$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7A392ED0FE1D11EEBC2EC873C4F9AE02.roa File: 7A392ED0FE1D11EEBC2EC873C4F9AE02.roa (raw, json) Hash identifier: ceHAElHmC7SKy1+Rv40SupQaXZqdtiIwNhqO0Lj/mf0= Subject key identifier: F2:21:A5:CB:C9:76:18:86:D2:59:14:A8:09:B2:B8:74:50:A1:24:91 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0C57 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7A392ED0FE1D11EEBC2EC873C4F9AE02.roa Signing time: Sun 26 May 2024 21:31:33 +0000 ROA not before: Sun 26 May 2024 21:31:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138211 IP address blocks: 2406:840:e180::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 26 21:31:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6653aa35-e7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:32:78:68:b0:3c:e1:f9:5f:4c:f8:6e:c1:fd: 4b:96:a1:88:00:fa:dd:28:e6:82:d5:f1:21:f4:b5: 24:f5:0c:db:40:c3:b3:fc:37:fe:45:f3:7b:43:f1: c2:f7:80:7b:25:83:31:79:6d:6a:9d:16:54:a1:c3: e9:82:bd:47:1d:2f:c4:e7:15:b5:f3:a2:13:90:19: bf:e8:f8:60:be:4f:9c:fc:49:e9:d2:8c:42:89:3b: 5a:63:87:fc:d7:d8:90:9e:39:c4:fc:2c:08:e1:a5: 79:69:b6:1f:0b:b0:fc:98:ff:6c:68:99:90:92:bc: b2:dc:84:e7:1f:57:f2:b6:27:f7:10:36:ae:77:d2: 2a:e4:b7:0e:29:39:5a:78:4f:56:03:d5:8a:df:83: a6:3a:a8:97:85:31:41:43:a1:16:d1:52:18:e9:3f: ba:3f:90:67:f6:64:2e:d0:fd:2a:44:55:33:72:65: 95:d6:88:ee:93:57:e8:49:c1:37:d5:d1:03:c8:00: 9b:3e:2f:c3:f6:e3:00:aa:a2:83:4b:b3:fb:5f:4b: 05:ca:6a:6f:04:b9:01:c7:64:e7:6c:bb:03:cb:54: 2d:a0:5d:77:f9:10:ee:75:90:5b:92:09:0d:35:77: 1d:cd:dd:95:8b:78:47:39:74:20:f4:1d:2c:f0:93: 66:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:21:A5:CB:C9:76:18:86:D2:59:14:A8:09:B2:B8:74:50:A1:24:91 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/7A392ED0FE1D11EEBC2EC873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e180::/44 Signature Algorithm: sha256WithRSAEncryption 1e:40:2c:3d:78:45:10:1a:05:02:c2:9f:b4:6f:05:ff:14:ed: 81:0f:05:b0:f4:f7:6e:c6:35:49:29:b3:cd:3f:c4:63:cc:8f: 00:b3:bd:50:c7:81:60:18:20:cf:1d:71:44:e8:9b:ec:ef:62: 16:dd:5e:1d:bd:fb:3d:99:a8:0f:1e:67:bd:f4:35:7e:4c:8b: f8:4f:50:cd:a5:97:31:b8:a4:d9:c5:4a:87:5b:bf:e9:e6:0b: a3:61:be:ce:17:19:06:02:96:1e:e8:59:d7:cf:86:bc:07:e0: e5:c2:2e:2f:03:82:34:53:58:1f:79:dc:4a:8a:9d:64:29:ea: 00:3d:cc:c0:49:30:80:ab:82:37:25:60:41:bd:42:f4:ff:6f: ff:54:85:36:5a:78:b5:82:8b:6a:41:d5:c8:d7:a8:cb:fc:f7: 98:62:79:06:e1:db:1d:9a:5a:b1:24:af:84:e1:58:77:b4:ec: db:16:34:bd:3a:be:ba:c6:a0:92:9f:eb:dc:47:56:14:66:63: 69:2d:e5:8f:e1:7d:34:01:67:22:ac:10:80:7c:f7:f4:b7:76: 35:a0:33:35:f3:29:7a:76:22:f2:bd:1f:a4:cf:8b:44:75:5a: b8:55:72:41:84:1c:ca:2e:b4:84:62:49:eb:b7:7f:5b:85:ec: f1:60:c1:88 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwNTI2MjEzMTMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUzYWEzNS1lN2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jJ4aLA84flfTPhuwf1LlqGIAPrdKOaC1fEh9LUk9QzbQMOz/Df+RfN7Q/HC 94B7JYMxeW1qnRZUocPpgr1HHS/E5xW186ITkBm/6Phgvk+c/Enp0oxCiTtaY4f8 19iQnjnE/CwI4aV5abYfC7D8mP9saJmQkryy3ITnH1fytif3EDaud9Iq5LcOKTla eE9WA9WK34OmOqiXhTFBQ6EW0VIY6T+6P5Bn9mQu0P0qRFUzcmWV1ojuk1foScE3 1dEDyACbPi/D9uMAqqKDS7P7X0sFympvBLkBx2TnbLsDy1QtoF13+RDudZBbkgkN NXcdzd2Vi3hHOXQg9B0s8JNmgwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPIhpcvJ dhiG0lkUqAmyuHRQoSSRMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvN0EzOTJFRDBG RTFEMTFFRUJDMkVDODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4YAwDQYJKoZIhvcNAQELBQADggEBAB5ALD14RRAa BQLCn7RvBf8U7YEPBbD0927GNUkps80/xGPMjwCzvVDHgWAYIM8dcUTom+zvYhbd Xh29+z2ZqA8eZ730NX5Mi/hPUM2llzG4pNnFSodbv+nmC6Nhvs4XGQYClh7oWdfP hrwH4OXCLi8DgjRTWB953EqKnWQp6gA9zMBJMICrgjclYEG9QvT/b/9UhTZaeLWC i2pB1cjXqMv895hieQbh2x2aWrEkr4ThWHe07NsWNL06vrrGoJKf69xHVhRmY2kt 5Y/hfTQBZyKsEIB89/S3djWgMzXzKXp2IvK9H6TPi0R1WrhVckGEHMoutIRiSeu3 f1uF7PFgwYg= -----END CERTIFICATE-----Generated at Sun May 26 23:05:32 2024 by rpki-client on console-ams.rpki-client.org