$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa File: 9B24119EC81411EEA71B4757C4F9AE02.roa (raw, json) Hash identifier: WeyAphxQ+e9vAT6J5K7R/MWncaugG5ft6oWDbs2RXD8= Subject key identifier: 36:E0:F0:1E:09:37:0A:DF:B5:ED:68:24:F1:29:C6:56:19:0F:5A:50 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0BD2 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa Signing time: Sat 10 Feb 2024 13:02:12 +0000 ROA not before: Sat 10 Feb 2024 13:02:12 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139791 IP address blocks: 2406:840:feca::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3026 (0xbd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Feb 10 13:02:12 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65c773d4-c239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f0:a6:a7:65:17:93:41:b2:4c:58:57:8f:f6: 17:20:a9:c8:0d:93:e0:f6:09:ec:e4:34:3c:b0:0e: 2d:c3:48:30:18:0f:e9:77:67:83:a1:26:7a:72:aa: 04:d5:f2:b7:3c:a9:fa:e7:85:db:c6:cd:fd:57:fd: b4:26:84:16:0c:a0:b0:89:41:8a:aa:a8:6e:55:73: 1e:5f:72:f6:e3:6b:f8:23:28:f3:df:eb:84:36:01: 39:e5:e4:08:70:06:dd:8c:f4:9d:06:2f:dc:1f:85: 73:6a:fe:fa:34:f7:1e:5e:c3:c3:0b:a6:9e:88:02: 2a:48:26:b8:92:5f:c8:ef:89:2e:ef:c3:74:c3:17: d7:86:e9:6c:fb:1a:7a:ce:7e:f0:b5:3f:27:35:3d: 44:7c:d2:ec:df:fb:2a:13:53:81:9e:e8:d8:d1:69: 58:8d:ed:78:6a:59:a6:2f:00:d5:7b:e5:e2:6a:0c: 33:73:26:50:39:d7:2c:50:c8:2b:58:fa:93:2c:51: e7:df:d8:e7:73:99:ba:8e:5f:a7:3f:ca:b0:96:fe: 68:08:a7:bd:f0:5c:73:68:06:25:56:7c:b8:55:43: 8a:8b:87:88:f7:f3:10:46:01:92:ae:47:dc:33:83: 08:f2:f9:89:8b:a8:09:79:85:41:81:c2:3a:2e:80: b3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E0:F0:1E:09:37:0A:DF:B5:ED:68:24:F1:29:C6:56:19:0F:5A:50 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/9B24119EC81411EEA71B4757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:feca::/48 Signature Algorithm: sha256WithRSAEncryption 2e:d1:46:40:c6:1d:e3:ca:c4:10:e5:9a:24:87:47:a5:9d:07: 4b:df:95:be:7c:f3:32:8e:d1:26:eb:be:80:d9:b1:23:b4:49: 38:08:1a:e0:37:9d:b4:eb:54:a9:c9:69:04:56:d3:30:11:f1: f9:c0:a9:98:d0:28:fd:7b:5d:ca:09:09:51:ab:ea:38:63:ce: 93:1b:ab:82:b2:e8:72:66:a6:cd:e5:cd:21:92:d0:bb:d5:17: a7:3b:1a:e5:90:9c:6e:5f:89:77:c2:08:d3:65:99:da:d6:ca: cb:21:d3:39:05:9b:e1:cb:c8:e1:10:16:d9:e3:59:64:cf:d9: 98:a9:a3:dc:3e:3b:c1:62:1c:80:96:2f:b2:d8:38:bd:a4:64: 83:6b:a9:7d:5c:c6:f6:bc:97:c1:70:19:b6:78:22:fe:5e:65: 52:60:85:95:06:80:02:43:0a:c6:7e:ee:78:3f:21:83:cd:af: 37:c3:58:99:d2:1c:d7:63:e9:04:9b:c9:0a:d6:fd:58:a1:85: 91:4a:13:17:3b:eb:83:c2:45:b2:9a:64:45:b1:5a:cc:a2:45: c2:ff:0e:bb:2a:06:0d:ee:d7:fd:1e:33:cf:fb:82:b8:28:93: c1:1c:a3:50:f9:c3:35:9b:d4:8b:f1:3a:ca:43:8c:35:4e:cd: 79:0d:9a:37 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjQwMjEwMTMwMjEyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3NzNkNC1jMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfCmp2UXk0GyTFhXj/YXIKnIDZPg9gns5DQ8sA4tw0gwGA/pd2eDoSZ6cqoE 1fK3PKn654Xbxs39V/20JoQWDKCwiUGKqqhuVXMeX3L242v4Iyjz3+uENgE55eQI cAbdjPSdBi/cH4Vzav76NPceXsPDC6aeiAIqSCa4kl/I74ku78N0wxfXhuls+xp6 zn7wtT8nNT1EfNLs3/sqE1OBnujY0WlYje14almmLwDVe+XiagwzcyZQOdcsUMgr WPqTLFHn39jnc5m6jl+nP8qwlv5oCKe98FxzaAYlVny4VUOKi4eI9/MQRgGSrkfc M4MI8vmJi6gJeYVBgcI6LoCzcwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDbg8B4J Nwrfte1oJPEpxlYZD1pQMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvOUIyNDExOUVD ODE0MTFFRUE3MUI0NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBghA/sowDQYJKoZIhvcNAQELBQADggEBAC7RRkDGHePK xBDlmiSHR6WdB0vflb588zKO0SbrvoDZsSO0STgIGuA3nbTrVKnJaQRW0zAR8fnA qZjQKP17XcoJCVGr6jhjzpMbq4Ky6HJmps3lzSGS0LvVF6c7GuWQnG5fiXfCCNNl mdrWyssh0zkFm+HLyOEQFtnjWWTP2Zipo9w+O8FiHICWL7LYOL2kZINrqX1cxva8 l8FwGbZ4Iv5eZVJghZUGgAJDCsZ+7ng/IYPNrzfDWJnSHNdj6QSbyQrW/VihhZFK Exc764PCRbKaZEWxWsyiRcL/DrsqBg3u1/0eM8/7grgok8Eco1D5wzWb1IvxOspD jDVOzXkNmjc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org