$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa File: CA3AFA2C3F4011EE8922E662C4F9AE02.roa (raw, json) Hash identifier: 65MDWmDl5noCepIwRmXrj0RiqXEHRrtil+Dopc6KvMQ= Subject key identifier: A9:B9:0B:41:71:4D:83:17:9C:30:58:EF:1F:D5:28:59:23:21:AD:CD Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CB0 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:57 +0000 ROA not before: Sun 26 May 2024 21:32:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 216452 IP address blocks: 2406:840:9ff0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa88-98a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9d:18:18:f1:3e:bf:09:e3:fb:f2:4c:b8:8a: b7:6c:69:55:c3:29:f8:58:2e:e0:2c:df:0e:15:17: 29:f2:a1:5a:ef:a0:d8:af:1b:3e:ef:05:83:31:18: 27:8c:3b:3f:82:04:09:a1:05:ec:2b:31:9b:ea:c9: f4:c6:0a:32:92:e7:4d:61:19:08:f4:b1:cf:b8:e7: 5a:63:92:d7:95:04:26:06:ce:18:a7:b3:c7:1a:d8: 98:d8:ee:b0:56:7a:1c:18:19:85:40:c1:8a:6b:e4: 5f:e9:e2:25:6f:cf:05:00:02:17:43:6f:8e:27:a7: c8:d5:47:7d:1a:a8:11:cb:bd:18:79:ec:c5:a4:72: 96:98:78:48:8b:ec:be:36:51:c3:e2:4f:97:73:ae: 94:f1:88:2e:ab:00:3b:df:d8:71:af:b2:20:b3:6e: 4c:df:1a:44:3c:52:90:b3:a6:a5:9a:5c:03:08:84: 5a:2c:d2:eb:59:43:0d:38:1b:80:b0:e6:42:d0:70: ac:0b:2a:cb:fc:bc:76:11:08:52:9f:87:de:f7:1b: b5:6d:7f:e2:1d:27:c6:cb:90:21:59:1a:88:82:3c: aa:f1:1f:56:04:4d:80:e3:49:02:27:3d:b8:10:9a: 53:d7:3e:e6:4c:95:7c:a8:49:d4:f8:5c:7f:7c:50: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B9:0B:41:71:4D:83:17:9C:30:58:EF:1F:D5:28:59:23:21:AD:CD X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9ff0::/44 Signature Algorithm: sha256WithRSAEncryption 4c:19:c4:bf:4e:69:66:f8:eb:4e:29:8b:d6:60:05:d5:e6:b1: 3e:4f:f5:02:35:60:68:6e:59:2b:c4:84:c7:5f:70:67:6b:aa: c2:d5:47:19:b2:b7:5d:58:15:49:e8:20:6e:d6:a8:99:3f:ec: dc:4a:8d:12:36:3f:b0:cb:09:73:f2:84:22:4f:23:ef:4a:9a: ab:55:0b:ff:ba:04:99:07:05:39:51:9e:6a:d4:5c:38:da:21: 6d:8d:e7:18:db:0b:f4:00:7d:08:fd:a1:79:b3:5a:ee:e4:3b: eb:8e:ac:ea:c4:32:18:6c:ee:49:4c:16:57:1d:88:48:e0:65: ac:4b:de:05:88:42:3b:d0:26:e7:4f:1b:fd:25:09:91:56:06: b6:72:eb:23:3a:5c:f9:e3:85:02:f5:0a:a5:99:b2:9d:26:22: 77:8e:a1:b9:80:57:cc:ab:a3:df:22:f3:bc:8b:13:08:e4:d7: 40:9b:ce:27:17:0a:ed:e9:eb:cd:a6:31:67:b2:d1:f5:d8:46: 08:f2:f5:99:1a:d2:1e:1e:74:8b:0b:fa:38:c1:c1:ec:09:8b: ef:b1:eb:e3:1d:41:f1:a6:ed:e0:75:af:1f:ab:b9:82:cc:1d: 72:02:fd:dd:fc:b7:61:fb:a3:5a:27:c3:88:e9:48:89:a2:43: 79:d2:55:70 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE4OC05OGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApp0YGPE+vwnj+/JMuIq3bGlVwyn4WC7gLN8OFRcp8qFa76DYrxs+7wWDMRgn jDs/ggQJoQXsKzGb6sn0xgoykudNYRkI9LHPuOdaY5LXlQQmBs4Yp7PHGtiY2O6w VnocGBmFQMGKa+Rf6eIlb88FAAIXQ2+OJ6fI1Ud9GqgRy70YeezFpHKWmHhIi+y+ NlHD4k+Xc66U8YguqwA739hxr7Igs25M3xpEPFKQs6almlwDCIRaLNLrWUMNOBuA sOZC0HCsCyrL/Lx2EQhSn4fe9xu1bX/iHSfGy5AhWRqIgjyq8R9WBE2A40kCJz24 EJpT1z7mTJV8qEnU+Fx/fFA8YQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKm5C0Fx TYMXnDBY7x/VKFkjIa3NMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0EzQUZBMkMz RjQwMTFFRTg5MjJFNjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAn/AwDQYJKoZIhvcNAQELBQADggEBAEwZxL9OaWb4 604pi9ZgBdXmsT5P9QI1YGhuWSvEhMdfcGdrqsLVRxmyt11YFUnoIG7WqJk/7NxK jRI2P7DLCXPyhCJPI+9KmqtVC/+6BJkHBTlRnmrUXDjaIW2N5xjbC/QAfQj9oXmz Wu7kO+uOrOrEMhhs7klMFlcdiEjgZaxL3gWIQjvQJudPG/0lCZFWBrZy6yM6XPnj hQL1CqWZsp0mIneOobmAV8yro98i87yLEwjk10CbzicXCu3p682mMWey0fXYRgjy 9Zka0h4edIsL+jjBwewJi++x6+MdQfGm7eB1rx+ruYLMHXIC/d38t2H7o1onw4jp SImiQ3nSVXA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org