$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/854D304E0C9B11EC8433FE7AC4F9AE02.roa File: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (raw, json) Hash identifier: 6zixCXvyMVByBug8l6sKgw1BS2P2Wg6RaGuldOnJ0UQ= Subject key identifier: E6:0D:7F:0D:A9:10:3E:63:27:AC:D5:B9:A4:67:80:CA:E9:D1:07:C9 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 14B4 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/854D304E0C9B11EC8433FE7AC4F9AE02.roa Signing time: Mon 26 Jun 2023 17:46:17 +0000 ROA not before: Mon 26 Jun 2023 17:46:17 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 394749 IP address blocks: 2404:6900:2012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5300 (0x14b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jun 26 17:46:17 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6499cee9-55d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b8:b9:a0:97:0d:ac:cd:9a:cb:cc:0e:3b:78: b7:eb:49:e6:b3:f8:17:c1:10:e1:70:bf:97:18:20: a2:6a:06:74:a2:45:96:d3:f2:e7:ec:76:35:be:95: 2a:29:9f:ca:8a:96:8c:51:f9:7e:68:59:9e:b6:00: f5:e2:cf:49:3f:92:c0:1e:d7:8b:33:90:05:a8:53: 42:d6:ac:29:be:96:72:20:2e:15:33:81:59:a7:60: ec:46:f6:77:8d:45:51:57:ee:ac:3e:00:97:c6:be: c6:34:35:04:9d:7e:92:e8:39:b8:66:0b:d6:f4:11: 5e:9b:d5:0e:2b:9f:2f:c1:8b:f7:69:39:72:34:fe: f5:5a:b3:a3:dc:ab:d0:73:96:57:dd:db:66:26:00: 6b:fd:d4:74:d7:87:4b:69:6f:11:14:0c:f8:2a:95: 75:f7:a6:95:4f:c1:f8:96:c8:da:7c:d4:71:aa:3a: a1:29:0a:83:48:3d:f7:16:2c:d5:72:9a:b8:92:22: aa:2a:da:87:ce:c9:7f:f9:73:83:c4:3c:e0:94:c2: 8f:88:af:81:b2:b2:ce:de:f3:8a:15:27:9f:e6:f3: f8:72:8d:47:8a:4c:86:33:ba:cd:cd:b5:f0:b9:fa: f6:a3:ad:c1:e8:3c:2a:64:23:88:38:95:fe:fd:2d: 08:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0D:7F:0D:A9:10:3E:63:27:AC:D5:B9:A4:67:80:CA:E9:D1:07:C9 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/854D304E0C9B11EC8433FE7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:6900:2012::/48 Signature Algorithm: sha256WithRSAEncryption 31:2d:65:55:c4:8e:cd:d1:e4:f8:44:e2:ae:5b:63:0c:f4:2a: f4:fd:f2:56:d2:e9:40:34:63:b7:13:e2:74:40:a0:3f:80:59: 5a:fe:f9:f1:72:17:43:a5:1c:69:cb:af:53:70:b7:86:9c:b5: c0:f7:19:44:ca:51:34:db:b5:bc:ec:b1:cc:03:5c:e0:86:64: f9:7b:e6:ba:43:57:80:58:1b:23:f4:c7:e2:fb:42:28:3f:af: ee:f7:9d:1a:bf:60:83:9f:34:6d:af:9e:ca:39:4d:eb:78:e2: 6e:10:e1:9e:70:74:fc:a6:41:f3:2b:e1:60:f4:73:c9:39:0f: 4f:90:b8:5c:7e:95:16:bf:30:05:1e:2f:25:e5:a8:2f:45:73: f7:89:61:15:2e:c9:e6:72:e8:cc:01:39:33:a5:dd:cd:7b:92: b3:67:43:6c:7e:1a:db:19:17:72:c8:c5:9c:d5:6e:e9:e9:3f: b3:e0:89:3d:fa:56:7c:22:35:52:12:fa:81:7c:0c:fd:e2:dd: 5d:1e:e4:f5:3a:92:cf:4b:7f:bf:a8:f8:ce:6d:2f:f6:2d:27: d6:98:c6:3a:32:ed:7c:6f:f9:9c:3e:4a:60:a8:0d:8c:e1:99: c9:85:f0:47:34:21:1e:fa:01:2d:fe:ff:65:ad:f9:a8:d6:b3: 89:28:b1:8f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICFLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjMwNjI2MTc0NjE3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5Y2VlOS01NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7i5oJcNrM2ay8wOO3i360nms/gXwRDhcL+XGCCiagZ0okWW0/Ln7HY1vpUq KZ/KipaMUfl+aFmetgD14s9JP5LAHteLM5AFqFNC1qwpvpZyIC4VM4FZp2DsRvZ3 jUVRV+6sPgCXxr7GNDUEnX6S6Dm4ZgvW9BFem9UOK58vwYv3aTlyNP71WrOj3KvQ c5ZX3dtmJgBr/dR014dLaW8RFAz4KpV196aVT8H4lsjafNRxqjqhKQqDSD33FizV cpq4kiKqKtqHzsl/+XODxDzglMKPiK+BsrLO3vOKFSef5vP4co1HikyGM7rNzbXw ufr2o63B6DwqZCOIOJX+/S0IEQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOYNfw2p ED5jJ6zVuaRngMrp0QfJMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEOTEvRUE2NzJBNUMxOUU3MTFFOEIyNDNENTdDQzRGOUFFMDIvODU0RDMwNEUw QzlCMTFFQzg0MzNGRTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBGkAIBIwDQYJKoZIhvcNAQELBQADggEBADEtZVXEjs3R 5PhE4q5bYwz0KvT98lbS6UA0Y7cT4nRAoD+AWVr++fFyF0OlHGnLr1Nwt4actcD3 GUTKUTTbtbzsscwDXOCGZPl75rpDV4BYGyP0x+L7Qig/r+73nRq/YIOfNG2vnso5 Tet44m4Q4Z5wdPymQfMr4WD0c8k5D0+QuFx+lRa/MAUeLyXlqC9Fc/eJYRUuyeZy 6MwBOTOl3c17krNnQ2x+GtsZF3LIxZzVbunpP7PgiT36VnwiNVIS+oF8DP3i3V0e 5PU6ks9Lf7+o+M5tL/YtJ9aYxjoy7Xxv+Zw+SmCoDYzhmcmF8Ec0IR76AS3+/2Wt +ajWs4kosY8= -----END CERTIFICATE-----Generated at Tue May 14 19:55:15 2024 by rpki-client on console-fra.rpki-client.org