$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa File: AF6E03DA57C611EEB082153EC4F9AE02.roa (raw, json) Hash identifier: 8CaBE5JqPetHRlihMI65WY9YIAJNskSBfDP7W6spQf0= Subject key identifier: E3:5F:DE:41:07:76:1F:70:11:B2:ED:3E:38:09:D1:1B:CE:05:98:E1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C9F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:42 +0000 ROA not before: Sun 26 May 2024 21:32:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 208698 IP address blocks: 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa7a-c9f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:71:a0:89:33:ed:40:4b:09:9f:6a:c9:86:a0: 1d:9b:2f:0c:37:ee:22:8b:fc:fd:19:e1:e4:3e:a7: f4:16:2e:0a:08:7d:da:a4:dd:8c:1e:b3:0f:2e:54: 75:66:6c:f5:fe:34:dc:17:d0:e5:c3:1a:42:5d:4d: 87:da:01:8a:2d:5f:e9:a8:c3:e1:10:e2:dd:22:47: ef:7c:65:80:3d:ce:f5:63:bd:81:c6:39:70:98:33: ba:0a:e5:38:05:04:a1:28:6d:36:76:45:ba:92:91: c8:dc:d4:d7:8f:33:ea:a8:a9:fd:74:91:15:fe:87: 45:03:06:4e:a3:c9:99:b2:0d:1c:0c:ca:43:19:02: 69:70:74:2a:7a:92:99:c4:38:d3:24:e8:1d:3e:d2: df:d6:b2:21:84:ef:e0:29:99:6b:f3:5e:c1:85:69: 4d:84:b0:a4:cc:fa:22:b9:e7:76:c6:a8:1e:2e:0d: f7:12:77:6b:9b:fc:20:fd:bc:64:73:1b:d8:7d:4a: 50:cf:4d:d2:76:57:11:d8:ab:51:46:bc:0b:09:e3: d0:8a:22:8f:ec:4e:9b:17:44:d5:33:13:b2:1a:55: a4:c6:fa:85:11:95:0b:f0:14:bd:6b:21:e2:0f:57: 72:aa:66:50:ba:08:80:ae:cf:bb:dc:46:0b:06:4c: 4b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5F:DE:41:07:76:1F:70:11:B2:ED:3E:38:09:D1:1B:CE:05:98:E1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AF6E03DA57C611EEB082153EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption 17:3f:4c:c6:9c:1b:ef:ee:60:40:de:3d:cf:5d:13:d7:71:5a: ae:9c:d3:75:82:75:92:d5:4a:45:79:f7:28:44:30:3f:ea:e6: 6f:ed:c4:71:ef:42:27:af:b9:89:ca:57:83:f3:92:c0:8c:40: 12:a5:14:02:b4:e3:6c:a5:d3:19:5e:89:dd:7d:4b:c3:7b:d6: 11:8e:1e:85:70:25:d0:4f:5b:68:a1:d0:a1:65:13:2a:57:38: 9f:a6:46:02:de:8b:f3:1e:4a:fe:f0:ca:c4:86:bf:26:ce:a6: 2d:2c:be:d4:29:85:c4:af:e3:f3:4c:b8:ee:94:fc:e6:8b:d1: c6:f6:07:b2:7d:42:39:97:ba:6a:26:3d:bf:16:14:f6:06:68: 78:83:62:e0:86:08:47:ad:fe:95:dc:c0:d6:86:81:9e:e7:78: 75:0d:3d:25:50:4e:4b:f3:e1:61:fb:f4:5d:b2:67:7f:34:77: a5:12:fd:59:f9:7b:15:c9:45:8d:b2:57:d8:c5:f7:d9:5b:4f: 6a:90:18:e8:9c:e1:63:3d:25:c1:5c:22:8d:48:af:d1:cd:a2: 81:db:d8:49:1f:00:ae:e8:84:94:a6:02:82:09:f5:d6:fe:5d: 55:7f:3c:80:4b:5a:03:17:4c:dd:0a:30:8e:ae:81:44:e4:d1: 89:36:c9:5c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE3YS1jOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3GgiTPtQEsJn2rJhqAdmy8MN+4ii/z9GeHkPqf0Fi4KCH3apN2MHrMPLlR1 Zmz1/jTcF9DlwxpCXU2H2gGKLV/pqMPhEOLdIkfvfGWAPc71Y72BxjlwmDO6CuU4 BQShKG02dkW6kpHI3NTXjzPqqKn9dJEV/odFAwZOo8mZsg0cDMpDGQJpcHQqepKZ xDjTJOgdPtLf1rIhhO/gKZlr817BhWlNhLCkzPoiued2xqgeLg33Endrm/wg/bxk cxvYfUpQz03SdlcR2KtRRrwLCePQiiKP7E6bF0TVMxOyGlWkxvqFEZUL8BS9ayHi D1dyqmZQugiArs+73EYLBkxLyQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFONf3kEH dh9wEbLtPjgJ0RvOBZjhMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUY2RTAzREE1 N0M2MTFFRUIwODIxNTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA7uAwDQYJKoZIhvcNAQELBQADggEBABc/TMacG+/u YEDePc9dE9dxWq6c03WCdZLVSkV59yhEMD/q5m/txHHvQievuYnKV4PzksCMQBKl FAK042yl0xleid19S8N71hGOHoVwJdBPW2ih0KFlEypXOJ+mRgLei/MeSv7wysSG vybOpi0svtQphcSv4/NMuO6U/OaL0cb2B7J9QjmXumomPb8WFPYGaHiDYuCGCEet /pXcwNaGgZ7neHUNPSVQTkvz4WH79F2yZ380d6US/Vn5exXJRY2yV9jF99lbT2qQ GOic4WM9JcFcIo1Ir9HNooHb2EkfAK7ohJSmAoIJ9db+XVV/PIBLWgMXTN0KMI6u gUTk0Yk2yVw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org