$ rpki-client -vvf rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa File: A20C3500BE6811EEBFF35870C4F9AE02.roa (raw, json) Hash identifier: laqsXeG3YC/lKCDsMHu9SOxrN+lBRg4p7rBHyVUYhrw= Subject key identifier: AA:3D:AB:C5:E8:4E:77:8D:46:33:89:9D:DD:EF:07:23:D2:02:46:5E Certificate issuer: /CN=A913C07A/serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Certificate serial: 07 Authority key identifier: 30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa Signing time: Mon 29 Jan 2024 09:43:48 +0000 ROA not before: Mon 29 Jan 2024 09:43:48 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152447 IP address blocks: 2401:7ae0::/32 maxlen: 32 2401:7ae0::/36 maxlen: 36 2401:7ae0:4000::/36 maxlen: 36 2401:7ae0:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C07A/serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Validity Not Before: Jan 29 09:43:48 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65b77354-e0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:d7:6e:18:f0:c2:11:b1:09:57:be:eb:59: c9:7a:ca:d0:7c:20:7e:d2:1d:ad:3d:2a:0a:2b:75: af:73:4d:08:58:fd:6a:66:82:9a:35:b9:01:8f:f2: b9:ef:03:af:f5:c4:0d:eb:37:21:a0:af:61:88:04: 8c:7a:af:7c:09:db:26:75:4f:cd:ae:99:37:1b:e4: 23:28:06:23:e2:ef:48:3e:42:9a:99:b9:fa:05:1f: 54:7c:2a:c4:80:8d:8f:84:c9:c4:2d:c7:6d:59:64: 7c:90:2f:b0:5c:9c:18:e9:53:ae:a9:92:c5:14:c3: 74:e4:b7:f2:7c:71:eb:be:a9:8e:31:37:e1:d3:a4: 74:bf:d0:33:66:4c:bb:52:b4:84:e0:33:cf:78:81: 19:01:09:09:d6:d3:b6:2d:34:46:34:a9:3f:5a:20: 90:a6:3a:ed:f2:79:fe:11:32:fd:ab:ff:25:71:4c: 9d:6b:50:f4:70:79:a7:06:0b:58:f3:54:59:75:a8: b3:82:5a:1a:48:12:04:57:8e:62:d0:7b:50:19:79: 9e:3d:1e:3a:44:14:f5:3d:b9:ab:78:23:3d:54:a6: bf:ac:60:c7:c5:1c:93:85:1e:5b:47:6c:d1:c5:c6: b3:e4:38:1e:5c:36:9d:32:56:24:90:3f:77:30:ec: f0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3D:AB:C5:E8:4E:77:8D:46:33:89:9D:DD:EF:07:23:D2:02:46:5E X509v3 Authority Key Identifier: keyid:30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/A20C3500BE6811EEBFF35870C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:7ae0::/32 Signature Algorithm: sha256WithRSAEncryption 81:4d:e4:a7:78:d1:15:53:05:30:ea:d9:ce:ac:20:2c:16:9b: 18:bf:db:32:36:58:0d:34:22:b7:65:8b:69:2d:91:ef:90:9b: 35:65:77:ee:ee:f6:6e:9c:7f:39:c1:d6:9e:aa:bf:a4:b8:cb: 7d:05:e3:07:33:57:b4:89:09:76:2e:ae:7e:31:47:fe:07:49: 6f:7b:35:1b:ef:70:a8:99:81:05:f0:77:b2:cc:0d:cd:b1:b3: 0b:34:5b:bc:09:29:d1:43:11:5d:49:10:60:bc:52:f7:7a:bd: 02:c0:49:c6:5a:b5:c6:d1:34:9f:73:27:e9:64:9a:cc:9b:0f: 22:93:bc:f2:c1:47:60:f5:08:bc:18:2a:7b:3a:66:67:46:7e: e5:9b:67:8f:b6:c4:19:0a:26:3f:82:74:98:14:3c:e3:bf:f2: 4b:56:64:5b:e3:55:84:6b:ca:74:81:e4:20:97:86:04:5f:5e: 47:32:65:c4:cb:2c:3e:75:ed:0e:92:f6:68:92:a8:d1:4b:4a: 22:40:2c:ff:14:28:76:67:cb:92:b9:ef:64:42:bf:13:7b:73: 78:16:6f:ff:ab:e2:9d:ee:59:11:60:67:a7:99:4c:c2:27:4c: c2:35:cd:63:66:43:bb:6a:76:4c:11:0c:95:df:6b:61:cd:a7: 11:90:fd:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QzA3QTExMC8GA1UEBRMoMzBGMERCODJENThGNTgzRTg0ODgzNzlCQTAwRDM1QUNC MzUyNjExMDAeFw0yNDAxMjkwOTQzNDhaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Yjc3MzU0LWUwZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJa9duGPDCEbEJV77rWcl6ytB8IH7SHa09Kgorda9zTQhY/Wpmgpo1uQGP8rnv A6/1xA3rNyGgr2GIBIx6r3wJ2yZ1T82umTcb5CMoBiPi70g+QpqZufoFH1R8KsSA jY+EycQtx21ZZHyQL7BcnBjpU66pksUUw3Tkt/J8ceu+qY4xN+HTpHS/0DNmTLtS tITgM894gRkBCQnW07YtNEY0qT9aIJCmOu3yef4RMv2r/yVxTJ1rUPRweacGC1jz VFl1qLOCWhpIEgRXjmLQe1AZeZ49HjpEFPU9uat4Iz1Upr+sYMfFHJOFHltHbNHF xrPkOB5cNp0yViSQP3cw7PBJAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUqj2rxehO d41GM4md3e8HI9ICRl4wHwYDVR0jBBgwFoAUMPDbgtWPWD6EiDeboA01rLNSYRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDMDdBL0ZCMTgyOTk4QkU2 NzExRUVCMzNDNkQ2RUM0RjlBRTAyL01QRGJndFdQV0Q2RWlEZWJvQTAxckxOU1lS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVBEYmd0V1BXRDZFaURlYm9BMDFyTE5TWVJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzA3QS9GQjE4Mjk5OEJFNjcxMUVFQjMzQzZENkVDNEY5QUUwMi9BMjBDMzUwMEJF NjgxMUVFQkZGMzU4NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBeuAwDQYJKoZIhvcNAQELBQADggEBAIFN5Kd40RVTBTDq 2c6sICwWmxi/2zI2WA00Irdli2ktke+QmzVld+7u9m6cfznB1p6qv6S4y30F4wcz V7SJCXYurn4xR/4HSW97NRvvcKiZgQXwd7LMDc2xsws0W7wJKdFDEV1JEGC8Uvd6 vQLAScZatcbRNJ9zJ+lkmsybDyKTvPLBR2D1CLwYKns6ZmdGfuWbZ4+2xBkKJj+C dJgUPOO/8ktWZFvjVYRrynSB5CCXhgRfXkcyZcTLLD517Q6S9miSqNFLSiJALP8U KHZny5K572RCvxN7c3gWb/+r4p3uWRFgZ6eZTMInTMI1zWNmQ7tqdkwRDJXfa2HN pxGQ/dU= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:11 2024 by rpki-client on console-ams.rpki-client.org