$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/7E04A27C33F911E98674843BC4F9AE02.roa File: 7E04A27C33F911E98674843BC4F9AE02.roa (raw, json) Hash identifier: 7YgzB4rQ2bzK/J+LSmXVfcQLYddeRDel53awheOthmM= Subject key identifier: 90:DD:40:F5:55:55:7F:41:6B:8A:50:E5:EB:D1:E1:5F:17:64:9C:57 Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 33C7 Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/7E04A27C33F911E98674843BC4F9AE02.roa Signing time: Thu 22 Jun 2023 15:10:49 +0000 ROA not before: Thu 22 Jun 2023 15:10:49 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9431 IP address blocks: 2404:138:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13255 (0x33c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: Jun 22 15:10:49 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64946478-a597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:85:a1:23:1b:95:2f:b3:5f:4d:d7:99:6a: 89:59:60:f6:c1:07:5f:c4:eb:91:df:74:e8:be:b1: 69:0c:a9:b8:77:6a:79:54:9a:b1:70:3a:63:9c:30: 65:fe:ba:1e:13:b0:83:07:48:56:75:25:78:96:97: 4d:35:07:61:53:cf:47:32:5d:56:11:92:57:a7:6f: 15:82:87:74:dd:15:54:32:12:9b:d0:e5:c9:5c:18: bb:fa:01:7a:45:75:56:82:8e:1e:c9:b6:4a:03:7c: f5:d3:1d:40:f8:15:f4:c2:2b:8e:00:49:72:95:73: 05:4c:ea:0d:7e:d8:3a:b2:3b:41:ca:1b:cc:0f:4a: 6d:3c:0e:a3:7c:9d:ff:c7:9b:b8:4f:89:63:12:fa: 1d:65:f0:cc:aa:86:6d:60:a6:9e:1b:e7:7b:42:8a: eb:d1:9c:f4:f2:02:e0:a9:40:66:e8:84:16:4e:d9: 3b:9c:96:88:f3:8e:a0:e5:b7:cf:dc:1d:91:35:b9: 5d:8a:25:7e:a2:0c:b7:bb:a0:30:ea:14:95:bb:01: 7d:f7:89:ba:ad:fb:0b:c4:93:e1:da:10:28:51:1a: 65:3c:17:73:d8:df:63:f1:8f:cf:64:3e:80:cc:ad: 4a:0d:39:43:f7:22:e9:ac:f0:dc:ff:11:cc:e3:9f: 18:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DD:40:F5:55:55:7F:41:6B:8A:50:E5:EB:D1:E1:5F:17:64:9C:57 X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/7E04A27C33F911E98674843BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:138:4004::/48 Signature Algorithm: sha256WithRSAEncryption 9b:25:69:53:fd:3e:bf:86:c1:8f:aa:69:cb:3c:ee:1c:bb:34: 96:ed:3a:ab:05:9f:4e:d6:14:67:bc:b5:d7:73:4a:61:18:63: cf:e1:67:e0:96:22:69:78:04:48:30:a3:ff:73:93:8f:a8:86: ec:c4:22:73:60:09:d3:6a:25:0f:bf:a8:0a:08:72:14:ea:65: 4d:b9:ae:5d:31:37:df:e7:c1:31:bf:ec:0d:d9:c6:05:e9:8e: be:7c:40:ea:16:d4:8d:a1:dd:da:3a:6f:f7:3e:d1:2f:92:55: 41:c8:44:65:d3:0f:f3:4a:03:74:6f:1e:ae:62:5c:cc:13:44: 0e:ef:3a:86:19:0c:5e:e1:0a:ee:a1:62:d8:8b:35:9f:ba:fa: 7a:b9:e0:34:73:c5:a4:2d:ff:0e:5c:06:a1:7c:64:42:b4:8d: 92:4c:8a:05:9b:f3:c9:af:8a:4b:05:cf:b0:a3:5f:fc:06:1e: b2:03:b7:77:65:ad:b5:46:5b:7a:e2:99:d5:d4:98:2f:f3:6f: be:59:0a:ba:db:ca:3f:d1:4a:50:cb:9c:f1:05:db:97:91:62: 10:5a:19:03:4e:1f:b4:48:6c:f3:d5:9a:7b:96:bd:17:fb:25: 2c:64:8c:a4:c7:65:d5:a2:b6:b3:cb:d4:b6:ec:5c:ab:be:77: ec:1e:28:31 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICM8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjMwNjIyMTUxMDQ5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0NjQ3OC1hNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvveFoSMblS+zX03XmWqJWWD2wQdfxOuR33TovrFpDKm4d2p5VJqxcDpjnDBl /roeE7CDB0hWdSV4lpdNNQdhU89HMl1WEZJXp28Vgod03RVUMhKb0OXJXBi7+gF6 RXVWgo4eybZKA3z10x1A+BX0wiuOAElylXMFTOoNftg6sjtByhvMD0ptPA6jfJ3/ x5u4T4ljEvodZfDMqoZtYKaeG+d7Qorr0Zz08gLgqUBm6IQWTtk7nJaI846g5bfP 3B2RNbldiiV+ogy3u6Aw6hSVuwF994m6rfsLxJPh2hAoURplPBdz2N9j8Y/PZD6A zK1KDTlD9yLprPDc/xHM458YywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJDdQPVV VX9Ba4pQ5evR4V8XZJxXMB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEzMTgvREM3NDUxRjIxRDkxMTFFMjk4RTc0NkY0MDhCMDJDRDIvN0UwNEEyN0Mz M0Y5MTFFOTg2NzQ4NDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBAE4QAQwDQYJKoZIhvcNAQELBQADggEBAJslaVP9Pr+G wY+qacs87hy7NJbtOqsFn07WFGe8tddzSmEYY8/hZ+CWIml4BEgwo/9zk4+ohuzE InNgCdNqJQ+/qAoIchTqZU25rl0xN9/nwTG/7A3ZxgXpjr58QOoW1I2h3do6b/c+ 0S+SVUHIRGXTD/NKA3RvHq5iXMwTRA7vOoYZDF7hCu6hYtiLNZ+6+nq54DRzxaQt /w5cBqF8ZEK0jZJMigWb88mviksFz7CjX/wGHrIDt3dlrbVGW3rimdXUmC/zb75Z Crrbyj/RSlDLnPEF25eRYhBaGQNOH7RIbPPVmnuWvRf7JSxkjKTHZdWitrPL1Lbs XKu+d+weKDE= -----END CERTIFICATE-----Generated at Thu May 16 16:14:29 2024 by rpki-client on console-fra.rpki-client.org