$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa File: CDD3B6808E2511EF966A7D1CC4F9AE02.roa (raw, json) Hash identifier: NTivAjwXF5kEGBfJj1b1UbBngDMRtvCD8am52fTCPtU= Subject key identifier: 12:8E:79:97:CE:12:D3:E6:F5:8B:06:EB:7D:A2:20:01:90:41:70:6F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D9D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa Signing time: Sat 19 Oct 2024 14:24:09 +0000 ROA not before: Sat 19 Oct 2024 14:24:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 215304 IP address blocks: 2406:840:eab0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3485 (0xd9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 19 14:24:09 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6713c109-7c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:1d:a4:1c:1a:2c:ef:43:8c:4d:8e:46:dc: 02:20:f1:de:0a:be:1f:dc:a0:42:cb:a1:00:f9:78: 0e:69:29:30:32:57:00:a3:3a:88:4a:07:7a:77:9e: 02:36:37:c7:56:a4:09:aa:21:43:69:24:48:e7:5d: b8:d2:64:f0:94:c3:9a:85:58:6d:42:db:d7:95:39: 04:66:e4:24:d9:d2:ba:e7:be:8b:ad:f4:41:79:fc: 76:f0:79:e8:40:79:9b:01:6e:5c:ff:27:ae:f5:7b: 4f:bb:d3:31:26:f2:90:7b:b3:ec:4f:fe:75:d7:ab: 04:9a:f5:d6:37:21:df:df:0f:9f:fc:14:25:1b:a7: 4e:38:99:32:93:43:88:7e:5e:15:63:16:a3:56:b5: 51:fe:cf:3d:e2:01:05:ba:af:4d:1d:5c:88:21:22: dc:c9:cf:f7:6a:06:09:e7:e0:15:81:cb:71:37:a5: d9:d8:b5:8a:62:09:de:a5:82:f5:eb:38:f2:89:9d: 08:b6:26:4c:58:e4:44:60:b5:2e:9e:11:b0:22:bd: d7:c5:11:cd:8c:cf:f9:cb:43:e7:46:e1:7b:47:e4: 65:2a:c5:ec:d9:2c:0a:68:b2:63:4e:63:77:6b:86: 3a:12:86:f7:72:5d:ca:cb:a5:e2:1c:51:b0:de:96: 78:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8E:79:97:CE:12:D3:E6:F5:8B:06:EB:7D:A2:20:01:90:41:70:6F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CDD3B6808E2511EF966A7D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eab0::/44 Signature Algorithm: sha256WithRSAEncryption 7c:5d:43:33:a5:90:dd:39:fb:15:24:d6:62:c0:ef:07:96:ba: e3:7f:47:51:e4:ed:2f:3d:57:47:23:db:3c:05:10:c2:ae:e9: 49:ba:c3:02:1a:bb:06:7b:0f:b9:a0:cc:25:bf:58:32:55:07: 39:ad:53:db:8d:74:9c:f6:f7:78:91:7f:8a:b3:66:32:b5:32: d5:ed:38:40:7a:2e:ee:97:e3:9d:38:4e:4f:0e:a0:b3:08:03: d8:c5:fe:08:80:fe:fc:73:a8:63:44:9e:ed:de:12:db:89:cf: a0:9b:c2:f8:78:61:bd:b1:47:a9:1a:28:8e:bb:1a:73:7e:ad: 3a:96:3b:85:f9:5d:28:d2:2e:7d:a1:50:f1:d5:46:2d:2a:04: e4:2e:39:7a:cf:86:1f:b0:74:91:37:ff:0e:12:79:52:5d:79: 2e:5e:25:21:05:21:a6:9a:a5:e0:20:64:f4:cc:82:67:69:58: d1:d0:e6:04:20:ab:91:b2:7b:b4:4c:b1:df:ee:65:af:93:b3: 07:f0:78:2b:34:0e:cb:45:b4:2b:f2:e8:7a:fe:b9:3e:32:cf: 2b:1d:38:a8:ee:ea:c9:6d:53:eb:95:e5:a6:43:11:eb:4a:06: 11:db:cf:74:26:10:fc:4c:39:5d:f0:3a:0e:9f:a2:4b:49:a5: fd:1d:36:66 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQxMDE5MTQyNDA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEzYzEwOS03YzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzywdpBwaLO9DjE2ORtwCIPHeCr4f3KBCy6EA+XgOaSkwMlcAozqISgd6d54C NjfHVqQJqiFDaSRI51240mTwlMOahVhtQtvXlTkEZuQk2dK6576LrfRBefx28Hno QHmbAW5c/yeu9XtPu9MxJvKQe7PsT/5116sEmvXWNyHf3w+f/BQlG6dOOJkyk0OI fl4VYxajVrVR/s894gEFuq9NHVyIISLcyc/3agYJ5+AVgctxN6XZ2LWKYgnepYL1 6zjyiZ0ItiZMWOREYLUunhGwIr3XxRHNjM/5y0PnRuF7R+RlKsXs2SwKaLJjTmN3 a4Y6Eob3cl3Ky6XiHFGw3pZ4tQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBKOeZfO EtPm9YsG632iIAGQQXBvMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0REM0I2ODA4 RTI1MTFFRjk2NkE3RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA6rAwDQYJKoZIhvcNAQELBQADggEBAHxdQzOlkN05 +xUk1mLA7weWuuN/R1Hk7S89V0cj2zwFEMKu6Um6wwIauwZ7D7mgzCW/WDJVBzmt U9uNdJz293iRf4qzZjK1MtXtOEB6Lu6X4504Tk8OoLMIA9jF/giA/vxzqGNEnu3e EtuJz6Cbwvh4Yb2xR6kaKI67GnN+rTqWO4X5XSjSLn2hUPHVRi0qBOQuOXrPhh+w dJE3/w4SeVJdeS5eJSEFIaaapeAgZPTMgmdpWNHQ5gQgq5Gye7RMsd/uZa+Tswfw eCs0DstFtCvy6Hr+uT4yzysdOKju6sltU+uV5aZDEetKBhHbz3QmEPxMOV3wOg6f oktJpf0dNmY= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org