$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa File: 6A8D54D4411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: tzTySToln5ao+JfCfUnrLnmsQg1+V+8xroDLmxl7hCs= Subject key identifier: CF:A8:08:2B:A8:BE:CC:47:2C:B3:8A:90:99:EA:F6:AC:AB:D7:9E:85 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0AFD Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa Signing time: Fri 25 Aug 2023 16:55:21 +0000 ROA not before: Fri 25 Aug 2023 16:55:21 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151673 IP address blocks: 2406:840:efa0::/44 maxlen: 48 2406:840:fede::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 25 16:55:21 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64e8dcf9-9162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:87:dc:ca:bf:59:ad:dc:b6:8f:b6:37:73:ad: 43:15:20:de:43:35:f5:53:04:79:fe:9a:53:94:99: c6:35:4f:ba:f0:c9:d1:4e:c6:0b:47:e2:38:2e:24: d6:1a:92:c8:71:ad:c4:3a:28:2b:9c:6c:dd:7d:73: e9:e9:70:c9:81:6b:95:90:ee:89:19:a7:67:62:19: f6:5c:fd:e9:7b:50:79:d5:48:65:13:5e:8f:55:43: 70:b8:2c:7b:2c:a5:98:a9:93:52:58:50:37:19:55: 01:06:6d:69:13:1a:f3:eb:55:97:5b:ea:1d:e1:e7: 54:93:cd:6b:b9:43:41:b1:b2:ca:bd:40:63:cc:6b: c9:09:a9:fe:ed:45:46:a4:87:e4:f5:0d:c7:90:16: cc:1f:b2:73:e4:6d:9b:9d:2e:7c:fd:c6:77:4a:5c: 9c:01:5c:1b:fb:fa:46:17:4e:35:2c:03:86:f7:9a: e5:3b:41:b9:6c:9c:89:39:b5:e4:5a:18:cc:97:0c: 8d:51:2c:1c:ca:1e:78:fc:c2:b1:6a:da:41:78:73: d5:4d:21:5e:2c:b0:8b:7b:be:e5:06:ea:d6:0a:87: 4e:57:d8:c8:a9:a1:7d:26:e2:f6:11:46:65:a4:e9: ce:a5:aa:64:79:50:bc:ec:62:f5:c4:1b:2e:a4:55: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A8:08:2B:A8:BE:CC:47:2C:B3:8A:90:99:EA:F6:AC:AB:D7:9E:85 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6A8D54D4411211EEA2E98A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:efa0::/44 2406:840:fede::/48 Signature Algorithm: sha256WithRSAEncryption 9b:3b:53:55:6e:70:fb:b4:82:32:7e:74:8b:51:e3:40:65:e3: 09:42:3d:c6:7d:37:e6:88:1e:26:4d:ec:eb:51:ff:3a:e5:eb: 51:fd:b5:53:7f:6c:5b:0b:41:64:80:c0:db:6e:fb:81:0f:01: 27:ae:82:ef:a2:41:69:7a:9d:53:e2:f7:a0:9b:06:8b:94:b2: ee:be:a4:ba:37:98:ec:e6:36:48:92:f4:0a:38:6b:ce:b8:2f: a5:33:9e:31:35:2a:5d:19:2b:dd:17:0f:c6:9c:45:62:4b:56: 8f:29:72:a9:c2:60:ed:48:fe:0d:c2:62:7b:86:1a:24:d0:c8: 86:6d:cf:3b:a6:a4:e1:c8:b0:ff:4a:54:19:88:6a:0f:7f:d4: f7:c9:d2:56:de:9a:bb:15:85:d2:4b:96:31:88:d3:6e:e0:3d: 62:3a:be:82:d4:29:04:5f:b9:dc:4e:22:ea:33:22:24:c7:b8: 30:19:2e:75:9d:8d:b7:3f:47:e8:76:37:98:39:ae:e0:57:18: 53:c6:14:7b:d8:73:a6:d5:d6:c1:23:a2:49:bb:22:c5:6a:94: 35:f4:71:cd:0b:99:cd:b9:49:c8:17:57:2a:29:c2:8e:c3:87: c5:56:1f:90:d7:a0:8e:23:cc:f7:4d:6d:59:67:e3:7a:20:72: 47:10:4c:50 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwODI1MTY1NTIxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU4ZGNmOS05MTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4fcyr9Zrdy2j7Y3c61DFSDeQzX1UwR5/ppTlJnGNU+68MnRTsYLR+I4LiTW GpLIca3EOigrnGzdfXPp6XDJgWuVkO6JGadnYhn2XP3pe1B51UhlE16PVUNwuCx7 LKWYqZNSWFA3GVUBBm1pExrz61WXW+od4edUk81ruUNBsbLKvUBjzGvJCan+7UVG pIfk9Q3HkBbMH7Jz5G2bnS58/cZ3SlycAVwb+/pGF041LAOG95rlO0G5bJyJObXk WhjMlwyNUSwcyh54/MKxatpBeHPVTSFeLLCLe77lBurWCodOV9jIqaF9JuL2EUZl pOnOpapkeVC87GL1xBsupFVKIQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFM+oCCuo vsxHLLOKkJnq9qyr156FMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkE4RDU0RDQ0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA76ADBwAkBghA/t4wDQYJKoZIhvcNAQELBQADggEB AJs7U1VucPu0gjJ+dItR40Bl4wlCPcZ9N+aIHiZN7OtR/zrl61H9tVN/bFsLQWSA wNtu+4EPASeugu+iQWl6nVPi96CbBouUsu6+pLo3mOzmNkiS9Ao4a864L6UznjE1 Kl0ZK90XD8acRWJLVo8pcqnCYO1I/g3CYnuGGiTQyIZtzzumpOHIsP9KVBmIag9/ 1PfJ0lbemrsVhdJLljGI027gPWI6voLUKQRfudxOIuozIiTHuDAZLnWdjbc/R+h2 N5g5ruBXGFPGFHvYc6bV1sEjokm7IsVqlDX0cc0Lmc25ScgXVyopwo7Dh8VWH5DX oI4jzPdNbVln43ogckcQTFA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org