$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa File: CA3AFA2C3F4011EE8922E662C4F9AE02.roa (raw, json) Hash identifier: jWMWu5jlbosC8BNsl7zHgNfqDh7jgSQJ5UVby1e/6HA= Subject key identifier: 44:9C:A4:55:02:73:FF:CD:F9:10:E7:60:2A:78:64:CB:F8:2E:F9:E9 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0AE9 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa Signing time: Sun 20 Aug 2023 10:03:20 +0000 ROA not before: Sun 20 Aug 2023 10:03:20 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 216452 IP address blocks: 2406:840:9ff0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 20 10:03:20 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64e1e4e8-3e46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b0:bc:db:61:44:8c:8c:64:0a:5d:42:7f:2e: 46:d1:6c:93:95:e6:2a:c3:e6:a9:cb:f7:40:bc:49: 17:4a:97:3a:ea:c8:ed:8c:ec:cb:07:2d:14:65:36: 5a:22:26:b1:fe:49:a6:68:80:58:86:8e:29:93:b3: 7d:c9:ff:0a:ba:2b:e8:ba:86:b0:cd:56:73:23:57: d8:6c:31:e1:1e:46:3b:a8:21:93:49:a2:c1:f7:cf: 72:d5:4c:81:e9:72:62:4e:5b:59:1b:11:39:fe:18: be:0c:27:30:b2:61:64:55:74:5b:79:b0:98:16:de: 9f:f4:54:b5:fa:47:85:9e:0f:a5:39:6d:e7:d8:9e: f5:1a:9f:a4:cc:8a:33:da:4a:84:de:31:cd:3d:59: 71:ec:c7:fe:c5:54:03:8c:97:c0:af:83:ac:32:fa: a0:8c:35:b7:39:10:a7:77:12:ef:2d:e6:c8:84:8a: 6b:cf:f0:ec:3f:7e:eb:91:11:91:58:e6:c3:f3:2c: 6b:1b:97:0f:ef:a8:b6:05:19:4c:9a:a6:f8:ae:a4: 18:fe:ca:a9:7c:c4:cb:ae:87:7d:c7:b5:d2:25:e5: 44:95:ae:b0:bb:a3:91:87:f9:32:1f:11:fe:c8:59: 8f:19:0a:0c:c9:7e:fc:21:75:7b:16:1e:42:75:3e: 49:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9C:A4:55:02:73:FF:CD:F9:10:E7:60:2A:78:64:CB:F8:2E:F9:E9 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CA3AFA2C3F4011EE8922E662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:9ff0::/44 Signature Algorithm: sha256WithRSAEncryption 93:b2:6c:69:83:2b:ac:2f:b3:93:4d:b5:d2:4d:18:26:de:98: 05:92:09:cc:80:e6:0d:64:1e:82:e3:eb:d4:ff:1c:36:93:92: 8c:99:49:13:46:75:1c:0e:f5:33:4c:b6:cf:1b:24:63:a9:be: 37:09:e7:16:6a:52:db:e1:be:f2:3b:ba:b2:d6:91:07:f5:81: d9:bf:47:02:b1:9f:df:68:3b:5d:65:3e:17:27:e0:ee:47:a2: 9c:ab:0b:1b:85:e3:14:9f:cd:0e:50:e0:0b:4d:57:11:ab:41: da:dc:ee:19:56:77:5f:89:c4:67:41:a1:d6:81:85:55:45:ea: f9:1c:68:96:d9:bf:fa:c8:36:c2:00:b2:7c:de:0f:78:ac:df: 2e:bc:ce:aa:8e:04:00:f2:71:8a:06:35:a6:a2:9a:76:6d:01: c3:6b:ca:12:4e:81:4d:65:cd:5d:46:14:7b:da:2d:e0:6f:a6: ee:82:16:5c:0f:df:2d:65:ad:a6:f9:3d:51:4f:4a:db:5a:bb: 7b:83:2a:c3:f9:c6:81:86:8d:07:ab:2f:29:38:a8:61:1b:11: 43:39:d8:fa:4e:8e:ee:8a:4a:09:35:60:04:52:cf:1f:20:68: 67:a1:98:9d:06:f3:a4:de:36:83:6b:30:f1:5a:3c:04:4b:bb: 68:a6:c4:09 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwODIwMTAwMzIwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUxZTRlOC0zZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67C822FEjIxkCl1Cfy5G0WyTleYqw+apy/dAvEkXSpc66sjtjOzLBy0UZTZa Iiax/kmmaIBYho4pk7N9yf8KuivouoawzVZzI1fYbDHhHkY7qCGTSaLB989y1UyB 6XJiTltZGxE5/hi+DCcwsmFkVXRbebCYFt6f9FS1+keFng+lOW3n2J71Gp+kzIoz 2kqE3jHNPVlx7Mf+xVQDjJfAr4OsMvqgjDW3ORCndxLvLebIhIprz/DsP37rkRGR WObD8yxrG5cP76i2BRlMmqb4rqQY/sqpfMTLrod9x7XSJeVEla6wu6ORh/kyHxH+ yFmPGQoMyX78IXV7Fh5CdT5J1QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEScpFUC c//N+RDnYCp4ZMv4LvnpMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0EzQUZBMkMz RjQwMTFFRTg5MjJFNjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghAn/AwDQYJKoZIhvcNAQELBQADggEBAJOybGmDK6wv s5NNtdJNGCbemAWSCcyA5g1kHoLj69T/HDaTkoyZSRNGdRwO9TNMts8bJGOpvjcJ 5xZqUtvhvvI7urLWkQf1gdm/RwKxn99oO11lPhcn4O5HopyrCxuF4xSfzQ5Q4AtN VxGrQdrc7hlWd1+JxGdBodaBhVVF6vkcaJbZv/rINsIAsnzeD3is3y68zqqOBADy cYoGNaaimnZtAcNryhJOgU1lzV1GFHvaLeBvpu6CFlwP3y1lrab5PVFPSttau3uD KsP5xoGGjQerLyk4qGEbEUM52PpOju6KSgk1YARSzx8gaGehmJ0G86TeNoNrMPFa PARLu2imxAk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org