$ rpki-client -vvf rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/6307B34A7CAD11EE9E7B9434C4F9AE02.roa File: 6307B34A7CAD11EE9E7B9434C4F9AE02.roa (raw, json) Hash identifier: A/66WVnR6iyQK+uVOIUrx69ZO3LnxCjGqEQUEBn3Lxc= Subject key identifier: C0:5B:8B:B6:95:E3:29:CA:1E:A5:2E:95:EA:11:EF:71:14:0B:8B:6D Certificate issuer: /CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Certificate serial: 02 Authority key identifier: C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/6307B34A7CAD11EE9E7B9434C4F9AE02.roa Signing time: Mon 06 Nov 2023 14:04:23 +0000 ROA not before: Mon 06 Nov 2023 14:04:23 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 15830 IP address blocks: 2400:9460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 07:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Validity Not Before: Nov 6 14:04:23 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6548f267-e6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:cd:7e:8e:43:e5:68:6e:11:12:b0:5b:eb: 84:9e:8f:47:b7:19:3d:83:cc:7c:f2:d9:60:26:b6: 48:70:04:30:92:a1:8c:fd:ca:6e:a6:63:f4:41:51: af:6a:82:58:98:1c:49:8b:3e:ec:d0:05:90:4a:95: f8:ad:74:c0:62:fb:3f:fa:01:a1:80:c2:cd:ab:69: 51:40:bd:46:d3:89:24:8f:fe:f3:dd:a3:2d:4e:85: 51:46:19:f2:2d:54:90:b7:a1:b6:66:51:66:d0:57: 21:b1:db:45:7e:64:90:ec:b4:b6:69:32:f7:af:57: 3b:e2:49:0b:d2:ed:d4:95:7b:e4:1a:00:a1:ea:0d: e9:5c:37:57:fc:20:a6:8d:5d:ba:3f:af:c9:a3:39: 87:69:a3:93:4b:cf:6b:df:4c:ce:3b:49:f6:44:55: 43:17:98:84:e2:53:fc:68:21:bb:32:23:40:92:69: b9:17:c6:1f:a3:41:1f:8a:c4:86:ab:2b:3f:08:af: 7f:e9:db:61:e5:c3:c0:d5:15:98:f2:84:b3:ef:c1: 22:8c:e7:29:b1:d2:88:10:92:b6:db:16:b8:f8:42: 94:b0:94:fe:98:3f:69:b4:0a:c1:37:8d:49:ea:29: 50:f4:72:a0:88:67:d8:62:24:8b:27:22:59:bd:97: 34:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:5B:8B:B6:95:E3:29:CA:1E:A5:2E:95:EA:11:EF:71:14:0B:8B:6D X509v3 Authority Key Identifier: keyid:C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/6307B34A7CAD11EE9E7B9434C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9460::/32 Signature Algorithm: sha256WithRSAEncryption a0:c7:e0:d5:b1:bb:86:af:49:c5:bb:d6:d2:c8:64:ba:00:f2: 51:f6:a8:e5:5f:c6:86:2a:f1:01:3b:13:53:85:85:dd:50:3c: 46:1c:d6:1d:45:9c:04:f6:07:db:86:9f:11:1e:83:fa:24:1d: 26:b6:4d:f3:46:78:50:75:b8:a8:ad:48:07:dd:fb:f0:cd:43: ea:ad:36:b5:b1:91:38:61:de:32:fa:12:54:3a:c9:f2:98:bf: 38:21:12:ac:9c:79:7c:43:0d:cf:3e:17:cd:a1:34:63:35:ff: 63:c7:eb:5e:3e:47:a5:74:6b:ba:fe:a0:2a:0a:ea:5f:78:4e: b0:9a:b9:c4:e0:8c:1a:ff:dc:a4:37:e2:74:cc:cc:8f:d1:9c: d2:73:9d:30:b8:d5:2a:2d:97:2f:f5:0f:35:e6:ba:03:e9:b6: a1:92:d9:50:c8:e1:fa:29:8d:ee:52:8d:eb:5a:0e:63:8a:33: dc:c1:51:5b:0d:63:ff:a5:41:f6:23:81:75:49:05:87:59:ee: fb:16:33:0e:1d:1d:b6:e9:70:cb:ef:da:26:50:89:3a:3d:a3: c1:e3:27:9d:04:f7:24:89:2b:3f:10:2d:95:93:f5:72:9f:d3: 9b:52:c4:61:be:cb:4f:4c:e0:cd:dd:f5:0d:d5:80:50:64:b8: da:11:a1:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjBGNjExMC8GA1UEBRMoQzBBRUY3MDc3RjUyNjIyNTY3MTc5QUNFNTZBRDVFRThD RDY0NjA0RTAeFw0yMzExMDYxNDA0MjNaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDhmMjY3LWU2ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDfc1+jkPlaG4RErBb64Sej0e3GT2DzHzy2WAmtkhwBDCSoYz9ym6mY/RBUa9q gliYHEmLPuzQBZBKlfitdMBi+z/6AaGAws2raVFAvUbTiSSP/vPdoy1OhVFGGfIt VJC3obZmUWbQVyGx20V+ZJDstLZpMvevVzviSQvS7dSVe+QaAKHqDelcN1f8IKaN Xbo/r8mjOYdpo5NLz2vfTM47SfZEVUMXmITiU/xoIbsyI0CSabkXxh+jQR+KxIar Kz8Ir3/p22Hlw8DVFZjyhLPvwSKM5ymx0ogQkrbbFrj4QpSwlP6YP2m0CsE3jUnq KVD0cqCIZ9hiJIsnIlm9lzQNAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUwFuLtpXj KcoepS6V6hHvcRQLi20wHwYDVR0jBBgwFoAUwK73B39SYiVnF5rOVq1e6M1kYE4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMEY2L0ZFRTA1QkVDN0NB QzExRUU4QTI4ODQ2RkM0RjlBRTAyL3dLNzNCMzlTWWlWbkY1ck9WcTFlNk0xa1lF NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd0s3M0IzOVNZaVZuRjVyT1ZxMWU2TTFrWUU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjBGNi9GRUUwNUJFQzdDQUMxMUVFOEEyODg0NkZDNEY5QUUwMi82MzA3QjM0QTdD QUQxMUVFOUU3Qjk0MzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQAlGAwDQYJKoZIhvcNAQELBQADggEBAKDH4NWxu4avScW7 1tLIZLoA8lH2qOVfxoYq8QE7E1OFhd1QPEYc1h1FnAT2B9uGnxEeg/okHSa2TfNG eFB1uKitSAfd+/DNQ+qtNrWxkThh3jL6ElQ6yfKYvzghEqyceXxDDc8+F82hNGM1 /2PH614+R6V0a7r+oCoK6l94TrCaucTgjBr/3KQ34nTMzI/RnNJznTC41Sotly/1 DzXmugPptqGS2VDI4fopje5SjetaDmOKM9zBUVsNY/+lQfYjgXVJBYdZ7vsWMw4d HbbpcMvv2iZQiTo9o8HjJ50E9ySJKz8QLZWT9XKf05tSxGG+y09M4M3d9Q3VgFBk uNoRofY= -----END CERTIFICATE-----Generated at Fri May 3 10:34:08 2024 by rpki-client on console-ams.rpki-client.org