$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa File: 86F5AD8C0B6D11ED81E33B71C4F9AE02.roa (raw, json) Hash identifier: Tr6Du52XvLFOVR/o66JUbB6L0bJP/p2i1PA1vx3Y8uc= Subject key identifier: B5:C8:DB:3F:13:70:4D:ED:70:0E:6A:A3:59:30:EE:47:95:BE:AC:DD Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A5E Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa Signing time: Sun 14 May 2023 22:14:52 +0000 ROA not before: Sun 14 May 2023 22:14:52 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 150141 IP address blocks: 2406:840:e280::/44 maxlen: 48 2406:840:fef5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:52 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d5b-0f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5b:7b:e4:ab:a9:d6:3a:2f:45:e8:ab:d4:96: 79:65:f1:0f:22:5b:5c:a4:e3:86:ce:2b:a3:ae:30: 59:e5:2a:fa:de:2f:aa:d2:b6:b4:92:bf:3a:f3:e8: fd:91:b2:ee:da:40:07:c8:bf:fe:0e:3d:26:e1:84: 3d:20:71:5d:f0:41:4f:f8:6b:a8:0b:41:1c:c8:93: a0:51:21:08:a9:e6:1f:e9:f1:4e:d8:6b:b9:5b:6f: ef:f7:96:58:af:01:ae:56:56:e1:4b:44:de:3f:02: 64:ab:1d:e6:82:c4:74:89:24:f2:0c:c9:67:1b:8a: 9b:9f:31:a0:58:c5:a3:b5:60:c3:28:4e:99:5b:30: c5:bd:e9:d3:d6:ec:9c:08:9f:46:42:6d:90:dc:7b: 47:ae:6e:ba:d9:7b:c5:2a:32:d5:89:ea:24:de:19: 5e:4b:d9:c4:6c:b7:e4:2f:30:f3:d1:9f:4c:16:cb: 65:b8:d7:06:35:03:a2:f4:c0:4c:2a:c3:b3:a7:39: af:3e:21:0a:d5:5e:2f:5d:6b:9c:05:85:5f:8a:f0: 61:d5:90:56:e0:a4:0f:ec:58:d5:ac:2f:f8:13:a2: e3:75:e8:df:2e:d7:93:ef:b0:fe:90:5d:87:14:96: 76:db:81:68:70:ab:59:2c:27:c2:6f:d5:e2:1c:2f: eb:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C8:DB:3F:13:70:4D:ED:70:0E:6A:A3:59:30:EE:47:95:BE:AC:DD X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86F5AD8C0B6D11ED81E33B71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e280::/44 2406:840:fef5::/48 Signature Algorithm: sha256WithRSAEncryption 4c:89:14:b9:bb:dc:41:a2:01:88:dc:14:9a:a1:94:34:4a:2e: 3e:fb:e4:9d:24:e0:f1:8f:de:cf:53:9c:5f:94:56:a8:c8:40: de:70:be:6b:77:4e:9f:84:14:84:08:10:bc:a3:3e:34:01:c5: 53:72:73:17:b3:1e:16:cd:4e:12:f7:88:29:0c:d9:e4:83:5d: 6b:c2:bf:7b:07:47:e5:b3:59:20:6d:73:e3:de:b6:fb:a0:80: fe:2d:23:7a:40:b4:ea:38:5a:e6:46:8f:13:ba:9d:20:73:f4: 90:30:58:bc:95:2a:e6:cd:9d:09:96:a9:94:7e:ce:9b:6f:5f: 7e:7c:f6:26:43:8e:f0:35:3b:f6:b1:6c:ed:e3:63:64:f1:59: 8b:b5:7a:30:77:16:87:81:f2:64:40:4f:ef:09:99:35:41:2b: ee:59:54:33:6e:30:c7:1d:0b:c6:ca:2d:d7:c8:30:86:70:a7: 1d:07:1b:9f:42:52:4c:52:c6:ef:52:6e:68:fc:4b:77:71:5e: 23:84:f6:e3:d5:7d:fb:05:fa:4b:98:41:37:b0:f3:06:2b:eb: 7a:2d:1a:ef:ab:d4:52:5a:9e:fd:b1:ec:d0:f4:63:6e:0a:56: 53:d1:d8:dd:21:15:3c:31:5a:4e:9e:ff:57:f6:2c:bf:02:4b: 6a:58:32:b8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDUyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ1Yi0wZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFt75Kup1jovReir1JZ5ZfEPIltcpOOGziujrjBZ5Sr63i+q0ra0kr868+j9 kbLu2kAHyL/+Dj0m4YQ9IHFd8EFP+GuoC0EcyJOgUSEIqeYf6fFO2Gu5W2/v95ZY rwGuVlbhS0TePwJkqx3mgsR0iSTyDMlnG4qbnzGgWMWjtWDDKE6ZWzDFvenT1uyc CJ9GQm2Q3HtHrm662XvFKjLVieok3hleS9nEbLfkLzDz0Z9MFstluNcGNQOi9MBM KsOzpzmvPiEK1V4vXWucBYVfivBh1ZBW4KQP7FjVrC/4E6LjdejfLteT77D+kF2H FJZ224FocKtZLCfCb9XiHC/r7wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLXI2z8T cE3tcA5qo1kw7keVvqzdMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZGNUFEOEMw QjZEMTFFRDgxRTMzQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4oADBwAkBghA/vUwDQYJKoZIhvcNAQELBQADggEB AEyJFLm73EGiAYjcFJqhlDRKLj775J0k4PGP3s9TnF+UVqjIQN5wvmt3Tp+EFIQI ELyjPjQBxVNycxezHhbNThL3iCkM2eSDXWvCv3sHR+WzWSBtc+PetvuggP4tI3pA tOo4WuZGjxO6nSBz9JAwWLyVKubNnQmWqZR+zptvX3589iZDjvA1O/axbO3jY2Tx WYu1ejB3FoeB8mRAT+8JmTVBK+5ZVDNuMMcdC8bKLdfIMIZwpx0HG59CUkxSxu9S bmj8S3dxXiOE9uPVffsF+kuYQTew8wYr63otGu+r1FJanv2x7ND0Y24KVlPR2N0h FTwxWk6e/1f2LL8CS2pYMrg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org