$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EADF1D0842CD11EFB80CD237C4F9AE02.roa File: EADF1D0842CD11EFB80CD237C4F9AE02.roa (raw, json) Hash identifier: nEWmFl242jdCIZwoffojg30eatM0U8YneWbVfDGh+PQ= Subject key identifier: 65:0E:94:25:AC:EE:38:72:6B:3A:06:B5:02:C0:DF:66:D9:7E:B7:06 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D18 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EADF1D0842CD11EFB80CD237C4F9AE02.roa Signing time: Mon 15 Jul 2024 17:16:05 +0000 ROA not before: Mon 15 Jul 2024 17:16:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153172 IP address blocks: 2406:840:fd80::/44 maxlen: 48 2406:840:fe9b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3352 (0xd18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jul 15 17:16:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66955955-f5e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cc:aa:63:0f:b7:b6:79:3b:08:fb:bb:37:f3: d7:ab:29:8b:4a:12:e0:e4:1c:ee:c4:2b:08:63:78: 38:f4:ed:2d:f5:d3:79:92:f1:e9:cb:dc:ce:4d:8b: c6:a5:89:99:a6:89:1a:d1:82:5c:e1:c2:da:cd:6f: 6c:20:5e:9e:d9:19:ad:84:0f:97:fa:41:4a:5a:11: d1:b7:4c:ff:33:5b:8f:77:bf:44:14:5e:de:87:1d: 23:f3:e6:0e:f5:cf:ce:1e:19:52:c0:3d:c1:dd:64: ba:50:4c:79:8f:c1:1f:fa:b3:bc:5c:c3:0d:a6:95: c5:c8:c7:14:47:94:91:e2:75:36:57:a4:bd:5c:59: c8:8a:da:49:c6:cd:b4:f4:9b:11:0d:91:e5:fc:8b: 6e:d2:f1:8d:83:55:07:5d:46:37:e0:db:5a:17:c4: 2d:ed:3b:34:b2:54:8b:18:31:18:f6:1c:29:f4:1d: 18:43:6e:3a:21:f4:81:de:c0:77:e7:3b:74:7e:a6: ae:8b:b5:7c:3c:90:2b:1c:69:17:33:1e:f2:46:4e: 24:ce:c6:6a:72:a7:0c:9e:eb:89:12:b0:25:61:02: 82:cc:28:8b:2f:0a:4f:a3:79:21:75:c7:2f:ff:f7: d2:62:89:ae:60:64:f1:94:3f:50:c1:00:9b:3b:b3: fa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0E:94:25:AC:EE:38:72:6B:3A:06:B5:02:C0:DF:66:D9:7E:B7:06 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EADF1D0842CD11EFB80CD237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fd80::/44 2406:840:fe9b::/48 Signature Algorithm: sha256WithRSAEncryption 1f:d0:3c:2b:36:12:df:ac:b3:4a:32:6c:85:d7:d2:8b:e1:28: 77:24:d7:40:b1:07:56:32:f1:a2:ce:ad:3d:81:62:9f:05:ce: d9:59:a7:fc:a4:34:b8:af:a9:ae:0d:7e:00:c3:6b:e0:7f:c0: 03:ce:18:d7:05:dd:81:48:b6:75:7a:57:4b:c8:f5:29:ff:70: bf:84:fa:af:42:2b:3b:1e:09:89:70:53:75:d0:1b:05:3a:7c: e7:da:6d:d2:3b:b5:3a:ea:2a:41:8b:19:c9:d7:0a:7d:68:27: cd:15:69:55:d5:df:6b:79:45:f8:6a:6e:64:94:51:17:0c:aa: dc:99:3a:25:1e:16:eb:4d:0d:7e:74:1a:8f:47:db:82:a5:bf: cc:4e:12:d2:6a:00:9c:c2:7f:70:aa:f1:9a:e1:cc:db:cd:0e: 32:3b:af:0c:01:0e:f3:29:38:59:71:a4:58:0c:79:49:68:56: 56:2b:0d:53:bf:5f:49:ea:dc:1a:93:d8:8b:38:b9:9d:a6:5e: f8:89:40:7b:85:7e:30:15:a5:8b:15:a1:0f:80:d9:43:c8:be: 0e:07:bc:f4:21:23:28:71:45:f7:af:6e:7d:4c:60:ae:7a:1a: 58:ba:16:17:4f:24:bb:6e:06:33:bd:e8:64:86:0e:6b:f5:2b: db:57:d5:4c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNzE1MTcxNjA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk1NTk1NS1mNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMyqYw+3tnk7CPu7N/PXqymLShLg5BzuxCsIY3g49O0t9dN5kvHpy9zOTYvG pYmZpoka0YJc4cLazW9sIF6e2RmthA+X+kFKWhHRt0z/M1uPd79EFF7ehx0j8+YO 9c/OHhlSwD3B3WS6UEx5j8Ef+rO8XMMNppXFyMcUR5SR4nU2V6S9XFnIitpJxs20 9JsRDZHl/Itu0vGNg1UHXUY34NtaF8Qt7Ts0slSLGDEY9hwp9B0YQ246IfSB3sB3 5zt0fqaui7V8PJArHGkXMx7yRk4kzsZqcqcMnuuJErAlYQKCzCiLLwpPo3khdccv //fSYomuYGTxlD9QwQCbO7P6eQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGUOlCWs 7jhyazoGtQLA32bZfrcGMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUFERjFEMDg0 MkNEMTFFRkI4MENEMjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA/YADBwAkBghA/pswDQYJKoZIhvcNAQELBQADggEB AB/QPCs2Et+ss0oybIXX0ovhKHck10CxB1Yy8aLOrT2BYp8FztlZp/ykNLivqa4N fgDDa+B/wAPOGNcF3YFItnV6V0vI9Sn/cL+E+q9CKzseCYlwU3XQGwU6fOfabdI7 tTrqKkGLGcnXCn1oJ80VaVXV32t5RfhqbmSUURcMqtyZOiUeFutNDX50Go9H24Kl v8xOEtJqAJzCf3Cq8ZrhzNvNDjI7rwwBDvMpOFlxpFgMeUloVlYrDVO/X0nq3BqT 2Is4uZ2mXviJQHuFfjAVpYsVoQ+A2UPIvg4HvPQhIyhxRfevbn1MYK56Gli6FhdP JLtuBjO96GSGDmv1K9tX1Uw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org