$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa File: 98F3E1F44BDA11ED90671B29C4F9AE02.roa (raw, json) Hash identifier: NK9hc3PlCpLKr1M9j/BxgrOpWlt+UlIWFot0QS1qRDY= Subject key identifier: F4:AC:D9:68:EA:BC:AE:1B:5F:16:87:DE:18:83:74:7C:1D:23:94:20 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A62 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa Signing time: Sun 14 May 2023 22:14:57 +0000 ROA not before: Sun 14 May 2023 22:14:57 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 150373 IP address blocks: 2406:840:e340::/44 maxlen: 48 2406:840:fed4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:57 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d60-a595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b4:a5:4d:02:14:d3:f5:40:bd:38:61:89:fb: 24:6e:4d:38:2d:b5:bf:0b:81:28:a9:87:32:e7:02: ff:aa:4b:b0:e1:67:6b:e9:f6:dc:0e:92:76:a4:3e: a5:77:08:69:cf:b9:52:e4:12:7f:d6:db:66:b6:e0: 31:23:84:81:cf:90:ff:10:91:f1:1f:4a:37:cf:b7: 1b:e5:6a:3d:78:fd:c2:f3:b4:b1:78:de:20:5c:0d: c6:54:79:c5:ea:d5:85:71:73:c4:94:b2:bb:55:82: 9d:a3:46:28:d7:54:3e:d5:8b:9f:b9:ad:5e:b1:1c: 56:dd:50:12:37:3c:5c:e7:bf:10:d3:0d:99:dd:fe: 21:12:57:05:0d:c0:57:91:fe:8d:32:d3:18:35:e4: 21:d9:55:94:ba:6c:70:5e:c7:66:68:2e:c6:b8:76: 9f:1a:bf:7e:2f:40:fb:12:9a:92:91:d3:dd:f9:55: 44:86:7c:b7:66:29:fc:bb:74:0b:b4:ec:50:06:b2: d1:9e:03:c8:19:2f:e0:9f:24:e3:5b:3e:90:20:30: 5d:6b:bd:5f:a3:10:d0:0a:5b:d0:6a:86:4e:69:03: 63:4d:82:53:2c:48:56:3f:24:38:48:14:2e:ed:d9: 4a:98:44:cf:f0:c9:52:c7:95:c8:7f:06:1e:25:95: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AC:D9:68:EA:BC:AE:1B:5F:16:87:DE:18:83:74:7C:1D:23:94:20 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/98F3E1F44BDA11ED90671B29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e340::/44 2406:840:fed4::/48 Signature Algorithm: sha256WithRSAEncryption 0a:68:aa:18:32:cb:dd:66:d4:25:e8:53:43:c5:e3:2e:c7:8b: 05:ab:68:85:bc:c1:27:e6:d1:d0:c7:78:26:73:8b:96:61:d8: fc:da:c3:2a:17:ab:b6:92:01:22:d4:52:ae:e6:d3:52:33:68: a6:40:c5:43:b5:3f:90:50:8a:87:b1:1e:7c:71:ff:96:71:df: ee:06:82:f4:2b:89:84:da:74:27:b7:16:a4:78:07:6b:b6:26: 7b:98:06:06:74:17:8f:10:aa:fb:78:66:7d:52:bd:0e:45:ea: c0:48:01:5b:19:d5:71:1e:3b:8a:c4:ba:e9:ae:e9:fe:6f:42: 9f:21:d2:2a:7a:b5:4f:6d:56:46:43:98:94:cd:c7:0a:9a:e7: 16:d2:a3:3d:cf:f5:0c:00:58:32:cf:53:20:1d:ab:3f:3b:dd: a5:59:b8:92:43:73:43:c1:f2:59:c9:75:df:d7:33:2b:0b:9c: b6:87:cc:dd:13:bc:bf:fa:75:15:99:3d:d4:5f:8b:23:62:1c: 37:b9:10:a9:10:de:c8:06:3e:e3:eb:41:72:3c:99:c4:86:e4: 7d:a3:df:86:83:8b:ba:1b:0e:a5:3e:b9:50:36:c0:fa:fb:87: 84:ba:cf:a1:e3:9f:76:ce:9b:22:3e:ab:11:d1:d8:bf:94:7b: 64:6a:47:64 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDU3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ2MC1hNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LSlTQIU0/VAvThhifskbk04LbW/C4EoqYcy5wL/qkuw4Wdr6fbcDpJ2pD6l dwhpz7lS5BJ/1ttmtuAxI4SBz5D/EJHxH0o3z7cb5Wo9eP3C87SxeN4gXA3GVHnF 6tWFcXPElLK7VYKdo0Yo11Q+1Yufua1esRxW3VASNzxc578Q0w2Z3f4hElcFDcBX kf6NMtMYNeQh2VWUumxwXsdmaC7GuHafGr9+L0D7EpqSkdPd+VVEhny3Zin8u3QL tOxQBrLRngPIGS/gnyTjWz6QIDBda71foxDQClvQaoZOaQNjTYJTLEhWPyQ4SBQu 7dlKmETP8MlSx5XIfwYeJZXpkQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPSs2Wjq vK4bXxaH3hiDdHwdI5QgMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOThGM0UxRjQ0 QkRBMTFFRDkwNjcxQjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA40ADBwAkBghA/tQwDQYJKoZIhvcNAQELBQADggEB AApoqhgyy91m1CXoU0PF4y7HiwWraIW8wSfm0dDHeCZzi5Zh2PzawyoXq7aSASLU Uq7m01IzaKZAxUO1P5BQioexHnxx/5Zx3+4GgvQriYTadCe3FqR4B2u2JnuYBgZ0 F48Qqvt4Zn1SvQ5F6sBIAVsZ1XEeO4rEuumu6f5vQp8h0ip6tU9tVkZDmJTNxwqa 5xbSoz3P9QwAWDLPUyAdqz873aVZuJJDc0PB8lnJdd/XMysLnLaHzN0TvL/6dRWZ PdRfiyNiHDe5EKkQ3sgGPuPrQXI8mcSG5H2j34aDi7obDqU+uVA2wPr7h4S6z6Hj n3bOmyI+qxHR2L+Ue2RqR2Q= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org