$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa File: 21A658D2BA5311EEB6DF2E4BC4F9AE02.roa (raw, json) Hash identifier: W/VRaYH6NArKrO+rZr7ZD6PCZ3burkMu5lleMqSZ0MI= Subject key identifier: 2D:2D:56:CE:9A:0A:89:CB:86:6B:25:89:F0:83:E9:0B:69:1B:0A:C6 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0BC1 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa Signing time: Wed 24 Jan 2024 00:54:31 +0000 ROA not before: Wed 24 Jan 2024 00:54:31 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 216056 IP address blocks: 2406:840:eef0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jan 24 00:54:31 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65b05fc6-98e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9a:6e:0c:61:df:a2:44:32:a5:5b:fe:aa:c4: e2:45:be:73:6e:f3:ae:ff:9f:c5:91:a2:22:15:02: f0:82:43:f7:34:62:df:84:55:0a:0d:f1:b2:3b:e4: d7:dc:f6:50:c2:fb:41:c9:c0:9d:1f:db:31:53:8a: a7:78:3e:56:52:cb:db:bf:e7:36:32:e6:5b:2e:02: fc:19:e4:b1:6b:63:01:76:3b:99:dd:05:ad:40:c7: c3:c0:b7:f8:f6:5c:66:ac:ca:61:0f:26:33:44:6c: 88:e8:3e:80:7f:34:cc:70:d5:16:a1:81:80:13:d0: f5:ca:65:04:f1:0f:07:5e:0b:d4:d6:df:c2:53:f7: 52:45:5e:6b:28:63:35:ee:67:d4:81:28:00:ca:2c: a3:e3:a8:e1:01:95:9d:e6:67:8f:73:17:e7:fd:59: d7:5c:eb:af:3d:72:3d:f6:ae:b1:49:32:a7:2d:b6: 40:19:6d:4e:bb:62:4b:0b:25:e0:23:80:69:a1:20: 1e:de:24:49:ef:6c:4c:c2:ef:da:ad:6b:38:1d:f6: 5d:80:3e:83:ea:db:ba:95:ad:c1:19:3a:d8:82:dd: eb:2b:59:8f:4f:d1:3f:28:4e:bd:2b:76:1d:0d:09: e4:70:ff:5a:6a:fe:db:4a:3e:80:92:b9:89:46:20: 56:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2D:56:CE:9A:0A:89:CB:86:6B:25:89:F0:83:E9:0B:69:1B:0A:C6 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/21A658D2BA5311EEB6DF2E4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:eef0::/44 Signature Algorithm: sha256WithRSAEncryption 70:53:52:62:fb:cc:34:f2:84:96:d0:e4:fd:9c:8e:4f:98:5e: 3a:99:49:53:cd:52:09:7f:38:54:40:31:dc:91:e2:c5:2c:ee: 54:08:c0:83:eb:a5:04:ff:cb:d4:64:9c:19:d5:8a:5f:92:51: a0:41:cc:8d:34:e0:90:86:20:46:f1:e4:98:d4:33:77:b1:86: 7c:d2:9c:eb:f2:b1:7b:b6:f9:ce:40:96:64:0a:ad:85:63:97: 00:d8:2f:2b:97:33:ea:8f:3b:92:b2:52:e8:49:d4:e1:3e:90: 1c:c0:11:6e:ea:81:b0:ce:59:b1:3d:6b:e2:28:02:20:4b:f3: 8c:37:a2:42:36:d0:a3:0e:85:2f:3f:15:49:8f:3b:d7:c7:0d: 0a:0f:cb:cc:f5:5f:f7:56:ed:19:18:b0:45:4b:b6:e2:6e:ed: c1:bb:b2:f7:6c:b1:b1:36:35:85:6b:0c:c0:9c:3a:a2:26:ce: 0b:92:cb:29:d0:89:59:8e:d8:12:37:64:5d:c3:72:72:ae:46: dd:ce:e3:eb:32:89:f7:f1:a0:d7:f3:6e:24:db:e0:85:9b:10: bd:32:8e:57:9e:a4:3e:81:43:89:25:fc:5c:98:33:15:35:4d: b1:ac:43:34:6d:f3:75:a6:dd:b5:58:72:3c:ee:36:d5:49:1c: 4e:7c:77:38 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwMTI0MDA1NDMxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIwNWZjNi05OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJpuDGHfokQypVv+qsTiRb5zbvOu/5/FkaIiFQLwgkP3NGLfhFUKDfGyO+TX 3PZQwvtBycCdH9sxU4qneD5WUsvbv+c2MuZbLgL8GeSxa2MBdjuZ3QWtQMfDwLf4 9lxmrMphDyYzRGyI6D6AfzTMcNUWoYGAE9D1ymUE8Q8HXgvU1t/CU/dSRV5rKGM1 7mfUgSgAyiyj46jhAZWd5mePcxfn/VnXXOuvPXI99q6xSTKnLbZAGW1Ou2JLCyXg I4BpoSAe3iRJ72xMwu/arWs4HfZdgD6D6tu6la3BGTrYgt3rK1mPT9E/KE69K3Yd DQnkcP9aav7bSj6AkrmJRiBW1QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC0tVs6a ConLhmslifCD6QtpGwrGMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMjFBNjU4RDJC QTUzMTFFRUI2REYyRTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA7vAwDQYJKoZIhvcNAQELBQADggEBAHBTUmL7zDTy hJbQ5P2cjk+YXjqZSVPNUgl/OFRAMdyR4sUs7lQIwIPrpQT/y9RknBnVil+SUaBB zI004JCGIEbx5JjUM3exhnzSnOvysXu2+c5AlmQKrYVjlwDYLyuXM+qPO5KyUuhJ 1OE+kBzAEW7qgbDOWbE9a+IoAiBL84w3okI20KMOhS8/FUmPO9fHDQoPy8z1X/dW 7RkYsEVLtuJu7cG7svdssbE2NYVrDMCcOqImzguSyynQiVmO2BI3ZF3DcnKuRt3O 4+syiffxoNfzbiTb4IWbEL0yjleepD6BQ4kl/FyYMxU1TbGsQzRt83Wm3bVYcjzu NtVJHE58dzg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org