$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa File: D8E0EC82927711E985E0423AC4F9AE02.roa (raw, json) Hash identifier: F/rMOej/eW/6RfGJ6EY8bhqAyVqDiX5qLMRUjgJdSB8= Subject key identifier: 82:AB:0F:1B:DA:A5:61:97:56:DE:78:78:CF:2A:15:E1:07:5E:8D:14 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 11DC Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa Signing time: Fri 08 Dec 2023 17:44:53 +0000 ROA not before: Fri 08 Dec 2023 17:44:53 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139233 IP address blocks: 2403:cfc0:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4572 (0x11dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 8 17:44:53 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65735615-c91a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:95:cf:ad:dd:15:9b:87:13:5b:65:75:18:37: 3a:33:c4:c7:b2:94:89:82:82:8e:51:18:da:2b:29: eb:01:eb:90:20:72:74:62:77:9a:5e:3f:50:d3:61: 5c:77:01:df:6c:d1:05:2e:a4:74:b2:d1:34:37:82: 58:88:a0:2e:18:f9:45:e3:da:ba:08:d7:74:de:e1: 2f:29:d8:9b:4c:7a:cb:19:a5:46:cd:77:ee:08:9e: a5:2b:34:72:f2:0d:f3:af:cb:e0:1e:b6:92:00:98: d8:cc:5d:77:84:f4:08:17:a5:0e:d0:7f:3a:2c:48: f5:8b:34:b7:d5:53:27:9b:65:87:1b:8f:3b:e5:f4: b2:b9:50:23:40:39:d9:d5:b8:60:77:fe:01:f4:b5: 40:47:e0:fd:6e:08:43:66:7e:83:fc:47:c4:b7:48: 3c:b5:65:eb:f4:c4:19:be:88:c2:14:2a:ea:07:e3: 08:1d:1c:58:23:9b:ab:87:7e:2d:56:05:b9:f0:f0: 03:d5:9d:e5:6c:e6:9d:d3:6e:da:3c:52:13:2a:6f: a3:11:c5:4d:32:3b:e2:e1:95:d2:51:42:dc:e8:0e: 42:6b:f8:2a:d5:fa:d6:91:d0:78:a9:75:2d:57:6b: 6b:48:86:3b:f9:8c:95:23:72:81:35:87:51:cf:07: e0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:AB:0F:1B:DA:A5:61:97:56:DE:78:78:CF:2A:15:E1:07:5E:8D:14 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/D8E0EC82927711E985E0423AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1007::/48 Signature Algorithm: sha256WithRSAEncryption 56:70:a5:c5:00:5d:2f:ac:bd:de:1d:67:7e:27:fa:7c:5b:af: 46:d1:16:15:dc:28:97:f2:97:bf:10:0d:bd:48:a5:07:1e:6a: 53:15:f9:dd:12:9a:3d:7f:09:c8:19:c4:b6:98:c2:00:ae:0e: 21:01:b9:19:2e:c7:91:07:c5:a6:db:da:7b:bf:38:d7:92:5a: 11:f5:75:58:c3:7c:50:a6:d4:ae:e8:e0:7b:59:c0:2a:48:2f: 43:06:6d:2c:14:02:e5:c1:af:e4:72:d6:24:ba:57:dc:c8:82: 97:76:aa:4b:e7:0b:7f:12:5b:e2:f8:d3:c4:ff:1e:99:ca:5c: b6:e9:7d:fa:80:93:76:b3:97:3c:af:bb:77:e9:72:c3:8c:31: af:39:cf:08:20:1c:f4:1a:46:a1:78:61:3c:2b:45:52:e7:2a: 1d:86:5c:89:99:dd:57:2e:e8:24:c4:b7:7f:c6:08:aa:a9:55: 6f:fb:cd:9a:34:a9:b4:b1:5a:ab:bd:8f:5a:37:0a:a0:27:c0: 05:7e:c9:5b:d3:15:29:12:ed:e4:90:90:e5:07:01:aa:e4:cd: 08:5e:56:06:3f:76:7c:7b:c7:27:5e:ab:d1:76:1f:44:2a:a8: 2e:2f:8c:a9:34:2d:c7:1b:64:c9:78:7c:56:3f:5f:81:69:67: 2a:39:d4:09 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjMxMjA4MTc0NDUzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczNTYxNS1jOTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5XPrd0Vm4cTW2V1GDc6M8THspSJgoKOURjaKynrAeuQIHJ0YneaXj9Q02Fc dwHfbNEFLqR0stE0N4JYiKAuGPlF49q6CNd03uEvKdibTHrLGaVGzXfuCJ6lKzRy 8g3zr8vgHraSAJjYzF13hPQIF6UO0H86LEj1izS31VMnm2WHG4875fSyuVAjQDnZ 1bhgd/4B9LVAR+D9bghDZn6D/EfEt0g8tWXr9MQZvojCFCrqB+MIHRxYI5urh34t VgW58PAD1Z3lbOad027aPFITKm+jEcVNMjvi4ZXSUULc6A5Ca/gq1frWkdB4qXUt V2trSIY7+YyVI3KBNYdRzwfgywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIKrDxva pWGXVt54eM8qFeEHXo0UMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvRDhFMEVDODI5 Mjc3MTFFOTg1RTA0MjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA8/AEAcwDQYJKoZIhvcNAQELBQADggEBAFZwpcUAXS+s vd4dZ34n+nxbr0bRFhXcKJfyl78QDb1IpQcealMV+d0Smj1/CcgZxLaYwgCuDiEB uRkux5EHxabb2nu/ONeSWhH1dVjDfFCm1K7o4HtZwCpIL0MGbSwUAuXBr+Ry1iS6 V9zIgpd2qkvnC38SW+L408T/HpnKXLbpffqAk3azlzyvu3fpcsOMMa85zwggHPQa RqF4YTwrRVLnKh2GXImZ3Vcu6CTEt3/GCKqpVW/7zZo0qbSxWqu9j1o3CqAnwAV+ yVvTFSkS7eSQkOUHAarkzQheVgY/dnx7xydeq9F2H0QqqC4vjKk0LccbZMl4fFY/ X4FpZyo51Ak= -----END CERTIFICATE-----Generated at Fri May 31 20:34:03 2024 by rpki-client on console-ams.rpki-client.org