$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E2E771C4D93A11EEA15D7A7FC4F9AE02.roa File: E2E771C4D93A11EEA15D7A7FC4F9AE02.roa (raw, json) Hash identifier: GysriWZ2XQMvQA6cPB4wyZqyCpohElSRfeU4PbKk0Ww= Subject key identifier: D0:1B:BE:8C:3F:F8:88:89:C5:4E:F7:24:C7:46:E4:9C:28:92:A6:5D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C8F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E2E771C4D93A11EEA15D7A7FC4F9AE02.roa Signing time: Sun 26 May 2024 21:32:27 +0000 ROA not before: Sun 26 May 2024 21:32:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152598 IP address blocks: 2406:840:fecc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C Validity Not Before: May 26 21:32:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa6b-d531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:76:92:6a:1d:e2:b0:d8:09:11:91:76:b6: 32:85:b7:ab:67:14:85:8a:17:18:26:cf:de:b2:57: ef:c7:0c:d6:e1:0b:e8:cd:ea:61:ac:e8:30:52:e8: a0:b8:66:5a:2a:c8:4b:75:59:00:96:3d:35:41:15: 82:14:cb:59:e4:f0:9f:f8:b1:4c:21:0f:7b:46:eb: 8c:c3:96:68:f3:d9:67:31:65:1b:24:fa:e0:ad:28: 05:8d:27:28:7b:53:ae:5a:50:15:94:f5:ee:3c:f5: b1:8d:2b:f7:0b:83:25:94:b1:81:b8:51:94:94:0d: c2:ad:59:01:c3:3c:c7:da:a9:a1:bf:48:e8:ad:5b: 3a:5a:8f:82:63:9d:17:6c:1d:8f:d9:55:e1:7f:33: e5:bc:97:36:27:1d:7d:dc:64:14:5a:fa:a6:3d:52: 18:8c:0e:2a:7b:07:5c:1e:c9:ae:07:a9:73:e3:c8: d8:4a:58:87:d5:36:cc:ab:21:10:50:a6:8d:e4:c6: 83:4a:12:e4:35:9c:6a:28:b0:5c:e6:0e:69:85:9e: 8b:1f:0c:e9:22:df:3b:c0:11:c5:e8:dd:c9:a3:2e: dc:52:a3:52:85:dd:1c:14:38:95:0a:42:dd:d7:07: 93:43:fa:4b:d7:9d:83:ff:e6:d2:fc:9c:81:7f:e0: 8d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:1B:BE:8C:3F:F8:88:89:C5:4E:F7:24:C7:46:E4:9C:28:92:A6:5D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E2E771C4D93A11EEA15D7A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fecc::/48 Signature Algorithm: sha256WithRSAEncryption 4c:38:70:40:a5:5b:3f:85:f3:78:d9:3f:c7:fa:54:00:f1:76: f1:e3:b8:00:a6:47:7e:f6:c9:a3:86:9e:a4:21:af:e5:25:09: ba:44:12:6d:d1:56:e4:1c:b0:29:7a:76:71:d7:f5:84:e3:6d: 4f:88:dc:cc:91:21:ca:1c:b1:63:8d:4b:ce:80:dd:9c:d9:97: ec:17:cb:a8:05:82:45:40:8b:0b:80:91:87:28:32:eb:f4:c2: 94:c0:1a:98:f8:c6:1c:e1:1f:bf:da:96:4e:da:d3:4f:33:f7: 3b:f9:f3:e1:b1:ac:70:98:2f:8f:31:e7:bc:19:56:65:63:7e: 4a:f1:5e:52:c9:e6:45:f8:bf:7d:30:84:db:11:78:3e:cf:23: a2:55:10:4d:bf:31:cd:32:e9:af:a4:3f:dc:49:3e:2e:4a:fb: 3e:08:94:e1:dc:f1:d7:e6:8c:48:c3:98:65:e1:60:62:7a:56: 23:ba:94:a3:aa:d5:81:cf:b7:f8:00:1b:5b:35:39:41:a8:81: 26:d7:17:0b:4c:11:eb:46:a2:bc:2e:4d:29:03:44:32:7b:b8: 77:1f:30:cd:dd:59:27:d4:cf:a8:c6:06:4d:b8:05:d5:d4:5e: 87:fb:1e:9e:40:c0:5c:ad:7e:3b:92:a7:56:d5:c7:92:58:27: 73:37:bb:35 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMjI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWE2Yi1kNTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8N2kmod4rDYCRGRdrYyhberZxSFihcYJs/eslfvxwzW4QvozephrOgwUuig uGZaKshLdVkAlj01QRWCFMtZ5PCf+LFMIQ97RuuMw5Zo89lnMWUbJPrgrSgFjSco e1OuWlAVlPXuPPWxjSv3C4MllLGBuFGUlA3CrVkBwzzH2qmhv0jorVs6Wo+CY50X bB2P2VXhfzPlvJc2Jx193GQUWvqmPVIYjA4qewdcHsmuB6lz48jYSliH1TbMqyEQ UKaN5MaDShLkNZxqKLBc5g5phZ6LHwzpIt87wBHF6N3Joy7cUqNShd0cFDiVCkLd 1weTQ/pL152D/+bS/JyBf+CNJQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNAbvow/ +IiJxU73JMdG5JwokqZdMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRTJFNzcxQzRE OTNBMTFFRUExNUQ3QTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/swwDQYJKoZIhvcNAQELBQADggEBAEw4cEClWz+F 83jZP8f6VADxdvHjuACmR372yaOGnqQhr+UlCbpEEm3RVuQcsCl6dnHX9YTjbU+I 3MyRIcocsWONS86A3ZzZl+wXy6gFgkVAiwuAkYcoMuv0wpTAGpj4xhzhH7/alk7a 008z9zv58+GxrHCYL48x57wZVmVjfkrxXlLJ5kX4v30whNsReD7PI6JVEE2/Mc0y 6a+kP9xJPi5K+z4IlOHc8dfmjEjDmGXhYGJ6ViO6lKOq1YHPt/gAG1s1OUGogSbX FwtMEetGorwuTSkDRDJ7uHcfMM3dWSfUz6jGBk24BdXUXof7Hp5AwFytfjuSp1bV x5JYJ3M3uzU= -----END CERTIFICATE-----Generated at Sun Feb 16 20:19:23 2025 by rpki-client