$ rpki-client -vvf rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa File: 6211D40A941F11EEA7C3E86FC4F9AE02.roa (raw, json) Hash identifier: fkTQUrTtwywfRqcpHbaMj+/J7ntmsAtL9R8O5ggJucw= Subject key identifier: 48:CD:4F:71:DF:AF:A8:60:02:A1:87:0D:5F:42:24:97:C5:39:98:D8 Certificate issuer: /CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Certificate serial: 07AC Authority key identifier: 2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa Signing time: Wed 06 Dec 2023 10:08:20 +0000 ROA not before: Wed 06 Dec 2023 10:08:20 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 26496 IP address blocks: 2406:f380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 21:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147C4C/serialNumber=2A9AEF6BC129914CA0B9105C9271DEAF39DBC866 Validity Not Before: Dec 6 10:08:20 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65704814-b972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:8b:7d:45:86:4e:b6:36:be:ab:1c:8b:5e: f1:7c:30:b2:25:8b:97:5c:3d:a7:c2:25:d9:66:2b: 2c:da:9b:2c:7e:87:cd:44:45:77:00:68:a9:56:3d: b1:f0:83:70:5e:37:e8:b3:2e:d3:41:90:9c:42:ad: fb:5a:3a:92:8f:a0:2b:c1:1f:99:1e:b4:4b:2a:0a: 7d:32:b2:1d:bc:c0:c5:99:9e:c8:b2:e3:06:ab:b7: c7:b6:14:d7:58:74:a1:f4:83:c8:df:3a:22:f2:2b: f0:0d:ab:f1:64:c3:95:c2:a6:80:4b:0d:3d:ed:29: f8:69:ce:99:bc:01:28:ec:ce:65:73:fe:f9:c1:bc: c8:8c:e7:48:9e:9a:ef:aa:07:91:57:bc:df:93:68: cc:a0:30:6d:cf:a7:f7:70:94:68:37:9e:b1:83:77: b6:66:64:92:b5:da:f8:4c:0b:07:b9:77:7c:9b:66: 51:4d:cd:50:a0:c0:0a:77:f5:4b:75:dc:00:75:2e: ed:b8:19:f6:0a:0f:88:45:95:43:9b:6b:25:12:6f: ce:6e:1b:cd:90:de:2f:8e:a1:5b:0f:b1:63:e4:91: 68:d1:65:08:83:ec:ad:01:1b:d1:66:6f:8b:21:f7: 58:bd:ec:3f:03:37:69:15:42:4c:17:11:86:56:bd: 01:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CD:4F:71:DF:AF:A8:60:02:A1:87:0D:5F:42:24:97:C5:39:98:D8 X509v3 Authority Key Identifier: keyid:2A:9A:EF:6B:C1:29:91:4C:A0:B9:10:5C:92:71:DE:AF:39:DB:C8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/Kprva8EpkUyguRBcknHerznbyGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kprva8EpkUyguRBcknHerznbyGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147C4C/CCB20354B9E211EABC554B83C4F9AE02/6211D40A941F11EEA7C3E86FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:f380::/32 Signature Algorithm: sha256WithRSAEncryption 49:ae:41:47:8b:13:ff:3f:87:46:07:02:c8:0c:6b:83:ef:1c: 1f:ed:97:1f:28:19:ca:36:1c:3e:45:03:f7:9b:54:b8:71:75: 20:86:7a:87:8b:b3:71:83:39:a7:d6:54:95:cd:a6:15:36:43: c3:c8:e3:f4:c3:d8:e3:20:3f:32:74:e2:3e:a1:5f:8f:35:45: d7:d8:2c:d6:ba:0b:05:ad:54:ad:60:e9:8f:c1:05:a5:af:e5: d5:87:61:68:8c:9d:8c:47:09:b0:a4:fe:4e:42:a9:3f:99:eb: a4:8d:21:ee:33:ef:8a:c5:09:97:cb:22:5c:1d:c6:33:3e:e3: 25:d0:08:66:9c:5f:ec:02:41:c2:d2:6c:90:f8:59:c3:f2:66: 73:18:44:a7:23:63:6f:32:78:07:d9:27:cc:b3:d6:fd:5c:1e: ba:fe:b3:44:58:ea:dc:e6:ce:57:be:1c:e2:45:35:f3:5a:77: 71:6a:ab:3d:bc:04:94:ab:fd:10:97:46:94:ea:e4:84:f0:ea: af:eb:82:17:bd:21:68:16:3d:04:54:ad:3d:aa:81:51:96:5d: 75:20:0b:05:7d:8f:6c:b3:ed:fb:49:45:97:29:0b:13:d3:17: cd:1a:1a:f2:e7:0f:7a:38:3b:cd:37:98:6e:07:6c:c3:89:01: 4c:90:fe:d4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDNEMxMTAvBgNVBAUTKDJBOUFFRjZCQzEyOTkxNENBMEI5MTA1QzkyNzFERUFG MzlEQkM4NjYwHhcNMjMxMjA2MTAwODIwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwNDgxNC1iOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c6LfUWGTrY2vqsci17xfDCyJYuXXD2nwiXZZiss2pssfofNREV3AGipVj2x 8INwXjfosy7TQZCcQq37WjqSj6ArwR+ZHrRLKgp9MrIdvMDFmZ7IsuMGq7fHthTX WHSh9IPI3zoi8ivwDavxZMOVwqaASw097Sn4ac6ZvAEo7M5lc/75wbzIjOdInprv qgeRV7zfk2jMoDBtz6f3cJRoN56xg3e2ZmSStdr4TAsHuXd8m2ZRTc1QoMAKd/VL ddwAdS7tuBn2Cg+IRZVDm2slEm/ObhvNkN4vjqFbD7Fj5JFo0WUIg+ytARvRZm+L IfdYvew/AzdpFUJMFxGGVr0BewIDAQABo4ICljCCApIwHQYDVR0OBBYEFEjNT3Hf r6hgAqGHDV9CJJfFOZjYMB8GA1UdIwQYMBaAFCqa72vBKZFMoLkQXJJx3q8528hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0M0Qy9DQ0IyMDM1NEI5 RTIxMUVBQkM1NTRCODNDNEY5QUUwMi9LcHJ2YThFcGtVeWd1UkJja25IZXJ6bmJ5 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twcnZhOEVwa1V5Z3VSQmNrbkhlcnpuYnlHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdDNEMvQ0NCMjAzNTRCOUUyMTFFQUJDNTU0QjgzQzRGOUFFMDIvNjIxMUQ0MEE5 NDFGMTFFRUE3QzNFODZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBvOAMA0GCSqGSIb3DQEBCwUAA4IBAQBJrkFHixP/P4dG BwLIDGuD7xwf7ZcfKBnKNhw+RQP3m1S4cXUghnqHi7Nxgzmn1lSVzaYVNkPDyOP0 w9jjID8ydOI+oV+PNUXX2CzWugsFrVStYOmPwQWlr+XVh2FojJ2MRwmwpP5OQqk/ meukjSHuM++KxQmXyyJcHcYzPuMl0AhmnF/sAkHC0myQ+FnD8mZzGESnI2NvMngH 2SfMs9b9XB66/rNEWOrc5s5XvhziRTXzWndxaqs9vASUq/0Ql0aU6uSE8Oqv64IX vSFoFj0EVK09qoFRll11IAsFfY9ss+37SUWXKQsT0xfNGhry5w96ODvNN5huB2zD iQFMkP7U -----END CERTIFICATE-----Generated at Mon May 20 22:38:25 2024 by rpki-client on console-fra.rpki-client.org