$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa File: 672D5E3EDAFE11EE986FFF5BC4F9AE02.roa (raw, json) Hash identifier: 0Am+cnOyg/w/hskKy3imFjte9vZaxPnw5dUrbW7uKXw= Subject key identifier: C4:4E:06:AE:EC:73:E9:28:66:65:41:B8:E8:07:15:CD:87:B1:90:3F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0BE7 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa Signing time: Tue 05 Mar 2024 14:41:08 +0000 ROA not before: Tue 05 Mar 2024 14:41:08 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 152631 IP address blocks: 2406:840:fecb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Mar 5 14:41:08 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65e72f04-a647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e1:77:35:38:3a:46:63:a6:91:2b:1f:0e:18: e4:ae:04:62:a1:b9:d8:12:b5:9a:2a:75:b7:14:32: 9c:02:5d:10:49:c8:e2:df:8d:39:f1:77:80:62:b7: bb:f9:d2:11:de:bb:0d:ed:ff:34:8b:ce:d8:32:a9: 0b:d9:f9:f8:ee:b2:83:f2:81:cd:5f:66:86:d4:93: a3:25:91:26:66:06:1d:8d:f9:cf:33:45:e0:7f:01: e6:63:d2:d8:19:ea:34:fc:65:0c:55:28:79:a8:0b: a0:da:d3:ae:9e:2c:19:60:6d:dc:23:cb:c3:f8:d0: 93:a5:af:6e:ce:fa:58:a6:ee:eb:fc:d5:69:2c:6f: 80:a6:88:01:c4:82:77:79:0d:57:29:eb:c1:6a:23: ac:da:d9:1d:e4:35:3d:ab:a1:12:de:1c:60:c7:9a: d0:2b:02:22:d3:3e:f6:a4:14:b6:01:fd:75:47:8f: df:2e:4c:3a:52:a4:c2:67:10:36:6d:88:36:ac:41: d6:48:7e:70:ea:29:66:6f:9e:64:b4:65:fe:9b:c3: 89:20:99:c4:a3:10:fc:f2:a5:e2:c3:d1:b0:6f:eb: cb:73:8e:20:77:4d:b9:20:79:53:a7:ee:f7:20:23: 4e:00:a7:37:0a:cf:53:c4:3f:12:c1:73:f1:b2:31: f1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4E:06:AE:EC:73:E9:28:66:65:41:B8:E8:07:15:CD:87:B1:90:3F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/672D5E3EDAFE11EE986FFF5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fecb::/48 Signature Algorithm: sha256WithRSAEncryption 36:ae:fc:12:d1:c5:98:0c:6f:ad:42:03:81:f6:02:40:ee:cc: 2f:ac:fc:40:c5:2e:0d:c1:b4:d5:5e:cd:5c:48:a3:a2:f8:df: 48:55:9d:ee:ac:6a:ee:f1:55:37:d8:43:61:ec:09:16:3b:8d: a2:e8:22:9a:8f:14:cd:d1:19:8f:53:59:55:28:dc:7e:a7:bc: e0:bd:87:52:10:b0:01:af:2e:a7:e4:6e:51:2d:37:9c:5e:dd: 4a:35:95:49:bd:3a:1d:80:48:69:9f:bc:c0:90:b2:d5:b9:ac: cb:48:97:49:b7:bb:e1:db:3f:42:89:3d:6f:ae:36:79:4e:ec: d1:57:4f:0f:54:29:07:0e:16:9c:3a:f1:6b:91:b1:55:d8:49: 65:9d:6d:e9:78:6b:2b:4e:4e:6a:fa:a9:df:57:24:b5:1c:7a: d0:d2:ca:16:8b:e4:af:0e:91:09:32:4e:11:f0:0b:14:af:42: e0:84:7b:9e:1c:5e:98:47:0d:d9:f6:14:47:fd:89:90:ac:6a: d1:e7:64:dd:43:3e:1a:a1:bc:31:9e:22:c6:ef:9d:c0:fb:99: 95:ba:d5:6d:e8:ff:d1:5e:e3:37:a4:8d:59:53:b4:7e:18:5c: 67:39:25:5d:0c:b1:ec:c4:7c:55:d3:64:a5:1d:dc:b5:32:e8: 34:78:00:c1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwMzA1MTQ0MTA4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU3MmYwNC1hNjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+F3NTg6RmOmkSsfDhjkrgRiobnYErWaKnW3FDKcAl0QScji34058XeAYre7 +dIR3rsN7f80i87YMqkL2fn47rKD8oHNX2aG1JOjJZEmZgYdjfnPM0XgfwHmY9LY Geo0/GUMVSh5qAug2tOuniwZYG3cI8vD+NCTpa9uzvpYpu7r/NVpLG+ApogBxIJ3 eQ1XKevBaiOs2tkd5DU9q6ES3hxgx5rQKwIi0z72pBS2Af11R4/fLkw6UqTCZxA2 bYg2rEHWSH5w6ilmb55ktGX+m8OJIJnEoxD88qXiw9Gwb+vLc44gd025IHlTp+73 ICNOAKc3Cs9TxD8SwXPxsjHxcwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMROBq7s c+koZmVBuOgHFc2HsZA/MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNjcyRDVFM0VE QUZFMTFFRTk4NkZGRjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/sswDQYJKoZIhvcNAQELBQADggEBADau/BLRxZgM b61CA4H2AkDuzC+s/EDFLg3BtNVezVxIo6L430hVne6sau7xVTfYQ2HsCRY7jaLo IpqPFM3RGY9TWVUo3H6nvOC9h1IQsAGvLqfkblEtN5xe3Uo1lUm9Oh2ASGmfvMCQ stW5rMtIl0m3u+HbP0KJPW+uNnlO7NFXTw9UKQcOFpw68WuRsVXYSWWdbel4aytO Tmr6qd9XJLUcetDSyhaL5K8OkQkyThHwCxSvQuCEe54cXphHDdn2FEf9iZCsatHn ZN1DPhqhvDGeIsbvncD7mZW61W3o/9Fe4zekjVlTtH4YXGc5JV0MsezEfFXTZKUd 3LUy6DR4AME= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org