$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa File: CFC56F10466711EBB87A5683C4F9AE02.roa (raw, json) Hash identifier: hyXXbr2U6Gw2BVzcqUKqEChXaRhKQIh+JPXRZq/g6mM= Subject key identifier: 1C:BB:0C:81:6E:EC:AE:80:29:3B:64:BF:93:20:ED:69:2D:0F:46:DE Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0A2F Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa Signing time: Sun 14 May 2023 22:13:59 +0000 ROA not before: Sun 14 May 2023 22:13:59 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134477 IP address blocks: 2406:840:e100::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2607 (0xa2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 14 22:13:59 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64615d27-e539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1b:a9:a1:b9:71:1f:b0:32:0a:37:e6:93:82: e7:f2:cf:73:90:2d:6c:0d:dd:1a:47:2c:98:73:81: 38:dc:2f:02:8a:7c:47:28:f8:cd:a1:11:95:d4:87: 26:bc:7d:0f:71:78:50:31:95:65:a3:62:c7:5c:23: 54:4d:65:42:fc:c2:e3:61:5f:af:63:36:30:12:d4: e6:b9:48:07:bf:55:d6:01:79:1d:1f:d9:9d:87:65: 43:64:79:1c:70:0a:b6:6b:fe:36:94:d1:2a:83:f6: 53:fc:54:ad:15:35:de:60:7b:07:0a:4c:81:e1:a3: f8:a4:37:78:c8:da:0d:71:0b:cb:57:c7:f6:da:e4: 1f:8a:59:5b:da:cb:d0:9a:dd:26:3e:b7:92:fe:bc: d4:43:95:a9:be:3f:ef:fb:a8:b8:ac:13:8b:2c:de: b3:25:ea:98:63:f5:aa:19:65:68:a5:4a:34:c2:c1: 8d:d7:9b:87:52:dc:54:3a:30:7d:82:4a:40:6c:a2: 6a:b4:b1:29:29:44:0a:a9:ba:ab:7f:35:f1:20:ff: f0:d7:cb:4d:55:1e:bf:0d:ff:a9:78:87:df:0d:b5: 26:05:0d:0e:04:61:32:ae:8d:22:0a:57:50:0a:7e: 67:ac:cf:d0:23:94:a0:e1:cd:a9:ad:76:3b:9b:52: 94:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BB:0C:81:6E:EC:AE:80:29:3B:64:BF:93:20:ED:69:2D:0F:46:DE X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/CFC56F10466711EBB87A5683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e100::/44 Signature Algorithm: sha256WithRSAEncryption 26:20:38:fa:a7:89:bb:6f:1e:5b:7c:90:e1:44:c4:7d:5a:d5: 27:7b:c0:1e:87:be:55:27:13:39:e9:89:b7:6e:fa:ba:43:02: 93:3b:b6:e7:c9:38:38:e0:8e:07:a7:31:89:e7:9b:c2:30:3e: 67:87:91:fa:ba:fb:75:fb:c9:b6:83:94:e6:ed:54:bf:75:1c: 2e:37:de:33:5b:8f:1e:c7:99:43:cf:1c:72:d0:e7:b5:ea:4f: ee:1f:6e:f6:f6:0c:8b:64:18:08:3e:7f:66:d8:9e:be:88:24: 80:e7:72:a2:1b:10:8c:39:86:68:c4:14:72:8e:c1:06:e4:54: ef:a2:0c:da:c8:a0:18:2f:25:92:62:44:19:d0:5a:b5:eb:84: 83:d1:17:d0:05:cf:4b:9e:30:da:8d:9a:71:ab:ef:70:f7:6a: bd:a5:1f:52:3d:b1:05:7e:fc:71:2f:ae:db:36:7c:72:31:7b: e6:2c:8e:0f:bb:3f:70:ef:2c:cb:45:0b:11:93:b4:d4:84:56: 91:cc:e2:77:4e:71:1f:52:c6:12:78:7e:81:f4:e7:bd:12:52: be:0c:23:28:e5:98:9e:75:2f:38:f8:81:9d:2d:bc:22:e9:cd: 3f:bb:37:13:42:1b:ef:f1:c9:70:f4:46:7d:42:de:40:d1:ae: 32:bc:b9:8b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwNTE0MjIxMzU5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYxNWQyNy1lNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBupoblxH7AyCjfmk4Ln8s9zkC1sDd0aRyyYc4E43C8CinxHKPjNoRGV1Icm vH0PcXhQMZVlo2LHXCNUTWVC/MLjYV+vYzYwEtTmuUgHv1XWAXkdH9mdh2VDZHkc cAq2a/42lNEqg/ZT/FStFTXeYHsHCkyB4aP4pDd4yNoNcQvLV8f22uQfillb2svQ mt0mPreS/rzUQ5Wpvj/v+6i4rBOLLN6zJeqYY/WqGWVopUo0wsGN15uHUtxUOjB9 gkpAbKJqtLEpKUQKqbqrfzXxIP/w18tNVR6/Df+peIffDbUmBQ0OBGEyro0iCldQ Cn5nrM/QI5Sg4c2prXY7m1KUrwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBy7DIFu 7K6AKTtkv5Mg7WktD0beMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvQ0ZDNTZGMTA0 NjY3MTFFQkI4N0E1NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBghA4QAwDQYJKoZIhvcNAQELBQADggEBACYgOPqnibtv Hlt8kOFExH1a1Sd7wB6HvlUnEznpibdu+rpDApM7tufJODjgjgenMYnnm8IwPmeH kfq6+3X7ybaDlObtVL91HC433jNbjx7HmUPPHHLQ57XqT+4fbvb2DItkGAg+f2bY nr6IJIDncqIbEIw5hmjEFHKOwQbkVO+iDNrIoBgvJZJiRBnQWrXrhIPRF9AFz0ue MNqNmnGr73D3ar2lH1I9sQV+/HEvrts2fHIxe+Ysjg+7P3DvLMtFCxGTtNSEVpHM 4ndOcR9SxhJ4foH0570SUr4MIyjlmJ51Lzj4gZ0tvCLpzT+7NxNCG+/xyXD0Rn1C 3kDRrjK8uYs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org