$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa File: CACEAE268AD011EE9E1DAF84C4F9AE02.roa (raw, json) Hash identifier: q15sJUXOhq+ANw44fv4/Nf+M8Z5+idojwXPDcjKdXP8= Subject key identifier: D5:28:7B:47:84:F8:DD:A4:C9:F3:B6:34:E7:3D:4B:A5:AC:57:78:22 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0B74 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa Signing time: Fri 24 Nov 2023 13:53:06 +0000 ROA not before: Fri 24 Nov 2023 13:53:06 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 152118 IP address blocks: 2406:840:e880::/44 maxlen: 48 2406:840:fec4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Nov 24 13:53:06 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6560aac1-b811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1b:89:c6:11:6e:be:f1:b1:2c:95:2e:28:e4: 0a:c8:fe:92:5f:34:fc:47:ca:7c:71:e8:86:fe:59: 72:9c:9b:5a:aa:99:12:e8:7a:7a:7d:62:95:52:e4: 8a:77:fb:8e:4a:6a:22:eb:ac:e9:1e:17:fb:dd:b6: b6:1e:b9:3b:14:ad:34:bf:08:8f:66:b8:fb:f0:e3: 7a:24:04:9e:fb:fc:cd:ca:14:08:1d:df:1a:ee:c0: 8d:eb:b9:eb:13:2a:ca:93:6f:c6:8a:3e:91:db:59: de:94:88:94:a9:b4:6d:11:24:52:9d:f6:93:7f:28: b5:cf:f1:af:94:fe:7b:bb:bf:90:50:e6:8e:2a:44: 22:0d:e1:9f:10:08:f9:c0:57:3e:6a:0e:1e:ab:92: 2e:90:49:e9:10:bd:75:e2:03:f9:3c:6d:0d:f1:6b: cd:21:ee:37:4f:f0:c3:fc:14:db:25:f5:2f:78:35: 31:ff:3f:65:48:1a:92:a2:91:5d:de:48:85:b5:7a: 68:fb:28:53:01:bd:a2:c4:73:d5:91:b7:fe:b8:ed: 60:dd:b2:05:cb:b7:d1:7a:ef:ec:d9:82:43:52:b0: 33:f1:20:3a:96:7e:23:fd:ac:b2:92:2e:7f:e6:fc: b4:9c:18:cc:19:af:65:fd:7e:35:d0:1a:8b:3b:b2: ae:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:28:7B:47:84:F8:DD:A4:C9:F3:B6:34:E7:3D:4B:A5:AC:57:78:22 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CACEAE268AD011EE9E1DAF84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e880::/44 2406:840:fec4::/48 Signature Algorithm: sha256WithRSAEncryption 2c:9b:4b:5d:44:22:f9:b6:85:94:19:8a:8b:17:d4:48:50:68: 38:a7:a9:90:da:c3:f8:d6:96:cb:d1:92:c2:95:02:a2:d3:05: 90:de:1e:c3:88:be:5c:c8:28:3b:00:66:58:77:cd:9b:8b:2b: 35:2e:91:7e:6a:31:07:b2:0a:32:9a:5c:e0:a4:0a:72:d7:72: a2:04:c7:59:55:1d:c0:35:16:05:3f:bc:ad:89:36:2c:bb:8a: 1e:a2:c9:1f:7a:3c:6a:2e:b4:03:f4:48:ab:38:b0:55:e1:79: 23:79:ea:ba:b4:76:06:21:38:a4:a1:07:84:54:fd:9e:f7:07: db:2d:a1:0d:00:ba:c4:2d:5b:ce:3e:2d:cb:fd:ba:85:e3:5a: dd:7d:64:a7:f7:04:93:1c:87:c2:b1:b7:d8:0f:58:cc:10:e1: 72:3c:32:d3:2f:a1:5e:be:aa:0c:70:68:0f:bb:62:0a:88:d4: f8:f6:e7:e8:72:05:24:0b:24:9b:92:f7:57:3b:41:1d:a6:ca: 7a:77:65:fa:64:ab:0e:9c:10:87:eb:0d:39:03:40:94:95:e9: 3e:25:a4:bf:15:ca:a1:31:a2:9f:8f:fb:0a:66:91:d4:66:b9: 3c:02:ef:b6:da:18:47:da:49:d9:f8:de:8f:6e:cf:fc:6f:9b: df:6d:e4:c1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMxMTI0MTM1MzA2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwYWFjMS1iODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxuJxhFuvvGxLJUuKOQKyP6SXzT8R8p8ceiG/llynJtaqpkS6Hp6fWKVUuSK d/uOSmoi66zpHhf73ba2Hrk7FK00vwiPZrj78ON6JASe+/zNyhQIHd8a7sCN67nr EyrKk2/Gij6R21nelIiUqbRtESRSnfaTfyi1z/GvlP57u7+QUOaOKkQiDeGfEAj5 wFc+ag4eq5IukEnpEL114gP5PG0N8WvNIe43T/DD/BTbJfUveDUx/z9lSBqSopFd 3kiFtXpo+yhTAb2ixHPVkbf+uO1g3bIFy7fReu/s2YJDUrAz8SA6ln4j/ayyki5/ 5vy0nBjMGa9l/X410BqLO7KuIQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNUoe0eE +N2kyfO2NOc9S6WsV3giMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0FDRUFFMjY4 QUQwMTFFRTlFMURBRjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA6IADBwAkBghA/sQwDQYJKoZIhvcNAQELBQADggEB ACybS11EIvm2hZQZiosX1EhQaDinqZDaw/jWlsvRksKVAqLTBZDeHsOIvlzIKDsA Zlh3zZuLKzUukX5qMQeyCjKaXOCkCnLXcqIEx1lVHcA1FgU/vK2JNiy7ih6iyR96 PGoutAP0SKs4sFXheSN56rq0dgYhOKShB4RU/Z73B9stoQ0AusQtW84+Lcv9uoXj Wt19ZKf3BJMch8Kxt9gPWMwQ4XI8MtMvoV6+qgxwaA+7YgqI1Pj25+hyBSQLJJuS 91c7QR2mynp3Zfpkqw6cEIfrDTkDQJSV6T4lpL8VyqExop+P+wpmkdRmuTwC77ba GEfaSdn43o9uz/xvm99t5ME= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org