$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa File: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (raw, json) Hash identifier: iKfci7tsa+jhLLRTbBFfO22Soy787xfFX8zNv1laW9A= Subject key identifier: 40:2C:73:A7:68:D6:95:5E:6B:D6:A1:F6:03:2D:10:35:34:17:C3:1A Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0B74 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa Signing time: Fri 06 Oct 2023 18:57:00 +0000 ROA not before: Fri 06 Oct 2023 18:57:00 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141731 IP address blocks: 2406:ff80::/32 maxlen: 32 2406:ff80:1::/48 maxlen: 48 2406:ff80:2::/48 maxlen: 48 2406:ff80:3::/48 maxlen: 48 2406:ff80:4::/48 maxlen: 48 2406:ff80:5::/48 maxlen: 48 2406:ff80:6::/48 maxlen: 48 2406:ff80:7::/48 maxlen: 48 2406:ff80:8::/48 maxlen: 48 2406:ff80:9::/48 maxlen: 48 2406:ff80:a::/48 maxlen: 48 2406:ff80:b::/48 maxlen: 48 2406:ff80:c::/48 maxlen: 48 2406:ff80:d::/48 maxlen: 48 2406:ff80:e::/48 maxlen: 48 2406:ff80:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Oct 6 18:57:00 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6520587b-56da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:65:aa:f0:26:a4:7c:53:09:c8:11:52:6c:7a: d4:22:3c:e3:53:71:43:c5:23:d0:7b:66:6f:b7:75: c8:2c:fb:34:eb:84:0a:1c:6b:d9:a9:ac:c0:ab:48: 8f:d9:2c:6a:e7:0b:10:ee:5c:79:0f:a7:4e:3f:81: 21:8f:94:db:52:ff:80:15:1f:9c:96:cf:74:8b:55: 03:93:54:9d:a1:8d:f8:1b:3c:d8:00:5a:67:50:5f: 45:df:05:2e:c8:b6:e4:ef:87:4c:f9:90:c6:20:e6: 1b:cb:11:d3:19:0c:57:b9:8c:9c:0a:04:2c:c4:ad: d1:64:11:ac:02:be:00:e1:78:cd:5f:68:3e:78:81: b4:5b:33:b9:19:21:c3:54:50:30:c3:ce:c0:5d:4c: f1:c5:c3:0e:cd:fb:c2:2e:9d:c7:9f:81:57:5d:c1: b2:6a:9d:15:42:6f:a6:8e:7a:61:7a:29:0f:92:4a: 24:2f:21:0f:a3:d8:e7:c9:61:4f:7e:fe:7a:ab:a3: 18:44:fc:80:a0:c4:8f:1e:78:5a:98:b6:da:16:f1: 0a:87:52:91:ea:17:41:58:25:5b:fe:b8:b8:72:66: 8d:e2:96:89:c2:05:67:ea:70:06:f4:dc:6e:55:59: 23:73:f8:c4:86:f2:22:63:06:51:a8:f2:8b:7b:68: 8f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2C:73:A7:68:D6:95:5E:6B:D6:A1:F6:03:2D:10:35:34:17:C3:1A X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/92F8F6D042DA11ED93029A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:ff80::/32 Signature Algorithm: sha256WithRSAEncryption 58:77:e8:66:48:0f:a6:a1:c4:7b:de:5e:08:fc:4d:c0:1b:79: 53:ed:98:63:28:ce:bc:34:4c:74:97:e6:15:d5:71:c0:ea:53: 92:eb:26:5d:79:0c:be:77:4a:3a:e3:fa:a8:c5:bd:71:6c:bf: 2b:88:d8:44:54:fd:33:98:f2:96:a1:40:f8:03:25:cd:42:a1: f8:dc:a2:54:58:6f:90:0e:a6:17:83:53:e3:60:ec:29:4b:01: d4:df:d6:00:19:e3:7a:fb:83:e8:85:17:a8:9e:2c:83:2e:7b: 41:a0:f1:d1:e1:7f:6f:ec:71:1a:a5:34:de:1e:2f:bb:15:ab: e8:14:06:5a:4f:43:b8:28:b4:57:ea:12:c1:f1:8e:f0:72:30: df:e4:e5:95:8d:a0:cb:6b:1a:b4:15:9c:38:97:90:9f:0a:c6: 12:5b:1f:7a:5c:8e:48:40:e1:cd:46:11:5c:35:dc:34:9c:b5: 94:1f:df:c7:4f:97:74:35:ac:c2:6c:4f:6c:93:2a:b0:c5:51: 06:d7:26:48:62:33:e2:87:44:4f:83:8c:e2:53:34:fc:79:9b: ed:77:37:d2:a8:c6:aa:2c:74:71:92:26:57:7b:48:3e:5f:84: c4:09:1b:3f:82:b7:d8:c4:4c:f9:5d:41:b7:85:ce:99:04:79: 51:3f:8a:1e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjMxMDA2MTg1NzAwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwNTg3Yi01NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmWq8CakfFMJyBFSbHrUIjzjU3FDxSPQe2Zvt3XILPs064QKHGvZqazAq0iP 2Sxq5wsQ7lx5D6dOP4Ehj5TbUv+AFR+cls90i1UDk1SdoY34GzzYAFpnUF9F3wUu yLbk74dM+ZDGIOYbyxHTGQxXuYycCgQsxK3RZBGsAr4A4XjNX2g+eIG0WzO5GSHD VFAww87AXUzxxcMOzfvCLp3Hn4FXXcGyap0VQm+mjnpheikPkkokLyEPo9jnyWFP fv56q6MYRPyAoMSPHnhamLbaFvEKh1KR6hdBWCVb/ri4cmaN4paJwgVn6nAG9Nxu VVkjc/jEhvIiYwZRqPKLe2iPFwIDAQABo4ICljCCApIwHQYDVR0OBBYEFEAsc6do 1pVea9ah9gMtEDU0F8MaMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvOTJGOEY2RDA0 MkRBMTFFRDkzMDI5QTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBv+AMA0GCSqGSIb3DQEBCwUAA4IBAQBYd+hmSA+mocR7 3l4I/E3AG3lT7ZhjKM68NEx0l+YV1XHA6lOS6yZdeQy+d0o64/qoxb1xbL8riNhE VP0zmPKWoUD4AyXNQqH43KJUWG+QDqYXg1PjYOwpSwHU39YAGeN6+4PohReoniyD LntBoPHR4X9v7HEapTTeHi+7FavoFAZaT0O4KLRX6hLB8Y7wcjDf5OWVjaDLaxq0 FZw4l5CfCsYSWx96XI5IQOHNRhFcNdw0nLWUH9/HT5d0NazCbE9skyqwxVEG1yZI YjPih0RPg4ziUzT8eZvtdzfSqMaqLHRxkiZXe0g+X4TECRs/grfYxEz5XUG3hc6Z BHlRP4oe -----END CERTIFICATE-----Generated at Tue May 14 19:55:10 2024 by rpki-client on console-fra.rpki-client.org