$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa File: 961B87D456A111EEB7EDA93AC4F9AE02.roa (raw, json) Hash identifier: 0nxIdvrtcZtkIxcdiRn672HuH3GnhM8Nb1IY7bwHPeo= Subject key identifier: 7A:DE:28:B0:C7:9B:74:62:C0:DA:B9:8B:3B:99:69:E5:AB:7C:8C:9D Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B47 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa Signing time: Wed 11 Oct 2023 14:40:37 +0000 ROA not before: Wed 11 Oct 2023 14:40:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139216 IP address blocks: 2406:840:e0e0::/44 maxlen: 48 2406:840:eee0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Oct 11 14:40:37 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6526b3e4-67e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:cb:fd:f2:e7:10:9c:59:f3:51:ae:e1:83: 45:df:4c:86:66:e6:77:27:b8:d8:f4:4a:59:6e:9f: 1c:3e:58:1d:7b:24:03:95:0f:6e:d0:d3:e4:09:3a: 5a:69:e5:bd:b1:b2:14:dc:35:88:27:cb:a7:08:57: 8b:8d:40:8b:ed:7d:d4:a4:33:df:c6:c0:dc:8b:80: c4:f6:f2:92:ce:bf:dc:11:df:e6:5b:2e:17:8a:b2: d3:75:7d:92:5c:8a:2d:0c:56:64:1e:53:1a:0e:ac: 4e:36:86:ac:11:fa:52:e9:c6:d3:4c:d4:ad:5a:cc: 94:0b:83:14:30:03:83:99:40:25:a3:c4:16:a7:0a: 76:76:d1:03:08:96:1b:40:e4:ca:12:33:a0:d1:bf: ea:0e:52:0d:b9:6f:99:e5:ea:b9:a4:36:5b:77:83: 4b:2b:7f:38:bd:87:45:62:2f:c3:50:7b:4d:a2:15: 36:57:a2:a9:84:8a:95:0c:9a:4f:9e:ca:5c:ac:a7: cc:a4:0c:65:9a:8a:d2:8d:54:bc:99:9d:93:37:6a: 67:39:ac:a7:b4:48:a0:13:50:59:59:44:fa:88:84: 6c:7a:50:11:cf:75:ad:8a:7a:1c:df:0a:81:0e:b5: c4:85:d5:f2:20:d3:79:5c:0c:d4:45:6c:5c:60:38: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DE:28:B0:C7:9B:74:62:C0:DA:B9:8B:3B:99:69:E5:AB:7C:8C:9D X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/961B87D456A111EEB7EDA93AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e0e0::/44 2406:840:eee0::/44 Signature Algorithm: sha256WithRSAEncryption 70:c5:29:f5:51:fa:4c:8b:96:64:56:2d:35:77:0e:e6:dc:ef: e3:4d:49:d6:01:a7:a0:65:b3:d6:08:40:2d:6f:49:7a:b5:e1: cc:f8:3c:02:7b:cc:a4:db:a0:10:76:72:5e:dd:31:af:84:73: 6d:84:93:8f:8a:e3:6e:b8:31:0d:24:d9:c1:ce:51:e4:c3:43: 68:17:2a:e4:22:10:cf:32:7a:db:ef:0c:eb:51:5e:91:77:8a: 83:fd:35:45:e9:2f:cb:02:5c:c3:07:dd:a9:60:fa:73:c3:5a: 42:e9:6c:6b:17:40:a6:ac:f2:6d:18:5e:49:6d:c5:b9:b1:5f: 07:0a:5b:65:46:19:4e:17:5d:6d:00:3d:3d:45:71:85:fe:31: a3:75:0b:a0:dc:52:7c:38:6d:6d:22:16:0d:c8:f8:15:2b:0a: e1:df:2f:81:af:8c:16:e5:8c:eb:2e:b3:6a:1b:cb:b4:f4:73: 0b:39:02:9c:88:e0:60:cc:bc:f5:e6:c1:73:06:42:ca:dc:31: 91:3d:78:ad:bc:1c:59:8a:39:22:ac:28:89:53:fc:7b:20:65: e7:f9:fc:6d:82:a4:60:a4:7c:b4:56:ed:29:fb:ac:6a:72:e6: 5e:ff:94:8c:20:57:be:09:44:86:4b:70:a3:54:0d:46:ae:f9: 60:12:68:4d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMDExMTQ0MDM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI2YjNlNC02N2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26HL/fLnEJxZ81Gu4YNF30yGZuZ3J7jY9EpZbp8cPlgdeyQDlQ9u0NPkCTpa aeW9sbIU3DWIJ8unCFeLjUCL7X3UpDPfxsDci4DE9vKSzr/cEd/mWy4XirLTdX2S XIotDFZkHlMaDqxONoasEfpS6cbTTNStWsyUC4MUMAODmUAlo8QWpwp2dtEDCJYb QOTKEjOg0b/qDlINuW+Z5eq5pDZbd4NLK384vYdFYi/DUHtNohU2V6KphIqVDJpP nspcrKfMpAxlmorSjVS8mZ2TN2pnOayntEigE1BZWUT6iIRselARz3Wtinoc3wqB DrXEhdXyINN5XAzURWxcYDinowIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHreKLDH m3RiwNq5izuZaeWrfIydMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOTYxQjg3RDQ1 NkExMTFFRUI3RURBOTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA4OADBwQkBghA7uAwDQYJKoZIhvcNAQELBQADggEB AHDFKfVR+kyLlmRWLTV3Dubc7+NNSdYBp6Bls9YIQC1vSXq14cz4PAJ7zKTboBB2 cl7dMa+Ec22Ek4+K4264MQ0k2cHOUeTDQ2gXKuQiEM8yetvvDOtRXpF3ioP9NUXp L8sCXMMH3alg+nPDWkLpbGsXQKas8m0YXkltxbmxXwcKW2VGGU4XXW0APT1FcYX+ MaN1C6DcUnw4bW0iFg3I+BUrCuHfL4GvjBbljOsus2oby7T0cws5ApyI4GDMvPXm wXMGQsrcMZE9eK28HFmKOSKsKIlT/HsgZef5/G2CpGCkfLRW7Sn7rGpy5l7/lIwg V74JRIZLcKNUDUau+WASaE0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org