$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa File: 2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa (raw, json) Hash identifier: q7Gmi3bWQan2NtqIN1WEfkijsyzjrlOtlUnvaXOsdAk= Subject key identifier: 72:5C:46:F4:8A:EC:75:3D:43:CF:B7:B5:28:16:7B:1E:FB:C4:DB:BD Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A32 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa Signing time: Sun 14 May 2023 22:14:02 +0000 ROA not before: Sun 14 May 2023 22:14:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134488 IP address blocks: 2406:840:e800::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2610 (0xa32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d29-5126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:e4:b1:d0:43:cb:b7:bc:e6:e2:9e:1b:7a: 04:bb:8b:db:67:8d:f0:3d:82:1f:18:01:91:e7:3e: 59:9e:77:39:53:b4:07:84:d1:26:24:8b:2f:5e:99: 1e:66:88:65:10:87:73:c6:bf:83:3b:5a:cd:df:5a: 46:a8:4e:18:23:32:4e:f1:db:d5:14:b3:35:10:a5: 37:30:5a:78:57:9e:81:32:04:20:94:6b:5a:d8:4f: 8d:33:b5:98:54:cf:e4:e5:29:a1:20:89:7c:19:19: 8d:69:64:e0:bf:90:33:d5:a0:9d:0b:3f:5f:b1:e3: 70:85:84:42:8e:ee:aa:93:13:fc:00:c6:d4:ee:dd: 4f:b0:08:50:e8:57:89:83:bd:d7:d9:b5:80:13:d8: bc:fb:28:70:a2:22:d2:46:3d:6e:6f:0b:50:4f:d1: 3a:cf:21:99:a1:4a:86:5f:07:f2:5c:3b:b7:66:d5: 90:85:09:9f:a0:be:7d:c9:4c:fd:f3:ba:0f:2b:4d: 94:a3:71:a8:fc:6e:19:51:5c:d4:48:d0:f5:19:14: 9c:c6:c5:1a:56:f9:bb:f0:f8:fe:81:56:c4:a5:89: 91:49:55:a3:13:2d:30:ea:7c:58:ea:0d:0c:35:95: 8b:8a:65:b6:08:58:ea:0a:8f:a2:be:97:44:77:8a: a8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5C:46:F4:8A:EC:75:3D:43:CF:B7:B5:28:16:7B:1E:FB:C4:DB:BD X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2AE459DC4A5B11EBB7B4BA18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e800::/44 Signature Algorithm: sha256WithRSAEncryption 5d:b2:0d:61:09:7c:26:70:30:92:2c:bf:6c:40:7b:8b:6e:9c: 4f:1f:01:a4:66:a6:eb:e3:09:b6:d1:c0:7d:53:41:b6:df:09: 76:57:ec:eb:31:a1:69:09:29:c2:29:b1:76:30:eb:00:de:1d: 70:a8:37:5a:7e:76:f5:8b:2f:3d:fc:89:a7:e9:a3:c2:a6:2b: 58:ad:b7:52:80:0f:48:aa:b1:b5:b5:4a:d5:74:ce:f9:14:6e: 2b:e0:a3:8e:39:1a:d8:0c:94:21:2e:78:0d:8e:50:b5:b5:83: 48:50:d4:92:9d:fa:77:cb:b3:7b:73:d0:d8:62:55:f0:68:bf: ac:4f:d2:87:1e:97:be:63:61:ff:6e:f7:e0:9e:54:2b:15:6f: 89:c4:69:fb:19:56:72:ac:4f:ed:f8:43:e8:d0:0e:af:a2:a6: 8f:53:75:cd:41:1a:ff:4b:45:af:f6:f5:35:b2:70:e1:37:d8: 9c:b0:80:32:72:55:f7:5c:d7:b2:6e:ca:65:38:40:56:5c:b7: 8c:c5:dc:95:c1:22:7e:81:03:33:06:70:58:17:45:d6:39:11: 5d:74:b0:36:ee:c7:6a:c4:77:42:e9:2d:aa:68:d2:cf:d2:cc: 22:c1:44:16:5d:d8:68:8f:19:ea:0c:d8:6c:2c:23:52:1d:af: 4c:e3:43:1a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQyOS01MTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEDksdBDy7e85uKeG3oEu4vbZ43wPYIfGAGR5z5Znnc5U7QHhNEmJIsvXpke ZohlEIdzxr+DO1rN31pGqE4YIzJO8dvVFLM1EKU3MFp4V56BMgQglGta2E+NM7WY VM/k5SmhIIl8GRmNaWTgv5Az1aCdCz9fseNwhYRCju6qkxP8AMbU7t1PsAhQ6FeJ g73X2bWAE9i8+yhwoiLSRj1ubwtQT9E6zyGZoUqGXwfyXDu3ZtWQhQmfoL59yUz9 87oPK02Uo3Go/G4ZUVzUSND1GRScxsUaVvm78Pj+gVbEpYmRSVWjEy0w6nxY6g0M NZWLimW2CFjqCo+ivpdEd4qorwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHJcRvSK 7HU9Q8+3tSgWex77xNu9MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkFFNDU5REM0 QTVCMTFFQkI3QjRCQTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA6AAwDQYJKoZIhvcNAQELBQADggEBAF2yDWEJfCZw MJIsv2xAe4tunE8fAaRmpuvjCbbRwH1TQbbfCXZX7OsxoWkJKcIpsXYw6wDeHXCo N1p+dvWLLz38iafpo8KmK1itt1KAD0iqsbW1StV0zvkUbivgo445GtgMlCEueA2O ULW1g0hQ1JKd+nfLs3tz0NhiVfBov6xP0ocel75jYf9u9+CeVCsVb4nEafsZVnKs T+34Q+jQDq+ipo9Tdc1BGv9LRa/29TWycOE32JywgDJyVfdc17JuymU4QFZct4zF 3JXBIn6BAzMGcFgXRdY5EV10sDbux2rEd0LpLapo0s/SzCLBRBZd2GiPGeoM2Gws I1Idr0zjQxo= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org