWCwz/KAW8pDcAiUwl77/1LuLMis5hoI636xlODQjJwYd/lIyk0NCyJy4E L4q9NzZHvlavajDFlrzpOBknDsw6ZH3EKXFo08Of0QTW75Y5QvzKUspKc2EKmXDd HnbcTcVp3cJksnamRhh/5dzsMj3K79np6evCVPRKi7UY8xsXnfPrvcv7EoYxZzMx nBZb4G3plrW+GzQlq72DCQoUeQc0icSl7qgxw+yGXMv+cwsWRspxDNpwdb7rcjpG N+pO254B9AyUx+NlvopyirPX68GASItI6+GMOZAxkL8KMlhePh/7AJdMmfqEPTqi xIw3pfx0gtc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:41 2024 by rpki-client on console-fra.rpki-client.org