$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa File: CACEAE268AD011EE9E1DAF84C4F9AE02.roa (raw, json) Hash identifier: beYdphXZrZqZiOcA+XM5fZdyeUjqOsnqyWnP1+AlVgY= Subject key identifier: E7:3D:2E:D5:EC:E3:5D:2C:BA:9A:FA:D8:BB:93:C8:BC:54:54:37:1E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C8A Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa Signing time: Sun 26 May 2024 21:32:23 +0000 ROA not before: Sun 26 May 2024 21:32:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152118 IP address blocks: 2406:840:e880::/44 maxlen: 48 2406:840:fec4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa67-513f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3c:19:1f:db:ee:fa:4d:79:30:4d:99:6d:86: 97:63:58:ed:2a:5c:10:eb:a0:60:f1:f5:3e:9e:52: a6:9c:f3:17:cd:30:2a:18:37:0f:a9:89:67:24:87: c1:8a:2f:f2:57:6b:4e:5c:41:d6:18:97:1b:fd:c1: ad:ab:06:9c:e2:68:97:4f:0b:19:55:10:82:5c:d3: d0:b2:5f:97:36:5e:48:c4:37:4c:e9:ca:9e:18:07: 84:cf:64:27:0f:8f:6b:0b:53:8c:27:07:85:9e:9d: b4:44:18:16:5a:2b:f8:d0:fd:2f:a9:73:31:ab:3d: b6:64:df:a2:13:24:e7:f0:ea:44:a0:5c:6a:5a:e5: d9:d9:27:9b:15:99:96:33:31:9e:d0:59:04:2a:79: 6f:0e:b0:a6:d5:29:24:75:b3:14:87:1a:34:fd:bc: b3:75:76:08:87:20:e6:1b:d3:3b:09:9f:fb:b5:96: 29:c9:46:dd:d4:0c:47:69:d4:65:c8:ea:08:87:b6: 2c:b3:5a:de:38:f2:cf:e0:03:5d:ef:7a:ff:18:96: 61:fd:86:ea:74:22:cd:9c:92:19:9d:49:06:1e:56: b2:56:b5:e0:0c:a7:b6:3f:60:bf:1a:77:b1:4b:45: 81:da:ca:43:12:e9:d5:0e:b6:d2:29:16:9d:c3:71: 58:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3D:2E:D5:EC:E3:5D:2C:BA:9A:FA:D8:BB:93:C8:BC:54:54:37:1E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e880::/44 2406:840:fec4::/48 Signature Algorithm: sha256WithRSAEncryption 83:0b:f8:6a:b7:7f:7a:f6:d5:4d:35:b6:86:40:54:ca:38:3e: b7:68:82:1d:42:75:b9:4c:ca:64:9d:07:1d:c7:38:05:b6:ac: cc:08:8c:c6:9b:03:b5:23:52:8c:2b:87:27:15:5f:48:71:9d: 98:39:b8:5f:dc:13:3c:95:3b:c1:7e:7d:6e:7c:77:f3:da:09: a6:81:94:fd:47:1b:1e:76:3d:4e:7e:72:5e:d2:5d:d4:75:47: 31:fb:b9:a7:f2:d4:6c:78:2a:a5:46:b9:6a:62:dc:c9:d1:7f: e3:0f:bd:a7:ef:d7:5b:4f:d9:cc:5f:d7:b5:68:19:85:09:41: c9:33:1e:4e:fc:39:13:c4:76:67:10:03:b3:4c:c4:4e:9f:61: 88:dd:f4:5d:fd:bf:ed:ed:06:b9:dd:53:17:21:0a:82:3b:66: a2:d2:b2:e5:06:7b:31:19:33:8d:d5:94:9f:9b:c2:c0:fb:fa: 54:12:7f:36:9e:0c:2c:81:bc:df:a4:26:74:86:c0:75:4e:4f: 50:10:46:bf:11:82:78:ce:d2:71:1a:97:ea:a4:bf:6e:58:fe: 04:80:96:38:43:33:09:d8:4f:11:f8:53:1b:19:e3:05:d4:cc: 27:7b:6e:0e:c8:44:80:6a:8c:c5:3d:3a:d2:f7:af:d0:fe:33: 33:26:4f:ef -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2Ny01MTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jwZH9vu+k15ME2ZbYaXY1jtKlwQ66Bg8fU+nlKmnPMXzTAqGDcPqYlnJIfB ii/yV2tOXEHWGJcb/cGtqwac4miXTwsZVRCCXNPQsl+XNl5IxDdM6cqeGAeEz2Qn D49rC1OMJweFnp20RBgWWiv40P0vqXMxqz22ZN+iEyTn8OpEoFxqWuXZ2SebFZmW MzGe0FkEKnlvDrCm1SkkdbMUhxo0/byzdXYIhyDmG9M7CZ/7tZYpyUbd1AxHadRl yOoIh7Yss1reOPLP4ANd73r/GJZh/YbqdCLNnJIZnUkGHlayVrXgDKe2P2C/Gnex S0WB2spDEunVDrbSKRadw3FYrQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOc9LtXs 410supr62LuTyLxUVDceMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0FDRUFFMjY4 QUQwMTFFRTlFMURBRjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA6IADBwAkBghA/sQwDQYJKoZIhvcNAQELBQADggEB AIML+Gq3f3r21U01toZAVMo4Prdogh1CdblMymSdBx3HOAW2rMwIjMabA7UjUowr hycVX0hxnZg5uF/cEzyVO8F+fW58d/PaCaaBlP1HGx52PU5+cl7SXdR1RzH7uafy 1Gx4KqVGuWpi3MnRf+MPvafv11tP2cxf17VoGYUJQckzHk78ORPEdmcQA7NMxE6f YYjd9F39v+3tBrndUxchCoI7ZqLSsuUGezEZM43VlJ+bwsD7+lQSfzaeDCyBvN+k JnSGwHVOT1AQRr8RgnjO0nEal+qkv25Y/gSAljhDMwnYTxH4UxsZ4wXUzCd7bg7I RIBqjMU9OtL3r9D+MzMmT+8= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org