$ rpki-client -vvf rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/D69878F04AC511ED84750D0BC4F9AE02.roa File: D69878F04AC511ED84750D0BC4F9AE02.roa (raw, json) Hash identifier: dWKmGg3ss87BRvLPTdzat+vk5i1cbRH/a2B+0FzIz2Y= Subject key identifier: 53:02:49:8D:73:A1:3E:07:C1:9A:82:95:B9:59:B4:4C:C4:E6:74:BE Certificate issuer: /CN=A915059B/serialNumber=CA877333B712345F05D2DC6706572E1CB6211778 Certificate serial: 0775 Authority key identifier: CA:87:73:33:B7:12:34:5F:05:D2:DC:67:06:57:2E:1C:B6:21:17:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yodzM7cSNF8F0txnBlcuHLYhF3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/D69878F04AC511ED84750D0BC4F9AE02.roa Signing time: Tue 30 Apr 2024 20:29:10 +0000 ROA not before: Tue 30 Apr 2024 20:29:10 +0000 ROA not after: Thu 29 Aug 2024 00:00:00 +0000 asID: 134084 IP address blocks: 2404:3080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/yodzM7cSNF8F0txnBlcuHLYhF3g.crl rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/yodzM7cSNF8F0txnBlcuHLYhF3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yodzM7cSNF8F0txnBlcuHLYhF3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1909 (0x775) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915059B/serialNumber=CA877333B712345F05D2DC6706572E1CB6211778 Validity Not Before: Apr 30 20:29:10 2024 GMT Not After : Aug 29 00:00:00 2024 GMT Subject: CN=66315495-9b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e5:b0:2a:99:60:2b:39:a6:6d:49:dd:17:2c: 29:bf:aa:a9:1a:99:d1:02:01:3c:11:41:0a:69:71: e3:9e:4c:22:78:0c:16:19:d1:e4:b4:8c:42:df:5b: 7d:f9:65:07:a8:fe:ce:ef:76:93:9c:00:c1:44:69: 82:7f:ca:6f:08:a6:67:89:79:d8:5c:9c:b1:29:ed: e5:77:99:25:1a:ac:05:35:21:62:19:83:e3:07:51: f0:1d:0c:99:b7:20:70:91:79:06:28:af:c3:a4:33: 1d:78:5d:1a:d7:58:3a:66:0e:bd:23:99:44:dd:69: 1a:7d:43:c0:c1:fd:8a:b1:df:b3:03:3d:68:26:3c: ed:4a:32:ef:ce:d2:ec:f1:8a:eb:e9:e7:60:2a:d6: 52:80:9f:bf:a7:90:3e:96:96:eb:e9:0e:9e:f2:40: 8d:ae:46:fe:00:58:a9:d4:e6:17:41:1e:1d:49:18: 50:87:c1:af:91:bc:df:cd:ab:45:17:a9:28:e2:d8: 49:cd:3b:ca:cd:c6:a3:d2:08:ed:93:db:70:6b:75: 45:4d:23:8e:37:47:e5:bb:99:80:10:61:08:ef:83: 94:68:c5:85:dd:38:1f:f0:b4:9d:1e:06:e4:44:e8: cb:9f:43:18:33:1d:66:18:a9:02:3c:b2:cf:b0:96: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:02:49:8D:73:A1:3E:07:C1:9A:82:95:B9:59:B4:4C:C4:E6:74:BE X509v3 Authority Key Identifier: keyid:CA:87:73:33:B7:12:34:5F:05:D2:DC:67:06:57:2E:1C:B6:21:17:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/yodzM7cSNF8F0txnBlcuHLYhF3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yodzM7cSNF8F0txnBlcuHLYhF3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915059B/74FB42A8227311EA8A0F3822C4F9AE02/D69878F04AC511ED84750D0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:3080::/32 Signature Algorithm: sha256WithRSAEncryption 1e:5f:c6:15:ca:8d:9a:79:c1:36:f5:dd:b8:19:49:47:d4:aa: 17:38:e5:7f:e5:a9:ce:b3:c1:66:35:f4:dc:7f:19:04:f7:19: 3d:4a:b5:19:bc:f0:3a:f2:14:c9:35:34:d3:4b:1f:0d:ee:14: 5b:bb:d8:40:a6:ce:34:b1:cc:3a:dd:0b:8c:bf:2d:46:0b:51: 05:8c:a3:cf:56:33:15:a8:a3:cb:02:31:bb:b9:20:a7:33:45: 98:51:81:1c:2e:a8:c4:97:94:7d:85:2c:1d:07:50:ad:84:b9: c3:2c:83:a8:0a:1a:b5:d9:ea:db:fe:76:84:c3:58:ff:61:fa: 29:2f:c1:86:01:3c:fe:86:ef:43:47:1e:8a:44:0f:35:d5:39: c0:ef:b9:5d:fb:bd:99:cc:f8:85:db:1d:3d:93:f5:3b:30:39: 4f:71:63:7e:0d:5c:48:19:d9:ab:7c:04:67:30:37:2c:58:0c: 75:f4:23:8e:d2:ea:8c:a5:56:68:3d:ac:02:2c:e1:6d:08:ed: cd:16:87:6b:26:76:e3:87:4f:ae:25:cd:7f:24:f3:c8:46:49: ff:ef:5e:4f:c0:91:75:1b:ba:f9:49:d0:de:90:fd:35:6e:d9: 3c:ca:5f:d8:cc:e9:22:c8:18:b0:a6:33:9a:10:7e:73:d5:7b: 9a:ed:4f:b0 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICB3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA1OUIxMTAvBgNVBAUTKENBODc3MzMzQjcxMjM0NUYwNUQyREM2NzA2NTcyRTFD QjYyMTE3NzgwHhcNMjQwNDMwMjAyOTEwWhcNMjQwODI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxNTQ5NS05YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweWwKplgKzmmbUndFywpv6qpGpnRAgE8EUEKaXHjnkwieAwWGdHktIxC31t9 +WUHqP7O73aTnADBRGmCf8pvCKZniXnYXJyxKe3ld5klGqwFNSFiGYPjB1HwHQyZ tyBwkXkGKK/DpDMdeF0a11g6Zg69I5lE3WkafUPAwf2Ksd+zAz1oJjztSjLvztLs 8Yrr6edgKtZSgJ+/p5A+lpbr6Q6e8kCNrkb+AFip1OYXQR4dSRhQh8GvkbzfzatF F6ko4thJzTvKzcaj0gjtk9twa3VFTSOON0flu5mAEGEI74OUaMWF3Tgf8LSdHgbk ROjLn0MYMx1mGKkCPLLPsJYtJQIDAQABo4ICljCCApIwHQYDVR0OBBYEFFMCSY1z oT4HwZqClblZtEzE5nS+MB8GA1UdIwQYMBaAFMqHczO3EjRfBdLcZwZXLhy2IRd4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDU5Qi83NEZCNDJBODIy NzMxMUVBOEEwRjM4MjJDNEY5QUUwMi95b2R6TTdjU05GOEYwdHhuQmxjdUhMWWhG M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvZHpNN2NTTkY4RjB0eG5CbGN1SExZaEYzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA1OUIvNzRGQjQyQTgyMjczMTFFQThBMEYzODIyQzRGOUFFMDIvRDY5ODc4RjA0 QUM1MTFFRDg0NzUwRDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBDCAMA0GCSqGSIb3DQEBCwUAA4IBAQAeX8YVyo2aecE2 9d24GUlH1KoXOOV/5anOs8FmNfTcfxkE9xk9SrUZvPA68hTJNTTTSx8N7hRbu9hA ps40scw63QuMvy1GC1EFjKPPVjMVqKPLAjG7uSCnM0WYUYEcLqjEl5R9hSwdB1Ct hLnDLIOoChq12erb/naEw1j/YfopL8GGATz+hu9DRx6KRA811TnA77ld+72ZzPiF 2x09k/U7MDlPcWN+DVxIGdmrfARnMDcsWAx19COO0uqMpVZoPawCLOFtCO3NFodr Jnbjh0+uJc1/JPPIRkn/715PwJF1G7r5SdDekP01btk8yl/YzOkiyBiwpjOaEH5z 1Xua7U+w -----END CERTIFICATE-----Generated at Thu May 16 21:45:27 2024 by rpki-client on console-fra.rpki-client.org