$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa File: BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa (raw, json) Hash identifier: 8w4/PWXCc0ZmSLbtuNyEl/Qljqb8KOf6wDIZyXYZVXc= Subject key identifier: 1F:AD:49:BE:F3:8A:48:CE:0E:52:79:26:55:C5:01:1A:81:70:99:89 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A79 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa Signing time: Sun 14 May 2023 22:15:25 +0000 ROA not before: Sun 14 May 2023 22:15:25 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 212034 IP address blocks: 2406:840:f890::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2681 (0xa79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:25 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d7c-7896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ea:ca:34:ef:04:3f:1f:a0:35:c2:94:44:ec: 3d:22:eb:53:dc:e0:a5:b2:ba:32:1a:cd:76:74:7b: 4c:06:d7:d3:6f:09:62:42:39:a3:5b:56:41:5b:d0: 97:1f:cf:12:71:f3:e1:d7:59:62:7f:12:7a:d4:c2: 46:fb:4c:10:15:b9:9a:18:fd:a7:b2:88:d2:b9:f9: 1e:77:d9:98:97:cb:84:cf:68:e1:ba:f8:91:26:e7: 73:14:9a:a4:18:a2:e6:c5:82:b6:53:4a:81:f9:63: 46:67:cc:2e:a5:12:3e:f8:94:74:44:71:40:61:94: 2b:65:6d:7e:30:fb:0a:e0:40:a6:9d:6f:69:96:4b: 4b:a9:00:95:cf:64:5e:e6:78:64:b9:46:06:61:34: e6:e5:f2:77:bf:08:61:c6:b6:ed:94:be:42:d5:5c: a8:10:2e:89:91:1d:f6:38:ce:f5:52:80:9a:d5:f4: 6c:eb:c3:dd:fa:45:01:6a:c8:03:b8:55:ff:e8:24: 88:25:fd:86:84:13:06:29:0f:29:38:50:49:92:d7: 2b:aa:13:36:9c:ce:40:5c:5f:31:80:42:1d:86:f6: b4:30:81:c1:76:c1:9b:f3:9c:fe:a9:8c:63:50:ab: 70:e8:26:b3:3b:16:16:67:ce:66:b8:3d:d3:b2:41: 1c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AD:49:BE:F3:8A:48:CE:0E:52:79:26:55:C5:01:1A:81:70:99:89 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/BBC8D7BA9E8011EBA7C3FC6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f890::/44 Signature Algorithm: sha256WithRSAEncryption 39:82:c0:29:cb:c7:09:8f:48:6e:41:b8:54:f7:6b:e1:c5:36: 05:b8:74:bc:ad:25:65:ad:bb:b1:8a:14:fb:79:85:e2:b2:3a: e1:e0:ab:de:0d:a3:fc:b5:ef:89:2f:cd:b7:e1:b4:cf:c4:92: 31:48:9e:25:a8:c4:db:0d:a0:d5:e0:c2:d2:01:d7:95:34:95: ca:f6:43:64:c4:a7:8e:3f:8c:d6:46:de:d6:7f:9f:45:42:94: 12:a1:da:31:31:38:f1:96:3b:c1:2d:e0:59:52:75:9b:ce:cf: 18:f8:01:dd:d3:47:04:7c:be:d3:88:72:75:ee:a6:7d:ab:2d: 31:00:b1:fc:c1:93:47:29:97:ad:a4:e8:f7:38:31:df:20:5e: 8f:0d:cd:85:23:15:54:66:88:4d:62:9d:8e:d3:b8:a0:56:c1: 26:a7:cb:9d:d2:1a:76:1c:23:ab:64:50:dc:02:91:fd:86:7c: 02:91:dc:9c:ef:b3:2a:1c:b8:3d:ea:66:0c:c3:91:14:ac:66: 49:f8:b3:bd:ec:0d:af:a6:8d:34:b2:08:cb:a9:ea:cc:73:49: 41:8b:2f:92:7d:6a:f1:47:a7:1a:9c:24:b7:0f:db:83:51:de: c0:3b:bb:00:62:35:ec:3a:84:e5:82:39:6d:94:bb:e8:84:38: b2:a9:c8:f3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTI1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ3Yy03ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOrKNO8EPx+gNcKUROw9IutT3OClsroyGs12dHtMBtfTbwliQjmjW1ZBW9CX H88ScfPh11lifxJ61MJG+0wQFbmaGP2nsojSufked9mYl8uEz2jhuviRJudzFJqk GKLmxYK2U0qB+WNGZ8wupRI++JR0RHFAYZQrZW1+MPsK4ECmnW9plktLqQCVz2Re 5nhkuUYGYTTm5fJ3vwhhxrbtlL5C1VyoEC6JkR32OM71UoCa1fRs68Pd+kUBasgD uFX/6CSIJf2GhBMGKQ8pOFBJktcrqhM2nM5AXF8xgEIdhva0MIHBdsGb85z+qYxj UKtw6CazOxYWZ85muD3TskEcMwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB+tSb7z ikjODlJ5JlXFARqBcJmJMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQkJDOEQ3QkE5 RTgwMTFFQkE3QzNGQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+JAwDQYJKoZIhvcNAQELBQADggEBADmCwCnLxwmP SG5BuFT3a+HFNgW4dLytJWWtu7GKFPt5heKyOuHgq94No/y174kvzbfhtM/EkjFI niWoxNsNoNXgwtIB15U0lcr2Q2TEp44/jNZG3tZ/n0VClBKh2jExOPGWO8Et4FlS dZvOzxj4Ad3TRwR8vtOIcnXupn2rLTEAsfzBk0cpl62k6Pc4Md8gXo8NzYUjFVRm iE1inY7TuKBWwSany53SGnYcI6tkUNwCkf2GfAKR3JzvsyocuD3qZgzDkRSsZkn4 s73sDa+mjTSyCMup6sxzSUGLL5J9avFHpxqcJLcP24NR3sA7uwBiNew6hOWCOW2U u+iEOLKpyPM= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org