$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa File: D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa (raw, json) Hash identifier: FVlFtGXtsqg+WdGkkHBzvm9mavCg36tYwUk86n847SQ= Subject key identifier: AF:AD:09:18:09:51:E5:9D:26:C8:88:3C:46:73:E2:15:96:7F:D7:28 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C7D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:10 +0000 ROA not before: Sun 26 May 2024 21:32:10 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151194 IP address blocks: 2406:840:e570::/44 maxlen: 48 2406:840:fefe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:32:10 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa5a-a75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:72:0e:f3:df:26:be:90:4a:01:82:6a:a4: 79:19:c7:9e:e6:ef:37:aa:40:3f:22:a7:ac:b7:6c: 15:eb:57:dd:59:85:f6:3b:cf:63:21:9f:88:a5:33: c6:0f:48:0a:cc:8f:39:3f:06:fd:03:35:85:9a:c7: 50:3a:2b:42:48:b9:06:66:27:70:4d:27:c9:cd:b1: 23:de:03:99:93:85:7d:ef:a0:93:c4:e3:52:a4:11: 1d:26:3c:ea:f6:8b:c8:6d:aa:40:7c:d4:74:24:5c: 49:02:f1:c0:ea:8e:ff:73:53:77:c7:a7:4d:9f:27: da:ef:93:cf:f3:36:4e:83:f0:9d:f1:7d:08:e5:ea: 2d:bd:8e:fe:15:2f:e9:b0:90:27:f7:d9:37:45:12: d0:78:b6:0c:cd:fc:59:b5:7c:0a:ee:1b:a9:6e:09: 0e:ac:0e:96:95:57:98:b7:81:7e:f6:9b:30:9d:d1: 23:03:c6:ff:0e:b2:38:b0:36:6e:6f:35:5f:7d:a3: 38:c7:12:f9:17:e7:d1:cc:bb:8b:af:87:26:9d:31: 5a:80:3f:b0:54:6a:2e:10:e4:0c:94:e4:54:2f:10: dd:b5:76:e0:4a:60:cf:72:18:df:45:c3:dc:2c:bc: 46:e8:2b:64:b0:55:65:93:26:71:8f:c0:5b:ad:73: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AD:09:18:09:51:E5:9D:26:C8:88:3C:46:73:E2:15:96:7F:D7:28 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e570::/44 2406:840:fefe::/48 Signature Algorithm: sha256WithRSAEncryption 96:8a:11:c8:cf:24:09:a3:79:a0:86:b9:1a:5d:ca:63:9a:c9: 44:30:4e:0d:9f:56:32:68:5f:38:97:eb:3c:65:b2:45:64:48: 0b:31:8e:9d:a7:1e:29:d2:18:0f:b3:09:0c:d5:b1:7b:3c:6f: 31:a3:33:bb:f0:49:db:4b:5e:fe:5c:b2:b4:2c:04:31:cb:0f: 90:be:06:06:21:c5:08:9d:b5:90:ca:8b:c5:82:34:41:b1:4d: c5:57:ef:d4:d1:07:d7:3a:9c:dd:97:22:91:03:17:73:b0:ff: 73:3b:76:6b:64:f5:ea:4f:78:a7:e6:df:5a:dc:72:32:5d:1c: 7d:41:2b:79:87:3e:71:59:3d:2b:84:ba:57:4e:c6:02:36:e0: b3:8a:c1:df:21:d2:b3:83:ea:25:b9:03:05:d1:87:d1:4c:1a: 69:52:ce:ae:da:2f:54:db:82:4c:5c:b4:03:b5:65:50:e6:f2: 32:38:15:b3:5a:8e:2b:81:2a:25:0a:3c:45:b2:20:81:cf:da: a8:e0:44:cb:31:d1:8a:c5:ba:3d:dc:b8:3f:df:47:25:23:f0: 82:12:11:3d:99:d1:42:19:43:cc:3a:2b:63:87:d8:10:c3:bb: d0:59:a6:db:ad:e8:15:91:cf:27:3e:69:ab:f1:6c:ef:46:01: 46:46:01:60 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjEwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE1YS1hNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0etyDvPfJr6QSgGCaqR5Gcee5u83qkA/Iqest2wV61fdWYX2O89jIZ+IpTPG D0gKzI85Pwb9AzWFmsdQOitCSLkGZidwTSfJzbEj3gOZk4V976CTxONSpBEdJjzq 9ovIbapAfNR0JFxJAvHA6o7/c1N3x6dNnyfa75PP8zZOg/Cd8X0I5eotvY7+FS/p sJAn99k3RRLQeLYMzfxZtXwK7hupbgkOrA6WlVeYt4F+9pswndEjA8b/DrI4sDZu bzVffaM4xxL5F+fRzLuLr4cmnTFagD+wVGouEOQMlORULxDdtXbgSmDPchjfRcPc LLxG6CtksFVlkyZxj8BbrXM3UwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFK+tCRgJ UeWdJsiIPEZz4hWWf9coMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDJFQjg2RUFE RjNEMTFFRDhBRUNCRjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA5XADBwAkBghA/v4wDQYJKoZIhvcNAQELBQADggEB AJaKEcjPJAmjeaCGuRpdymOayUQwTg2fVjJoXziX6zxlskVkSAsxjp2nHinSGA+z CQzVsXs8bzGjM7vwSdtLXv5csrQsBDHLD5C+BgYhxQidtZDKi8WCNEGxTcVX79TR B9c6nN2XIpEDF3Ow/3M7dmtk9epPeKfm31rccjJdHH1BK3mHPnFZPSuEuldOxgI2 4LOKwd8h0rOD6iW5AwXRh9FMGmlSzq7aL1TbgkxctAO1ZVDm8jI4FbNajiuBKiUK PEWyIIHP2qjgRMsx0YrFuj3cuD/fRyUj8IISET2Z0UIZQ8w6K2OH2BDDu9BZptut 6BWRzyc+aavxbO9GAUZGAWA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org