$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa File: C8FB88AEFAC411EDBFE0012DC4F9AE02.roa (raw, json) Hash identifier: DYx/1m+HQPCJxeihhjmJZCNTQ+JjvSlcnRqD49ewGOY= Subject key identifier: 64:E1:BA:85:DF:1E:70:0B:31:FE:01:48:E9:A7:00:CB:50:4B:4F:E1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B8F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa Signing time: Tue 19 Dec 2023 13:53:56 +0000 ROA not before: Tue 19 Dec 2023 13:53:56 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136535 IP address blocks: 2406:840:fe27::/48 maxlen: 48 2406:840:fe74::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Dec 19 13:53:56 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6581a074-73d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b1:50:34:9d:0a:13:24:e0:aa:4a:5c:50:13: 40:49:a5:41:55:44:1e:2d:6c:10:42:30:18:80:fa: 00:bb:e9:56:a9:a9:a6:f8:31:29:40:9b:f1:77:26: 5c:37:b5:ed:e2:65:f3:f3:88:93:10:4d:fc:72:ac: d6:aa:4c:84:41:87:a7:10:52:f8:59:12:76:24:8d: f8:80:48:8c:97:92:1b:f1:5d:2e:65:56:68:5e:2e: 6c:40:58:48:03:74:9f:94:5d:64:cf:f3:3a:a2:de: 16:58:05:1e:93:b8:36:9a:c7:66:f8:e1:a6:47:dc: 86:5d:a6:92:31:c9:85:ff:2b:d4:b1:7d:65:bb:9e: 7c:80:30:93:69:33:72:99:8d:67:9f:35:79:3b:48: 44:e2:93:73:6a:d1:d6:4e:c9:31:1c:b5:77:04:34: e4:02:58:8f:2b:0b:c7:38:c5:9d:eb:6b:65:d6:0e: 03:cc:ad:e0:89:c8:27:d6:36:6f:f2:67:36:8b:6f: 4a:e5:8b:af:47:71:b2:29:d5:e9:7a:4a:b2:30:bb: 76:cf:db:31:7a:67:65:8e:52:cf:cf:3e:38:8c:b6: 3d:ab:da:bb:66:31:d6:8d:6b:3d:d2:17:60:84:43: 41:2d:2d:0b:4a:2f:f1:ca:f1:c7:51:7f:99:37:8a: a4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E1:BA:85:DF:1E:70:0B:31:FE:01:48:E9:A7:00:CB:50:4B:4F:E1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/C8FB88AEFAC411EDBFE0012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:fe27::/48 2406:840:fe74::/48 Signature Algorithm: sha256WithRSAEncryption 9e:0b:20:4b:a9:20:c4:88:79:96:d9:77:d6:d8:0c:31:fc:a2: 53:6f:ee:78:75:e1:17:26:7d:e2:54:5a:47:2f:ec:11:77:a3: b8:61:0e:3f:08:43:a1:6b:c8:95:70:da:cb:02:2a:a8:f0:fc: 46:4d:a0:71:58:78:6f:b4:a5:c3:bd:16:aa:1f:f9:2a:87:77: e6:0e:7f:63:76:70:42:20:9b:7b:55:30:c1:58:23:4a:e1:0d: fa:f9:bd:a2:ad:fd:c6:4e:79:0e:9d:0e:b3:15:56:36:df:5f: 00:8d:2c:67:96:b0:45:6b:5a:b1:95:17:d0:8c:0a:e5:73:30: 22:9d:51:37:39:ca:92:f4:0b:6b:87:b3:a8:65:20:02:87:ad: 61:a2:f0:ea:e6:6c:d3:7a:c9:ef:ff:fc:37:02:86:d7:ac:21: d7:42:16:0f:b7:4e:cb:6f:08:b3:43:d2:50:20:81:ea:a9:7f: e5:4a:ce:00:97:44:2d:ad:0d:56:5e:73:58:b7:d9:51:3c:02: 65:a1:9e:93:30:a3:77:dd:95:74:2f:a5:75:dd:00:59:b1:b0: 6e:24:85:32:c3:c9:07:22:27:87:e8:8f:fd:25:05:0c:86:ad: ed:6d:5b:c2:08:6d:a6:b5:7a:11:52:e5:d3:1b:c2:47:7c:e7: dc:4c:bf:4d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMjE5MTM1MzU2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgxYTA3NC03M2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbFQNJ0KEyTgqkpcUBNASaVBVUQeLWwQQjAYgPoAu+lWqamm+DEpQJvxdyZc N7Xt4mXz84iTEE38cqzWqkyEQYenEFL4WRJ2JI34gEiMl5Ib8V0uZVZoXi5sQFhI A3SflF1kz/M6ot4WWAUek7g2msdm+OGmR9yGXaaSMcmF/yvUsX1lu558gDCTaTNy mY1nnzV5O0hE4pNzatHWTskxHLV3BDTkAliPKwvHOMWd62tl1g4DzK3gicgn1jZv 8mc2i29K5YuvR3GyKdXpekqyMLt2z9sxemdljlLPzz44jLY9q9q7ZjHWjWs90hdg hENBLS0LSi/xyvHHUX+ZN4qkuQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGThuoXf HnALMf4BSOmnAMtQS0/hMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQzhGQjg4QUVG QUM0MTFFREJGRTAwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBghA/icDBwAkBghA/nQwDQYJKoZIhvcNAQELBQADggEB AJ4LIEupIMSIeZbZd9bYDDH8olNv7nh14RcmfeJUWkcv7BF3o7hhDj8IQ6FryJVw 2ssCKqjw/EZNoHFYeG+0pcO9Fqof+SqHd+YOf2N2cEIgm3tVMMFYI0rhDfr5vaKt /cZOeQ6dDrMVVjbfXwCNLGeWsEVrWrGVF9CMCuVzMCKdUTc5ypL0C2uHs6hlIAKH rWGi8OrmbNN6ye///DcChtesIddCFg+3TstvCLND0lAggeqpf+VKzgCXRC2tDVZe c1i32VE8AmWhnpMwo3fdlXQvpXXdAFmxsG4khTLDyQciJ4foj/0lBQyGre1tW8II baa1ehFS5dMbwkd859xMv00= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org