$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/9DC49A2449A011EEB3DFDD0DC4F9AE02.roa File: 9DC49A2449A011EEB3DFDD0DC4F9AE02.roa (raw, json) Hash identifier: xOVuVnDiFE1JCQz3GBc+icRwwU9NeM/p6yNTteTzOAA= Subject key identifier: 9A:52:05:DD:E5:BC:12:8E:34:E5:A6:62:C0:0A:81:5E:66:58:CD:34 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 0159 Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/9DC49A2449A011EEB3DFDD0DC4F9AE02.roa Signing time: Sat 02 Sep 2023 14:54:29 +0000 ROA not before: Sat 02 Sep 2023 14:54:29 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 216401 IP address blocks: 2400:9ce0:2000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Sep 2 14:54:29 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f34ca4-2cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:3c:cb:45:db:39:2c:5b:d5:81:d4:c4:0b: e1:68:20:0d:de:4e:28:05:de:98:e4:d4:51:fb:23: b7:06:49:c9:95:14:0a:5a:6c:d9:09:27:64:8a:d4: ce:dc:8b:a6:72:cf:25:96:49:96:84:0c:fa:23:7f: a4:47:78:1c:2b:51:81:c6:6f:ee:63:4b:f1:ff:c3: 6d:4b:36:7d:22:c9:9e:52:2c:22:9d:3b:04:0b:28: dc:06:6a:56:0c:c6:bb:5c:f9:54:d2:80:fd:97:58: 5c:0b:7c:67:fd:9f:4c:4d:ef:c3:8d:68:a5:40:9f: 17:c1:15:dc:4d:3f:47:42:50:33:17:c5:76:c6:3c: 68:9b:4b:ac:fb:45:61:54:cc:81:5e:e6:fb:fb:93: e6:69:2f:a1:92:8c:8e:b3:e6:81:f1:ab:60:9c:33: d5:b5:6b:40:33:13:45:e4:d6:88:bf:02:35:85:b6: be:e3:3e:cb:1d:13:2d:30:ab:ea:b4:90:83:90:b6: 12:21:c3:33:05:4b:df:95:04:db:38:2a:27:a6:de: 66:b4:a3:24:ee:92:44:39:aa:eb:9d:e6:43:ac:93: 71:f0:ef:40:cc:4b:25:9b:ec:54:c8:d7:9b:82:14: f1:51:11:9e:ee:d2:4a:8b:62:d3:86:54:fb:ac:9a: 8b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:52:05:DD:E5:BC:12:8E:34:E5:A6:62:C0:0A:81:5E:66:58:CD:34 X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/9DC49A2449A011EEB3DFDD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9ce0:2000::/44 Signature Algorithm: sha256WithRSAEncryption 1a:e1:3d:8e:2c:7e:ff:ef:13:8c:b7:72:9c:d7:c7:27:74:50: 35:85:ea:1f:a9:47:b0:f0:98:ef:5f:32:09:2a:2f:b3:f1:53: cf:d4:c9:e8:f3:b6:f0:f3:c5:bf:bb:b9:c7:d1:4f:d2:0b:4a: 51:1e:c8:65:55:e4:91:0d:cc:7d:c6:be:c9:3f:3f:db:45:8a: 40:10:07:6d:72:d3:b7:8a:ca:ef:71:6a:2b:d8:ae:45:fc:1a: 4d:d9:5f:9c:f2:bb:d4:c3:17:20:86:53:36:f2:9f:62:4e:bd: f5:42:bb:95:27:63:ba:ce:f4:17:1f:27:7f:22:f7:be:77:00: e8:70:7c:1c:ae:09:e3:6f:1b:f4:8f:81:cc:fb:4c:87:01:38: 46:90:2e:be:4f:7f:7d:d6:dd:3b:d4:8d:e1:5e:d0:10:44:1f: 57:ef:39:ab:af:30:53:33:71:a7:14:49:12:e9:93:a8:d6:f7: 7a:96:13:72:eb:80:93:b2:0a:ff:12:c5:21:5f:4f:b7:a0:35: 88:ec:ea:fb:04:e6:5e:07:09:56:67:f9:0b:88:b9:69:65:94: 22:fc:03:1f:f7:19:91:3a:c5:6f:df:09:47:9f:68:da:15:22: 83:d0:8c:14:de:51:90:de:a8:e1:2a:5f:3f:d7:6f:3b:61:61: 33:8d:b3:41 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjMwOTAyMTQ1NDI5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzNGNhNC0yY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDY8y0XbOSxb1YHUxAvhaCAN3k4oBd6Y5NRR+yO3BknJlRQKWmzZCSdkitTO 3Iumcs8llkmWhAz6I3+kR3gcK1GBxm/uY0vx/8NtSzZ9IsmeUiwinTsECyjcBmpW DMa7XPlU0oD9l1hcC3xn/Z9MTe/DjWilQJ8XwRXcTT9HQlAzF8V2xjxom0us+0Vh VMyBXub7+5PmaS+hkoyOs+aB8atgnDPVtWtAMxNF5NaIvwI1hba+4z7LHRMtMKvq tJCDkLYSIcMzBUvflQTbOConpt5mtKMk7pJEOarrneZDrJNx8O9AzEslm+xUyNeb ghTxURGe7tJKi2LThlT7rJqLiQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJpSBd3l vBKONOWmYsAKgV5mWM00MB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JBQzUvNDcwQTYyMDQxNTMwMTFFREJBQTNEMDI3QzRGOUFFMDIvOURDNDlBMjQ0 OUEwMTFFRUIzREZERDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAJzgIAAwDQYJKoZIhvcNAQELBQADggEBABrhPY4sfv/v E4y3cpzXxyd0UDWF6h+pR7DwmO9fMgkqL7PxU8/UyejztvDzxb+7ucfRT9ILSlEe yGVV5JENzH3Gvsk/P9tFikAQB21y07eKyu9xaivYrkX8Gk3ZX5zyu9TDFyCGUzby n2JOvfVCu5UnY7rO9BcfJ38i9753AOhwfByuCeNvG/SPgcz7TIcBOEaQLr5Pf33W 3TvUjeFe0BBEH1fvOauvMFMzcacUSRLpk6jW93qWE3LrgJOyCv8SxSFfT7egNYjs 6vsE5l4HCVZn+QuIuWlllCL8Ax/3GZE6xW/fCUefaNoVIoPQjBTeUZDeqOEqXz/X bzthYTONs0E= -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org