$ rpki-client -vvf rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa File: 9A20324CDD6011EB9935406BC4F9AE02.roa (raw, json) Hash identifier: rYNEGiWrpSP/p46gT0UIbY2vOINTen1a5+WUXMJC+C0= Subject key identifier: BA:DF:0B:C3:C9:BA:A7:A4:5B:44:A2:A5:EE:9C:14:2C:6F:15:86:86 Certificate issuer: /CN=A9121B73/serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Certificate serial: 22D6 Authority key identifier: 66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa Signing time: Tue 04 Jul 2023 16:02:30 +0000 ROA not before: Tue 04 Jul 2023 16:02:30 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 59347 IP address blocks: 2403:cc80::/32 maxlen: 32 2403:cc80::/48 maxlen: 48 2403:cc80:1::/48 maxlen: 48 2403:cc80:2::/48 maxlen: 48 2403:cc80:3::/48 maxlen: 48 2403:cc80:4::/48 maxlen: 48 2403:cc80:5::/48 maxlen: 48 2403:cc80:d::/48 maxlen: 48 2403:cc80:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8918 (0x22d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121B73/serialNumber=66CE6D078C88930FAC801089C3E4C4A33382901E Validity Not Before: Jul 4 16:02:30 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64a44296-68b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:89:07:72:36:61:86:ee:aa:54:ce:96:76: d7:27:49:6b:ac:c8:fd:65:1a:ef:c6:94:de:0b:c0: 0c:00:aa:b8:25:61:9e:6a:d8:f5:a5:a1:ec:c7:af: f7:ec:ad:70:46:55:0e:e5:8c:11:27:a9:b6:8c:fa: c9:c3:f3:f0:a5:48:ec:95:90:a7:68:7a:aa:39:c3: f6:1d:db:b0:27:46:14:31:2c:77:61:91:5d:f9:ce: ae:20:5c:6a:16:67:d1:3f:3c:ac:64:8d:bb:dd:95: 48:8e:9a:25:50:20:ed:1d:04:01:20:3e:de:7c:81: 02:af:45:c5:76:c7:3a:49:55:1c:f7:6c:a4:10:7c: 5c:ee:2f:7f:42:56:78:0c:41:dc:14:9a:05:cd:a7: 99:e1:34:10:02:69:50:05:b3:39:cb:9d:07:b3:74: 31:96:d9:0c:ca:b4:93:26:23:96:97:fe:cf:e0:26: 99:5c:dc:23:af:dc:68:e1:51:dd:3b:7d:2a:e5:c0: 87:f1:28:93:e0:66:62:ad:21:aa:c3:eb:8c:f4:07: a5:6a:bb:72:c3:45:b0:71:98:36:21:c1:c7:fc:18: c9:f6:5d:7b:58:d6:e3:e2:e1:79:43:b9:9c:11:a1: f1:da:b7:e2:4f:b0:01:d4:1c:b5:e6:4e:5e:2a:a1: e9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DF:0B:C3:C9:BA:A7:A4:5B:44:A2:A5:EE:9C:14:2C:6F:15:86:86 X509v3 Authority Key Identifier: keyid:66:CE:6D:07:8C:88:93:0F:AC:80:10:89:C3:E4:C4:A3:33:82:90:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/Zs5tB4yIkw-sgBCJw-TEozOCkB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zs5tB4yIkw-sgBCJw-TEozOCkB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121B73/2B77EF2A5EDF11E581AD880CC4F9AE02/9A20324CDD6011EB9935406BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc80::/32 Signature Algorithm: sha256WithRSAEncryption ac:7f:b2:19:db:91:b3:9c:45:cf:37:87:87:81:ff:bb:b1:fd: 53:b8:e7:5e:d7:45:4f:b3:17:f1:03:45:58:5c:2f:13:95:be: c9:48:f9:dd:4b:4d:ca:89:d3:6d:cb:cf:5e:cd:32:a6:33:8d: 4c:50:e1:79:e6:83:94:bf:cb:66:78:92:67:0f:20:a4:b6:b3: 45:b6:84:db:17:9c:03:c3:e9:00:09:e8:d9:2f:a0:d7:4f:a3: e4:c3:16:7d:26:9c:e0:3b:74:49:8d:15:53:fa:1d:e8:3c:a8: e1:be:62:cd:ad:fe:5f:8a:a2:70:75:fd:e4:a6:50:dc:67:d5: 1b:f3:07:cf:a1:4e:62:81:6b:43:a8:df:f1:6e:5f:1f:98:bc: e9:6f:03:4d:92:dc:f6:e0:9a:58:1f:69:22:63:c3:aa:13:93: 11:4d:7a:be:47:9c:e5:6c:6e:5f:f9:0a:73:e4:b9:85:8b:f1: f8:84:34:be:8c:97:ae:35:2b:af:c4:14:a6:63:4a:23:18:0b: 7c:5c:45:83:da:ea:51:7f:ae:16:9b:8c:58:26:03:1d:1b:50: bf:7a:62:2d:48:6b:38:36:ea:2c:85:d7:e1:8a:e3:02:69:41: 16:98:ab:1f:74:93:6a:5d:46:17:6a:24:89:07:cb:e2:b0:36: a5:74:57:00 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICItYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFCNzMxMTAvBgNVBAUTKDY2Q0U2RDA3OEM4ODkzMEZBQzgwMTA4OUMzRTRDNEEz MzM4MjkwMUUwHhcNMjMwNzA0MTYwMjMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0NDI5Ni02OGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMyJB3I2YYbuqlTOlnbXJ0lrrMj9ZRrvxpTeC8AMAKq4JWGeatj1paHsx6/3 7K1wRlUO5YwRJ6m2jPrJw/PwpUjslZCnaHqqOcP2HduwJ0YUMSx3YZFd+c6uIFxq FmfRPzysZI273ZVIjpolUCDtHQQBID7efIECr0XFdsc6SVUc92ykEHxc7i9/QlZ4 DEHcFJoFzaeZ4TQQAmlQBbM5y50Hs3QxltkMyrSTJiOWl/7P4CaZXNwjr9xo4VHd O30q5cCH8SiT4GZirSGqw+uM9Aelartyw0WwcZg2IcHH/BjJ9l17WNbj4uF5Q7mc EaHx2rfiT7AB1By15k5eKqHpVQIDAQABo4ICljCCApIwHQYDVR0OBBYEFLrfC8PJ uqekW0Sipe6cFCxvFYaGMB8GA1UdIwQYMBaAFGbObQeMiJMPrIAQicPkxKMzgpAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUI3My8yQjc3RUYyQTVF REYxMUU1ODFBRDg4MENDNEY5QUUwMi9aczV0QjR5SWt3LXNnQkNKdy1URW96T0Nr QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pzNXRCNHlJa3ctc2dCQ0p3LVRFb3pPQ2tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFCNzMvMkI3N0VGMkE1RURGMTFFNTgxQUQ4ODBDQzRGOUFFMDIvOUEyMDMyNENE RDYwMTFFQjk5MzU0MDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA8yAMA0GCSqGSIb3DQEBCwUAA4IBAQCsf7IZ25GznEXP N4eHgf+7sf1TuOde10VPsxfxA0VYXC8Tlb7JSPndS03KidNty89ezTKmM41MUOF5 5oOUv8tmeJJnDyCktrNFtoTbF5wDw+kACejZL6DXT6PkwxZ9JpzgO3RJjRVT+h3o PKjhvmLNrf5fiqJwdf3kplDcZ9Ub8wfPoU5igWtDqN/xbl8fmLzpbwNNktz24JpY H2kiY8OqE5MRTXq+R5zlbG5f+Qpz5LmFi/H4hDS+jJeuNSuvxBSmY0ojGAt8XEWD 2upRf64Wm4xYJgMdG1C/emItSGs4NuoshdfhiuMCaUEWmKsfdJNqXUYXaiSJB8vi sDaldFcA -----END CERTIFICATE-----Generated at Tue May 28 19:32:17 2024 by rpki-client on console-ams.rpki-client.org