$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa File: 6B1184C0411211EEA2E98A76C4F9AE02.roa (raw, json) Hash identifier: j7p5y+/AyQNH4B5jyXkymR3WzUh+wdUefjPQmImrFTY= Subject key identifier: 32:1E:2F:51:82:42:14:2B:57:15:3D:BD:2A:54:BB:71:B5:36:C9:6F Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0AF6 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa Signing time: Thu 24 Aug 2023 17:04:10 +0000 ROA not before: Thu 24 Aug 2023 17:04:10 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151674 IP address blocks: 2406:840:e720::/44 maxlen: 48 2406:840:fedf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2806 (0xaf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 24 17:04:10 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64e78d8a-6987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:21:b1:27:d9:4d:18:aa:dd:2c:83:0c:0a: d9:41:14:2e:e5:a9:c8:4a:ad:6a:02:71:d8:af:08: de:0d:83:98:07:da:fe:72:7f:46:28:87:82:3d:90: 66:a2:cc:88:80:8e:6e:54:06:ec:32:0b:59:fe:29: 50:b8:1b:bd:75:b7:2e:ec:25:c0:05:e6:42:a7:c3: 08:ae:a4:06:40:fb:ce:78:3d:a4:4b:89:2e:81:51: e1:b1:c3:ec:78:90:9f:c8:30:0d:3a:09:be:b3:79: a7:67:04:2a:50:2a:67:0a:f5:4c:36:10:35:ef:ae: 73:58:ae:58:ee:52:42:d5:a1:66:47:55:c2:39:e1: f5:e8:2e:df:7c:60:41:af:f8:88:a4:47:2f:af:e5: f9:e0:29:f3:54:42:a8:f8:01:de:c3:50:f7:f0:4f: eb:21:ce:84:b9:cf:0c:fe:8c:6a:16:2f:f7:bf:ab: f4:89:00:de:14:56:75:c8:71:26:a5:f6:3b:f8:cc: d7:52:74:8e:09:5b:fb:5a:7d:82:66:18:b8:36:e8: 86:31:60:04:d8:fe:c0:0b:c6:09:63:90:7b:65:34: 78:87:b5:7d:46:89:49:6c:fd:c6:99:22:d1:ef:20: 03:5b:36:ac:63:76:50:06:1a:4c:c2:12:f7:d7:20: 60:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1E:2F:51:82:42:14:2B:57:15:3D:BD:2A:54:BB:71:B5:36:C9:6F X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/6B1184C0411211EEA2E98A76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e720::/44 2406:840:fedf::/48 Signature Algorithm: sha256WithRSAEncryption 86:b6:19:a2:53:03:77:16:fe:63:3c:66:d9:fb:c2:4c:01:54: e0:7b:fb:1c:fc:78:d1:40:05:cf:06:bd:32:68:76:71:eb:f9: c3:3b:fb:ef:47:39:eb:cd:5e:04:eb:8d:24:5e:56:22:cc:21: 02:9f:df:27:d7:af:a9:31:a7:11:72:a7:e2:51:82:02:03:ce: 41:08:c1:be:d8:eb:08:32:58:83:ba:f2:8c:31:ff:5e:51:33: a5:0f:93:2c:88:4e:43:c1:96:84:c6:55:18:be:f8:53:a6:7f: 7c:16:dc:a1:63:26:78:b2:d4:7e:62:a1:01:91:96:ae:46:ea: 3c:79:18:b6:7c:a8:55:d9:83:29:a8:7e:bb:d5:e1:1a:5c:a2: be:07:3a:ce:56:46:a4:2b:b9:6d:12:dc:bb:ae:ff:82:20:5f: 8b:ea:74:65:29:75:80:79:f1:ec:aa:c2:2a:7e:d6:7a:11:07: 11:07:bc:a6:98:3e:25:30:48:98:6d:a8:0c:42:41:d8:32:73: 51:ed:c5:f0:4c:d3:b0:58:fe:e0:78:9f:ff:ea:c0:3e:58:75: ac:93:09:16:5a:c8:5a:d0:cd:32:15:eb:f0:e2:6a:e4:c1:14: 4e:53:18:37:75:6d:16:f7:f4:3f:0a:e3:82:c2:34:3f:30:8c: 4d:5c:2d:e7 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwODI0MTcwNDEwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3OGQ4YS02OTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NMhsSfZTRiq3SyDDArZQRQu5anISq1qAnHYrwjeDYOYB9r+cn9GKIeCPZBm osyIgI5uVAbsMgtZ/ilQuBu9dbcu7CXABeZCp8MIrqQGQPvOeD2kS4kugVHhscPs eJCfyDANOgm+s3mnZwQqUCpnCvVMNhA1765zWK5Y7lJC1aFmR1XCOeH16C7ffGBB r/iIpEcvr+X54CnzVEKo+AHew1D38E/rIc6Euc8M/oxqFi/3v6v0iQDeFFZ1yHEm pfY7+MzXUnSOCVv7Wn2CZhi4NuiGMWAE2P7AC8YJY5B7ZTR4h7V9RolJbP3GmSLR 7yADWzasY3ZQBhpMwhL31yBgzwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDIeL1GC QhQrVxU9vSpUu3G1NslvMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNkIxMTg0QzA0 MTEyMTFFRUEyRTk4QTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA5yADBwAkBghA/t8wDQYJKoZIhvcNAQELBQADggEB AIa2GaJTA3cW/mM8Ztn7wkwBVOB7+xz8eNFABc8GvTJodnHr+cM7++9HOevNXgTr jSReViLMIQKf3yfXr6kxpxFyp+JRggIDzkEIwb7Y6wgyWIO68owx/15RM6UPkyyI TkPBloTGVRi++FOmf3wW3KFjJniy1H5ioQGRlq5G6jx5GLZ8qFXZgymofrvV4Rpc or4HOs5WRqQruW0S3Luu/4IgX4vqdGUpdYB58eyqwip+1noRBxEHvKaYPiUwSJht qAxCQdgyc1HtxfBM07BY/uB4n//qwD5YdayTCRZayFrQzTIV6/DiauTBFE5TGDd1 bRb39D8K44LCND8wjE1cLec= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org