$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa File: 17A651BCA40E11EEAAB83671C4F9AE02.roa (raw, json) Hash identifier: ud/e01rmrnMI7HngSKHE+cQlo1wQpmdnHcl5Kf5zih8= Subject key identifier: B9:A4:A5:A1:7F:E1:7E:00:DC:4F:4C:A4:F9:4F:11:54:56:F0:F2:2C Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 03E1 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa Signing time: Tue 26 Dec 2023 16:44:53 +0000 ROA not before: Tue 26 Dec 2023 16:44:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 47869 IP address blocks: 2401:df40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Dec 26 16:44:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=658b0305-11e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5b:0c:18:62:af:ac:ce:15:f8:7f:71:33:b2: 11:24:f3:6f:5d:d0:45:34:fc:bc:63:9c:de:73:1e: 38:71:67:b2:c4:9d:f6:f9:0f:05:66:53:06:ea:b4: 26:b3:cc:59:27:68:f0:9a:5c:a9:4c:8b:33:e3:10: 25:94:3e:49:8b:af:6f:a9:71:70:15:fb:41:dc:58: 40:a6:55:fd:62:fb:36:1e:d5:3e:16:d3:b7:4b:a1: 6f:a7:53:3b:01:63:9d:d0:30:5f:f8:72:a0:d4:67: 55:20:db:85:11:da:89:cf:0e:ca:4b:17:40:c8:28: 1b:15:0b:73:f2:cd:91:8b:6d:04:df:78:8d:70:d3: 8f:d3:ca:8b:a0:70:3e:d6:fa:d2:68:3f:79:20:ce: 08:05:cc:31:2c:55:e2:af:93:5a:10:0c:77:b1:28: 5b:ff:a0:f7:87:9b:74:4f:40:8a:d8:52:0d:1f:7f: 90:d4:8f:fc:05:ba:95:40:17:ac:6d:f0:a0:8d:c8: 23:ba:56:02:c1:f5:9f:7f:4d:57:01:5d:30:0f:9c: 43:b7:00:a7:ac:36:58:15:57:6a:00:c1:90:6b:83: 4a:b1:b9:6f:f5:a8:c2:08:2f:3d:19:72:25:d6:4a: 45:85:61:74:3f:05:f3:1e:46:11:d1:b8:7e:56:4c: 1b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A4:A5:A1:7F:E1:7E:00:DC:4F:4C:A4:F9:4F:11:54:56:F0:F2:2C X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/17A651BCA40E11EEAAB83671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:1::/48 Signature Algorithm: sha256WithRSAEncryption 7c:58:9c:63:cf:dc:65:ab:34:32:f7:a6:e6:00:3d:2d:50:e8: 0a:b3:4d:7e:83:2a:f6:b3:ca:e6:ee:66:ef:d5:b3:b0:92:69: 89:e2:2b:ab:56:f3:7c:f6:a3:c4:d2:0b:9f:64:3a:73:3f:71: 51:7c:3d:43:4b:d7:ba:1c:74:ac:f7:d6:0f:e8:d2:13:15:85: de:d0:7f:c9:46:e2:c8:9e:42:a7:eb:98:2e:84:83:2d:11:fb: e0:d4:3e:01:03:fb:1c:3b:e8:66:c8:4a:82:20:d6:27:c7:c0: f4:4a:67:8f:55:48:af:d4:e8:e4:7a:5e:e0:5e:61:30:34:51: 2d:51:cf:01:4a:66:52:62:a8:4e:be:0f:00:77:e8:00:76:91: c7:01:ca:52:19:38:39:66:29:81:2c:ce:b2:b0:87:fc:2b:b2: 91:e7:84:43:8f:87:84:97:26:f8:e8:a2:1b:cb:fd:0e:ac:92: ff:a2:ad:1e:f0:7e:1d:e6:ef:df:eb:69:19:ec:79:c9:f0:39: 41:4c:a7:3e:2a:eb:c1:99:8c:d4:a6:ff:7b:ca:82:5a:10:d4: 7b:63:71:ea:70:c0:2a:90:81:c0:ea:70:39:05:dd:19:61:58: f6:75:3a:1b:75:49:33:91:f9:29:b0:0d:d9:4a:a4:3f:6c:4f: 7a:99:f4:65 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjMxMjI2MTY0NDUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiMDMwNS0xMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VsMGGKvrM4V+H9xM7IRJPNvXdBFNPy8Y5zecx44cWeyxJ32+Q8FZlMG6rQm s8xZJ2jwmlypTIsz4xAllD5Ji69vqXFwFftB3FhAplX9Yvs2HtU+FtO3S6Fvp1M7 AWOd0DBf+HKg1GdVINuFEdqJzw7KSxdAyCgbFQtz8s2Ri20E33iNcNOP08qLoHA+ 1vrSaD95IM4IBcwxLFXir5NaEAx3sShb/6D3h5t0T0CK2FINH3+Q1I/8BbqVQBes bfCgjcgjulYCwfWff01XAV0wD5xDtwCnrDZYFVdqAMGQa4NKsblv9ajCCC89GXIl 1kpFhWF0PwXzHkYR0bh+VkwbNQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLmkpaF/ 4X4A3E9MpPlPEVRW8PIsMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMTdBNjUxQkNB NDBFMTFFRUFBQjgzNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAEwDQYJKoZIhvcNAQELBQADggEBAHxYnGPP3GWr NDL3puYAPS1Q6AqzTX6DKvazyubuZu/Vs7CSaYniK6tW83z2o8TSC59kOnM/cVF8 PUNL17ocdKz31g/o0hMVhd7Qf8lG4sieQqfrmC6Egy0R++DUPgED+xw76GbISoIg 1ifHwPRKZ49VSK/U6OR6XuBeYTA0US1RzwFKZlJiqE6+DwB36AB2kccBylIZODlm KYEszrKwh/wrspHnhEOPh4SXJvjoohvL/Q6skv+irR7wfh3m79/raRnsecnwOUFM pz4q68GZjNSm/3vKgloQ1HtjcepwwCqQgcDqcDkF3RlhWPZ1Oht1STOR+SmwDdlK pD9sT3qZ9GU= -----END CERTIFICATE-----Generated at Sat May 11 03:51:29 2024 by rpki-client on console-ams.rpki-client.org