$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa File: 2FDC8EDAD99911ED92E86C7BC4F9AE02.roa (raw, json) Hash identifier: 2iWLAzUX3+7Qnrv2aV8kCE2Zi/ketKTsKBYsAmcToVM= Subject key identifier: F6:C5:45:2A:24:DE:15:41:41:D1:3F:8D:0A:BA:EB:A2:46:2C:72:7A Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A63 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:58 +0000 ROA not before: Sun 14 May 2023 22:14:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151187 IP address blocks: 2406:840:9800::/43 maxlen: 48 2406:840:fed3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:57 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d61-6d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:e0:71:be:53:66:de:35:0f:b7:a4:b4:7a: bf:8b:40:f8:65:00:dc:c4:62:35:d6:db:ca:12:f1: 16:21:a4:92:b7:15:02:6d:04:f4:7b:71:48:97:65: fb:b8:45:f7:4b:92:37:18:69:e3:8a:0c:73:fb:f5: 1f:3c:e0:ac:08:1d:4d:35:ad:c5:ad:a7:4f:78:f5: 39:e7:fb:82:f1:2e:7c:42:4b:a1:ad:7d:ee:37:cf: 8e:b0:39:10:1f:8b:34:96:e9:33:8b:7e:c7:8a:3d: 2f:01:92:64:c4:4b:8d:e9:6a:fc:d4:7d:57:5b:80: a8:de:5c:48:bb:7c:5a:a7:03:1f:09:31:27:10:4a: 34:15:bf:ca:c7:7c:1d:8e:0a:8f:81:f3:d7:50:c4: e2:7a:43:8f:f7:7a:f0:62:b6:27:7d:2b:3d:d6:34: e6:a0:93:61:6c:28:e1:fc:7d:6e:ee:fe:f6:21:11: 02:5f:4d:93:9e:68:80:5b:6d:68:95:32:ae:99:a3: bc:a4:70:fc:ba:b2:89:84:f8:ec:4e:a6:a8:03:3a: a4:5c:6d:2f:ad:81:b0:47:d7:9c:d6:48:96:c8:a4: cd:3d:01:f5:5c:83:09:0c:32:44:10:9a:82:b0:80: 3f:f6:fa:b1:c3:b4:e5:52:8c:5b:af:d5:83:04:77: a9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C5:45:2A:24:DE:15:41:41:D1:3F:8D:0A:BA:EB:A2:46:2C:72:7A X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/2FDC8EDAD99911ED92E86C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9800::/43 2406:840:fed3::/48 Signature Algorithm: sha256WithRSAEncryption 69:04:1b:6a:26:3f:54:35:95:f9:9c:e5:cd:9f:b5:e9:60:27: c8:44:fa:54:b8:c5:dc:d3:a1:33:1c:42:dc:ba:29:02:4d:84: 00:af:04:ba:cc:6c:a6:ee:a9:1a:29:7b:c6:d6:07:54:b2:47: 44:7b:f8:99:64:24:11:b0:54:ed:a3:14:20:40:46:30:ea:9f: 3b:a3:d9:5c:31:48:1b:3c:32:35:b5:61:8f:e3:07:af:8b:24: b1:f0:7b:95:d1:29:d6:a8:1f:85:7a:b8:d9:7d:c9:b5:46:56: 84:11:6f:2e:ee:5f:b7:1f:08:b8:40:5a:15:f2:05:ba:9a:96: a0:79:bc:73:cc:58:35:fd:91:dd:41:8e:fe:fa:6d:2d:c5:40: 9c:6f:ac:02:1a:2c:7f:7f:cf:af:12:7f:d9:04:fb:2a:dc:28: 31:cc:bf:11:dc:7a:3f:05:ca:d6:c8:c6:f4:a3:1f:0f:ab:46: 7a:5a:63:fa:77:5d:a6:27:51:96:ca:b0:fd:20:90:cb:0a:d0: f2:e7:e7:a6:af:be:ea:3b:9f:b5:3b:39:fc:bc:a6:58:56:46: b5:c4:87:0e:b5:93:66:3e:94:4c:38:91:8c:23:f1:0d:ff:5a: 08:06:1c:c4:5a:69:cf:d0:8a:ef:c1:7a:47:24:fe:bc:ae:3c: c5:6b:6f:9f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ2MS02ZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mLgcb5TZt41D7ektHq/i0D4ZQDcxGI11tvKEvEWIaSStxUCbQT0e3FIl2X7 uEX3S5I3GGnjigxz+/UfPOCsCB1NNa3FradPePU55/uC8S58QkuhrX3uN8+OsDkQ H4s0lukzi37Hij0vAZJkxEuN6Wr81H1XW4Co3lxIu3xapwMfCTEnEEo0Fb/Kx3wd jgqPgfPXUMTiekOP93rwYrYnfSs91jTmoJNhbCjh/H1u7v72IRECX02TnmiAW21o lTKumaO8pHD8urKJhPjsTqaoAzqkXG0vrYGwR9ec1kiWyKTNPQH1XIMJDDJEEJqC sIA/9vqxw7TlUoxbr9WDBHepEQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPbFRSok 3hVBQdE/jQq666JGLHJ6MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvMkZEQzhFREFE OTk5MTFFRDkyRTg2QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwUkBghAmAADBwAkBghA/tMwDQYJKoZIhvcNAQELBQADggEB AGkEG2omP1Q1lfmc5c2ftelgJ8hE+lS4xdzToTMcQty6KQJNhACvBLrMbKbuqRop e8bWB1SyR0R7+JlkJBGwVO2jFCBARjDqnzuj2VwxSBs8MjW1YY/jB6+LJLHwe5XR KdaoH4V6uNl9ybVGVoQRby7uX7cfCLhAWhXyBbqalqB5vHPMWDX9kd1Bjv76bS3F QJxvrAIaLH9/z68Sf9kE+yrcKDHMvxHcej8FytbIxvSjHw+rRnpaY/p3XaYnUZbK sP0gkMsK0PLn56avvuo7n7U7Ofy8plhWRrXEhw61k2Y+lEw4kYwj8Q3/WggGHMRa ac/Qiu/Bekck/ryuPMVrb58= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org