$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa File: EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa (raw, json) Hash identifier: a7vqwjOQkuoxLUfvRk0buDsAMWJ9yIvWEb6jjbh+iPc= Subject key identifier: 48:21:9E:B0:67:5B:40:BB:77:9A:5E:60:68:A3:70:14:00:F4:99:53 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A5D Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:51 +0000 ROA not before: Sun 14 May 2023 22:14:51 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149475 IP address blocks: 2406:840:e666::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:51 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d5a-a29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e8:68:64:89:cf:47:19:4b:e1:4d:ab:df:c7: ec:ef:32:69:df:bc:82:ef:67:4f:f9:e3:96:5f:63: 43:33:61:80:a7:23:e8:97:1a:59:f1:b7:f5:dc:f5: 1a:76:c6:b6:66:e7:e5:72:cd:c3:1d:cf:37:81:ef: 3c:88:f2:90:61:0b:35:4b:18:da:95:cf:7c:fb:e8: 48:8a:f5:60:10:0a:bb:29:59:80:cd:7d:30:00:3c: 98:e1:29:29:e2:c7:ba:28:4d:0c:f9:82:3c:ef:c2: cd:55:02:21:6b:e0:78:8b:c9:02:1a:73:9c:48:6c: 99:b9:55:78:73:9b:8f:5e:c8:c9:69:e8:fa:85:ee: e6:c4:b4:34:51:86:20:7b:b5:78:a3:e7:d5:47:cb: 96:a2:fb:f2:d9:20:22:77:99:fc:2f:3c:82:73:30: cb:81:da:a8:12:4d:38:45:a6:da:fc:53:e4:e3:ac: 36:7a:17:85:cf:9d:d5:e7:6e:e8:28:70:31:16:f7: e4:da:fe:b8:d5:90:63:ae:ad:35:2c:b2:4d:a2:26: 29:61:b7:42:74:f0:c4:c5:51:1a:6e:4c:f3:10:5c: cb:90:79:ff:30:d3:a2:1c:f8:76:98:ae:69:aa:2f: 14:bb:e7:64:b8:81:3f:86:e3:72:b1:54:75:b0:fe: 22:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:21:9E:B0:67:5B:40:BB:77:9A:5E:60:68:A3:70:14:00:F4:99:53 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/EC31F29ABEFC11EC82FBEC0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e666::/47 Signature Algorithm: sha256WithRSAEncryption 77:a1:ec:7a:38:cb:43:83:2c:86:94:cd:7a:b0:8d:bd:0e:e6: 29:d2:1b:09:bd:e8:f4:af:07:d8:91:05:e4:fb:49:64:09:e5: 38:51:79:1a:ac:92:fb:e6:d9:eb:25:c5:fe:62:86:ab:65:c7: a0:a2:1c:c6:05:e5:10:38:8f:ab:49:84:43:60:9e:e3:f3:41: 08:8e:1a:07:74:9d:68:64:90:51:27:4c:0f:84:ab:59:5f:83: 81:57:c0:5e:a8:47:d0:05:e6:d4:98:19:71:e4:d2:28:e4:65: 89:b4:b2:04:ae:9e:2e:3d:ca:1e:ae:a7:a6:23:e6:69:05:0a: 31:0e:84:d0:a6:7c:99:81:73:f8:e6:88:54:4a:1a:a1:95:7d: 9a:cd:5f:3b:76:da:d1:f9:3e:25:c8:a2:6d:89:a3:d0:98:f4: ab:e5:23:76:fe:8d:34:4d:0e:ec:25:87:76:8a:b4:d2:e8:3d: db:cf:b5:a2:5d:dc:d0:61:74:c6:ce:bb:f4:35:41:33:82:ba: 93:24:50:1b:67:0a:b7:e6:71:15:d3:e1:92:6b:78:89:ab:35: 1c:7d:75:5d:3c:a0:e5:63:b2:e0:71:27:76:57:ec:b5:c2:94: 0f:4a:9f:21:75:72:e7:fe:6a:d0:ae:6b:71:12:da:e3:4b:8d: 51:de:2b:b3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDUxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ1YS1hMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOhoZInPRxlL4U2r38fs7zJp37yC72dP+eOWX2NDM2GApyPolxpZ8bf13PUa dsa2Zuflcs3DHc83ge88iPKQYQs1Sxjalc98++hIivVgEAq7KVmAzX0wADyY4Skp 4se6KE0M+YI878LNVQIha+B4i8kCGnOcSGyZuVV4c5uPXsjJaej6he7mxLQ0UYYg e7V4o+fVR8uWovvy2SAid5n8LzyCczDLgdqoEk04Raba/FPk46w2eheFz53V527o KHAxFvfk2v641ZBjrq01LLJNoiYpYbdCdPDExVEabkzzEFzLkHn/MNOiHPh2mK5p qi8Uu+dkuIE/huNysVR1sP4iMQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEghnrBn W0C7d5peYGijcBQA9JlTMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUMzMUYyOUFC RUZDMTFFQzgyRkJFQzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBghA5mYwDQYJKoZIhvcNAQELBQADggEBAHeh7Ho4y0OD LIaUzXqwjb0O5inSGwm96PSvB9iRBeT7SWQJ5ThReRqskvvm2eslxf5ihqtlx6Ci HMYF5RA4j6tJhENgnuPzQQiOGgd0nWhkkFEnTA+Eq1lfg4FXwF6oR9AF5tSYGXHk 0ijkZYm0sgSuni49yh6up6Yj5mkFCjEOhNCmfJmBc/jmiFRKGqGVfZrNXzt22tH5 PiXIom2Jo9CY9KvlI3b+jTRNDuwlh3aKtNLoPdvPtaJd3NBhdMbOu/Q1QTOCupMk UBtnCrfmcRXT4ZJreImrNRx9dV08oOVjsuBxJ3ZX7LXClA9KnyF1cuf+atCua3ES 2uNLjVHeK7M= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:03 2024 by rpki-client on console-fra.rpki-client.org