$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa File: 7A5A3018369911EEA7B51070C4F9AE02.roa (raw, json) Hash identifier: zw7CoMnNEQBUTgULQNOkotQEalwjFX9jkxfsyc4ldfU= Subject key identifier: 60:62:BF:76:8D:BE:37:43:BD:52:59:37:66:04:3E:C2:DC:12:70:94 Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Certificate serial: 02AF Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa Signing time: Fri 20 Oct 2023 10:05:14 +0000 ROA not before: Fri 20 Oct 2023 10:05:14 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141039 IP address blocks: 2407:e8c0:10::/48 maxlen: 48 2407:e8c0:4000::/40 maxlen: 40 2407:e8c0:4100::/40 maxlen: 40 2407:e8c0:4200::/40 maxlen: 40 2407:e8c0:4300::/40 maxlen: 40 2407:e8c0:4400::/40 maxlen: 40 2407:e8c0:4500::/40 maxlen: 40 2407:e8c0:4600::/40 maxlen: 40 2407:e8c0:4700::/40 maxlen: 40 2407:e8c0:4800::/40 maxlen: 40 2407:e8c0:4900::/40 maxlen: 40 2407:e8c0:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2 Validity Not Before: Oct 20 10:05:14 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653250da-173e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:52:c9:55:5a:10:59:02:d8:cf:6e:29:6a: bb:ba:98:f9:ab:aa:1a:45:c3:2e:d1:5a:24:aa:8e: fa:66:94:fe:a7:f2:d9:9a:63:4e:7d:a0:6f:39:a9: f3:55:e0:6a:a6:8e:01:22:ab:a6:ab:bf:11:9c:e6: bd:c5:0b:7c:93:d1:34:91:0d:2c:7c:6f:30:11:aa: e7:7d:84:1c:96:02:86:a7:40:e2:00:4a:34:f9:40: c6:8d:0d:e3:52:8d:e4:72:21:d2:bf:5c:35:b9:4d: f9:ec:ee:3e:54:bf:96:98:82:44:2d:32:ea:26:ba: aa:28:8c:b5:76:3b:d5:9a:ef:b5:b6:f9:96:06:e7: 78:aa:83:c1:4b:d1:9f:ff:3d:bc:8d:41:13:45:0f: 09:31:74:c4:27:4f:37:4c:20:49:d1:cc:31:98:31: 10:20:da:a7:c9:c3:4c:f7:0e:01:2f:f8:69:74:87: 16:e3:2a:ab:72:57:00:b6:86:63:31:5c:31:db:6d: 47:83:ac:d8:a1:34:59:4d:8d:26:01:06:e4:ba:06: 5d:4f:be:2c:61:b9:7e:cf:b6:40:bd:e4:09:0b:0b: a1:9d:f5:87:36:94:6c:51:fc:de:e4:70:18:2d:1d: ce:ed:23:ea:dd:de:79:14:f2:c0:7e:73:c2:04:bc: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:62:BF:76:8D:BE:37:43:BD:52:59:37:66:04:3E:C2:DC:12:70:94 X509v3 Authority Key Identifier: keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/7A5A3018369911EEA7B51070C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e8c0:10::/48 2407:e8c0:4000::-2407:e8c0:49ff:ffff:ffff:ffff:ffff:ffff 2407:e8c0:6000::/40 Signature Algorithm: sha256WithRSAEncryption 77:7a:80:e3:b1:ab:f7:31:27:66:5a:6f:85:3a:3d:da:e4:d0: ce:d3:91:e2:cd:7d:67:92:ba:9b:a7:8c:81:4d:30:a2:74:b9: 30:f8:7b:da:72:8f:61:ee:ac:8f:7c:81:02:7c:46:6f:a8:31: e4:46:2a:22:45:2f:7c:0a:7d:f2:4a:b5:cc:04:3b:b5:07:6f: 76:ff:86:82:38:ff:9d:6b:bb:c1:66:54:ac:2d:38:de:21:8b: 72:04:68:89:9e:24:8f:b2:d1:7e:cb:ca:1a:18:3e:fd:d0:f3: bb:e6:2c:91:c2:e3:dd:e7:cf:68:ac:99:86:8b:b6:2a:0f:02: af:b8:70:e0:93:89:57:81:12:dd:5a:b8:ef:95:22:bf:71:af: 15:62:70:3d:c1:6e:ff:4a:e2:a9:17:68:18:0d:77:52:85:4f: 38:b1:8f:4d:eb:d3:51:bb:20:74:cf:7a:04:01:af:78:83:63: a3:02:92:ea:7a:5f:7a:c3:36:e1:ad:70:e3:08:00:b8:bd:a4: 9e:36:5e:14:8f:af:7f:b8:7f:8c:f2:3c:a5:d0:e7:4c:f6:c3: f4:39:36:44:0f:7f:ae:70:12:cf:59:f8:80:c3:52:d1:fa:b8: a2:b2:19:a7:92:0d:a0:ed:84:d0:30:ed:60:89:5c:cf:14:ae: db:fd:40:c9 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJFRTExMTAvBgNVBAUTKDYwNzZCRDBCQTREQjc5N0E3MkE2OEZFRkY5QkZCNTU4 QzQ0Mzk4QjIwHhcNMjMxMDIwMTAwNTE0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyNTBkYS0xNzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp11SyVVaEFkC2M9uKWq7upj5q6oaRcMu0Vokqo76ZpT+p/LZmmNOfaBvOanz VeBqpo4BIqumq78RnOa9xQt8k9E0kQ0sfG8wEarnfYQclgKGp0DiAEo0+UDGjQ3j Uo3kciHSv1w1uU357O4+VL+WmIJELTLqJrqqKIy1djvVmu+1tvmWBud4qoPBS9Gf /z28jUETRQ8JMXTEJ083TCBJ0cwxmDEQINqnycNM9w4BL/hpdIcW4yqrclcAtoZj MVwx221Hg6zYoTRZTY0mAQbkugZdT74sYbl+z7ZAveQJCwuhnfWHNpRsUfze5HAY LR3O7SPq3d55FPLAfnPCBLyv9QIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFGBiv3aN vjdDvVJZN2YEPsLcEnCUMB8GA1UdIwQYMBaAFGB2vQuk23l6cqaP7/m/tVjEQ5iy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkVFMS83NTJENDJFODhG RDIxMUVDOTQ4QTkzN0VDNEY5QUUwMi9ZSGE5QzZUYmVYcHlwb192LWItMVdNUkRt TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYTlDNlRiZVhweXBvX3YtYi0xV01SRG1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjJFRTEvNzUyRDQyRTg4RkQyMTFFQzk0OEE5MzdFQzRGOUFFMDIvN0E1QTMwMTgz Njk5MTFFRUE3QjUxMDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMCkEAgACMCMDBwAkB+jAABAwEAMGBiQH6MBAAwYBJAfowEgDBgAkB+jAYDAN BgkqhkiG9w0BAQsFAAOCAQEAd3qA47Gr9zEnZlpvhTo92uTQztOR4s19Z5K6m6eM gU0wonS5MPh72nKPYe6sj3yBAnxGb6gx5EYqIkUvfAp98kq1zAQ7tQdvdv+Ggjj/ nWu7wWZUrC043iGLcgRoiZ4kj7LRfsvKGhg+/dDzu+YskcLj3efPaKyZhou2Kg8C r7hw4JOJV4ES3Vq475Uiv3GvFWJwPcFu/0riqRdoGA13UoVPOLGPTevTUbsgdM96 BAGveINjowKS6npfesM24a1w4wgAuL2knjZeFI+vf7h/jPI8pdDnTPbD9Dk2RA9/ rnASz1n4gMNS0fq4orIZp5INoO2E0DDtYIlczxSu2/1AyQ== -----END CERTIFICATE-----Generated at Tue May 21 04:10:45 2024 by rpki-client on console-fra.rpki-client.org