$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa File: B23BF526EEA811EEA9FA8348C4F9AE02.roa (raw, json) Hash identifier: /K5AILPL7ZVKpWpfk3RbGYzlsEhDkwBU7ZrAvoP7Wtk= Subject key identifier: 12:9B:5E:3F:64:79:08:DB:14:09:8E:6C:03:9D:BB:CD:3D:C4:86:92 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CAD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:54 +0000 ROA not before: Sun 26 May 2024 21:32:54 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 215743 IP address blocks: 2406:840:9160::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3245 (0xcad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:54 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa86-49f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:9a:32:45:51:ff:e8:35:d7:ec:a4:fc:d9: c8:79:5a:fd:46:55:37:85:2f:ea:b9:e4:4a:49:2f: 5e:ec:f5:4e:7e:66:b8:e7:d0:a5:8a:c1:14:dc:71: 0b:5a:3d:e7:17:4f:6a:32:ec:6b:ce:a7:40:61:2b: 85:f4:d7:1f:89:77:93:6c:28:63:09:87:f8:35:55: af:5e:b3:00:e9:f1:49:3a:45:6e:2c:1e:02:3f:94: 38:81:1c:6a:97:99:2f:55:41:b7:ea:dd:f7:6e:7a: 03:0a:a2:71:8d:9a:1d:a9:aa:98:19:85:ea:32:86: ff:f4:d0:49:69:5b:8a:c1:85:71:fc:6f:f8:3d:0d: 2d:7e:6c:e3:60:a6:9c:51:77:cc:d4:e4:63:71:77: 6a:c0:2f:e5:b7:c5:19:a1:bc:93:49:29:74:06:70: 84:9a:88:99:94:14:27:a8:ce:d1:76:2d:f1:99:af: 2b:ae:8c:61:27:43:fe:bf:12:c5:4f:5a:6d:cf:14: cc:18:59:b5:52:84:0e:1f:83:90:32:14:0a:21:b2: 98:db:5e:e7:dd:d8:51:56:dc:0b:5d:a8:4a:ed:f5: d8:45:cb:c8:b4:23:fb:1d:7a:76:bf:a7:07:0a:fd: 14:19:f3:55:ce:1b:ee:2a:c8:87:7d:47:ef:58:40: 96:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9B:5E:3F:64:79:08:DB:14:09:8E:6C:03:9D:BB:CD:3D:C4:86:92 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B23BF526EEA811EEA9FA8348C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9160::/44 Signature Algorithm: sha256WithRSAEncryption 02:82:5b:dd:2f:3c:e2:70:a8:26:11:56:40:f4:af:73:92:ad: 00:da:52:fa:66:fc:7b:1c:17:67:02:4f:45:0b:b8:94:c0:11: b5:94:9b:4f:25:1f:cb:5a:c2:b2:41:2b:4d:52:bb:3e:e2:e6: 61:6a:f9:ee:d5:a9:66:6a:d4:6c:ed:95:7a:1f:15:23:5d:1c: 39:40:93:43:fe:36:bd:39:65:03:d3:2a:f0:35:9a:3c:d6:cf: 5a:87:a2:39:69:65:06:72:b5:d1:ad:a3:0b:1f:bf:c0:83:e8: 83:51:11:f8:c2:f7:af:c1:68:ee:b4:1a:21:a5:aa:7d:ce:9e: ec:d0:06:c4:b6:e5:fb:df:67:d7:2e:12:28:27:9d:ad:50:78: 39:5a:f7:88:49:cc:c7:f1:94:53:f4:a4:b4:43:2f:af:69:24: 0a:e6:63:89:fb:8c:2b:03:b5:3b:33:75:30:db:cd:52:cc:6d: 38:ba:4f:18:15:20:f6:d0:6a:74:d1:3f:64:18:0f:b3:e5:85: 6a:83:0a:69:db:ad:38:1e:32:f6:c7:24:bb:26:32:f6:c7:f6: e4:8a:24:f6:a6:b6:4a:3c:d5:31:e2:e9:f3:41:f1:04:36:de: 80:d3:e2:3f:05:79:8c:4b:5e:3d:e9:3d:ed:0a:73:d5:c3:95: 3d:6a:c0:d8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjU0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4Ni00OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZqaMkVR/+g11+yk/NnIeVr9RlU3hS/queRKSS9e7PVOfma459ClisEU3HEL Wj3nF09qMuxrzqdAYSuF9NcfiXeTbChjCYf4NVWvXrMA6fFJOkVuLB4CP5Q4gRxq l5kvVUG36t33bnoDCqJxjZodqaqYGYXqMob/9NBJaVuKwYVx/G/4PQ0tfmzjYKac UXfM1ORjcXdqwC/lt8UZobyTSSl0BnCEmoiZlBQnqM7Rdi3xma8rroxhJ0P+vxLF T1ptzxTMGFm1UoQOH4OQMhQKIbKY217n3dhRVtwLXahK7fXYRcvItCP7HXp2v6cH Cv0UGfNVzhvuKsiHfUfvWECWrQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBKbXj9k eQjbFAmObAOdu809xIaSMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjIzQkY1MjZF RUE4MTFFRUE5RkE4MzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAkWAwDQYJKoZIhvcNAQELBQADggEBAAKCW90vPOJw qCYRVkD0r3OSrQDaUvpm/HscF2cCT0ULuJTAEbWUm08lH8tawrJBK01Suz7i5mFq +e7VqWZq1GztlXofFSNdHDlAk0P+Nr05ZQPTKvA1mjzWz1qHojlpZQZytdGtowsf v8CD6INREfjC96/BaO60GiGlqn3OnuzQBsS25fvfZ9cuEignna1QeDla94hJzMfx lFP0pLRDL69pJArmY4n7jCsDtTszdTDbzVLMbTi6TxgVIPbQanTRP2QYD7PlhWqD CmnbrTgeMvbHJLsmMvbH9uSKJPamtko81THi6fNB8QQ23oDT4j8FeYxLXj3pPe0K c9XDlT1qwNg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org