$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/DB48AFAAA58A11EB846DBF30C4F9AE02.roa File: DB48AFAAA58A11EB846DBF30C4F9AE02.roa (raw, json) Hash identifier: lWi1BaTrAVA5f8sHEC/Df6+NfN46C7CpphyALqwFDZA= Subject key identifier: 0F:90:88:AB:6C:D2:18:1B:95:80:84:38:DF:DB:8E:62:ED:EE:DC:87 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C68 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/DB48AFAAA58A11EB846DBF30C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:49 +0000 ROA not before: Sun 26 May 2024 21:31:49 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142111 IP address blocks: 2406:840:f400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:49 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa44-83d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:c2:b9:03:f8:df:8b:36:aa:5b:22:5a:59: af:f3:27:80:d6:da:2e:b8:d1:94:55:f1:ab:77:9c: 39:da:a9:0d:5b:1e:e5:b8:b6:87:58:71:fb:e8:67: 65:3c:e0:12:1f:85:36:df:4d:71:bf:d1:96:d4:d2: 52:51:df:28:0d:b2:23:59:66:54:98:e6:42:5d:7a: d3:a4:dc:d5:46:9b:fc:7c:ad:d1:c0:78:9d:1f:6a: 9a:df:c1:ce:3f:3d:af:1e:d1:00:09:90:a4:cd:8b: c1:ad:4e:33:f1:c9:4b:fc:ec:60:f9:a9:e0:29:11: 5e:b1:a1:d2:22:a7:8e:bd:da:89:e3:58:8c:3f:8a: 44:3d:e4:8d:72:a3:68:fe:84:3d:a4:c8:b7:e2:5b: 0d:c3:a2:2e:38:ed:0c:32:12:93:29:89:f5:03:c9: f5:63:5b:9e:2b:f4:d4:d1:23:cb:90:51:17:e1:74: 63:38:9b:e1:43:d5:31:9c:b5:7a:7a:ef:be:e2:c4: cc:cf:e2:1d:3a:07:16:06:5b:8e:fa:a9:1d:d5:b5: b2:ce:94:e9:e0:a2:a7:a5:a9:9c:d9:cd:4f:6d:b0: eb:c8:88:d7:79:7b:e9:28:74:a8:df:92:b1:2d:bb: 6c:78:47:e1:69:d6:b3:e5:ca:06:87:c6:21:4b:25: a3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:90:88:AB:6C:D2:18:1B:95:80:84:38:DF:DB:8E:62:ED:EE:DC:87 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/DB48AFAAA58A11EB846DBF30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f400::/44 Signature Algorithm: sha256WithRSAEncryption 6f:63:07:d1:67:fb:96:2d:90:40:db:8f:fd:e7:85:b3:60:f7: e7:df:42:05:08:f5:31:94:71:e2:30:b8:20:cf:23:ca:0f:44: 47:42:60:9b:2c:bc:c0:0e:a2:69:b6:88:b4:81:32:b9:98:87: 11:56:13:4a:6b:1a:ec:e8:75:24:df:ba:b1:94:d8:f2:34:3e: 40:a8:77:3e:d9:d7:91:5c:88:ec:29:b7:f8:e8:dd:d8:45:90: 4e:d2:95:85:c7:29:e2:d5:f0:f3:a5:70:f2:ec:44:81:7f:50: 9f:b8:2c:6b:a6:20:28:93:37:c4:ab:9e:c4:ed:d5:45:5f:bb: a2:d8:48:1a:f9:66:90:c4:29:5c:4b:77:4a:42:8b:4a:77:1f: 7c:4e:6a:f7:1f:62:b1:b2:b4:61:61:f6:6d:d6:4d:58:78:5b: 54:dc:2f:66:e4:2f:ed:08:9a:6d:1a:3a:1f:48:79:45:fc:40: ae:1c:e5:84:a1:7a:6f:34:85:a8:4d:4a:69:c0:89:e6:43:49: e4:f8:b0:34:6e:fe:c9:14:5e:02:33:c1:7b:5b:c0:08:8a:44: d7:9c:e1:e3:51:46:50:91:8a:93:e5:3c:d6:13:2f:77:a6:30: 85:0d:c9:ae:7d:75:b5:33:0e:c3:46:ed:42:a9:af:fa:75:1c: b0:d4:9f:a6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTQ5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE0NC04M2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyvCuQP434s2qlsiWlmv8yeA1touuNGUVfGrd5w52qkNWx7luLaHWHH76Gdl POASH4U2301xv9GW1NJSUd8oDbIjWWZUmOZCXXrTpNzVRpv8fK3RwHidH2qa38HO Pz2vHtEACZCkzYvBrU4z8clL/Oxg+angKRFesaHSIqeOvdqJ41iMP4pEPeSNcqNo /oQ9pMi34lsNw6IuOO0MMhKTKYn1A8n1Y1ueK/TU0SPLkFEX4XRjOJvhQ9UxnLV6 eu++4sTMz+IdOgcWBluO+qkd1bWyzpTp4KKnpamc2c1PbbDryIjXeXvpKHSo35Kx LbtseEfhadaz5coGh8YhSyWjnQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFA+QiKts 0hgblYCEON/bjmLt7tyHMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvREI0OEFGQUFB NThBMTFFQjg0NkRCRjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9AAwDQYJKoZIhvcNAQELBQADggEBAG9jB9Fn+5Yt kEDbj/3nhbNg9+ffQgUI9TGUceIwuCDPI8oPREdCYJssvMAOomm2iLSBMrmYhxFW E0prGuzodSTfurGU2PI0PkCodz7Z15FciOwpt/jo3dhFkE7SlYXHKeLV8POlcPLs RIF/UJ+4LGumICiTN8SrnsTt1UVfu6LYSBr5ZpDEKVxLd0pCi0p3H3xOavcfYrGy tGFh9m3WTVh4W1TcL2bkL+0Imm0aOh9IeUX8QK4c5YShem80hahNSmnAieZDSeT4 sDRu/skUXgIzwXtbwAiKRNec4eNRRlCRipPlPNYTL3emMIUNya59dbUzDsNG7UKp r/p1HLDUn6Y= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org