$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/55892E84839011EAB5B82263C4F9AE02.roa File: 55892E84839011EAB5B82263C4F9AE02.roa (raw, json) Hash identifier: rn9WF0fvz3rSau/NSjCzGQFLyqGPaM5bqudbfPMMbLk= Subject key identifier: FD:57:F4:13:7D:48:7F:B2:7B:D3:BD:48:4C:4D:81:EE:74:51:77:19 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 08C3 Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/55892E84839011EAB5B82263C4F9AE02.roa Signing time: Tue 02 Jan 2024 21:18:51 +0000 ROA not before: Tue 02 Jan 2024 21:18:51 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134809 IP address blocks: 2402:7481::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Jan 2 21:18:51 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65947dba-03ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:00:c4:2a:dd:09:ea:a1:49:43:0a:e5:87:8e: e1:f8:54:a9:80:a8:5e:cd:31:ee:11:8f:d7:26:89: 80:db:be:3d:64:5e:c3:10:2d:d2:f9:8b:f5:5e:e1: 91:aa:2a:08:d6:bb:08:9a:f5:d9:51:66:98:b6:1c: b2:45:35:7c:ec:cc:97:d5:2a:bb:93:b5:d3:af:f3: 0a:11:18:62:d6:bd:6e:76:36:d7:c4:de:83:b4:81: f3:e0:dc:42:f7:3e:88:96:0f:ad:48:aa:20:6b:81: 66:75:66:0c:ee:37:53:d3:44:31:60:08:29:d7:57: 3c:b6:c4:8f:e2:d3:8f:f4:de:1e:3f:f6:66:9a:2b: 8f:cb:cc:3f:5a:28:d7:4b:37:48:2d:29:7f:87:32: 6d:90:5a:66:d4:73:78:b6:19:0d:b8:64:02:0d:b5: 29:b5:ff:26:aa:d7:f4:3c:95:a7:47:1a:96:e2:af: 70:73:27:bd:a1:d7:fb:f1:aa:06:78:77:32:3a:b4: f6:e5:18:be:a3:fd:ae:52:e7:6c:56:d0:eb:44:04: 96:46:2d:1a:bb:75:1e:52:e9:a9:3d:df:c9:2c:40: 05:d6:54:e3:89:71:5c:84:56:10:2a:70:47:c3:bf: f6:39:c0:37:15:80:c4:7e:8a:7c:89:46:43:79:03: cf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:57:F4:13:7D:48:7F:B2:7B:D3:BD:48:4C:4D:81:EE:74:51:77:19 X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/55892E84839011EAB5B82263C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:7481::/32 Signature Algorithm: sha256WithRSAEncryption 61:6c:81:a9:7f:88:d1:55:75:53:37:ca:8b:47:79:a6:7d:95: 7b:ff:fa:43:2e:72:b9:50:b2:1f:22:71:4d:fb:48:0a:e8:ba: a0:ee:24:67:34:57:e2:e5:63:1e:c1:43:0f:1b:66:19:99:b9: 29:52:7d:f1:f8:3a:58:00:02:1e:e5:dc:ed:5e:cd:60:1b:6c: 6c:d9:d9:20:04:4f:b7:56:9e:e8:75:23:a7:31:8d:f4:7e:4b: 9a:e3:e0:2e:3f:1c:e5:97:40:a6:0b:67:01:cc:d8:5b:cd:70: b2:61:37:80:f4:c2:db:dc:ef:d4:82:73:f5:19:72:db:ac:a2: 7a:db:d9:2f:fc:db:da:d7:e6:1a:10:ed:3a:ba:93:3d:12:11: 3b:f3:c8:b4:63:32:c8:6d:83:27:6d:c0:69:95:24:ac:9c:b1: 88:1d:05:15:05:55:dd:aa:a8:f4:e0:10:91:62:31:a4:5c:ad: 6b:fd:ce:c9:b4:ec:04:2b:e2:f4:02:77:dc:03:54:70:e8:4a: 72:a0:1c:a1:ac:0f:55:8c:0d:01:d4:fa:f8:f3:53:50:a1:fc: dd:df:9d:2f:3d:38:b7:1a:7b:af:42:d0:9b:94:b6:9c:5d:0e: cb:50:48:8e:65:84:dd:15:a1:4f:3a:b3:83:76:2e:39:0d:8b: 9a:c8:c7:f3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjQwMTAyMjExODUxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0N2RiYS0wM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswDEKt0J6qFJQwrlh47h+FSpgKhezTHuEY/XJomA2749ZF7DEC3S+Yv1XuGR qioI1rsImvXZUWaYthyyRTV87MyX1Sq7k7XTr/MKERhi1r1udjbXxN6DtIHz4NxC 9z6Ilg+tSKoga4FmdWYM7jdT00QxYAgp11c8tsSP4tOP9N4eP/ZmmiuPy8w/WijX SzdILSl/hzJtkFpm1HN4thkNuGQCDbUptf8mqtf0PJWnRxqW4q9wcye9odf78aoG eHcyOrT25Ri+o/2uUudsVtDrRASWRi0au3UeUumpPd/JLEAF1lTjiXFchFYQKnBH w7/2OcA3FYDEfop8iUZDeQPPbQIDAQABo4ICljCCApIwHQYDVR0OBBYEFP1X9BN9 SH+ye9O9SExNge50UXcZMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVCQTkvREY3QTdGMTQ4MzhFMTFFQThDRUEwOTYwQzRGOUFFMDIvNTU4OTJFODQ4 MzkwMTFFQUI1QjgyMjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAnSBMA0GCSqGSIb3DQEBCwUAA4IBAQBhbIGpf4jRVXVT N8qLR3mmfZV7//pDLnK5ULIfInFN+0gK6Lqg7iRnNFfi5WMewUMPG2YZmbkpUn3x +DpYAAIe5dztXs1gG2xs2dkgBE+3Vp7odSOnMY30fkua4+AuPxzll0CmC2cBzNhb zXCyYTeA9MLb3O/UgnP1GXLbrKJ629kv/Nva1+YaEO06upM9EhE788i0YzLIbYMn bcBplSSsnLGIHQUVBVXdqqj04BCRYjGkXK1r/c7JtOwEK+L0AnfcA1Rw6EpyoByh rA9VjA0B1Pr481NQofzd350vPTi3GnuvQtCblLacXQ7LUEiOZYTdFaFPOrODdi45 DYuayMfz -----END CERTIFICATE-----Generated at Mon May 6 22:40:59 2024 by rpki-client on console-ams.rpki-client.org