$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/7BDC977E0AF011EF87265E12C4F9AE02.roa File: 7BDC977E0AF011EF87265E12C4F9AE02.roa (raw, json) Hash identifier: 8v5l6NFw44ZVcNxE4kr0aGdDJ3773GKpJsa1DcFCQIs= Subject key identifier: 05:21:B8:0F:F7:EF:EA:25:1C:0A:30:22:12:40:F4:FD:AA:9F:CC:A5 Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 1E Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/7BDC977E0AF011EF87265E12C4F9AE02.roa Signing time: Sat 18 May 2024 18:41:07 +0000 ROA not before: Sat 18 May 2024 18:41:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 139859 IP address blocks: 2403:ad80:8004::/48 maxlen: 48 2403:ad80:8008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: May 18 18:41:07 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6648f643-c690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:9b:78:ef:e9:e8:fd:b7:00:0a:d8:c3:9e: d3:18:8a:df:0a:3a:a4:be:56:ac:7e:36:f4:a2:8c: 46:e5:38:24:23:91:9b:4b:8c:17:84:4b:53:ed:b1: 2c:34:95:19:db:ff:c8:70:44:ac:88:34:d7:15:97: a7:4d:81:16:65:fc:eb:8c:c7:d0:f4:dd:7f:05:1c: 25:0b:7b:c0:4b:51:13:82:3f:0c:e8:e0:b3:70:67: 54:f6:db:af:ea:14:f8:6b:a9:5b:b6:85:3e:d5:b9: 7b:c2:cb:8b:b4:69:c3:fa:5f:a0:fe:6e:59:6e:85: 3e:16:2b:63:1a:33:60:46:01:bb:9a:a6:58:be:67: 74:4b:77:25:98:38:09:72:47:e0:ad:e7:d8:7a:be: 4b:9a:da:19:88:b3:81:2f:07:d9:5e:b5:db:d9:85: 68:80:a3:3f:31:01:51:27:9a:55:51:41:fa:91:36: 83:cd:1b:3e:cc:5a:db:bb:fc:07:57:48:3f:df:60: 23:5d:50:98:e4:50:99:2d:7d:3a:29:d1:1d:dc:c3: d8:5d:5f:d8:0c:a3:f4:95:0b:76:4c:c0:5c:da:6c: f0:bf:b6:c3:69:29:fa:69:8f:6c:06:d8:8b:1c:f1: ea:e8:73:eb:f1:4d:6e:68:64:d3:96:f3:5c:96:e1: a3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:21:B8:0F:F7:EF:EA:25:1C:0A:30:22:12:40:F4:FD:AA:9F:CC:A5 X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/7BDC977E0AF011EF87265E12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:ad80:8004::/48 2403:ad80:8008::/48 Signature Algorithm: sha256WithRSAEncryption 4c:de:20:cc:41:46:24:b2:56:00:36:62:ae:95:c9:fa:1f:0b: 98:07:12:e2:22:dd:71:3d:e0:28:de:4f:4d:72:e4:d4:19:83: f3:92:4a:75:93:61:b4:07:f7:ef:70:4a:23:d2:b2:39:2b:88: 3f:18:b1:d0:e8:da:e2:e8:d9:d3:ca:67:a9:7f:78:e8:0f:2e: 24:0e:b0:63:3e:00:c5:58:bf:9c:25:c0:44:ad:3a:77:17:fa: 07:e2:5f:9c:d3:8c:ac:50:2d:57:73:03:c5:96:26:a3:77:28: 0a:c5:39:26:37:ec:ea:2d:55:a2:31:68:3f:70:ca:94:2f:b9: ad:4f:c0:b5:3d:85:76:b5:54:24:c4:12:db:67:40:9e:55:92: f6:1b:1c:bb:fb:82:71:56:b9:17:1c:c7:59:95:cf:8d:72:5c: 71:40:ad:59:42:1d:4b:b5:f8:4b:6d:92:6f:50:c1:03:d0:2f: 56:cd:7b:de:f7:5f:68:38:d2:71:4d:2e:74:d5:d5:ee:65:ca: eb:fd:3f:c1:b6:82:9d:4d:8f:0c:6e:31:79:7d:d4:f5:9f:61: 62:af:c3:3f:8e:e6:f0:39:fa:e5:ea:e5:c3:97:4e:6e:69:0b: 15:39:9d:6d:63:a0:6d:04:68:7e:05:e8:82:64:5c:0d:4b:d5: d2:28:c3:12 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTc3NzExMC8GA1UEBRMoNjQ3RDA5MjdEQjNCMTc4RTJGNjU0QTMyNjg1NTdGRTVC NUQ2NzI5QzAeFw0yNDA1MTgxODQxMDdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDhmNjQzLWM2OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLK5t47+no/bcACtjDntMYit8KOqS+Vqx+NvSijEblOCQjkZtLjBeES1PtsSw0 lRnb/8hwRKyINNcVl6dNgRZl/OuMx9D03X8FHCULe8BLUROCPwzo4LNwZ1T226/q FPhrqVu2hT7VuXvCy4u0acP6X6D+blluhT4WK2MaM2BGAbuapli+Z3RLdyWYOAly R+Ct59h6vkua2hmIs4EvB9letdvZhWiAoz8xAVEnmlVRQfqRNoPNGz7MWtu7/AdX SD/fYCNdUJjkUJktfTop0R3cw9hdX9gMo/SVC3ZMwFzabPC/tsNpKfppj2wG2Isc 8eroc+vxTW5oZNOW81yW4aO/AgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUBSG4D/fv 6iUcCjAiEkD0/aqfzKUwHwYDVR0jBBgwFoAUZH0JJ9s7F44vZUoyaFV/5bXWcpww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBNzc3LzBCQTU3MkIwRUM0 RjExRUVBMUIzODg2NkM0RjlBRTAyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkgwSko5czdGNDR2WlVveWFGVl81YlhXY3B3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTc3Ny8wQkE1NzJCMEVDNEYxMUVFQTFCMzg4NjZDNEY5QUUwMi83QkRDOTc3RTBB RjAxMUVGODcyNjVFMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAIwEgMHACQDrYCABAMHACQDrYCACDANBgkqhkiG9w0BAQsFAAOCAQEA TN4gzEFGJLJWADZirpXJ+h8LmAcS4iLdcT3gKN5PTXLk1BmD85JKdZNhtAf373BK I9KyOSuIPxix0Oja4ujZ08pnqX946A8uJA6wYz4AxVi/nCXARK06dxf6B+JfnNOM rFAtV3MDxZYmo3coCsU5Jjfs6i1VojFoP3DKlC+5rU/AtT2FdrVUJMQS22dAnlWS 9hscu/uCcVa5FxzHWZXPjXJccUCtWUIdS7X4S22Sb1DBA9AvVs173vdfaDjScU0u dNXV7mXK6/0/wbaCnU2PDG4xeX3U9Z9hYq/DP47m8Dn65erlw5dObmkLFTmdbWOg bQRofgXogmRcDUvV0ijDEg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:30 2024 by rpki-client on console-fra.rpki-client.org