$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/ECD4245CBEFC11EC82FBEC0AC4F9AE02.roa File: ECD4245CBEFC11EC82FBEC0AC4F9AE02.roa (raw, json) Hash identifier: MYrnFo6t/FxH6zsWcm5V+YhuhzPmAqtoDUN5XRuDIow= Subject key identifier: 0C:9D:75:22:15:9E:B2:FE:D5:49:46:20:37:44:4D:C8:E9:B2:3E:D3 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A67 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/ECD4245CBEFC11EC82FBEC0AC4F9AE02.roa Signing time: Sun 14 May 2023 22:15:03 +0000 ROA not before: Sun 14 May 2023 22:15:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 16509 IP address blocks: 2406:840:e666::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2663 (0xa67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:03 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d66-5e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:57:14:03:f8:d9:cb:25:40:c0:78:4a:a6:8a: 6d:c6:1f:50:d3:74:59:ba:07:ff:f7:74:1d:fa:27: 7c:1f:e1:17:05:cd:ac:55:9b:9f:61:07:65:b7:f7: 60:6c:cf:67:57:60:ef:e7:9c:a5:2f:ca:08:14:8e: 16:ea:01:a7:ee:8e:da:ff:fe:03:6f:90:27:07:d9: fd:12:84:d9:81:41:b0:4c:e1:00:b3:59:f1:29:86: ce:78:68:33:b7:71:ee:73:2f:df:29:1e:e0:23:7d: 4c:74:52:0d:91:45:ff:ba:5a:5f:18:8b:43:9b:90: fb:ff:68:4d:0b:71:aa:5d:76:53:1f:3d:b4:34:d5: 95:08:58:46:ff:91:80:61:53:c4:77:67:17:24:20: 08:b1:ef:ef:c6:5d:1f:8e:57:ee:0d:13:31:16:89: bd:30:90:0b:18:93:31:3e:0d:42:47:ea:8c:81:93: cd:e5:9f:2f:46:53:38:59:10:08:9a:bc:69:2d:d4: 5f:7d:6d:67:07:32:20:17:23:20:b3:b7:a0:61:99: 4d:32:af:c7:57:82:df:90:2b:5f:55:f5:af:31:ae: d1:e0:70:7c:3e:ca:52:49:be:45:71:cb:ed:81:d5: 73:dc:d7:fa:59:50:50:24:0f:e5:87:3a:c0:ba:01: 75:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9D:75:22:15:9E:B2:FE:D5:49:46:20:37:44:4D:C8:E9:B2:3E:D3 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/ECD4245CBEFC11EC82FBEC0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e666::/47 Signature Algorithm: sha256WithRSAEncryption 57:27:04:da:fa:00:a3:02:2d:b3:e5:c4:33:5b:5a:14:a9:35: 56:3f:ef:6b:6e:3c:27:dc:a8:8c:b4:4b:b7:01:7b:92:69:7d: c2:c9:83:39:8e:28:a3:53:72:be:b2:fd:6b:89:b2:3d:02:1d: 88:49:8d:73:10:55:09:a8:d5:a3:23:61:38:91:cb:16:b4:7d: 38:dd:a4:ef:a1:d1:33:d4:1a:d4:c9:42:38:04:ed:90:46:97: a1:ed:c6:0d:d9:1c:fd:41:c7:1f:79:3d:40:6c:f1:fe:f7:06: 88:f5:99:4d:2d:5f:d5:32:f5:51:35:64:60:35:f9:ff:bb:06: e4:67:72:d7:33:50:fd:c4:cf:c5:dd:8d:5a:ef:83:fa:e7:4a: 0f:f2:ef:46:fd:11:02:6e:97:b0:53:3d:00:88:54:76:f9:23: 2c:f6:40:d8:be:ef:de:e1:75:c4:23:7f:51:b9:90:d5:6d:2d: 90:03:ce:97:82:8f:6d:79:d0:13:8d:ed:26:e4:ef:a7:6c:6a: 99:d5:ee:8e:cb:0b:3a:d7:cb:dd:7c:61:19:69:98:43:a7:c6: c1:1a:c8:7b:96:19:aa:f8:ee:c3:b4:24:a7:d4:b9:6b:9b:23: 32:8f:79:7f:fa:c8:d0:9c:7f:b4:41:01:e0:51:57:9b:5c:7a: ec:b3:36:17 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ2Ni01ZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1cUA/jZyyVAwHhKpoptxh9Q03RZugf/93Qd+id8H+EXBc2sVZufYQdlt/dg bM9nV2Dv55ylL8oIFI4W6gGn7o7a//4Db5AnB9n9EoTZgUGwTOEAs1nxKYbOeGgz t3Hucy/fKR7gI31MdFINkUX/ulpfGItDm5D7/2hNC3GqXXZTHz20NNWVCFhG/5GA YVPEd2cXJCAIse/vxl0fjlfuDRMxFom9MJALGJMxPg1CR+qMgZPN5Z8vRlM4WRAI mrxpLdRffW1nBzIgFyMgs7egYZlNMq/HV4LfkCtfVfWvMa7R4HB8PspSSb5Fccvt gdVz3Nf6WVBQJA/lhzrAugF1kQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAyddSIV nrL+1UlGIDdETcjpsj7TMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRUNENDI0NUNC RUZDMTFFQzgyRkJFQzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBghA5mYwDQYJKoZIhvcNAQELBQADggEBAFcnBNr6AKMC LbPlxDNbWhSpNVY/72tuPCfcqIy0S7cBe5JpfcLJgzmOKKNTcr6y/WuJsj0CHYhJ jXMQVQmo1aMjYTiRyxa0fTjdpO+h0TPUGtTJQjgE7ZBGl6Htxg3ZHP1Bxx95PUBs 8f73Boj1mU0tX9Uy9VE1ZGA1+f+7BuRnctczUP3Ez8XdjVrvg/rnSg/y70b9EQJu l7BTPQCIVHb5Iyz2QNi+797hdcQjf1G5kNVtLZADzpeCj2150BON7Sbk76dsapnV 7o7LCzrXy918YRlpmEOnxsEayHuWGar47sO0JKfUuWubIzKPeX/6yNCcf7RBAeBR V5tceuyzNhc= -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:02 2024 by rpki-client on console-fra.rpki-client.org