$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa File: C8FB88AEFAC411EDBFE0012DC4F9AE02.roa (raw, json) Hash identifier: lQ3SA9mVm3SAPfeGs1XlvblIs978MmMA7vUd9voUR6Q= Subject key identifier: 6F:CD:FD:79:CC:EF:3E:18:A4:C8:29:5C:7C:69:F2:AD:22:DA:5B:CB Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C53 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa Signing time: Sun 26 May 2024 21:31:30 +0000 ROA not before: Sun 26 May 2024 21:31:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136535 IP address blocks: 2406:840:fe27::/48 maxlen: 48 2406:840:fe74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa32-2a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ad:3a:e4:c1:17:8b:e0:56:26:50:ed:74:33: 1f:e3:fc:73:c3:68:47:43:87:c0:f5:08:80:1c:a4: cb:4e:e4:58:01:17:d7:44:2f:fa:6f:38:e6:f8:ac: 88:cc:b2:44:4a:a4:df:c0:92:eb:ae:e0:93:c4:b4: cd:97:da:af:1a:34:b9:e0:05:e6:1e:20:5d:a2:cc: 1e:9a:33:65:ac:f0:c2:de:58:3d:b0:c7:f5:18:cc: a9:5b:2b:06:7a:4a:03:0e:46:1e:49:01:31:a5:60: 55:33:e6:5a:23:42:f8:c8:ac:13:af:e6:42:c5:32: a6:2e:57:6f:5b:a1:b6:f1:ac:18:bf:a7:82:60:55: a5:c7:0e:66:b9:36:a5:1e:f8:a2:1b:9f:07:cd:dd: 1a:6f:dd:66:3f:73:57:2e:c6:8e:7e:69:35:7c:26: 34:06:0d:9c:46:27:e9:02:63:54:c9:be:91:4b:25: 9e:67:55:a6:9f:0e:4a:a1:ff:e9:43:9e:85:bf:16: ac:23:2f:f0:2d:77:c4:25:7d:45:8d:33:64:95:c9: 49:23:5f:33:a5:4c:b3:fb:55:c3:78:b6:cc:b8:79: b0:6e:ad:12:8b:66:86:73:ba:bb:81:5f:4b:9c:86: c2:97:20:df:4b:ef:c1:e6:26:58:a7:8f:e9:da:13: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CD:FD:79:CC:EF:3E:18:A4:C8:29:5C:7C:69:F2:AD:22:DA:5B:CB X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fe27::/48 2406:840:fe74::/48 Signature Algorithm: sha256WithRSAEncryption 02:2a:dc:aa:7f:50:14:58:94:18:48:5b:77:bf:7a:2a:b4:7f: 37:33:d7:1f:d1:72:ce:a5:43:8d:3c:8f:68:aa:c0:5f:6a:ee: 4f:b4:cc:b4:4b:95:ee:fc:be:0e:d1:f3:08:4a:e8:c6:89:ca: 13:e3:3c:f7:93:6c:b0:6d:50:ee:37:f1:13:e4:f5:62:52:ef: 1e:1c:9d:0d:c4:76:9b:46:55:f6:e1:cd:60:c9:cc:55:58:84: 2d:65:3d:7c:6b:29:8c:8e:e6:62:7a:ab:c0:cc:ee:1b:9d:89: 50:e5:10:c4:d8:f7:ad:0c:29:42:0e:95:32:7e:b8:c6:b3:65: 5f:fb:c8:11:ec:d4:25:91:a2:de:f9:b3:8b:7b:a3:d1:ef:5a: 70:dc:21:d4:61:ac:99:d4:a9:20:1b:17:f9:71:a6:ff:c6:f2: 7c:7b:29:2e:5b:fd:f6:2c:ac:cc:39:2b:28:78:61:f8:d0:05: 5c:3f:7f:f1:6f:16:1f:22:f8:e6:8d:a3:c7:1c:85:9b:f4:e4: f9:9e:40:ef:8c:97:bc:82:d3:e6:03:37:fb:a2:d6:5e:21:e0: 6f:89:95:07:7b:fa:10:7c:8e:1b:f0:cf:9c:ab:1a:91:63:2b: 15:02:67:df:33:c0:51:4c:0e:23:dc:bf:09:3a:3c:f7:6c:17: 29:75:27:2d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzMi0yYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK065MEXi+BWJlDtdDMf4/xzw2hHQ4fA9QiAHKTLTuRYARfXRC/6bzjm+KyI zLJESqTfwJLrruCTxLTNl9qvGjS54AXmHiBdoswemjNlrPDC3lg9sMf1GMypWysG ekoDDkYeSQExpWBVM+ZaI0L4yKwTr+ZCxTKmLldvW6G28awYv6eCYFWlxw5muTal HviiG58Hzd0ab91mP3NXLsaOfmk1fCY0Bg2cRifpAmNUyb6RSyWeZ1Wmnw5Kof/p Q56FvxasIy/wLXfEJX1FjTNklclJI18zpUyz+1XDeLbMuHmwbq0Si2aGc7q7gV9L nIbClyDfS+/B5iZYp4/p2hN6TQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFG/N/XnM 7z4YpMgpXHxp8q0i2lvLMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzhGQjg4QUVG QUM0MTFFREJGRTAwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBghA/icDBwAkBghA/nQwDQYJKoZIhvcNAQELBQADggEB AAIq3Kp/UBRYlBhIW3e/eiq0fzcz1x/Rcs6lQ408j2iqwF9q7k+0zLRLle78vg7R 8whK6MaJyhPjPPeTbLBtUO438RPk9WJS7x4cnQ3EdptGVfbhzWDJzFVYhC1lPXxr KYyO5mJ6q8DM7hudiVDlEMTY960MKUIOlTJ+uMazZV/7yBHs1CWRot75s4t7o9Hv WnDcIdRhrJnUqSAbF/lxpv/G8nx7KS5b/fYsrMw5Kyh4YfjQBVw/f/FvFh8i+OaN o8cchZv05PmeQO+Ml7yC0+YDN/ui1l4h4G+JlQd7+hB8jhvwz5yrGpFjKxUCZ98z wFFMDiPcvwk6PPdsFyl1Jy0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org