$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/1E17F340724911E88CAE8E84C4F9AE02.roa File: 1E17F340724911E88CAE8E84C4F9AE02.roa (raw, json) Hash identifier: Tslvvd6A3vq5orEegc5BkWKMw7PNmLOCXJG/wdgxI+M= Subject key identifier: 95:BA:5F:62:3D:7A:B9:F4:5A:AC:B8:EA:E1:4B:1C:91:A8:CA:A5:35 Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Certificate serial: 18F9 Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/1E17F340724911E88CAE8E84C4F9AE02.roa Signing time: Sun 02 Apr 2023 17:23:52 +0000 ROA not before: Sun 02 Apr 2023 17:23:52 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 20473 IP address blocks: 2401:3740:374::/48 maxlen: 48 2401:3740:375::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Apr 2023 16:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6393 (0x18f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Validity Not Before: Apr 2 17:23:52 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6429ba28-7916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:75:50:54:e4:40:53:85:b6:f8:12:df:dd:7a: 9c:8d:27:d1:a5:51:0e:0f:79:a1:7e:d3:a5:01:33: 69:38:27:a9:44:de:00:ee:c4:ac:e3:b1:9e:0b:24: 1c:f0:b1:b4:ad:86:19:5d:45:9d:6a:9e:99:85:82: e1:d7:43:26:ba:42:4e:ec:3c:ae:d4:6f:50:71:41: e3:24:fb:7e:4b:5a:47:7b:75:66:f4:de:9a:d8:24: 15:a3:b6:66:63:cb:aa:ab:57:cb:03:83:f4:2f:b6: 64:d2:38:7d:7f:af:5d:f0:80:b4:ba:c6:b0:de:84: 60:75:5b:57:8c:d6:87:ed:c0:55:1f:50:f6:b9:27: e9:4d:08:8a:39:50:e5:f1:ab:51:f2:ad:4e:00:2d: 5b:69:64:03:fd:ad:13:29:d8:6f:0a:fe:1f:60:4b: 68:0e:9f:5d:d7:1a:d3:a2:a9:a5:19:ff:1d:4b:bb: 29:81:4e:5a:20:83:8c:46:ae:b4:50:68:c7:7d:38: eb:fa:ae:29:86:be:a5:b9:3b:e3:b5:eb:6a:72:e1: 68:d7:9d:75:8f:97:cd:95:1a:76:30:4c:b7:f8:ae: d4:a0:b1:d6:2c:9e:bc:70:c1:4d:35:68:90:ca:77: 06:e7:f8:9c:bc:c5:53:26:ff:65:0a:26:b0:6b:43: 65:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BA:5F:62:3D:7A:B9:F4:5A:AC:B8:EA:E1:4B:1C:91:A8:CA:A5:35 X509v3 Authority Key Identifier: keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/1E17F340724911E88CAE8E84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3740:374::/47 Signature Algorithm: sha256WithRSAEncryption 13:65:d5:b4:fc:d2:d2:6b:99:f9:d1:70:8f:f5:ec:fe:a9:21: 4f:52:c4:91:6c:31:56:cc:92:b7:8f:f3:89:ad:e2:73:50:17: c2:0c:50:a6:5b:3f:bd:f2:85:e2:98:3e:ac:64:1f:7c:46:66: 32:5d:10:16:1d:0c:56:d9:17:1f:8d:96:f5:17:24:9f:25:26: d3:98:46:8a:1d:79:ce:26:d8:1e:81:7f:1b:06:9c:74:d9:ec: f8:30:57:73:4e:8a:30:7b:3f:eb:a6:d1:5c:44:91:10:10:bb: 64:3d:d7:96:15:c2:3d:c4:f8:c0:f8:c8:ff:f4:09:f9:b3:e3: 6f:96:96:d9:32:55:63:2e:ab:a6:4d:72:48:25:4b:0c:5b:ad: 89:6c:e7:e0:0d:44:46:1d:31:06:e1:da:b4:4c:a7:61:4c:19: ec:6c:9b:c1:1a:73:05:e2:58:70:48:fc:dd:c7:b6:db:d1:56: 71:e0:96:03:ba:52:f4:2b:45:31:43:01:92:75:26:ce:d1:43: 82:72:e6:c9:55:28:83:87:a3:8a:a0:1f:bd:3b:83:ff:3f:3e: 75:8e:c1:87:4a:d5:22:a4:e0:23:3a:46:85:5a:61:56:26:fa: b9:9d:2c:d9:bd:d1:67:ff:9a:05:bd:4b:fc:9f:dd:86:9b:5d: a3:05:f5:51 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICGPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY2QTgxMTAvBgNVBAUTKEY3RDc0QzdGQjhCMEJBRUZDMzYzNUNENEUzNTA0OEFG ODhFMzlFRUYwHhcNMjMwNDAyMTcyMzUyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDI5YmEyOC03OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXVQVORAU4W2+BLf3XqcjSfRpVEOD3mhftOlATNpOCepRN4A7sSs47GeCyQc 8LG0rYYZXUWdap6ZhYLh10MmukJO7Dyu1G9QcUHjJPt+S1pHe3Vm9N6a2CQVo7Zm Y8uqq1fLA4P0L7Zk0jh9f69d8IC0usaw3oRgdVtXjNaH7cBVH1D2uSfpTQiKOVDl 8atR8q1OAC1baWQD/a0TKdhvCv4fYEtoDp9d1xrToqmlGf8dS7spgU5aIIOMRq60 UGjHfTjr+q4phr6luTvjtetqcuFo1511j5fNlRp2MEy3+K7UoLHWLJ68cMFNNWiQ yncG5/icvMVTJv9lCiawa0NlewIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJW6X2I9 ern0Wqy46uFLHJGoyqU1MB8GA1UdIwQYMBaAFPfXTH+4sLrvw2Nc1ONQSK+I457v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjZBOC9GM0JENEMzNjQ5 Q0IxMUU3QTRBODdDN0JDNEY5QUUwMi85OWRNZjdpd3V1X0RZMXpVNDFCSXI0ampu dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5ZE1mN2l3dXVfRFkxelU0MUJJcjRqam51OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY2QTgvRjNCRDRDMzY0OUNCMTFFN0E0QTg3QzdCQzRGOUFFMDIvMUUxN0YzNDA3 MjQ5MTFFODhDQUU4RTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkATdAA3QwDQYJKoZIhvcNAQELBQADggEBABNl1bT80tJr mfnRcI/17P6pIU9SxJFsMVbMkreP84mt4nNQF8IMUKZbP73yheKYPqxkH3xGZjJd EBYdDFbZFx+NlvUXJJ8lJtOYRoodec4m2B6BfxsGnHTZ7PgwV3NOijB7P+um0VxE kRAQu2Q915YVwj3E+MD4yP/0Cfmz42+WltkyVWMuq6ZNckglSwxbrYls5+ANREYd MQbh2rRMp2FMGexsm8EacwXiWHBI/N3HttvRVnHglgO6UvQrRTFDAZJ1Js7RQ4Jy 5slVKIOHo4qgH707g/8/PnWOwYdK1SKk4CM6RoVaYVYm+rmdLNm90Wf/mgW9S/yf 3YabXaMF9VE= -----END CERTIFICATE-----Generated at Sun Apr 2 17:40:48 2023 by rpki-client on console-fra.rpki-client.org