$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa File: F41FC59A743511EFAAFA697CC4F9AE02.roa (raw, json) Hash identifier: CzUhgu5RwOnhzhtNpeQykXosx4dYGyrIt8++oLA6kMQ= Subject key identifier: 7B:AD:DC:49:C1:1E:94:D3:5A:99:A8:A7:4C:B4:40:5A:19:EA:55:3A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0D7F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa Signing time: Mon 16 Sep 2024 14:14:15 +0000 ROA not before: Mon 16 Sep 2024 14:14:15 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142433 IP address blocks: 2406:840:feaa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3455 (0xd7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Sep 16 14:14:15 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66e83d37-e368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:44:8f:f6:45:b9:7c:04:2f:5e:0f:33:7c:12: 9d:35:08:32:59:41:02:02:58:66:fb:2f:3b:e9:2d: 3b:8c:bb:14:43:4f:67:aa:88:13:d5:4a:22:c0:85: e8:cc:d0:6e:92:e4:26:b3:28:a6:b1:d0:77:08:b4: b9:27:f6:88:e6:12:29:f8:09:2e:49:16:65:a7:39: 86:3e:83:96:10:e5:37:48:5d:b1:23:54:44:b5:2b: 4f:56:cb:f6:18:2d:df:62:e7:91:d9:b5:dd:65:46: 59:ff:d3:35:91:a2:ad:9b:2b:9d:aa:18:23:68:80: af:cd:e6:50:64:07:c6:35:bf:1e:1d:48:a9:88:df: 9f:21:4b:f5:e3:0c:c9:99:11:1f:1e:7e:05:b0:9c: f7:d9:ea:82:15:72:3b:67:60:03:98:0b:b6:86:d1: 96:4c:38:8d:0f:62:a4:c2:c4:4e:9a:c0:01:eb:04: 05:3c:e7:df:92:82:a3:93:5f:6c:bc:36:49:d0:70: d0:a9:79:ee:b4:aa:74:94:99:71:dd:a1:fc:9d:19: 95:f6:46:0c:64:e9:f7:a5:77:db:a9:a3:5d:7e:01: 0c:05:3d:ae:8e:56:1f:fd:39:df:b5:ea:06:24:d5: ca:b7:0a:97:af:ef:fc:97:cf:ed:69:7a:e6:8a:7e: b5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AD:DC:49:C1:1E:94:D3:5A:99:A8:A7:4C:B4:40:5A:19:EA:55:3A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/F41FC59A743511EFAAFA697CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:feaa::/48 Signature Algorithm: sha256WithRSAEncryption 38:78:65:af:69:be:a9:88:03:9f:8c:42:b5:2d:03:cd:26:f7: c8:20:74:75:74:cb:86:31:26:32:7f:98:9e:59:e4:6d:9d:ab: 53:aa:6c:d5:0a:50:c0:96:ba:06:da:43:73:b1:be:09:76:4b: b6:53:eb:38:46:36:8e:f6:f0:5b:9f:01:a4:85:c6:d0:79:4c: 25:29:be:7f:b6:e1:66:6d:2c:a7:97:16:cf:6d:4d:1e:f6:32: e2:89:83:f7:98:73:f1:f5:43:de:45:5c:35:2a:d7:09:44:9f: a4:77:a8:37:8e:3c:dc:08:22:68:2f:12:be:44:cd:b7:be:6f: 4d:84:e4:5f:f4:45:1e:27:8f:8a:db:0a:b2:29:ea:cf:7c:83: 74:e0:42:7a:82:32:e0:46:78:45:38:e4:d2:2c:ce:2a:a7:8e: 80:54:20:0f:01:5d:48:15:ab:4a:a3:ea:21:3c:cf:50:62:07: dc:10:b1:62:c9:f1:8a:27:e5:97:78:a4:41:4c:2c:96:6b:f7: f8:a8:e9:af:9a:e4:ec:ca:56:95:50:07:9c:7e:6a:4e:56:b0: 74:3b:cd:75:13:e9:ef:cc:b2:38:3e:b3:81:1a:30:8b:77:9b: e1:c1:ff:cc:c6:a4:f0:7c:13:44:43:01:7d:b2:2f:5b:ee:de: 43:b6:ed:3c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwOTE2MTQxNDE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4M2QzNy1lMzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0SP9kW5fAQvXg8zfBKdNQgyWUECAlhm+y876S07jLsUQ09nqogT1UoiwIXo zNBukuQmsyimsdB3CLS5J/aI5hIp+AkuSRZlpzmGPoOWEOU3SF2xI1REtStPVsv2 GC3fYueR2bXdZUZZ/9M1kaKtmyudqhgjaICvzeZQZAfGNb8eHUipiN+fIUv14wzJ mREfHn4FsJz32eqCFXI7Z2ADmAu2htGWTDiND2KkwsROmsAB6wQFPOffkoKjk19s vDZJ0HDQqXnutKp0lJlx3aH8nRmV9kYMZOn3pXfbqaNdfgEMBT2ujlYf/TnfteoG JNXKtwqXr+/8l8/taXrmin61iwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHut3EnB HpTTWpmop0y0QFoZ6lU6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRjQxRkM1OUE3 NDM1MTFFRkFBRkE2OTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/qowDQYJKoZIhvcNAQELBQADggEBADh4Za9pvqmI A5+MQrUtA80m98ggdHV0y4YxJjJ/mJ5Z5G2dq1OqbNUKUMCWugbaQ3Oxvgl2S7ZT 6zhGNo728FufAaSFxtB5TCUpvn+24WZtLKeXFs9tTR72MuKJg/eYc/H1Q95FXDUq 1wlEn6R3qDeOPNwIImgvEr5Ezbe+b02E5F/0RR4nj4rbCrIp6s98g3TgQnqCMuBG eEU45NIsziqnjoBUIA8BXUgVq0qj6iE8z1BiB9wQsWLJ8Yon5Zd4pEFMLJZr9/io 6a+a5OzKVpVQB5x+ak5WsHQ7zXUT6e/Msjg+s4EaMIt3m+HB/8zGpPB8E0RDAX2y L1vu3kO27Tw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:57:52 2024 by rpki-client on console-fra.rpki-client.org