$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa File: AE3E17129AD611EA9A86E163C4F9AE02.roa (raw, json) Hash identifier: jzKhtHw8GrImmc/oMUb7QxeIndWkfeLMReiE3rdXpt4= Subject key identifier: 08:4D:5B:6C:42:98:73:19:34:BA:6C:9F:E8:01:F3:6D:8C:F9:F5:1E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A81 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa Signing time: Sun 14 May 2023 22:15:33 +0000 ROA not before: Sun 14 May 2023 22:15:33 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 39753 IP address blocks: 2406:840:f100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 06:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:33 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d85-4d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:72:9b:c6:f0:2d:48:32:15:ca:a8:23:f0:20: ca:19:2e:ae:58:bd:56:31:80:0b:ad:4d:e5:58:a9: bb:0b:01:fb:ab:2d:53:0e:be:b0:a1:e8:69:63:9c: 8f:79:d0:28:69:2c:d5:39:82:ba:0e:18:b6:76:1f: 81:66:2b:68:bd:f2:5d:7f:eb:44:e4:34:b7:04:97: 58:99:2c:6e:c8:b4:ef:df:43:d9:79:1e:7e:14:ea: 1d:af:63:84:eb:46:72:0e:d4:36:22:4a:45:3a:40: ec:3e:d7:21:0c:f6:e3:67:d8:ec:c5:b0:ab:14:77: a0:d0:e3:ea:9c:81:06:ce:25:8a:ee:f9:e4:af:70: 4d:bd:2b:3e:58:6b:83:4b:b7:6d:cb:b2:5d:6b:af: ee:50:cb:cc:8d:f2:f5:01:d8:60:a4:9d:01:fe:22: d5:8c:49:cc:4a:18:ac:27:2d:60:a5:24:d0:e8:48: 12:ba:1c:d2:f0:34:81:bc:e5:b2:4b:b6:bd:49:38: 4b:5c:a9:37:8c:87:5c:a6:3e:18:ce:64:d5:a8:c8: 83:60:8f:91:b6:dd:44:a4:e8:c1:21:87:43:ab:1d: eb:54:83:5a:77:77:f9:53:9d:c0:99:af:32:5d:5e: f2:53:22:2d:06:fe:0a:4e:2d:c7:99:c6:1d:d4:77: 45:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4D:5B:6C:42:98:73:19:34:BA:6C:9F:E8:01:F3:6D:8C:F9:F5:1E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/AE3E17129AD611EA9A86E163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f100::/44 Signature Algorithm: sha256WithRSAEncryption 3a:45:96:de:78:ee:dd:26:e1:35:ed:5c:9b:38:5a:9d:cc:a4: 37:a1:4b:53:e3:62:7f:8b:ed:39:18:74:76:73:6c:3d:95:32: 43:01:ca:67:b3:e4:38:02:d5:83:eb:4b:dd:f9:91:db:43:da: ff:00:0b:d3:4c:f1:ff:89:9a:b8:32:02:77:17:c9:dc:fc:67: 1c:ee:f0:90:14:27:81:96:b8:7b:37:d4:32:08:7e:24:73:70: 86:1e:0d:c1:c8:50:30:2c:22:84:2a:1e:fc:9e:a4:a2:a6:90: 23:9d:46:5d:7e:b3:46:47:d3:f8:76:db:0e:75:ce:74:00:4a: f0:ed:bb:3b:dd:c9:c0:3d:4f:86:e0:74:38:5c:2f:50:63:68: a2:a4:56:d5:7d:b7:ee:61:cd:04:af:89:8e:37:fc:5f:74:53: ac:16:0e:36:57:3a:a5:2c:31:49:ce:ad:73:d5:46:06:a8:88: 88:59:48:be:0f:52:f4:0e:fe:50:a1:93:f2:e2:4b:75:af:87: 98:b1:01:43:19:e3:5b:d1:b2:1b:60:a1:c7:2a:63:09:bc:6b: cc:31:89:11:49:db:82:bb:f3:4c:e7:02:c2:f6:7f:fc:e4:f7: 98:5b:f5:8a:8d:7b:0f:54:7c:8f:48:58:31:49:0f:5c:11:33: 1e:29:14:2e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTMzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ4NS00ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnKbxvAtSDIVyqgj8CDKGS6uWL1WMYALrU3lWKm7CwH7qy1TDr6woehpY5yP edAoaSzVOYK6Dhi2dh+BZitovfJdf+tE5DS3BJdYmSxuyLTv30PZeR5+FOodr2OE 60ZyDtQ2IkpFOkDsPtchDPbjZ9jsxbCrFHeg0OPqnIEGziWK7vnkr3BNvSs+WGuD S7dty7Jda6/uUMvMjfL1AdhgpJ0B/iLVjEnMShisJy1gpSTQ6EgSuhzS8DSBvOWy S7a9SThLXKk3jIdcpj4YzmTVqMiDYI+Rtt1EpOjBIYdDqx3rVINad3f5U53Ama8y XV7yUyItBv4KTi3HmcYd1HdFOQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAhNW2xC mHMZNLpsn+gB822M+fUeMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQUUzRTE3MTI5 QUQ2MTFFQTlBODZFMTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA8QAwDQYJKoZIhvcNAQELBQADggEBADpFlt547t0m 4TXtXJs4Wp3MpDehS1PjYn+L7TkYdHZzbD2VMkMBymez5DgC1YPrS935kdtD2v8A C9NM8f+JmrgyAncXydz8Zxzu8JAUJ4GWuHs31DIIfiRzcIYeDcHIUDAsIoQqHvye pKKmkCOdRl1+s0ZH0/h22w51znQASvDtuzvdycA9T4bgdDhcL1BjaKKkVtV9t+5h zQSviY43/F90U6wWDjZXOqUsMUnOrXPVRgaoiIhZSL4PUvQO/lChk/LiS3Wvh5ix AUMZ41vRshtgoccqYwm8a8wxiRFJ24K780znAsL2f/zk95hb9YqNew9UfI9IWDFJ D1wRMx4pFC4= -----END CERTIFICATE-----Generated at Fri Apr 19 09:35:36 2024 by rpki-client on console-fra.rpki-client.org