$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa File: B1A3BAC48FB411EAA396FB5CC4F9AE02.roa (raw, json) Hash identifier: wTocaHd/F9n1uoX//Ir+L7fA6f/ze6tYDSJKrMfGGnQ= Subject key identifier: 04:8D:53:67:01:C5:23:C7:51:CF:71:0B:C7:B2:73:FD:A2:DA:05:E4 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A41 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa Signing time: Sun 14 May 2023 22:14:19 +0000 ROA not before: Sun 14 May 2023 22:14:19 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139317 IP address blocks: 2406:840::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2625 (0xa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:14:19 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d3b-09b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b5:d7:93:bc:79:06:14:4e:53:ae:28:fc:86: 8e:ef:d4:1b:af:44:1a:14:1d:73:79:07:05:75:5a: b5:c7:ae:8d:8d:0d:b9:90:ea:7f:fe:c0:fb:17:a9: 02:9a:56:64:dc:48:ca:72:90:14:04:aa:ea:bc:2f: eb:eb:53:de:75:41:8b:04:4b:7b:3b:68:fd:29:9a: 7d:33:ef:35:63:4b:a0:98:75:86:d0:03:aa:4a:6e: 8b:f3:2b:7e:16:f0:67:fd:4d:4a:d9:e3:34:ca:39: d4:65:53:17:4b:a1:bc:b5:2f:d3:52:99:29:47:da: 77:28:bf:3c:ec:70:de:3c:5b:d7:30:34:ce:72:18: fa:95:42:3e:89:ed:b1:ce:fa:4f:64:1b:1a:79:9d: 54:49:f6:07:c8:10:18:f6:54:04:cb:d7:a3:bc:34: 97:1e:84:2a:6f:0e:84:51:41:0f:cf:04:bb:76:3c: 05:6e:2f:3f:df:61:2b:32:c1:e5:1f:b9:0c:85:49: fd:4a:04:c5:f8:55:2d:d8:fa:1e:72:c8:b5:23:e5: 97:06:21:3e:21:d1:cc:9e:5d:83:b8:fb:ee:5e:d8: f8:1e:04:98:78:26:2a:a1:7c:6c:dd:fe:f0:64:d5: a9:b3:97:9c:51:3f:a4:5c:99:ab:ab:1f:9d:f9:f4: ea:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8D:53:67:01:C5:23:C7:51:CF:71:0B:C7:B2:73:FD:A2:DA:05:E4 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/B1A3BAC48FB411EAA396FB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840::/32 Signature Algorithm: sha256WithRSAEncryption 7c:74:02:c6:4d:32:8f:e4:ef:b6:76:11:2d:e6:2d:06:bc:58: 80:fc:60:a6:25:5f:6d:4d:dc:08:bc:7b:ec:0d:32:2d:96:aa: 4d:0e:16:47:a7:32:b0:4e:39:f9:d6:28:85:4b:3a:a3:d1:be: f6:af:ed:ae:17:ee:5f:0c:5e:6c:fa:ae:5e:c8:f0:74:33:2b: 48:ec:5c:5a:f6:8e:3a:5a:f7:77:09:a8:c1:bc:80:36:64:2f: f8:d1:c6:d2:eb:71:96:c2:c1:2c:78:e6:68:b8:1c:99:2a:1a: d1:71:df:e6:fa:cf:44:f0:9f:aa:fe:6a:91:51:7e:37:07:5c: 1f:3d:e5:31:c6:6f:62:2c:1d:2f:25:66:2f:3e:bc:29:3e:aa: 22:cc:d6:d6:a9:fc:f7:04:cc:58:b4:59:1b:d7:a2:6f:96:67: b7:a3:3a:79:b0:52:c8:cf:e7:a5:36:64:e2:ce:18:57:cf:42: c7:ff:d0:df:33:41:76:5a:57:ff:09:36:e8:27:2a:fb:05:59: 1f:d7:56:24:09:e9:05:1c:18:a6:98:20:98:90:87:9a:83:78: 8f:5b:d6:3c:2c:73:26:a4:9d:75:ba:f4:86:ca:d9:67:e7:38: cf:f3:47:49:8a:20:c5:96:6c:86:89:ac:94:3b:53:ca:17:a0: 47:bf:c3:64 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxNDE5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQzYi0wOWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrXXk7x5BhROU64o/IaO79Qbr0QaFB1zeQcFdVq1x66NjQ25kOp//sD7F6kC mlZk3EjKcpAUBKrqvC/r61PedUGLBEt7O2j9KZp9M+81Y0ugmHWG0AOqSm6L8yt+ FvBn/U1K2eM0yjnUZVMXS6G8tS/TUpkpR9p3KL887HDePFvXMDTOchj6lUI+ie2x zvpPZBsaeZ1USfYHyBAY9lQEy9ejvDSXHoQqbw6EUUEPzwS7djwFbi8/32ErMsHl H7kMhUn9SgTF+FUt2Poecsi1I+WXBiE+IdHMnl2DuPvuXtj4HgSYeCYqoXxs3f7w ZNWps5ecUT+kXJmrqx+d+fTqpwIDAQABo4ICljCCApIwHQYDVR0OBBYEFASNU2cB xSPHUc9xC8eyc/2i2gXkMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQjFBM0JBQzQ4 RkI0MTFFQUEzOTZGQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBghAMA0GCSqGSIb3DQEBCwUAA4IBAQB8dALGTTKP5O+2 dhEt5i0GvFiA/GCmJV9tTdwIvHvsDTItlqpNDhZHpzKwTjn51iiFSzqj0b72r+2u F+5fDF5s+q5eyPB0MytI7Fxa9o46Wvd3CajBvIA2ZC/40cbS63GWwsEseOZouByZ KhrRcd/m+s9E8J+q/mqRUX43B1wfPeUxxm9iLB0vJWYvPrwpPqoizNbWqfz3BMxY tFkb16Jvlme3ozp5sFLIz+elNmTizhhXz0LH/9DfM0F2Wlf/CTboJyr7BVkf11Yk CekFHBimmCCYkIeag3iPW9Y8LHMmpJ11uvSGytln5zjP80dJiiDFlmyGiayUO1PK F6BHv8Nk -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org