$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/75EA140C0FFD11EE86648956C4F9AE02.roa File: 75EA140C0FFD11EE86648956C4F9AE02.roa (raw, json) Hash identifier: QTDO66LKKnKxNPgGwfSdrduUqTe3uFzltId8UKznzhc= Subject key identifier: 2B:EB:F1:4E:C7:34:E7:A5:71:3C:96:50:DA:AF:B4:DC:7C:9D:41:62 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B91 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/75EA140C0FFD11EE86648956C4F9AE02.roa Signing time: Tue 19 Dec 2023 13:53:57 +0000 ROA not before: Tue 19 Dec 2023 13:53:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151418 IP address blocks: 2406:840:9100::/44 maxlen: 48 2406:840:fed0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Dec 19 13:53:57 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6581a075-fdd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:4b:c6:98:7e:45:c7:c3:d6:0f:5b:2d:e7: 84:a9:24:5d:ac:c2:a5:8f:16:8e:8f:d8:37:04:7a: b5:9c:77:6c:f2:df:41:4d:80:7c:b1:49:32:bb:cb: f5:ac:75:ca:7d:22:d6:95:64:b5:e0:45:d5:cc:83: 84:38:1c:80:65:4f:f3:17:8e:37:b6:93:d1:d1:13: 82:d3:b3:3e:58:c6:2b:6a:02:24:4f:14:6b:3d:02: ac:7d:ec:30:72:7a:69:5a:c1:8d:3d:19:ac:9c:28: 54:db:2d:c9:80:58:f4:32:00:dd:fa:d4:10:d0:43: 08:0d:2a:21:88:d4:8c:68:59:c9:64:36:0f:f1:7f: 48:f8:b6:c8:e4:e1:cd:6c:68:7b:13:e3:da:eb:c2: 48:e6:f6:78:b8:71:72:db:a0:d7:66:f3:d9:6b:50: 70:f0:35:32:5a:b3:73:45:cb:b0:a9:68:73:a4:86: f8:6c:23:c7:4f:bc:c7:5b:9a:e4:74:cf:4b:9c:48: 71:ab:58:26:51:c7:51:88:c0:6c:2f:f7:ce:85:91: 7c:e4:73:48:ce:95:90:36:e9:b1:56:ee:98:e5:de: de:e2:6a:2a:33:fa:23:ac:90:d5:27:19:cb:ba:05: 25:a0:84:f0:55:57:87:30:39:0a:f4:2c:fd:d7:91: a8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EB:F1:4E:C7:34:E7:A5:71:3C:96:50:DA:AF:B4:DC:7C:9D:41:62 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/75EA140C0FFD11EE86648956C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9100::/44 2406:840:fed0::/48 Signature Algorithm: sha256WithRSAEncryption 25:bb:af:e0:bc:79:8a:4c:1b:d0:9f:f6:fe:94:71:92:56:2f: c3:a1:23:4a:da:6e:16:63:b6:36:4a:5f:94:9e:94:7c:67:60: 8b:fe:87:68:90:2e:87:87:ec:ac:c3:32:de:89:7a:92:09:89: ec:58:e6:27:d2:93:7f:2a:c7:60:8a:04:3b:74:3b:20:45:54: b3:b8:fa:21:2b:f3:e4:ac:43:ce:e4:69:2f:4f:24:4b:26:54: 3e:93:08:e6:84:25:fb:5e:9e:e2:ce:d5:f6:1b:48:b5:fc:7d: cd:64:4b:a7:34:cf:3d:a4:e0:d7:64:86:d8:08:2c:83:63:f8: f4:4e:69:e2:e2:77:11:2a:88:4d:13:02:4c:26:06:4e:71:82: 71:54:cf:8a:99:16:62:61:a5:b2:0f:c7:32:fd:5b:0a:d9:04: 69:c6:f6:64:58:ac:0f:43:b8:00:c5:0a:f8:10:0f:c7:9a:50: ab:d6:77:5f:e7:ce:06:df:69:94:5d:23:d9:95:96:9e:6f:75: d3:dd:c6:b2:5a:a7:8e:69:89:3d:de:f6:a6:10:dc:a8:a8:41: a7:3c:79:6f:f5:a8:04:f5:e5:9b:ec:67:e8:76:c7:eb:1a:e1: 43:c1:a4:8c:82:36:24:2f:cb:79:28:2a:2e:ed:b5:70:66:e5: f5:59:a5:69 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMjE5MTM1MzU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgxYTA3NS1mZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudBLxph+RcfD1g9bLeeEqSRdrMKljxaOj9g3BHq1nHds8t9BTYB8sUkyu8v1 rHXKfSLWlWS14EXVzIOEOByAZU/zF443tpPR0ROC07M+WMYragIkTxRrPQKsfeww cnppWsGNPRmsnChU2y3JgFj0MgDd+tQQ0EMIDSohiNSMaFnJZDYP8X9I+LbI5OHN bGh7E+Pa68JI5vZ4uHFy26DXZvPZa1Bw8DUyWrNzRcuwqWhzpIb4bCPHT7zHW5rk dM9LnEhxq1gmUcdRiMBsL/fOhZF85HNIzpWQNumxVu6Y5d7e4moqM/ojrJDVJxnL ugUloITwVVeHMDkK9Cz915Go8QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCvr8U7H NOelcTyWUNqvtNx8nUFiMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvNzVFQTE0MEMw RkZEMTFFRTg2NjQ4OTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghAkQADBwAkBghA/tAwDQYJKoZIhvcNAQELBQADggEB ACW7r+C8eYpMG9Cf9v6UcZJWL8OhI0rabhZjtjZKX5SelHxnYIv+h2iQLoeH7KzD Mt6JepIJiexY5ifSk38qx2CKBDt0OyBFVLO4+iEr8+SsQ87kaS9PJEsmVD6TCOaE JftenuLO1fYbSLX8fc1kS6c0zz2k4NdkhtgILINj+PROaeLidxEqiE0TAkwmBk5x gnFUz4qZFmJhpbIPxzL9WwrZBGnG9mRYrA9DuADFCvgQD8eaUKvWd1/nzgbfaZRd I9mVlp5vddPdxrJap45piT3e9qYQ3KioQac8eW/1qAT15ZvsZ+h2x+sa4UPBpIyC NiQvy3koKi7ttXBm5fVZpWk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org