$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa File: 445DBF2E1B9C11EEB9C23D62C4F9AE02.roa (raw, json) Hash identifier: d/sCF3T2tTcQOjUqUQDapQ2+KLplZqAUpVSEUNHuUao= Subject key identifier: B2:4E:55:46:47:8B:5C:08:F6:06:E6:43:EE:B7:AC:A7:72:30:A9:7E Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0ABF Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa Signing time: Thu 06 Jul 2023 01:27:27 +0000 ROA not before: Thu 06 Jul 2023 01:27:27 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151494 IP address blocks: 2406:840:9150::/44 maxlen: 48 2406:840:feda::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2751 (0xabf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Jul 6 01:27:27 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64a6187f-f694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:d9:91:6e:96:c7:b0:57:c3:a2:ec:68:1b: 44:9d:64:f8:3d:c6:f1:3d:68:46:7c:82:30:22:34: 67:53:35:be:d2:8b:d8:9d:b4:90:73:40:73:2a:bf: 39:df:28:52:00:02:f6:0e:48:29:23:a8:4a:e9:9d: 84:ed:22:22:37:c4:a5:7e:57:9c:a7:bc:af:68:fe: 8e:c7:dd:1f:88:d1:de:13:94:99:b1:2e:b9:ae:c6: d3:bb:e9:6b:00:04:4e:10:9b:f0:e2:bd:ec:fe:7b: 97:46:c6:98:94:ab:ee:e5:3f:91:7a:4c:19:36:b2: a5:89:88:42:f6:2c:27:82:e9:43:bd:01:ff:16:6e: 9d:1d:b0:3b:09:41:1b:ab:9a:ef:3f:1b:04:03:2a: 3f:14:3e:a1:bb:d9:80:1a:0a:b2:6a:53:f7:24:95: 3a:74:7f:b1:42:ea:b8:4b:fc:27:3f:21:3f:dc:ab: 0c:fe:92:33:6d:cd:4f:c9:d5:5a:39:1f:3c:88:83: 6a:f5:e1:5d:64:8e:a3:24:c4:b1:1b:97:6e:31:43: f2:1c:d1:b1:84:14:ea:63:e4:5e:eb:6d:60:fe:07: 48:04:27:42:0b:2a:53:9c:51:17:44:0b:d7:f8:6b: af:46:e9:e7:d6:84:90:71:e3:e8:48:1d:b1:5a:97: 82:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:55:46:47:8B:5C:08:F6:06:E6:43:EE:B7:AC:A7:72:30:A9:7E X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/445DBF2E1B9C11EEB9C23D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9150::/44 2406:840:feda::/48 Signature Algorithm: sha256WithRSAEncryption 7d:4a:09:30:c7:4d:5d:76:37:a4:cd:8d:4c:8d:8d:f5:b8:24: 7a:6a:34:33:b1:0a:13:ca:1d:3e:75:84:45:ee:66:73:49:37: f0:3d:16:47:46:52:95:7f:91:b2:44:4d:f5:46:3d:6d:bb:c1: 04:51:fb:0f:32:a3:38:72:a5:ae:19:67:c9:1e:2c:33:21:25: ee:eb:22:71:c2:ef:51:68:23:97:42:6a:f8:51:51:92:67:b6: e4:8a:11:ab:5c:4b:3b:bb:9e:b8:2e:0d:98:38:81:3c:c8:ba: e2:25:20:c0:57:79:89:db:1c:82:cf:34:e5:c9:69:a6:11:31: d3:67:47:55:91:bf:72:07:9b:c8:6a:4a:0b:2d:55:2e:69:35: 02:cb:b5:e0:cc:6b:01:8d:97:ee:46:53:4d:74:51:d5:c7:21: a4:f1:c4:fa:4a:49:75:9e:b6:fe:40:05:1a:75:6e:fe:17:70: 58:a0:2e:52:8d:16:59:5a:d6:8b:0f:b2:4c:cd:2f:60:8c:66: a8:81:5a:4f:a0:e1:19:fb:04:a4:8c:9d:ca:9b:d8:49:48:4f: 7d:88:3e:f3:9b:04:ea:27:fc:59:b0:89:1b:f0:a1:12:01:0e: b6:c8:7f:b1:84:28:7b:3a:0f:ba:ca:5a:5d:8b:00:f0:54:96: c1:c3:c9:4c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNzA2MDEyNzI3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE2MTg3Zi1mNjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnHZkW6Wx7BXw6LsaBtEnWT4PcbxPWhGfIIwIjRnUzW+0ovYnbSQc0BzKr85 3yhSAAL2DkgpI6hK6Z2E7SIiN8Slflecp7yvaP6Ox90fiNHeE5SZsS65rsbTu+lr AAROEJvw4r3s/nuXRsaYlKvu5T+RekwZNrKliYhC9iwngulDvQH/Fm6dHbA7CUEb q5rvPxsEAyo/FD6hu9mAGgqyalP3JJU6dH+xQuq4S/wnPyE/3KsM/pIzbc1PydVa OR88iINq9eFdZI6jJMSxG5duMUPyHNGxhBTqY+Re621g/gdIBCdCCypTnFEXRAvX +GuvRunn1oSQcePoSB2xWpeC9QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLJOVUZH i1wI9gbmQ+63rKdyMKl+MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNDQ1REJGMkUx QjlDMTFFRUI5QzIzRDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAkVADBwAkBghA/towDQYJKoZIhvcNAQELBQADggEB AH1KCTDHTV12N6TNjUyNjfW4JHpqNDOxChPKHT51hEXuZnNJN/A9FkdGUpV/kbJE TfVGPW27wQRR+w8yozhypa4ZZ8keLDMhJe7rInHC71FoI5dCavhRUZJntuSKEatc Szu7nrguDZg4gTzIuuIlIMBXeYnbHILPNOXJaaYRMdNnR1WRv3IHm8hqSgstVS5p NQLLteDMawGNl+5GU010UdXHIaTxxPpKSXWetv5ABRp1bv4XcFigLlKNFlla1osP skzNL2CMZqiBWk+g4Rn7BKSMncqb2ElIT32IPvObBOon/FmwiRvwoRIBDrbIf7GE KHs6D7rKWl2LAPBUlsHDyUw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org