$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa File: 41B221EC862211EA87D9337EC4F9AE02.roa (raw, json) Hash identifier: kA8DF4EmiTyuuIQ9L9zPPGG2yBqjSdqp2oVWVP95/uE= Subject key identifier: 7C:84:F5:BB:D2:FA:B8:EC:03:81:9F:CF:44:A2:56:00:E7:68:1B:5C Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A82 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa Signing time: Sun 14 May 2023 22:15:34 +0000 ROA not before: Sun 14 May 2023 22:15:34 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 4842 IP address blocks: 2406:840:f990::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2690 (0xa82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:34 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d86-41dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e7:1e:c2:47:7e:2a:c3:ef:3a:22:e7:7f:dc: 48:16:c6:20:51:2a:de:d5:e6:2a:33:00:f6:d6:4d: bc:44:e5:1d:b6:58:19:0b:ac:3e:f8:58:c8:c9:98: c2:1a:99:a8:32:6e:ef:4c:3c:f1:ee:2d:e8:b7:b7: 82:eb:d3:20:fa:64:74:06:db:c1:33:44:d2:7d:7f: ea:15:22:11:d9:e1:6e:2f:49:3e:fb:b3:bc:34:3d: 75:d6:2c:fa:fa:c3:c4:fe:ba:b6:0a:21:1c:57:4f: 12:8d:e7:0e:b6:fb:6a:2b:dd:61:2b:1f:da:ee:ce: 42:07:c3:aa:c5:96:bb:b0:9f:60:4e:5b:66:b6:10: a8:f6:81:18:87:b8:e7:30:1f:4d:7c:9d:2c:23:56: d4:86:8e:72:4c:14:8b:1d:88:e2:83:bf:3c:4f:c0: 9a:c4:44:df:61:b1:d5:94:a9:6a:8f:e1:9f:64:de: fa:73:d8:6c:22:aa:63:f0:81:19:0d:e6:24:74:58: b8:62:ab:d4:c6:98:fb:5c:f0:ff:0c:33:b4:fb:d1: 7d:24:bf:fa:c6:08:3b:6e:f1:ec:92:dc:94:c2:80: 85:c2:c0:30:3c:d3:d8:23:9f:65:ee:d3:fa:e3:a0: 0d:b1:9f:f3:b8:01:e6:c3:84:84:fd:ab:f3:27:ad: c6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:84:F5:BB:D2:FA:B8:EC:03:81:9F:CF:44:A2:56:00:E7:68:1B:5C X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/41B221EC862211EA87D9337EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:f990::/44 Signature Algorithm: sha256WithRSAEncryption 8a:7b:3c:c2:c0:1f:e2:c0:8c:42:3b:6a:40:b0:bd:8f:50:bc: 35:e3:ef:59:68:87:4a:eb:0b:03:a2:4f:96:b1:31:34:b8:55: fc:b6:68:b5:30:78:c3:42:70:05:12:b6:a9:eb:c8:d4:f7:74: d8:5f:5e:6c:20:bd:25:93:e9:a4:b0:0f:2e:29:bf:78:a8:54: 21:47:6f:d9:57:b5:e6:2b:f8:e9:c6:0a:47:1f:6a:47:21:88: a0:e6:54:fa:14:03:fe:1e:54:cc:98:e9:24:c8:2c:38:64:e5: 2c:0a:87:e7:1d:6b:e5:f4:33:b3:10:0b:0d:5e:2a:08:56:5c: 30:8f:44:55:48:44:b6:ff:4c:9e:a3:ed:89:32:be:31:ef:bf: b5:17:41:5e:45:44:9f:0c:d8:7c:dc:b3:81:cd:2c:5b:78:2e: 9f:1f:88:b5:1a:14:18:bc:dc:9d:0a:9b:18:bd:67:03:64:8c: 73:be:a3:f4:1b:e6:a9:ed:05:8b:3b:e8:73:84:47:04:97:fd: d6:f1:a0:b2:42:32:4a:31:2e:fb:c0:60:90:8a:d9:47:4e:79: e2:1b:c8:53:50:93:b7:70:58:ea:ce:db:53:7a:9f:11:31:81: 9f:22:63:b4:92:5d:80:45:e1:e1:a4:1c:cf:46:eb:e8:94:52: 38:1b:21:54 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTM0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ4Ni00MWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ecewkd+KsPvOiLnf9xIFsYgUSre1eYqMwD21k28ROUdtlgZC6w++FjIyZjC GpmoMm7vTDzx7i3ot7eC69Mg+mR0BtvBM0TSfX/qFSIR2eFuL0k++7O8ND111iz6 +sPE/rq2CiEcV08SjecOtvtqK91hKx/a7s5CB8OqxZa7sJ9gTltmthCo9oEYh7jn MB9NfJ0sI1bUho5yTBSLHYjig788T8CaxETfYbHVlKlqj+GfZN76c9hsIqpj8IEZ DeYkdFi4YqvUxpj7XPD/DDO0+9F9JL/6xgg7bvHsktyUwoCFwsAwPNPYI59l7tP6 46ANsZ/zuAHmw4SE/avzJ63GrQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHyE9bvS +rjsA4Gfz0SiVgDnaBtcMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDFCMjIxRUM4 NjIyMTFFQTg3RDkzMzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA+ZAwDQYJKoZIhvcNAQELBQADggEBAIp7PMLAH+LA jEI7akCwvY9QvDXj71loh0rrCwOiT5axMTS4Vfy2aLUweMNCcAUStqnryNT3dNhf XmwgvSWT6aSwDy4pv3ioVCFHb9lXteYr+OnGCkcfakchiKDmVPoUA/4eVMyY6STI LDhk5SwKh+cda+X0M7MQCw1eKghWXDCPRFVIRLb/TJ6j7YkyvjHvv7UXQV5FRJ8M 2Hzcs4HNLFt4Lp8fiLUaFBi83J0Kmxi9ZwNkjHO+o/Qb5qntBYs76HOERwSX/dbx oLJCMkoxLvvAYJCK2UdOeeIbyFNQk7dwWOrO21N6nxExgZ8iY7SSXYBF4eGkHM9G 6+iUUjgbIVQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org