$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa File: 1CF2F758E04711EAAA35044CC4F9AE02.roa (raw, json) Hash identifier: RXtEx9YHfft8G1MpFVeomSwwbex0uog9gS1VLSL4fTo= Subject key identifier: EC:B5:F4:CC:8B:A5:4A:AD:BE:08:BD:F5:8B:92:EE:6C:A8:18:FE:30 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A38 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:09 +0000 ROA not before: Sun 14 May 2023 22:14:09 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137835 IP address blocks: 2406:840:f440::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2616 (0xa38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:09 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d30-9264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a9:80:43:b3:5e:34:26:01:63:6a:70:dd:c6: 4b:9e:e8:af:dd:ee:4c:d5:80:e0:9e:4d:f0:45:dc: 37:30:59:48:0e:e7:cf:98:4e:b6:91:ae:cd:f0:a7: 4a:71:f1:42:ad:73:dc:75:ef:a4:56:78:12:c6:fa: f3:dc:a5:a2:10:f2:5b:f3:b0:21:a4:e8:54:26:79: 25:3a:22:bf:a1:6f:ee:83:c3:19:ab:6c:e6:40:51: ff:c1:c1:45:2b:f1:e0:05:89:f1:93:c7:66:e8:69: 94:ce:87:13:a2:c5:2c:fa:ab:06:d9:15:9e:db:6d: a2:38:10:f5:81:7b:e6:55:e0:a1:1c:13:56:75:87: bc:07:76:b0:1d:fa:47:a0:59:b5:23:74:bd:da:1a: 63:fb:77:17:ce:f5:f1:d1:79:d9:fb:09:2b:af:0a: fc:3f:62:c0:3d:56:77:79:40:d4:f5:c3:6f:3d:31: 61:a4:3b:af:45:32:48:91:b8:26:b7:11:7c:51:6e: 8c:9a:61:fe:2f:72:3c:92:09:af:05:84:2f:f3:34: 1e:3a:aa:aa:aa:0d:c0:42:8d:50:49:8b:79:ae:84: 60:9b:5e:43:4b:b6:56:5e:0e:1d:89:a6:b1:01:af: fe:dd:33:e7:f7:56:e6:b1:61:aa:9d:b8:95:52:b5: e0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B5:F4:CC:8B:A5:4A:AD:BE:08:BD:F5:8B:92:EE:6C:A8:18:FE:30 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/1CF2F758E04711EAAA35044CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f440::/44 Signature Algorithm: sha256WithRSAEncryption a4:13:21:9d:0c:5f:cf:f1:9a:38:d1:35:a2:ad:ad:bb:82:65: 29:3d:0b:a2:2b:8a:9f:e1:f6:d2:e3:30:02:30:5c:ac:d3:9e: cf:b6:ed:19:6e:47:8f:88:e7:8a:ac:5f:08:a3:4b:fb:66:33: 42:7d:2e:fc:ed:7c:92:6e:6a:97:ae:7a:61:45:e1:2c:23:ce: ae:e3:36:7f:9d:c5:69:aa:0f:e9:47:03:d5:9c:dc:59:85:21: 8a:35:d0:17:03:6d:e0:53:cc:6d:03:20:b7:b0:dd:8c:98:ff: f7:9e:34:fa:fc:62:8d:d0:5b:32:46:5f:7f:0f:f8:7e:56:cc: ea:f8:ed:c4:ef:c9:26:3f:65:2a:61:73:a3:ad:3a:01:94:d8: 6e:30:7c:56:97:6d:5d:56:7d:60:0b:aa:34:b3:f3:79:44:17: f9:d8:e9:84:97:92:d4:0c:61:98:a1:89:d1:55:57:44:e0:fc: b3:90:0d:c0:6b:37:a7:39:91:22:4e:a1:b1:12:40:b3:7a:e5: 04:9e:db:4a:2a:75:08:8e:4c:8f:f3:66:bd:0a:97:78:3e:70: 24:0a:c6:b6:64:2d:4b:5c:62:aa:e6:d6:5f:56:8b:c4:c9:36: 39:91:62:84:a9:81:86:ac:ea:97:26:6d:b2:52:24:d6:c7:c4: ca:33:81:13 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDA5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQzMC05MjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6KmAQ7NeNCYBY2pw3cZLnuiv3e5M1YDgnk3wRdw3MFlIDufPmE62ka7N8KdK cfFCrXPcde+kVngSxvrz3KWiEPJb87AhpOhUJnklOiK/oW/ug8MZq2zmQFH/wcFF K/HgBYnxk8dm6GmUzocTosUs+qsG2RWe222iOBD1gXvmVeChHBNWdYe8B3awHfpH oFm1I3S92hpj+3cXzvXx0XnZ+wkrrwr8P2LAPVZ3eUDU9cNvPTFhpDuvRTJIkbgm txF8UW6MmmH+L3I8kgmvBYQv8zQeOqqqqg3AQo1QSYt5roRgm15DS7ZWXg4diaax Aa/+3TPn91bmsWGqnbiVUrXg9wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOy19MyL pUqtvgi99YuS7myoGP4wMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMUNGMkY3NThF MDQ3MTFFQUFBMzUwNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA9EAwDQYJKoZIhvcNAQELBQADggEBAKQTIZ0MX8/x mjjRNaKtrbuCZSk9C6Irip/h9tLjMAIwXKzTns+27RluR4+I54qsXwijS/tmM0J9 LvztfJJuapeuemFF4Swjzq7jNn+dxWmqD+lHA9Wc3FmFIYo10BcDbeBTzG0DILew 3YyY//eeNPr8Yo3QWzJGX38P+H5WzOr47cTvySY/ZSphc6OtOgGU2G4wfFaXbV1W fWALqjSz83lEF/nY6YSXktQMYZihidFVV0Tg/LOQDcBrN6c5kSJOobESQLN65QSe 20oqdQiOTI/zZr0Kl3g+cCQKxrZkLUtcYqrm1l9Wi8TJNjmRYoSpgYas6pcmbbJS JNbHxMozgRM= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org