$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A1A37268814211EDA138A00AC4F9AE02.roa File: A1A37268814211EDA138A00AC4F9AE02.roa (raw, json) Hash identifier: HidSdPFS99HGTzsaZhAiJr9LMwMThAvQlMEsfPDnMjQ= Subject key identifier: 35:92:CF:88:DB:89:BF:C5:4A:A1:39:6A:5B:4B:B4:35:DB:D1:6C:BE Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A6C Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A1A37268814211EDA138A00AC4F9AE02.roa Signing time: Sun 14 May 2023 22:15:10 +0000 ROA not before: Sun 14 May 2023 22:15:10 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 203472 IP address blocks: 2406:840:9840::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2668 (0xa6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:15:10 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d6d-8fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:d3:67:97:0a:cd:8b:1c:31:96:4f:a7:e6: 56:b2:38:dc:75:d3:cf:12:ec:ac:35:36:4f:fb:a4: 76:bf:91:a7:61:cf:8e:c1:8d:e5:f5:cb:2b:c0:0f: 39:c2:ce:1d:68:fc:02:33:d7:2d:43:09:78:26:a8: 6c:17:99:20:7b:fd:b0:68:93:5e:33:54:4a:67:f7: d4:bb:23:85:a3:cd:aa:5a:e3:5a:52:ae:f7:8d:db: be:ce:18:95:6b:7d:29:48:86:7d:59:2a:ea:cc:98: 01:a9:8e:9c:68:36:c6:23:3b:27:16:e1:0a:b2:1d: 10:62:44:c3:bc:e9:c5:03:1e:1c:29:78:ff:24:0f: dd:fa:e6:56:46:c8:9e:82:d9:07:5a:75:64:75:0f: 2d:d3:1b:97:25:58:3c:c5:75:55:35:4d:61:e4:52: d7:d4:ab:5a:c1:b1:0d:6c:99:fb:3a:88:01:a4:ba: 9e:64:c3:2a:09:51:50:c9:a7:5c:0b:16:74:f1:a8: 5e:80:b1:6e:e1:77:71:fc:cd:35:d9:19:08:25:18: 8d:6a:dc:0d:c1:6a:6a:29:5e:f5:5e:bd:a5:33:04: f1:c2:5c:5e:01:21:50:8e:ce:a7:cb:79:50:8c:6d: 38:6e:76:92:1b:fc:c6:1f:80:60:69:e8:32:d2:27: 8c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:92:CF:88:DB:89:BF:C5:4A:A1:39:6A:5B:4B:B4:35:DB:D1:6C:BE X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/A1A37268814211EDA138A00AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9840::/44 Signature Algorithm: sha256WithRSAEncryption 8e:96:f8:1a:28:b7:7a:3b:4d:02:43:1b:ad:22:b5:9e:22:ce: 39:37:e9:6c:60:4c:32:da:42:2a:df:15:82:00:2c:9b:95:d9: de:08:9a:7f:78:f0:a4:86:24:d2:c6:e1:ce:43:ce:b9:70:36: 66:9d:fb:4e:9c:8d:c7:0d:a3:9d:64:e5:ce:60:10:e6:09:b1: ba:97:25:37:75:88:4c:85:eb:c1:9a:d4:9a:3d:be:46:30:80: eb:11:e5:65:8d:5e:84:30:86:d1:2e:28:02:c1:ea:fb:76:0a: 56:0f:6f:06:5b:35:08:71:b6:60:aa:f8:a1:8f:6b:f0:d6:fe: d7:a1:88:85:ba:bc:8f:5a:6d:51:e0:b9:b6:be:95:b4:f0:3c: 67:42:29:0b:a3:b8:8f:95:d0:d8:61:06:85:0d:c3:d8:71:e2: f2:13:88:a8:09:ca:77:51:43:ba:51:10:db:35:7b:39:80:21: 78:46:8b:66:d4:1f:a0:5b:bc:74:58:4e:ff:6a:7a:b0:81:b7: 3c:19:25:cd:72:f8:50:e2:5d:67:f1:55:d5:fa:46:9c:17:9c: 8c:85:07:4c:e2:05:91:d2:30:bb:de:48:d5:04:11:d5:71:6f: 55:f6:3c:63:b6:90:96:34:f4:7d:6d:ce:fa:fa:44:82:8c:1a: ec:ed:db:34 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNTEwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQ2ZC04ZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh7TZ5cKzYscMZZPp+ZWsjjcddPPEuysNTZP+6R2v5GnYc+OwY3l9csrwA85 ws4daPwCM9ctQwl4JqhsF5kge/2waJNeM1RKZ/fUuyOFo82qWuNaUq73jdu+zhiV a30pSIZ9WSrqzJgBqY6caDbGIzsnFuEKsh0QYkTDvOnFAx4cKXj/JA/d+uZWRsie gtkHWnVkdQ8t0xuXJVg8xXVVNU1h5FLX1KtawbENbJn7OogBpLqeZMMqCVFQyadc CxZ08ahegLFu4Xdx/M012RkIJRiNatwNwWpqKV71Xr2lMwTxwlxeASFQjs6ny3lQ jG04bnaSG/zGH4Bgaegy0ieMzwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDWSz4jb ib/FSqE5altLtDXb0Wy+MB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQTFBMzcyNjg4 MTQyMTFFREExMzhBMDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAmEAwDQYJKoZIhvcNAQELBQADggEBAI6W+Boot3o7 TQJDG60itZ4izjk36WxgTDLaQirfFYIALJuV2d4Imn948KSGJNLG4c5DzrlwNmad +06cjccNo51k5c5gEOYJsbqXJTd1iEyF68Ga1Jo9vkYwgOsR5WWNXoQwhtEuKALB 6vt2ClYPbwZbNQhxtmCq+KGPa/DW/tehiIW6vI9abVHguba+lbTwPGdCKQujuI+V 0NhhBoUNw9hx4vITiKgJyndRQ7pRENs1ezmAIXhGi2bUH6BbvHRYTv9qerCBtzwZ Jc1y+FDiXWfxVdX6RpwXnIyFB0ziBZHSMLveSNUEEdVxb1X2PGO2kJY09H1tzvr6 RIKMGuzt2zQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org