$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa File: 59962840D01911EE96596B16C4F9AE02.roa (raw, json) Hash identifier: fYQUl3M9uMnZ4l0aWX4ltk29AzdRDyZ5gevO1DSEIvw= Subject key identifier: 0A:96:22:CB:14:BA:B0:3C:2D:0E:5C:24:8C:5B:7E:28:6B:AB:C4:CF Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 35 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa Signing time: Tue 20 Feb 2024 17:56:19 +0000 ROA not before: Tue 20 Feb 2024 17:56:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 213122 IP address blocks: 2401:3a60:1100::/40 maxlen: 40 2401:3a60:1200::/40 maxlen: 40 2401:3a60:1300::/40 maxlen: 40 2401:3a60:1400::/40 maxlen: 40 2401:3a60:1500::/40 maxlen: 40 2401:3a60:1600::/40 maxlen: 40 2401:3a60:3100::/40 maxlen: 40 2401:3a60:3200::/40 maxlen: 40 2401:3a60:5000::/40 maxlen: 40 2401:3a60:5100::/40 maxlen: 40 2401:3a60:5200::/40 maxlen: 40 2401:3a60:5300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Feb 20 17:56:19 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65d4e7c3-d6df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a0:6e:7f:d5:83:f6:87:f2:a3:9a:98:1a:05: 2b:7b:2e:6c:7e:1b:dc:2f:66:0f:49:01:f8:36:57: bb:95:37:45:a4:a6:0d:06:34:b2:bd:9a:35:52:28: 94:db:ad:98:8e:f1:fd:87:c9:b4:06:e9:df:5e:16: f6:9a:48:6f:f7:9e:c3:a2:89:74:69:c7:31:0a:62: 3b:7e:ae:6e:df:94:4d:dd:2a:5a:38:21:90:59:99: 3a:29:b4:81:9e:4d:28:9a:ec:6b:1e:04:e1:03:fe: ef:1d:3c:e9:01:86:7f:c1:fe:76:2d:eb:d3:f0:cb: cf:f8:05:58:4a:4c:8f:be:f0:9f:74:7e:27:64:04: 55:c9:57:7d:23:40:c3:5f:18:1d:bb:43:95:e0:fd: de:79:e1:52:61:33:b3:af:18:27:6e:7f:ff:5f:be: 0b:0e:9f:3f:d7:e6:b2:de:32:ab:7e:a7:7b:f0:23: 2c:4c:7d:77:4b:0a:02:57:f0:b3:14:47:d8:7b:40: 39:6c:25:fc:83:0b:f1:4d:16:29:d9:8c:57:bb:cc: fa:50:1f:5d:46:c0:3d:b9:53:30:1b:39:cd:d1:44: c7:ce:19:6f:68:5b:8e:7e:78:73:b5:8c:cd:1b:1a: 20:10:d5:9d:10:85:c7:61:0d:4e:bb:82:dd:e4:f9: 98:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:96:22:CB:14:BA:B0:3C:2D:0E:5C:24:8C:5B:7E:28:6B:AB:C4:CF X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3a60:1100::-2401:3a60:16ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:3100::-2401:3a60:32ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:5000::/38 Signature Algorithm: sha256WithRSAEncryption 72:bc:2b:15:9e:4b:c6:92:77:1a:29:98:10:67:d2:71:dc:65: 83:48:f8:94:dd:7b:af:59:6f:c9:ca:1f:ea:23:87:11:8b:f5: 2d:30:c0:2f:89:ba:41:23:ab:71:04:9b:35:2b:7b:04:2d:0e: c4:28:76:33:3f:fc:ad:46:b9:a4:2c:96:c8:af:e8:a9:aa:7a: c6:79:4a:26:1c:49:74:10:44:ed:d0:ad:10:b4:33:61:9d:de: 6e:9b:b0:b1:b8:8d:e1:4d:01:5c:ee:95:3d:25:e5:04:09:77: 28:c3:46:42:c5:cb:b1:ca:d6:8c:be:d2:00:64:00:44:d1:a1: 20:1b:21:d2:77:fb:15:c5:e3:6c:b7:f1:ab:4b:a0:44:6d:46: 44:16:85:a9:1d:73:f4:82:47:33:fd:3e:86:d5:25:c5:54:1b: d3:a2:0f:c8:c7:4d:8e:2a:fb:e5:20:3d:e5:28:4d:f4:86:c7: 72:d8:9d:39:4c:62:19:38:1e:e7:cc:1e:97:4f:91:1f:d9:5e: 10:ba:c6:05:90:94:fd:89:e5:b3:09:a4:d3:51:0e:6e:60:72: a5:7d:bc:16:a1:f0:15:65:66:f4:2a:27:56:b6:5f:ec:9b:01: 30:53:e5:4b:70:2c:d5:db:28:97:9a:91:29:42:7a:df:a4:42: 51:0c:ba:59 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDlCMjExMC8GA1UEBRMoOTEyOTVCQkI3NUJGQUFFQjk1MzFCMzlCMzZFQzc1MjFE REUzMEQ2MzAeFw0yNDAyMjAxNzU2MTlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDRlN2MzLWQ2ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCoG5/1YP2h/KjmpgaBSt7Lmx+G9wvZg9JAfg2V7uVN0Wkpg0GNLK9mjVSKJTb rZiO8f2HybQG6d9eFvaaSG/3nsOiiXRpxzEKYjt+rm7flE3dKlo4IZBZmToptIGe TSia7GseBOED/u8dPOkBhn/B/nYt69Pwy8/4BVhKTI++8J90fidkBFXJV30jQMNf GB27Q5Xg/d554VJhM7OvGCduf/9fvgsOnz/X5rLeMqt+p3vwIyxMfXdLCgJX8LMU R9h7QDlsJfyDC/FNFinZjFe7zPpQH11GwD25UzAbOc3RRMfOGW9oW45+eHO1jM0b GiAQ1Z0QhcdhDU67gt3k+ZhJAgMBAAGjggK7MIICtzAdBgNVHQ4EFgQUCpYiyxS6 sDwtDlwkjFt+KGurxM8wHwYDVR0jBBgwFoAUkSlbu3W/quuVMbObNux1Id3jDWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEOUIyLzBBNkYzQjQyOTE1 NTExRUVBNEMwRjY2OEM0RjlBRTAyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1NsYnUzV19xdXVWTWJPYk51eDFJZDNqRFdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi81OTk2Mjg0MEQw MTkxMUVFOTY1OTZCMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBFBggrBgEFBQcBBwEB/wQ2 MDQwMgQCAAIwLDAQAwYAJAE6YBEDBgAkATpgFjAQAwYAJAE6YDEDBgAkATpgMgMG AiQBOmBQMA0GCSqGSIb3DQEBCwUAA4IBAQByvCsVnkvGkncaKZgQZ9Jx3GWDSPiU 3XuvWW/Jyh/qI4cRi/UtMMAvibpBI6txBJs1K3sELQ7EKHYzP/ytRrmkLJbIr+ip qnrGeUomHEl0EETt0K0QtDNhnd5um7CxuI3hTQFc7pU9JeUECXcow0ZCxcuxytaM vtIAZABE0aEgGyHSd/sVxeNst/GrS6BEbUZEFoWpHXP0gkcz/T6G1SXFVBvTog/I x02OKvvlID3lKE30hsdy2J05TGIZOB7nzB6XT5Ef2V4QusYFkJT9ieWzCaTTUQ5u YHKlfbwWofAVZWb0KidWtl/smwEwU+VLcCzV2yiXmpEpQnrfpEJRDLpZ -----END CERTIFICATE-----Generated at Sat Jun 15 10:27:13 2024 by rpki-client on console-ams.rpki-client.org