$ rpki-client -vvf rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/DECE6146741911EEA071082BC4F9AE02.roa File: DECE6146741911EEA071082BC4F9AE02.roa (raw, json) Hash identifier: 9Ni7/ZWlZkeDJupidXjdWe/Kl5z0gq9CHfKZ7IaRMv8= Subject key identifier: 1A:6C:B2:B7:30:77:F8:9F:8E:C0:87:90:FE:18:0B:CF:5D:7C:95:D3 Certificate issuer: /CN=A9113C02/serialNumber=28C56771EE49643FDFC44F8E3089A6BD795FFC84 Certificate serial: AD Authority key identifier: 28:C5:67:71:EE:49:64:3F:DF:C4:4F:8E:30:89:A6:BD:79:5F:FC:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMVnce5JZD_fxE-OMImmvXlf_IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/DECE6146741911EEA071082BC4F9AE02.roa Signing time: Tue 30 Apr 2024 16:54:46 +0000 ROA not before: Tue 30 Apr 2024 16:54:46 +0000 ROA not after: Thu 29 Aug 2024 00:00:00 +0000 asID: 133605 IP address blocks: 2401:2cc0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/KMVnce5JZD_fxE-OMImmvXlf_IQ.crl rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/KMVnce5JZD_fxE-OMImmvXlf_IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMVnce5JZD_fxE-OMImmvXlf_IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 17:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113C02/serialNumber=28C56771EE49643FDFC44F8E3089A6BD795FFC84 Validity Not Before: Apr 30 16:54:46 2024 GMT Not After : Aug 29 00:00:00 2024 GMT Subject: CN=66312255-0c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:65:cc:be:94:07:a5:29:88:8b:4c:73:dc:93: 7f:45:c3:8d:93:9e:b3:73:36:0d:5b:cf:c2:17:67: c8:ad:5a:7b:1c:8e:3d:4a:38:af:41:38:bf:ce:e2: 8f:18:c6:07:30:7d:92:23:44:3f:cb:e8:d3:41:ff: 10:26:4a:d8:2d:48:12:b5:2a:30:7d:ff:88:d8:bc: 72:c6:1e:99:2a:d5:bd:04:2e:1f:40:94:84:3a:5e: 0e:a0:63:3a:39:0a:42:c9:4c:61:27:f5:2a:08:7a: 1c:19:12:d2:fd:99:5b:6b:c1:d7:b9:0e:4e:df:3e: 42:bc:9f:42:52:8a:ad:f5:17:31:21:9e:44:07:eb: dd:31:71:54:d0:03:4f:19:5e:8a:4e:bf:08:df:26: 8f:87:db:d4:d6:67:e1:06:c0:40:e0:f8:1e:dc:64: 70:e6:84:4a:fa:1b:7b:b0:54:d8:d5:d3:37:88:24: 99:88:9a:62:0e:6f:04:34:52:84:82:c1:5f:3b:fd: 0a:61:24:9a:62:d8:1b:35:7f:94:69:15:3c:ab:2e: b7:30:ec:f5:b8:92:47:9c:9a:eb:31:09:28:ef:b2: fe:2f:9d:30:d2:57:52:ce:de:6b:f1:25:37:c5:f9: 0d:ed:4c:b9:77:81:4b:04:b3:49:a4:7e:20:d1:6b: ee:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6C:B2:B7:30:77:F8:9F:8E:C0:87:90:FE:18:0B:CF:5D:7C:95:D3 X509v3 Authority Key Identifier: keyid:28:C5:67:71:EE:49:64:3F:DF:C4:4F:8E:30:89:A6:BD:79:5F:FC:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/KMVnce5JZD_fxE-OMImmvXlf_IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMVnce5JZD_fxE-OMImmvXlf_IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113C02/4C406FB6405611E7AF041A35C4F9AE02/DECE6146741911EEA071082BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 6f:09:b3:46:80:cb:bd:14:9c:5f:a7:93:9e:e5:43:48:89:6e: 2c:b0:3a:15:65:32:32:68:07:7b:70:20:a2:ea:58:39:1c:2c: 51:b4:ac:6b:72:5b:fb:c3:37:13:29:52:ef:f3:8f:87:cb:13: ee:63:ce:7d:b0:d1:d2:0f:c6:82:86:bb:65:84:4f:8a:4a:fd: 51:62:ce:2d:91:ac:97:86:38:7e:43:9a:fd:cc:a8:ff:c4:a2: b4:49:5e:71:7f:63:82:5a:23:c1:07:c7:d9:3b:4d:a2:6b:20: 06:78:c9:b3:26:59:d7:c5:64:3b:68:d9:40:9f:70:94:60:fa: f9:df:67:48:52:b5:be:00:ec:78:bc:d0:59:03:8e:e6:5c:cc: d9:39:4e:5d:67:06:ec:b9:f4:6f:3a:64:be:0e:a8:37:35:2c: 7d:3f:62:73:34:06:d4:94:02:ec:c3:d8:bf:3f:40:6a:d3:52: 6b:74:59:d9:11:c3:9e:5f:94:0c:f3:65:ec:fd:e4:f4:99:e1: 8b:3c:b3:ad:9c:5c:3c:7d:51:2b:47:58:87:a6:23:a7:bc:9f: dc:29:ca:58:a1:6a:02:d8:56:11:06:68:2d:10:a4:88:7d:f8: ab:02:00:3b:89:d6:63:23:5c:06:21:bb:94:b3:a7:0d:87:b0: 47:f1:dd:fd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNDMDIxMTAvBgNVBAUTKDI4QzU2NzcxRUU0OTY0M0ZERkM0NEY4RTMwODlBNkJE Nzk1RkZDODQwHhcNMjQwNDMwMTY1NDQ2WhcNMjQwODI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMjI1NS0wYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mXMvpQHpSmIi0xz3JN/RcONk56zczYNW8/CF2fIrVp7HI49SjivQTi/zuKP GMYHMH2SI0Q/y+jTQf8QJkrYLUgStSowff+I2Lxyxh6ZKtW9BC4fQJSEOl4OoGM6 OQpCyUxhJ/UqCHocGRLS/Zlba8HXuQ5O3z5CvJ9CUoqt9RcxIZ5EB+vdMXFU0ANP GV6KTr8I3yaPh9vU1mfhBsBA4Pge3GRw5oRK+ht7sFTY1dM3iCSZiJpiDm8ENFKE gsFfO/0KYSSaYtgbNX+UaRU8qy63MOz1uJJHnJrrMQko77L+L50w0ldSzt5r8SU3 xfkN7Uy5d4FLBLNJpH4g0Wvu3wIDAQABo4ICljCCApIwHQYDVR0OBBYEFBpssrcw d/ifjsCHkP4YC89dfJXTMB8GA1UdIwQYMBaAFCjFZ3HuSWQ/38RPjjCJpr15X/yE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0MwMi80QzQwNkZCNjQw NTYxMUU3QUYwNDFBMzVDNEY5QUUwMi9LTVZuY2U1SlpEX2Z4RS1PTUltbXZYbGZf SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNVm5jZTVKWkRfZnhFLU9NSW1tdlhsZl9JUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNDMDIvNEM0MDZGQjY0MDU2MTFFN0FGMDQxQTM1QzRGOUFFMDIvREVDRTYxNDY3 NDE5MTFFRUEwNzEwODJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkASzAMA0GCSqGSIb3DQEBCwUAA4IBAQBvCbNGgMu9FJxf p5Oe5UNIiW4ssDoVZTIyaAd7cCCi6lg5HCxRtKxrclv7wzcTKVLv84+HyxPuY859 sNHSD8aChrtlhE+KSv1RYs4tkayXhjh+Q5r9zKj/xKK0SV5xf2OCWiPBB8fZO02i ayAGeMmzJlnXxWQ7aNlAn3CUYPr532dIUrW+AOx4vNBZA47mXMzZOU5dZwbsufRv OmS+Dqg3NSx9P2JzNAbUlALsw9i/P0Bq01JrdFnZEcOeX5QM82Xs/eT0meGLPLOt nFw8fVErR1iHpiOnvJ/cKcpYoWoC2FYRBmgtEKSIffirAgA7idZjI1wGIbuUs6cN h7BH8d39 -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:42 2024 by rpki-client on console-fra.rpki-client.org