$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa File: 8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa (raw, json) Hash identifier: qcuanqJWhZYYRz3t0NHIbkcvz9Pbw05vo7sfQV8XjrA= Subject key identifier: 1A:B7:BC:53:BD:87:83:19:E4:1C:61:9E:E8:36:3B:C2:9C:67:88:47 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A5F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:53 +0000 ROA not before: Sun 14 May 2023 22:14:53 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 150173 IP address blocks: 2406:840:fa00::/44 maxlen: 48 2406:840:fed1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2655 (0xa5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:53 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d5d-1427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:df:47:92:41:bb:70:56:91:85:d0:fc:19:e6: b3:ce:02:57:1a:ee:53:4a:96:2a:e6:4d:21:df:68: 4c:ed:2d:ec:0d:ec:8f:3b:6d:30:de:60:bd:14:8f: 06:1b:1f:c3:fb:d1:04:1f:cc:77:74:33:38:47:ac: c6:d3:e8:03:b4:99:e3:c0:11:f2:48:ff:52:2c:a6: 71:74:a6:22:76:26:89:9c:2f:7b:4f:60:e9:6d:54: fc:44:ee:28:13:e4:06:a4:72:87:0f:17:22:3e:19: bc:64:35:01:98:b3:93:3e:1a:1b:de:bb:b3:c7:7e: 4c:90:8a:50:7c:31:af:15:b5:83:dc:42:1b:56:53: db:13:5c:33:f8:40:71:55:ea:42:c0:0b:f7:1d:c5: 4d:05:b9:3f:20:c5:cd:9d:d0:55:4a:9f:7c:74:aa: da:e6:a3:fb:7f:17:a5:44:cc:06:c1:62:af:c7:83: 08:a0:89:9a:99:16:fb:da:c3:2f:8c:db:54:a5:51: b9:bf:7a:89:14:90:c1:ef:72:b1:a4:a6:55:8c:af: 57:0c:89:be:e8:46:fd:de:56:17:df:b5:fa:cf:c5: 2b:22:54:c9:d9:1c:8c:5b:2a:f7:a8:3b:98:25:8e: f3:ba:4e:c5:66:0b:10:5e:4e:6a:c2:6f:04:c9:00: 22:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B7:BC:53:BD:87:83:19:E4:1C:61:9E:E8:36:3B:C2:9C:67:88:47 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/8ABAB9B4239E11EDAD3BA36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fa00::/44 2406:840:fed1::/48 Signature Algorithm: sha256WithRSAEncryption 4f:3f:32:4e:f5:03:93:65:e0:de:28:18:b0:03:ae:14:11:b3: a1:71:e0:80:f0:fb:39:c9:2c:7b:ac:a6:a5:9e:6f:54:26:e1: 9e:e8:f8:90:21:e5:54:94:a4:76:92:d4:16:73:3d:63:ee:d6: 97:07:0d:14:09:b7:69:b2:07:9e:10:50:97:f1:7a:a5:f4:96: a9:5b:d1:0a:b8:a6:18:78:80:06:f4:84:9c:b9:a0:d4:f4:5e: db:dd:db:fd:8c:f9:6e:6f:74:8c:2b:7a:e9:b5:12:cd:f2:c2: 6c:c7:16:e1:aa:89:0d:f6:14:4b:bf:f0:8c:a4:30:36:2e:81: 19:2f:d0:f2:01:90:4b:9a:e5:1c:40:aa:9f:86:55:c8:ed:e9: 52:41:b5:dc:6e:9c:6a:83:a8:00:ac:db:37:8f:94:cc:c7:fb: f1:7a:eb:03:d9:61:d5:66:0a:71:2f:e6:06:c0:1e:95:d8:8b: e6:8d:86:32:02:1e:ce:bd:60:cf:b4:9b:f4:d8:d5:c1:be:be: f0:b1:84:de:5b:c3:ff:68:10:88:3c:d4:f7:83:58:f4:32:d3: 53:91:95:cb:b8:6c:73:94:35:53:fd:a2:47:05:96:ed:59:f8: 1c:3f:f7:18:4c:66:6c:11:6c:ed:f1:fb:d7:a0:c8:0c:49:b4: 4d:19:13:5f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDUzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ1ZC0xNDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt9HkkG7cFaRhdD8GeazzgJXGu5TSpYq5k0h32hM7S3sDeyPO20w3mC9FI8G Gx/D+9EEH8x3dDM4R6zG0+gDtJnjwBHySP9SLKZxdKYidiaJnC97T2DpbVT8RO4o E+QGpHKHDxciPhm8ZDUBmLOTPhob3ruzx35MkIpQfDGvFbWD3EIbVlPbE1wz+EBx VepCwAv3HcVNBbk/IMXNndBVSp98dKra5qP7fxelRMwGwWKvx4MIoImamRb72sMv jNtUpVG5v3qJFJDB73KxpKZVjK9XDIm+6Eb93lYX37X6z8UrIlTJ2RyMWyr3qDuY JY7zuk7FZgsQXk5qwm8EyQAiswIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBq3vFO9 h4MZ5Bxhnug2O8KcZ4hHMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOEFCQUI5QjQy MzlFMTFFREFEM0JBMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA+gADBwAkBghA/tEwDQYJKoZIhvcNAQELBQADggEB AE8/Mk71A5Nl4N4oGLADrhQRs6Fx4IDw+znJLHuspqWeb1Qm4Z7o+JAh5VSUpHaS 1BZzPWPu1pcHDRQJt2myB54QUJfxeqX0lqlb0Qq4phh4gAb0hJy5oNT0Xtvd2/2M +W5vdIwreum1Es3ywmzHFuGqiQ32FEu/8IykMDYugRkv0PIBkEua5RxAqp+GVcjt 6VJBtdxunGqDqACs2zePlMzH+/F66wPZYdVmCnEv5gbAHpXYi+aNhjICHs69YM+0 m/TY1cG+vvCxhN5bw/9oEIg81PeDWPQy01ORlcu4bHOUNVP9okcFlu1Z+Bw/9xhM ZmwRbO3x+9egyAxJtE0ZE18= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org