$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa File: D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa (raw, json) Hash identifier: NozYBf09fZMW9AWtgVWOSe5yzNdICqv+C3RTPdqk8GE= Subject key identifier: 78:28:CD:B2:1C:ED:38:6C:63:0B:B6:76:5C:2D:5E:08:18:E6:9F:F1 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0AF5 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa Signing time: Thu 24 Aug 2023 17:04:10 +0000 ROA not before: Thu 24 Aug 2023 17:04:10 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 151194 IP address blocks: 2406:840:e570::/44 maxlen: 48 2406:840:fefe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: Aug 24 17:04:10 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64e78d89-395b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:8c:63:61:24:1d:1a:60:54:ea:38:dd:84: 2b:95:f3:a0:f6:ea:b6:6f:22:81:0d:db:87:70:4d: 72:d1:27:f3:f7:5a:58:93:09:ef:e9:c1:c7:83:16: 66:b1:8f:70:90:54:0f:ad:21:96:f5:21:25:5c:b1: b7:ae:df:36:99:8c:27:75:e2:7f:b8:43:cc:cd:95: 80:b3:14:ba:f4:7e:b8:10:ce:fc:0b:af:2b:15:ea: e5:56:e6:fb:ea:15:f9:64:b0:2e:56:e2:02:6d:8d: 28:2d:21:e1:de:75:cb:d8:2e:a6:92:bc:6c:f0:db: 10:8b:c3:cb:bf:6e:e9:7d:b3:6f:c8:78:b4:94:bc: 59:11:06:aa:b7:96:74:57:bc:fc:9d:9e:65:5e:c5: 9e:3c:16:7e:e4:5f:e2:43:ad:c8:f3:78:b4:79:51: 9a:28:b8:f4:68:12:7f:19:54:84:82:a8:e4:b7:1d: cf:14:df:ff:97:49:00:4a:c4:08:8f:aa:f0:f9:a8: a8:e4:db:14:5b:30:ff:73:08:d8:aa:bc:9d:9e:f6: 4f:0b:61:b6:78:49:e6:7a:e6:9e:68:b2:93:0d:7c: df:40:b3:d9:9d:c3:51:2a:dd:06:e1:27:4c:9d:36: ad:30:76:30:64:e7:9b:d7:e0:83:4b:1c:f0:f6:89: 60:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:28:CD:B2:1C:ED:38:6C:63:0B:B6:76:5C:2D:5E:08:18:E6:9F:F1 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/D2EB86EADF3D11ED8AECBF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:840:e570::/44 2406:840:fefe::/48 Signature Algorithm: sha256WithRSAEncryption 4c:78:ae:5c:c4:0f:db:2b:07:3e:8e:84:dd:e5:d7:77:b3:9c: a6:c1:02:49:6a:5f:d0:b3:ff:34:6d:e8:58:8c:30:31:d4:88: 15:34:84:8d:85:d6:48:34:0f:03:83:8e:f0:a5:63:d1:a8:ac: 3e:b7:3c:df:41:99:6c:4e:2e:2c:6e:b2:96:55:7e:75:fe:74: 11:91:db:f2:b0:f4:df:6b:cd:d5:be:ca:10:a5:5d:4c:47:ad: ab:aa:1f:4f:23:a4:a6:8c:1d:4e:80:48:8e:dd:bf:ab:6b:d9: 09:42:3b:94:26:00:c7:9a:0b:46:8c:a6:c8:77:f5:a4:42:7f: b5:87:de:a6:aa:59:32:dd:59:44:b7:40:99:7d:80:50:d4:ab: c8:b9:44:7c:c5:3c:cc:07:a8:20:71:e0:e5:35:e1:6a:2a:38: 61:b8:c8:83:28:f7:5f:3d:63:b9:84:d0:a6:4e:6e:53:99:93: 38:40:b6:f1:72:59:00:4a:8e:4b:2f:16:c5:40:0e:61:98:e7: 5f:39:d2:2b:4c:2b:f4:ed:18:02:b6:94:a4:96:45:80:98:7e: 39:ca:4b:1c:d2:9c:e9:3b:ac:8c:09:64:00:29:e3:c1:56:fa: 54:0f:54:87:58:ca:f6:07:7b:9c:f9:96:95:d8:af:2c:c6:e3: 81:e0:4b:2c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjMwODI0MTcwNDEwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3OGQ4OS0zOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytuMY2EkHRpgVOo43YQrlfOg9uq2byKBDduHcE1y0Sfz91pYkwnv6cHHgxZm sY9wkFQPrSGW9SElXLG3rt82mYwndeJ/uEPMzZWAsxS69H64EM78C68rFerlVub7 6hX5ZLAuVuICbY0oLSHh3nXL2C6mkrxs8NsQi8PLv27pfbNvyHi0lLxZEQaqt5Z0 V7z8nZ5lXsWePBZ+5F/iQ63I83i0eVGaKLj0aBJ/GVSEgqjktx3PFN//l0kASsQI j6rw+aio5NsUWzD/cwjYqrydnvZPC2G2eEnmeuaeaLKTDXzfQLPZncNRKt0G4SdM nTatMHYwZOeb1+CDSxzw9olg1QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHgozbIc 7ThsYwu2dlwtXggY5p/xMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvRDJFQjg2RUFE RjNEMTFFRDhBRUNCRjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBghA5XADBwAkBghA/v4wDQYJKoZIhvcNAQELBQADggEB AEx4rlzED9srBz6OhN3l13eznKbBAklqX9Cz/zRt6FiMMDHUiBU0hI2F1kg0DwOD jvClY9GorD63PN9BmWxOLixuspZVfnX+dBGR2/Kw9N9rzdW+yhClXUxHrauqH08j pKaMHU6ASI7dv6tr2QlCO5QmAMeaC0aMpsh39aRCf7WH3qaqWTLdWUS3QJl9gFDU q8i5RHzFPMwHqCBx4OU14WoqOGG4yIMo9189Y7mE0KZOblOZkzhAtvFyWQBKjksv FsVADmGY51850itMK/TtGAK2lKSWRYCYfjnKSxzSnOk7rIwJZAAp48FW+lQPVIdY yvYHe5z5lpXYryzG44HgSyw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:16 2024 by rpki-client on console-ams.rpki-client.org