$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa File: BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa (raw, json) Hash identifier: PQUo3FYxRsKvxRi1BYYoHIaOW3yQvTUkGS8iOVf382A= Subject key identifier: AD:32:FE:0C:BA:0B:47:7C:1C:6E:E9:C5:94:D4:69:D1:7B:88:17:C4 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CA9 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:50 +0000 ROA not before: Sun 26 May 2024 21:32:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 212034 IP address blocks: 2406:840:f890::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3241 (0xca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa82-50a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fa:f9:69:e0:a4:e6:c6:b3:d4:40:a8:d9:49: eb:08:59:42:40:13:fa:e7:36:ec:c1:cf:46:1c:b7: fe:53:72:19:e8:f1:fa:7f:61:de:c4:a8:a0:ef:7c: e5:59:1b:97:95:89:af:26:d6:32:67:24:e6:08:71: 2c:74:de:a9:10:51:08:03:b9:1e:bc:be:7b:0c:2c: 78:47:e4:62:74:4f:b0:17:51:4a:42:a6:98:1c:17: 5e:a1:d8:4a:61:c5:f5:80:44:a4:3b:f5:ff:bc:0c: e6:10:43:8c:db:48:e6:06:fd:4f:a5:14:87:eb:70: 73:1d:b9:8b:60:49:2b:4d:38:a0:d4:a0:02:cf:1e: 75:f6:0e:3f:e7:36:0d:d2:d2:3c:cb:bd:12:a2:65: 9d:4d:09:34:fb:fc:89:f8:2d:e8:5b:ad:49:c7:13: 0d:a1:7d:d4:cf:b0:28:9b:8f:71:1c:56:65:a3:d3: 60:61:4b:7a:9d:8d:85:ee:50:96:07:80:42:8c:3d: 16:22:b1:b9:48:2a:ee:c2:5d:59:a0:03:8d:f9:a5: 39:52:e3:40:28:bf:65:66:4e:cf:41:e0:21:bd:ca: 6a:12:d1:0a:6a:f0:4b:2b:a2:09:46:56:e5:dd:a0: ff:68:0e:de:79:28:f7:f6:08:55:db:79:13:b9:b5: 18:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:32:FE:0C:BA:0B:47:7C:1C:6E:E9:C5:94:D4:69:D1:7B:88:17:C4 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f890::/44 Signature Algorithm: sha256WithRSAEncryption 4c:25:68:3d:b1:2a:7f:bf:c3:e3:0a:3f:6f:68:bd:39:ae:06: cd:26:c6:5e:6b:50:53:ed:7f:62:8a:7c:23:2c:6d:47:e4:c2: be:a6:04:d9:d3:26:9e:39:d7:be:9d:0c:41:25:b2:37:92:47: 98:1b:5a:73:6b:0a:90:89:48:0c:c5:06:92:e1:a7:e5:54:df: 2d:8d:52:0f:65:87:df:44:38:4e:b8:bb:d5:c2:0e:aa:d2:42: e4:4f:50:c0:43:c0:79:57:eb:81:68:b4:c5:43:da:f5:23:58: 33:c5:ad:2c:d0:93:45:0f:11:80:d7:0a:1c:22:79:d3:3d:c1: 60:35:04:fc:9f:e9:8e:ba:4f:1e:50:7c:d5:1d:ce:98:c7:07: a8:f4:74:27:b2:05:4b:83:ec:e4:7c:aa:2a:90:a9:4c:a3:87: e2:47:74:01:4f:92:cc:0f:2d:f7:ce:df:fb:dc:a7:69:b8:63: f8:2b:63:5e:54:42:b6:f6:e9:66:8a:ce:c2:db:e5:1e:e7:3d: eb:22:a0:40:82:a1:23:29:8a:bd:34:fe:1a:4c:17:62:29:48: 9c:4b:ca:ce:2b:12:2c:ce:f9:47:e2:c3:f5:0d:d4:13:da:4a: 2b:6a:fb:03:85:bf:e9:97:3a:33:2a:35:59:3a:f6:ec:3e:64: a6:76:12:3f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4Mi01MGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vr5aeCk5saz1ECo2UnrCFlCQBP65zbswc9GHLf+U3IZ6PH6f2HexKig73zl WRuXlYmvJtYyZyTmCHEsdN6pEFEIA7kevL57DCx4R+RidE+wF1FKQqaYHBdeodhK YcX1gESkO/X/vAzmEEOM20jmBv1PpRSH63BzHbmLYEkrTTig1KACzx519g4/5zYN 0tI8y70SomWdTQk0+/yJ+C3oW61JxxMNoX3Uz7Aom49xHFZlo9NgYUt6nY2F7lCW B4BCjD0WIrG5SCruwl1ZoAON+aU5UuNAKL9lZk7PQeAhvcpqEtEKavBLK6IJRlbl 3aD/aA7eeSj39ghV23kTubUY+QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFK0y/gy6 C0d8HG7pxZTUadF7iBfEMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQkJDOEQ3QkE5 RTgwMTFFQkE3QzNGQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+JAwDQYJKoZIhvcNAQELBQADggEBAEwlaD2xKn+/ w+MKP29ovTmuBs0mxl5rUFPtf2KKfCMsbUfkwr6mBNnTJp45176dDEElsjeSR5gb WnNrCpCJSAzFBpLhp+VU3y2NUg9lh99EOE64u9XCDqrSQuRPUMBDwHlX64FotMVD 2vUjWDPFrSzQk0UPEYDXChwiedM9wWA1BPyf6Y66Tx5QfNUdzpjHB6j0dCeyBUuD 7OR8qiqQqUyjh+JHdAFPkswPLffO3/vcp2m4Y/grY15UQrb26WaKzsLb5R7nPesi oECCoSMpir00/hpMF2IpSJxLys4rEizO+Ufiw/UN1BPaSitq+wOFv+mXOjMqNVk6 9uw+ZKZ2Ej8= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org