$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa File: CFC56F10466711EBB87A5683C4F9AE02.roa (raw, json) Hash identifier: nnwUuxlMt4NQ5rpLy93K2igV3KFGdPrA7gwqg9BQU6c= Subject key identifier: 15:C7:BB:43:18:F9:CA:BC:B5:F3:52:0F:4B:AA:B0:F3:B3:F7:8F:48 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C4D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:24 +0000 ROA not before: Sun 26 May 2024 21:31:24 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134477 IP address blocks: 2406:840:e100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:24 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa2c-846d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:3a:bb:c7:17:91:51:28:f3:00:db:3e:72: b3:61:f7:5b:00:99:65:31:06:ef:17:1a:b1:3e:1c: eb:62:d2:eb:a8:fe:6b:46:d9:7a:39:b5:2b:31:d8: 5b:e0:a7:43:11:65:d5:63:92:50:79:13:5c:8a:3e: 90:ef:b1:88:38:64:a9:b4:fe:0a:d3:90:0f:e8:fd: b7:4a:52:f3:de:da:c5:6f:68:56:d7:12:e6:03:61: e7:8c:69:8a:01:a4:fb:d8:b1:09:e8:27:6c:f5:fa: ec:07:82:ed:4e:3c:22:1d:86:9d:d7:22:e8:e8:9a: 50:19:f7:f2:78:29:6c:ac:68:20:0f:ac:60:8b:86: 87:13:d1:96:b7:8c:6a:98:69:6c:80:cc:1c:a0:bc: 74:92:7f:70:74:22:8a:c8:20:8e:14:5b:aa:e8:18: 00:fd:b3:83:0f:a2:55:73:e4:69:6d:cc:9e:54:52: 52:a8:e2:bc:4c:80:0e:95:a2:07:fb:07:ce:95:d3: d0:86:19:c2:1f:c3:3f:99:8f:b3:f7:81:a6:a1:88: 29:e9:75:c6:fe:6a:c2:99:b2:cc:4b:84:ef:5e:63: 1f:92:e6:98:81:6c:23:33:28:df:47:53:8c:01:c1: 9a:dc:35:08:ea:4c:47:40:0f:68:5f:1d:15:ee:c8: 23:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C7:BB:43:18:F9:CA:BC:B5:F3:52:0F:4B:AA:B0:F3:B3:F7:8F:48 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e100::/44 Signature Algorithm: sha256WithRSAEncryption 51:4a:b2:40:0b:ae:2e:d2:66:23:2e:ca:f8:db:27:27:8b:12: 14:6b:2f:5b:eb:14:9b:97:3a:88:ba:aa:2e:bf:6f:f3:e4:80: 47:16:2f:18:bf:54:3e:20:11:a3:a2:89:f7:3e:71:7e:4e:4f: fd:0c:ec:4c:d8:82:d8:65:fb:c1:9e:23:37:f7:ba:a0:9d:99: 41:28:9a:b3:98:84:ce:4b:00:e0:10:10:ce:69:0d:5f:0b:13: df:94:14:ef:e9:88:95:d8:b5:d8:08:1b:b3:11:02:fa:97:a9: b4:ae:17:d1:e7:96:55:b0:9d:61:3b:85:05:5d:89:88:3a:d3: 56:36:c9:24:bb:cb:f7:57:d7:5b:84:6a:aa:ad:20:b3:a1:97: 6e:aa:90:59:1b:d6:5e:a7:b8:e4:10:59:9e:29:73:cb:d6:36: 75:31:bc:fd:c3:d5:7f:9c:4a:a2:ef:31:54:20:c2:a3:ab:5f: c0:fa:7a:2a:c9:5b:38:0f:54:53:7a:aa:cf:6f:d1:45:8b:65: 55:29:d0:2b:d9:7a:fd:79:8c:99:e4:fe:5e:80:20:f3:dc:b1: 18:91:d9:f8:e3:e9:69:6d:83:a2:11:a8:1d:58:45:b3:79:56: 0d:32:ec:77:26:f9:82:f6:af:94:ab:5f:86:ab:8e:e3:55:60: 1c:6c:3b:1b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTI0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEyYy04NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0w6u8cXkVEo8wDbPnKzYfdbAJllMQbvFxqxPhzrYtLrqP5rRtl6ObUrMdhb 4KdDEWXVY5JQeRNcij6Q77GIOGSptP4K05AP6P23SlLz3trFb2hW1xLmA2HnjGmK AaT72LEJ6Cds9frsB4LtTjwiHYad1yLo6JpQGffyeClsrGggD6xgi4aHE9GWt4xq mGlsgMwcoLx0kn9wdCKKyCCOFFuq6BgA/bODD6JVc+RpbcyeVFJSqOK8TIAOlaIH +wfOldPQhhnCH8M/mY+z94GmoYgp6XXG/mrCmbLMS4TvXmMfkuaYgWwjMyjfR1OM AcGa3DUI6kxHQA9oXx0V7sgjgQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBXHu0MY +cq8tfNSD0uqsPOz949IMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0ZDNTZGMTA0 NjY3MTFFQkI4N0E1NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4QAwDQYJKoZIhvcNAQELBQADggEBAFFKskALri7S ZiMuyvjbJyeLEhRrL1vrFJuXOoi6qi6/b/PkgEcWLxi/VD4gEaOiifc+cX5OT/0M 7EzYgthl+8GeIzf3uqCdmUEomrOYhM5LAOAQEM5pDV8LE9+UFO/piJXYtdgIG7MR AvqXqbSuF9HnllWwnWE7hQVdiYg601Y2ySS7y/dX11uEaqqtILOhl26qkFkb1l6n uOQQWZ4pc8vWNnUxvP3D1X+cSqLvMVQgwqOrX8D6eirJWzgPVFN6qs9v0UWLZVUp 0CvZev15jJnk/l6AIPPcsRiR2fjj6Wltg6IRqB1YRbN5Vg0y7Hcm+YL2r5SrX4ar juNVYBxsOxs= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org