$ rpki-client -vvf rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/749936E290D511EE816E5C34C4F9AE02.roa File: 749936E290D511EE816E5C34C4F9AE02.roa (raw, json) Hash identifier: xE5yMFebyMacHXXPWKwuN37YgarJAIN5jPNzlNhso8g= Subject key identifier: BB:D1:BF:57:29:8A:34:6E:3A:95:55:54:BD:10:4C:0D:1D:9B:A7:16 Certificate issuer: /CN=A9144913/serialNumber=FF5C100975E3686245CADE579C57433BBFDF6819 Certificate serial: 03 Authority key identifier: FF:5C:10:09:75:E3:68:62:45:CA:DE:57:9C:57:43:3B:BF:DF:68:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_1wQCXXjaGJFyt5XnFdDO7_faBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/749936E290D511EE816E5C34C4F9AE02.roa Signing time: Sat 02 Dec 2023 05:41:35 +0000 ROA not before: Sat 02 Dec 2023 05:41:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147057 IP address blocks: 2407:ef40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/_1wQCXXjaGJFyt5XnFdDO7_faBk.crl rsync://rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/_1wQCXXjaGJFyt5XnFdDO7_faBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_1wQCXXjaGJFyt5XnFdDO7_faBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144913/serialNumber=FF5C100975E3686245CADE579C57433BBFDF6819 Validity Not Before: Dec 2 05:41:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656ac38f-ff6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8b:79:56:71:d0:2d:79:ae:40:68:ab:de:f8: 93:c6:40:78:5b:a3:62:7f:65:93:d7:b7:9f:92:18: dd:45:4f:49:b3:87:08:bc:b1:b4:99:55:2b:87:f1: 7e:fd:4b:46:b9:69:f8:b7:d1:39:fb:9a:1b:42:5b: b1:30:59:d2:bd:f2:67:2b:37:bf:ef:50:84:0a:53: 76:b2:c5:ee:9e:d2:22:3a:cd:45:ed:9f:5f:76:ea: 4b:04:9c:cb:84:73:62:bd:a4:64:ff:4a:00:9a:b9: 43:12:05:1f:aa:9d:6f:a7:1e:cc:e0:0c:1f:7d:28: 42:dc:8b:b9:87:0a:35:da:f0:4f:f3:c5:8d:d2:48: 9a:d2:79:3b:73:ff:d3:48:49:fb:92:c3:99:3f:a4: 95:01:dd:74:e7:c1:cd:81:7d:8a:60:40:f3:6d:55: 32:4c:b3:eb:cf:04:e9:f1:f2:2e:8c:8f:ac:a0:c4: 42:b8:f9:be:da:39:25:6f:4c:82:55:f5:4f:02:f8: 2e:68:19:55:8c:73:c4:14:9a:3a:d3:5a:83:a5:2d: 44:be:6d:13:ba:85:f7:46:7b:f8:e8:1c:23:6d:19: c7:0b:6c:7d:d3:42:32:25:29:df:5e:f3:15:18:e6: 12:18:57:58:2e:96:36:a1:c7:df:cb:36:88:97:53: 30:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D1:BF:57:29:8A:34:6E:3A:95:55:54:BD:10:4C:0D:1D:9B:A7:16 X509v3 Authority Key Identifier: keyid:FF:5C:10:09:75:E3:68:62:45:CA:DE:57:9C:57:43:3B:BF:DF:68:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/_1wQCXXjaGJFyt5XnFdDO7_faBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_1wQCXXjaGJFyt5XnFdDO7_faBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144913/06F5B5CA90D511EEBD579833C4F9AE02/749936E290D511EE816E5C34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:ef40::/32 Signature Algorithm: sha256WithRSAEncryption 6a:f3:83:9f:33:83:14:5c:94:a6:0d:b9:bc:b5:75:9d:95:d7: 98:67:24:14:f7:6b:f3:7c:22:c3:76:ab:43:b4:d2:55:4c:07: 18:6f:72:5e:63:40:15:13:54:80:6f:6a:08:a2:b6:0e:7a:a7: 74:5d:2a:69:11:68:49:e2:34:f6:26:b8:2c:c5:03:0f:cd:f7: ec:6d:93:d1:93:6d:7d:9a:8f:16:70:6e:ee:18:c1:dd:8d:1e: 6d:08:d5:02:0f:2d:cf:d6:db:cc:ca:7b:53:ef:f2:b2:76:f6: 84:c7:69:70:78:e5:76:b2:1a:c7:70:49:af:ed:e9:57:ee:19: 65:e3:7f:b6:fa:1b:50:bf:a2:f0:76:91:93:27:aa:04:53:bb: 0e:ab:38:96:3c:fb:f5:de:8e:ca:b9:11:73:57:4d:40:37:97: e4:f5:61:3f:65:87:48:5e:56:e7:72:26:82:1d:1a:ec:b2:c1: 44:9e:3e:2a:69:46:b7:9f:5b:95:ee:cd:34:19:a6:0b:6d:49: 55:a6:00:cf:d6:d8:ba:99:4f:b9:c8:01:54:56:96:e9:ef:68: 00:04:a9:5c:58:21:c5:ea:bd:d6:19:39:8a:79:65:44:df:8f: db:9c:93:a2:f4:61:59:96:6f:ca:37:65:94:a5:dc:50:93:bc: 2d:28:8c:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDkxMzExMC8GA1UEBRMoRkY1QzEwMDk3NUUzNjg2MjQ1Q0FERTU3OUM1NzQzM0JC RkRGNjgxOTAeFw0yMzEyMDIwNTQxMzVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NmFjMzhmLWZmNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7i3lWcdAtea5AaKve+JPGQHhbo2J/ZZPXt5+SGN1FT0mzhwi8sbSZVSuH8X79 S0a5afi30Tn7mhtCW7EwWdK98mcrN7/vUIQKU3ayxe6e0iI6zUXtn1926ksEnMuE c2K9pGT/SgCauUMSBR+qnW+nHszgDB99KELci7mHCjXa8E/zxY3SSJrSeTtz/9NI SfuSw5k/pJUB3XTnwc2BfYpgQPNtVTJMs+vPBOnx8i6Mj6ygxEK4+b7aOSVvTIJV 9U8C+C5oGVWMc8QUmjrTWoOlLUS+bRO6hfdGe/joHCNtGccLbH3TQjIlKd9e8xUY 5hIYV1guljahx9/LNoiXUzC/AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUu9G/VymK NG46lVVUvRBMDR2bpxYwHwYDVR0jBBgwFoAU/1wQCXXjaGJFyt5XnFdDO7/faBkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0OTEzLzA2RjVCNUNBOTBE NTExRUVCRDU3OTgzM0M0RjlBRTAyL18xd1FDWFhqYUdKRnl0NVhuRmRETzdfZmFC ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzF3UUNYWGphR0pGeXQ1WG5GZERPN19mYUJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDkxMy8wNkY1QjVDQTkwRDUxMUVFQkQ1Nzk4MzNDNEY5QUUwMi83NDk5MzZFMjkw RDUxMUVFODE2RTVDMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQH70AwDQYJKoZIhvcNAQELBQADggEBAGrzg58zgxRclKYN uby1dZ2V15hnJBT3a/N8IsN2q0O00lVMBxhvcl5jQBUTVIBvagiitg56p3RdKmkR aEniNPYmuCzFAw/N9+xtk9GTbX2ajxZwbu4Ywd2NHm0I1QIPLc/W28zKe1Pv8rJ2 9oTHaXB45XayGsdwSa/t6VfuGWXjf7b6G1C/ovB2kZMnqgRTuw6rOJY8+/Xejsq5 EXNXTUA3l+T1YT9lh0heVudyJoIdGuyywUSePippRrefW5XuzTQZpgttSVWmAM/W 2LqZT7nIAVRWlunvaAAEqVxYIcXqvdYZOYp5ZUTfj9uck6L0YVmWb8o3ZZSl3FCT vC0ojKs= -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org