$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B96A5E7E627511EEA5BC2B69C4F9AE02.roa File: B96A5E7E627511EEA5BC2B69C4F9AE02.roa (raw, json) Hash identifier: 4M1WqjfdaToNVWyOZAQ7W4lNrudY50H+wAfXv0xgsDU= Subject key identifier: 5A:6D:17:3F:E3:44:C0:12:6F:B2:D9:3A:1A:37:92:95:C7:58:60:BD Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C89 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B96A5E7E627511EEA5BC2B69C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:22 +0000 ROA not before: Sun 26 May 2024 21:32:22 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151841 IP address blocks: 2406:840:fe40::/44 maxlen: 48 2406:840:fec1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:22 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa66-cf36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:8f:33:ad:78:ef:f8:d1:f2:4c:5d:f8:a0: 5b:32:19:76:4a:23:7d:4b:51:dc:ce:ce:4e:0d:79: b8:1f:1d:f9:51:31:b2:f9:6a:af:05:0a:49:f8:44: b7:f4:43:3a:c9:30:ca:28:da:ca:99:66:72:6a:97: cf:94:d2:3d:a0:ed:be:c0:d0:82:23:cc:20:45:2c: a3:39:30:a2:29:1b:cf:b0:fc:80:51:97:6d:4c:0c: 41:eb:5a:c9:11:49:e5:f8:b5:22:f6:8a:78:32:31: c9:bf:eb:96:ea:c6:11:0d:55:4b:07:64:54:34:12: 84:c3:a5:60:4b:a2:21:8a:4f:97:6e:e5:64:b4:49: 59:02:b7:62:ae:99:4c:43:9d:fa:41:1d:0e:3f:0e: 3b:2b:d0:03:47:69:26:fc:d7:02:cb:9e:c6:21:a9: 91:09:90:39:a9:fc:1a:04:b9:e6:85:8b:03:8d:5f: eb:03:f3:b7:d9:74:b4:37:ce:de:7b:68:40:99:59: 71:aa:08:db:af:ad:a2:d9:2b:18:7a:3a:57:e8:e1: 21:70:92:b9:fd:90:2c:ef:10:9b:fe:a1:e7:aa:88: 01:49:4c:60:ef:20:3e:42:d1:c8:09:90:89:91:dc: e3:eb:d8:ad:d9:8a:cd:d3:c8:4d:aa:a0:60:a3:5f: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6D:17:3F:E3:44:C0:12:6F:B2:D9:3A:1A:37:92:95:C7:58:60:BD X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B96A5E7E627511EEA5BC2B69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fe40::/44 2406:840:fec1::/48 Signature Algorithm: sha256WithRSAEncryption 52:10:40:3b:66:9c:6a:46:96:cb:ed:8a:d5:86:e2:f0:fd:cb: 11:4d:da:69:b3:55:39:18:ff:cd:c3:bf:68:97:b9:5d:d5:8f: cf:3b:2a:a4:91:bc:2f:f4:a3:cb:6b:92:cf:22:ef:be:3f:0e: b8:89:b2:8a:99:dc:e6:38:cd:7d:1b:f7:d1:71:a1:e1:f5:2c: 9f:6d:4d:1f:96:a5:54:ed:24:b9:b5:0e:ba:67:cd:5a:8a:71: 69:a3:56:5f:5c:62:7e:c8:d3:13:26:03:17:78:9f:01:94:a3: d9:e6:da:89:3b:aa:94:0a:db:6e:ad:64:a5:1b:8d:37:f9:3c: 3f:12:1c:5a:68:61:00:f4:5c:40:d7:23:84:20:e7:41:21:9d: 27:e8:54:93:f4:56:ab:00:90:96:b7:75:7a:92:c8:cf:7e:dd: 03:5b:01:f2:05:06:56:21:18:53:49:18:13:cd:f5:52:98:b3: be:7d:9b:b4:7a:a2:43:e1:47:0f:35:55:4c:fd:00:91:46:92: 63:cf:6b:68:b1:2a:3b:72:d2:8c:13:05:5c:85:b8:83:e0:04: 3e:36:03:34:d6:9f:9a:18:04:78:97:4f:9f:21:8c:e0:81:65: bb:6e:c0:8c:4c:b7:8d:2d:79:77:06:d8:d2:18:d7:24:c3:e9: fd:07:c9:f2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjIyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2Ni1jZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF+PM6147/jR8kxd+KBbMhl2SiN9S1Hczs5ODXm4Hx35UTGy+WqvBQpJ+ES3 9EM6yTDKKNrKmWZyapfPlNI9oO2+wNCCI8wgRSyjOTCiKRvPsPyAUZdtTAxB61rJ EUnl+LUi9op4MjHJv+uW6sYRDVVLB2RUNBKEw6VgS6Ihik+XbuVktElZArdirplM Q536QR0OPw47K9ADR2km/NcCy57GIamRCZA5qfwaBLnmhYsDjV/rA/O32XS0N87e e2hAmVlxqgjbr62i2SsYejpX6OEhcJK5/ZAs7xCb/qHnqogBSUxg7yA+QtHICZCJ kdzj69it2YrN08hNqqBgo1+brQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFptFz/j RMASb7LZOho3kpXHWGC9MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjk2QTVFN0U2 Mjc1MTFFRUE1QkMyQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/kADBwAkBghA/sEwDQYJKoZIhvcNAQELBQADggEB AFIQQDtmnGpGlsvtitWG4vD9yxFN2mmzVTkY/83Dv2iXuV3Vj887KqSRvC/0o8tr ks8i774/DriJsoqZ3OY4zX0b99FxoeH1LJ9tTR+WpVTtJLm1DrpnzVqKcWmjVl9c Yn7I0xMmAxd4nwGUo9nm2ok7qpQK226tZKUbjTf5PD8SHFpoYQD0XEDXI4Qg50Eh nSfoVJP0VqsAkJa3dXqSyM9+3QNbAfIFBlYhGFNJGBPN9VKYs759m7R6okPhRw81 VUz9AJFGkmPPa2ixKjty0owTBVyFuIPgBD42AzTWn5oYBHiXT58hjOCBZbtuwIxM t40teXcG2NIY1yTD6f0HyfI= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org