$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa File: B1A3BAC48FB411EAA396FB5CC4F9AE02.roa (raw, json) Hash identifier: Z6qSZhehN5BPFP+zJI8mWBMqRiikn6svUc3/uXfjBPM= Subject key identifier: 90:5A:8A:45:3F:22:0E:E9:61:F7:FA:93:14:76:7C:94:03:85:76:F8 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C5D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:39 +0000 ROA not before: Sun 26 May 2024 21:31:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139317 IP address blocks: 2406:840::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:39 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa3a-333b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:71:ac:99:cf:24:f7:f6:c5:c1:31:b4:0a:f1: 72:74:74:c6:44:e9:11:2d:17:5f:56:6b:d5:e9:f9: f6:8f:21:5a:dd:20:c9:6c:9d:3d:17:3f:01:80:8d: df:a8:07:f5:f4:f3:ed:1f:fe:68:29:27:30:44:cf: 40:b3:0e:3e:f2:4c:09:24:d1:7e:c5:a4:94:0f:49: 24:ad:ae:e1:dc:9d:cb:c5:5b:24:2a:30:a9:0d:46: d5:4f:f8:78:3d:53:72:b9:99:f7:dc:f4:ad:e7:eb: 2d:1e:ae:42:25:17:71:ee:91:29:8b:a8:09:ae:eb: ce:f6:88:56:02:53:a6:56:90:9c:bc:ca:a5:70:86: 6f:81:07:37:35:9d:89:29:81:a9:44:6d:9a:5e:4c: ae:15:6e:d3:53:d9:f0:0e:2e:c0:ae:0f:aa:ff:fa: 46:b8:89:a7:46:f3:e6:0b:64:f8:d3:1b:83:2c:b2: 0a:45:8a:40:ec:4c:7c:84:dc:92:3a:18:63:3e:cc: 34:d4:b5:0d:62:11:3b:69:f7:57:c2:f1:38:c4:5d: 18:54:d9:37:a6:f2:04:cf:65:35:52:ba:b9:e5:1d: 5d:46:03:e8:0c:3d:73:ae:77:02:9c:ad:2d:6b:1d: dc:3a:d0:c6:14:76:18:ff:80:db:b4:e6:73:d5:2b: b3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5A:8A:45:3F:22:0E:E9:61:F7:FA:93:14:76:7C:94:03:85:76:F8 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840::/32 Signature Algorithm: sha256WithRSAEncryption 62:08:2a:6a:a7:97:14:9d:11:d1:ac:20:f7:53:ce:35:d8:dc: f6:9d:90:e4:87:f1:31:46:66:7f:8e:87:cd:94:81:a4:25:07: db:eb:b5:e7:57:c6:de:ec:6a:b2:67:7e:13:be:42:8c:01:24: 9f:94:a0:3e:a9:a5:ad:7d:0f:1c:2a:04:cb:35:cd:f9:aa:ad: 87:bd:c2:01:3b:52:e3:4a:d0:a9:cf:2b:ea:e8:8d:46:83:96: 9a:15:44:ff:0f:a6:dd:6f:39:15:0b:b4:f3:66:c0:38:cf:9f: 82:c7:d6:d4:eb:89:0b:da:3f:68:da:99:b0:00:6e:96:00:e0: b0:c3:4f:b4:a3:63:c5:ea:a3:13:ee:4d:44:5c:1d:f0:5a:1c: 8d:67:30:d4:18:e7:0d:f5:b1:28:b1:30:bc:41:05:13:4e:c2: 2a:d0:d1:81:dd:d1:04:2b:2a:ef:87:04:e1:c6:ca:96:67:ba: ad:3b:ea:1e:6b:63:73:c2:98:08:bf:91:db:96:57:78:cf:0b: 74:8b:6f:12:f0:5b:86:0c:ff:2c:63:4f:bf:7c:fc:65:59:0a: 8b:b8:ab:56:e8:c5:9b:48:fd:96:29:00:93:1f:10:0d:8f:fc: 41:dd:79:26:67:07:bc:be:da:4b:aa:76:c3:5b:92:c1:b9:88: fe:a9:3d:00 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzYS0zMzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHGsmc8k9/bFwTG0CvFydHTGROkRLRdfVmvV6fn2jyFa3SDJbJ09Fz8BgI3f qAf19PPtH/5oKScwRM9Asw4+8kwJJNF+xaSUD0kkra7h3J3LxVskKjCpDUbVT/h4 PVNyuZn33PSt5+stHq5CJRdx7pEpi6gJruvO9ohWAlOmVpCcvMqlcIZvgQc3NZ2J KYGpRG2aXkyuFW7TU9nwDi7Arg+q//pGuImnRvPmC2T40xuDLLIKRYpA7Ex8hNyS OhhjPsw01LUNYhE7afdXwvE4xF0YVNk3pvIEz2U1Urq55R1dRgPoDD1zrncCnK0t ax3cOtDGFHYY/4DbtOZz1SuzoQIDAQABo4ICljCCApIwHQYDVR0OBBYEFJBaikU/ Ig7pYff6kxR2fJQDhXb4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjFBM0JBQzQ4 RkI0MTFFQUEzOTZGQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBghAMA0GCSqGSIb3DQEBCwUAA4IBAQBiCCpqp5cUnRHR rCD3U8412Nz2nZDkh/ExRmZ/jofNlIGkJQfb67XnV8be7GqyZ34TvkKMASSflKA+ qaWtfQ8cKgTLNc35qq2HvcIBO1LjStCpzyvq6I1Gg5aaFUT/D6bdbzkVC7TzZsA4 z5+Cx9bU64kL2j9o2pmwAG6WAOCww0+0o2PF6qMT7k1EXB3wWhyNZzDUGOcN9bEo sTC8QQUTTsIq0NGB3dEEKyrvhwThxsqWZ7qtO+oea2NzwpgIv5Hblld4zwt0i28S 8FuGDP8sY0+/fPxlWQqLuKtW6MWbSP2WKQCTHxANj/xB3XkmZwe8vtpLqnbDW5LB uYj+qT0A -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org