$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E9C243B2CD6211EA809FAA19C4F9AE02.roa File: E9C243B2CD6211EA809FAA19C4F9AE02.roa (raw, json) Hash identifier: at0BhMGwGy+AFfuvFgmr1O1Xro/SZalT2G7xwxsmr5w= Subject key identifier: B4:93:94:38:ED:83:16:8A:47:97:25:85:BE:01:BF:D6:C9:54:C5:31 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C62 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E9C243B2CD6211EA809FAA19C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:43 +0000 ROA not before: Sun 26 May 2024 21:31:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140938 IP address blocks: 2406:840:fc00::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa3f-edf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:56:9a:0e:bc:8e:56:29:fb:45:fb:c3:7f:6a: 9f:66:a4:e0:3a:01:3c:28:e7:80:d8:7a:70:b0:7e: d8:9d:7c:62:72:aa:f4:a7:29:a9:0d:8b:da:ce:15: 77:bf:0f:b1:c6:5b:66:f5:cd:e7:10:b4:9d:75:17: 22:ef:ba:72:e6:c6:32:84:82:90:69:48:67:0b:c9: 81:34:d9:77:35:a8:9f:9c:f9:bd:fd:33:7d:f1:52: 3b:cd:dd:fd:66:51:fb:0b:35:ef:fd:4d:32:3b:7a: d3:b8:fd:34:1d:f5:42:2b:35:a7:f8:f5:04:7f:d9: 41:c2:2f:15:c7:eb:20:5c:74:82:83:cb:08:82:e1: a3:7b:61:76:0e:c2:0b:25:3d:5d:d7:e4:fc:8c:05: d1:d8:a4:6c:e7:e0:34:14:74:33:21:82:26:f8:40: 82:95:50:f4:7d:93:7e:ff:b0:48:c6:1a:4f:9c:0f: 83:b6:b4:16:67:8c:0f:83:4e:e5:cb:e8:32:24:d9: a8:da:a4:92:2f:6c:0a:a7:ed:d5:c9:1b:c9:2e:6a: 2a:ee:fc:1a:da:b1:b6:c8:14:af:3c:32:99:a2:c4: 90:c6:30:de:3f:ef:b8:6a:8a:92:d6:55:f9:88:91: 1f:be:6f:e9:bf:05:53:b6:56:62:06:4d:76:6a:c1: b4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:93:94:38:ED:83:16:8A:47:97:25:85:BE:01:BF:D6:C9:54:C5:31 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/E9C243B2CD6211EA809FAA19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fc00::/44 Signature Algorithm: sha256WithRSAEncryption 0f:b9:16:24:34:ee:09:50:60:3d:12:4a:6e:aa:04:d6:ee:54: 0a:73:c6:1f:ac:24:8c:ce:8a:f6:f4:cb:02:f8:9a:59:fc:07: bd:ad:67:66:8a:33:88:df:ef:2c:9d:c3:c8:c4:3a:dd:1c:74: 08:16:bc:98:64:46:dd:13:d2:bd:0b:dd:d8:6b:8e:6b:d9:14: f6:4a:92:0b:4d:c5:5a:2b:ca:91:3e:5d:33:0f:da:68:e8:d2: 64:72:af:f6:aa:88:fb:dc:22:90:3c:0a:b2:60:e3:d6:0e:d6: 2e:62:da:b3:7f:98:f9:54:84:a9:34:d0:97:89:f4:9b:38:48: 09:06:a5:16:35:a2:2f:44:87:a2:6f:90:2c:75:6e:3a:56:a5: 70:de:3b:83:d0:db:27:d7:ac:2f:4a:87:2f:40:64:b0:7b:5f: db:95:45:e4:28:ad:9a:72:3e:d8:89:85:95:06:b4:91:1a:37: 36:b6:92:41:9f:95:d7:82:b8:26:a5:68:e6:98:06:c3:fa:69: f3:7d:af:90:25:0b:f5:3c:9d:98:f4:43:51:19:f4:cb:0b:93: e2:fa:f4:c9:d7:91:6f:15:a7:92:25:ef:01:4d:4f:ab:9e:c9: dd:f8:3d:ef:40:77:60:48:59:94:81:53:8f:0b:d7:46:98:0e: c0:80:c8:18 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzZi1lZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VaaDryOVin7RfvDf2qfZqTgOgE8KOeA2HpwsH7YnXxicqr0pympDYvazhV3 vw+xxltm9c3nELSddRci77py5sYyhIKQaUhnC8mBNNl3NaifnPm9/TN98VI7zd39 ZlH7CzXv/U0yO3rTuP00HfVCKzWn+PUEf9lBwi8Vx+sgXHSCg8sIguGje2F2DsIL JT1d1+T8jAXR2KRs5+A0FHQzIYIm+ECClVD0fZN+/7BIxhpPnA+DtrQWZ4wPg07l y+gyJNmo2qSSL2wKp+3VyRvJLmoq7vwa2rG2yBSvPDKZosSQxjDeP++4aoqS1lX5 iJEfvm/pvwVTtlZiBk12asG0dwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLSTlDjt gxaKR5clhb4Bv9bJVMUxMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRTlDMjQzQjJD RDYyMTFFQTgwOUZBQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA/AAwDQYJKoZIhvcNAQELBQADggEBAA+5FiQ07glQ YD0SSm6qBNbuVApzxh+sJIzOivb0ywL4mln8B72tZ2aKM4jf7yydw8jEOt0cdAgW vJhkRt0T0r0L3dhrjmvZFPZKkgtNxVorypE+XTMP2mjo0mRyr/aqiPvcIpA8CrJg 49YO1i5i2rN/mPlUhKk00JeJ9Js4SAkGpRY1oi9Eh6JvkCx1bjpWpXDeO4PQ2yfX rC9Khy9AZLB7X9uVReQorZpyPtiJhZUGtJEaNza2kkGfldeCuCalaOaYBsP6afN9 r5AlC/U8nZj0Q1EZ9MsLk+L69MnXkW8Vp5Il7wFNT6ueyd34Pe9Ad2BIWZSBU48L 10aYDsCAyBg= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:02 2024 by rpki-client on console-ams.rpki-client.org