$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa File: EB6D8A161F4B11EFB166F834C4F9AE02.roa (raw, json) Hash identifier: H96rW7Go69rwt8DK9fzTIgHtEzkmkE7+F7tsAxVH6hQ= Subject key identifier: 56:66:4F:82:46:89:C7:2D:BC:42:64:03:61:98:44:DB:0F:59:B8:7C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0CC2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa Signing time: Fri 31 May 2024 12:47:21 +0000 ROA not before: Fri 31 May 2024 12:47:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152892 IP address blocks: 2406:840:e330::/44 maxlen: 48 2406:840:fe9d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 31 12:47:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6659c6d8-9530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:fb:b5:e1:f7:0d:da:d6:50:1d:b1:a7:18: fe:c0:1f:71:6f:7e:68:92:c8:82:3d:4f:4a:38:7c: ff:bc:9b:0e:e3:6e:3c:f7:a3:b5:e7:3a:a3:33:3e: 26:0e:0c:dd:bf:63:a5:7f:a7:73:13:41:97:12:34: f5:f7:b9:8e:35:5b:f8:78:f5:01:29:11:d3:c8:61: 29:8a:6a:cc:a3:ef:e8:b2:d1:66:57:6f:c9:0c:b9: 02:f5:24:b7:88:bf:25:c5:00:ae:2a:65:5d:2b:1c: c8:b5:7b:b1:00:65:69:19:01:bf:e2:a5:aa:50:76: 3c:54:37:bf:32:a7:84:b6:f7:d2:ad:69:ef:cc:0c: 43:87:51:b6:c5:36:4b:71:a6:3a:ba:56:c9:2d:c2: 5a:cf:d7:16:9a:7b:ac:b9:23:0c:dc:4c:6b:d6:0a: 53:8a:be:47:9f:f8:6b:95:2f:57:44:97:53:98:92: c7:b9:bd:d3:d2:54:bf:46:54:aa:2e:9b:25:d2:e4: b4:06:09:6c:ce:ac:3a:38:55:cf:ae:e6:5d:2c:17: 16:5e:dc:c2:04:1c:34:7b:2b:17:b5:91:b8:6c:4d: 79:33:c5:64:37:e6:1b:65:d2:b0:d8:ea:94:80:01: b0:cf:9f:4a:44:ef:7a:f8:d4:91:31:c2:50:e2:b9: 23:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:66:4F:82:46:89:C7:2D:BC:42:64:03:61:98:44:DB:0F:59:B8:7C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EB6D8A161F4B11EFB166F834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e330::/44 2406:840:fe9d::/48 Signature Algorithm: sha256WithRSAEncryption 6e:b5:df:51:a7:bc:09:56:ab:1b:7d:c1:7c:f8:62:38:df:a5: 31:ec:ab:56:af:90:9e:a5:8c:d4:d4:87:e7:6e:df:9f:b8:5e: 76:53:8e:cc:d5:54:26:73:f1:51:3b:5f:1c:dd:d7:c3:33:a9: e7:a0:29:4d:0d:19:46:f3:e2:a7:0b:ab:e1:51:44:57:1d:e1: bd:1d:c3:ee:cd:18:f1:16:3f:74:61:85:9c:de:cf:e5:e8:88: 41:f8:ec:60:70:f9:19:4a:f9:ff:3d:eb:ec:55:a6:d2:3b:4c: da:d3:1a:c9:cb:dd:ca:fc:3f:d3:92:28:28:05:8d:d1:e0:90: 47:71:89:be:da:6a:60:94:fc:89:ce:31:90:58:c0:4b:24:b7: 6b:0f:43:e7:57:dd:8a:03:c4:f2:bb:b7:2f:93:1b:bd:63:a0: 3c:3b:71:cc:4e:50:12:68:c0:a0:c6:ed:f4:e8:3d:59:c4:10: ce:ab:97:a4:ac:76:92:dc:74:7e:ea:dc:58:25:86:1f:1c:44: 5a:a9:11:8a:a2:8b:b5:89:34:43:70:c7:f3:ae:ff:a4:4d:58: 0b:f0:49:2b:16:42:96:7b:71:d6:ca:ee:5c:81:59:dc:b6:f1: fe:93:2a:79:d8:38:02:8b:2e:22:0f:2d:8e:0b:82:23:5f:f6: 13:b2:00:f2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTMxMTI0NzIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5YzZkOC05NTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZD7teH3DdrWUB2xpxj+wB9xb35oksiCPU9KOHz/vJsO424896O15zqjMz4m Dgzdv2Olf6dzE0GXEjT197mONVv4ePUBKRHTyGEpimrMo+/ostFmV2/JDLkC9SS3 iL8lxQCuKmVdKxzItXuxAGVpGQG/4qWqUHY8VDe/MqeEtvfSrWnvzAxDh1G2xTZL caY6ulbJLcJaz9cWmnusuSMM3Exr1gpTir5Hn/hrlS9XRJdTmJLHub3T0lS/RlSq Lpsl0uS0Bglszqw6OFXPruZdLBcWXtzCBBw0eysXtZG4bE15M8VkN+YbZdKw2OqU gAGwz59KRO96+NSRMcJQ4rkj0wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFZmT4JG icctvEJkA2GYRNsPWbh8MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUI2RDhBMTYx RjRCMTFFRkIxNjZGODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4zADBwAkBghA/p0wDQYJKoZIhvcNAQELBQADggEB AG6131GnvAlWqxt9wXz4YjjfpTHsq1avkJ6ljNTUh+du35+4XnZTjszVVCZz8VE7 Xxzd18MzqeegKU0NGUbz4qcLq+FRRFcd4b0dw+7NGPEWP3RhhZzez+XoiEH47GBw +RlK+f896+xVptI7TNrTGsnL3cr8P9OSKCgFjdHgkEdxib7aamCU/InOMZBYwEsk t2sPQ+dX3YoDxPK7ty+TG71joDw7ccxOUBJowKDG7fToPVnEEM6rl6SsdpLcdH7q 3Fglhh8cRFqpEYqii7WJNENwx/Ou/6RNWAvwSSsWQpZ7cdbK7lyBWdy28f6TKnnY OAKLLiIPLY4LgiNf9hOyAPI= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org