$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa File: E8F58AF442CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: ohoa2xzGwXHMBh3tFSkvAz1VKLv+DyAfRdjTMSTudnw= Subject key identifier: AB:2A:CB:C3:2A:B1:D3:E6:D6:D8:E8:76:41:72:0D:F5:65:F8:E1:38 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D16 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa Signing time: Mon 15 Jul 2024 17:16:02 +0000 ROA not before: Mon 15 Jul 2024 17:16:01 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153170 IP address blocks: 2406:840:fd60::/44 maxlen: 48 2406:840:fe98::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jul 15 17:16:01 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66955951-019a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:69:47:40:18:3c:f3:2e:2e:a2:78:54:a8:ed: cc:bd:40:33:a5:2a:72:5e:12:17:02:51:38:b1:b5: f5:68:7a:61:c4:77:bf:78:52:f6:5b:da:c9:dc:13: d6:29:54:68:21:b4:5f:bd:cb:c9:35:f4:e1:45:2e: e8:89:51:ec:46:7c:eb:54:56:15:cc:a2:d9:9c:8a: 87:87:b6:10:03:82:6b:2d:b6:51:27:cf:fd:cf:08: 16:da:50:51:c9:69:56:a9:fe:7c:33:04:e4:a3:44: 33:22:52:1d:ed:1d:a1:d4:4f:68:a7:ce:78:4b:77: 35:8f:61:b6:1d:3d:97:e4:69:11:91:7d:f8:90:96: d3:ab:ef:2a:b2:b5:2d:ba:c8:2e:0a:87:d8:d1:6a: 5f:38:b7:5d:a6:a2:4c:4a:76:eb:9b:28:5a:c4:2f: e5:f4:ac:7e:66:b7:4b:8d:2b:72:40:08:66:5c:b6: a1:45:1f:2e:88:ae:3b:7d:49:6b:46:79:18:6c:50: 85:b3:21:7c:55:91:3c:75:7b:07:1e:4a:4a:2b:fa: 64:5c:5d:84:c0:de:0f:95:b3:9e:92:da:98:18:87: 25:2e:40:af:5e:f6:b0:04:6d:46:57:7d:59:7f:92: 42:89:28:c4:c1:f9:f8:e0:86:11:79:35:2f:2d:67: 2a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2A:CB:C3:2A:B1:D3:E6:D6:D8:E8:76:41:72:0D:F5:65:F8:E1:38 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E8F58AF442CD11EFB80CD237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fd60::/44 2406:840:fe98::/48 Signature Algorithm: sha256WithRSAEncryption 01:62:85:00:7e:c4:d1:7b:7b:e4:35:04:86:e4:da:27:6c:31: 1d:46:01:1b:26:a5:85:4d:31:b9:49:98:45:86:5b:33:1e:a3: 7c:f6:67:b4:b7:4f:09:79:3c:93:0d:21:14:03:df:b5:a7:72: 82:43:3a:77:aa:b8:1e:26:25:53:6e:3a:95:36:97:4d:12:00: 98:e8:eb:cf:05:a4:74:47:83:7b:36:02:db:ee:a6:38:9c:79: 51:b0:d1:84:29:69:b5:ba:33:27:d8:ca:5b:9a:cd:a8:ea:e6: ac:87:f6:55:42:07:44:52:a2:26:1b:1e:93:d4:8b:04:a6:9e: 9f:f4:1c:55:ce:e9:f3:83:77:8e:ff:a5:c7:5c:7b:b7:c1:fa: 0b:51:32:13:11:e0:03:39:34:71:f5:9a:2a:9a:a8:45:6f:1e: 5d:e2:c6:a8:08:3d:fd:df:d5:6c:10:00:db:15:f4:4a:b4:de: a5:a2:43:60:5f:6e:47:59:31:b4:d3:30:56:20:2d:1b:86:b4: ae:45:31:19:d3:97:0d:6f:9d:12:e5:fd:88:1d:8f:60:70:d6: 47:33:aa:2e:74:a8:00:8a:6e:d8:8f:31:32:ba:ff:59:24:0e: 64:de:dc:ad:f0:37:73:20:6a:86:04:a9:b8:de:61:5e:6a:4d: 02:ac:de:3f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNzE1MTcxNjAxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk1NTk1MS0wMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02lHQBg88y4uonhUqO3MvUAzpSpyXhIXAlE4sbX1aHphxHe/eFL2W9rJ3BPW KVRoIbRfvcvJNfThRS7oiVHsRnzrVFYVzKLZnIqHh7YQA4JrLbZRJ8/9zwgW2lBR yWlWqf58MwTko0QzIlId7R2h1E9op854S3c1j2G2HT2X5GkRkX34kJbTq+8qsrUt usguCofY0WpfOLddpqJMSnbrmyhaxC/l9Kx+ZrdLjStyQAhmXLahRR8uiK47fUlr RnkYbFCFsyF8VZE8dXsHHkpKK/pkXF2EwN4PlbOektqYGIclLkCvXvawBG1GV31Z f5JCiSjEwfn44IYReTUvLWcqvwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKsqy8Mq sdPm1tjodkFyDfVl+OE4MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRThGNThBRjQ0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/WADBwAkBghA/pgwDQYJKoZIhvcNAQELBQADggEB AAFihQB+xNF7e+Q1BIbk2idsMR1GARsmpYVNMblJmEWGWzMeo3z2Z7S3Twl5PJMN IRQD37WncoJDOnequB4mJVNuOpU2l00SAJjo688FpHRHg3s2AtvupjiceVGw0YQp abW6MyfYyluazajq5qyH9lVCB0RSoiYbHpPUiwSmnp/0HFXO6fODd47/pcdce7fB +gtRMhMR4AM5NHH1miqaqEVvHl3ixqgIPf3f1WwQANsV9Eq03qWiQ2BfbkdZMbTT MFYgLRuGtK5FMRnTlw1vnRLl/Ygdj2Bw1kczqi50qACKbtiPMTK6/1kkDmTe3K3w N3MgaoYEqbjeYV5qTQKs3j8= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org