$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa File: D6AC3AC614FF11EDBC31B571C4F9AE02.roa (raw, json) Hash identifier: jseSqQ7qWeD5eEfHZFoyxq1Pw+J9YS2Nug415uJQ01k= Subject key identifier: EE:ED:41:6A:BE:A8:E7:30:A1:62:E6:F3:AD:58:FD:65:49:BF:C0:8E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C4C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:24 +0000 ROA not before: Sun 26 May 2024 21:31:24 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134413 IP address blocks: 2406:840:fef2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:24 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa2b-d48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5d:23:0e:a6:eb:c7:68:66:84:e0:14:26:6b: d7:d5:33:94:f4:f9:1e:0a:81:bd:ea:7a:55:14:23: 38:ee:68:04:3c:26:64:8a:c9:03:bb:b6:6d:89:55: 8b:e3:0a:44:2e:11:a7:ac:7a:a3:17:fd:cd:93:64: 6d:2e:3a:31:fe:2f:77:2d:41:07:2b:35:d8:47:dc: 75:88:68:43:65:85:a6:41:23:6c:fd:92:1c:75:18: 02:1b:d4:aa:55:13:30:d3:2a:a8:ac:af:1d:6e:3d: a5:ae:f1:27:c8:8f:d2:dc:31:5d:ef:86:3a:52:fd: 59:84:92:71:86:f8:7d:4d:f2:92:be:0f:29:b5:0a: 2b:e3:c5:53:9d:b6:3b:23:d0:75:5e:34:73:31:65: 27:5e:96:45:e2:d9:c7:42:c9:dd:8d:66:69:b4:bc: e1:a1:85:41:5c:3e:a1:d8:0b:77:3f:7a:7f:ca:2e: 6a:bf:43:44:33:0b:6c:c8:eb:49:a1:fe:c5:ca:5f: 14:52:ee:06:9b:da:4d:84:52:d6:3c:23:6f:5f:96: 99:57:39:88:41:c2:de:1d:8f:ce:b0:8b:93:c2:25: 05:a0:50:17:85:9a:83:e2:9f:3d:be:6a:ec:24:3f: a4:7a:eb:40:09:38:50:be:76:f2:f0:02:26:4d:0c: b5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:ED:41:6A:BE:A8:E7:30:A1:62:E6:F3:AD:58:FD:65:49:BF:C0:8E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D6AC3AC614FF11EDBC31B571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fef2::/48 Signature Algorithm: sha256WithRSAEncryption 6c:a9:f0:3c:a6:f7:2c:c5:f3:60:1a:bb:6e:d1:e4:82:d8:b3: b6:31:06:15:c9:af:8f:7c:33:6a:a9:fd:dd:d1:9e:a1:1c:15: d1:67:cd:b4:ae:5a:4f:9f:04:1e:73:e8:1f:8d:b7:20:48:28: bc:63:12:ab:cc:ed:0f:fe:0a:5a:64:54:97:d4:53:8e:bc:31: 18:70:e7:e9:98:d9:23:86:36:00:c1:be:8a:4c:e1:0f:30:a1: f8:06:b4:ed:65:73:d0:2a:9b:02:92:85:54:5e:d1:06:5b:f0: 7b:65:a6:e7:89:73:e1:8e:b5:9a:18:3f:e4:a8:8b:42:d4:2d: 3b:3a:bc:b1:a3:98:5c:9d:8a:5c:b2:fe:0b:f3:7f:41:48:b5: 17:4d:18:37:30:f8:ec:4e:1b:85:f5:ce:3f:1d:08:02:dd:7b: 8c:e9:8c:c9:66:96:9c:60:45:a6:c9:0c:4e:e7:ec:21:42:32: 1b:7f:da:48:99:dd:b3:65:e0:ac:25:01:5b:b1:1a:ca:17:64: a3:fa:82:e2:1e:13:fb:57:ae:bd:7a:c3:b0:c4:60:fe:21:a0: 6a:f8:67:9a:bf:73:d5:7b:03:2f:55:7e:fa:d6:b8:60:bc:e9: 07:c6:13:83:57:41:f1:6e:9f:b2:0e:2d:53:9d:b1:ae:40:94: b6:13:2d:53 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTI0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEyYi1kNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzl0jDqbrx2hmhOAUJmvX1TOU9PkeCoG96npVFCM47mgEPCZkiskDu7ZtiVWL 4wpELhGnrHqjF/3Nk2RtLjox/i93LUEHKzXYR9x1iGhDZYWmQSNs/ZIcdRgCG9Sq VRMw0yqorK8dbj2lrvEnyI/S3DFd74Y6Uv1ZhJJxhvh9TfKSvg8ptQor48VTnbY7 I9B1XjRzMWUnXpZF4tnHQsndjWZptLzhoYVBXD6h2At3P3p/yi5qv0NEMwtsyOtJ of7Fyl8UUu4Gm9pNhFLWPCNvX5aZVzmIQcLeHY/OsIuTwiUFoFAXhZqD4p89vmrs JD+keutACThQvnby8AImTQy19QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFO7tQWq+ qOcwoWLm861Y/WVJv8COMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDZBQzNBQzYx NEZGMTFFREJDMzFCNTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/vIwDQYJKoZIhvcNAQELBQADggEBAGyp8Dym9yzF 82Aau27R5ILYs7YxBhXJr498M2qp/d3RnqEcFdFnzbSuWk+fBB5z6B+NtyBIKLxj EqvM7Q/+ClpkVJfUU468MRhw5+mY2SOGNgDBvopM4Q8wofgGtO1lc9AqmwKShVRe 0QZb8HtlpueJc+GOtZoYP+Soi0LULTs6vLGjmFydilyy/gvzf0FItRdNGDcw+OxO G4X1zj8dCALde4zpjMlmlpxgRabJDE7n7CFCMht/2kiZ3bNl4KwlAVuxGsoXZKP6 guIeE/tXrr16w7DEYP4hoGr4Z5q/c9V7Ay9VfvrWuGC86QfGE4NXQfFun7IOLVOd sa5AlLYTLVM= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:00 2024 by rpki-client on console-ams.rpki-client.org