$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/64B971E05F1511ECBED92D34C4F9AE02.roa File: 64B971E05F1511ECBED92D34C4F9AE02.roa (raw, json) Hash identifier: n9Sbe6aJ9bWcEpBK4zo5wiRtQpqIpKo5tbSmsKD22c4= Subject key identifier: 31:7E:D2:D1:59:EA:97:48:07:E2:9E:84:8D:51:53:55:8A:D0:B1:0D Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03A9 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/64B971E05F1511ECBED92D34C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:18 +0000 ROA not before: Wed 31 Jan 2024 03:05:18 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 210528 IP address blocks: 2407:9240:2201::/48 maxlen: 48 2407:9240:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:18 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8ee-5e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:49:80:e0:14:08:bb:55:9d:89:c2:c7:d2:48: 77:ac:fd:c4:39:09:de:35:27:09:a0:9f:21:e4:ab: 7d:7c:a3:0b:96:4c:5e:d5:48:56:2a:5c:85:d8:3b: 3d:c0:9d:5e:a2:4b:7c:54:e4:55:a4:52:0a:cf:97: 1c:a7:97:2a:39:5e:b0:8a:80:a8:30:18:69:97:9a: a4:e4:5f:99:c5:a1:32:35:f1:e8:17:2a:c9:80:7b: d5:3e:65:8b:a9:07:93:73:e9:b3:6a:12:4c:57:e1: e7:b8:ec:a5:bd:4d:10:e4:45:e0:a7:81:32:b7:4c: 83:b8:67:60:26:2f:9d:6a:2c:0d:07:93:d1:29:eb: a8:83:58:e5:49:54:1c:1c:90:2a:9b:91:c3:d6:72: cc:99:41:da:ec:51:05:76:42:c8:74:f4:af:34:c9: b8:05:73:41:eb:cc:aa:ae:e7:0c:ec:39:2e:ae:24: d6:5e:94:92:6e:1f:94:b1:0d:32:a0:50:6c:b1:13: 62:ca:e7:17:8d:99:e6:b3:08:95:c2:0a:27:62:95: 93:ba:39:f6:08:2e:6c:33:cf:d1:15:78:92:4e:e6: 9e:31:04:42:b5:65:78:0f:15:d2:63:01:86:a6:0b: 0b:eb:ed:89:b1:c7:11:a9:2f:e3:de:e8:56:52:04: d8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7E:D2:D1:59:EA:97:48:07:E2:9E:84:8D:51:53:55:8A:D0:B1:0D X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/64B971E05F1511ECBED92D34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:2201::/48 2407:9240:2800::/40 Signature Algorithm: sha256WithRSAEncryption 23:c6:72:5d:82:c1:22:30:a6:a9:15:54:ec:53:ef:c4:50:6c: e0:e2:2d:78:e1:f9:f5:40:3f:0f:18:0c:fe:c2:9a:e3:8c:f3: 46:51:e3:66:de:73:2c:df:6e:9b:16:f2:40:8d:21:23:83:13: 28:4d:00:46:63:81:22:b2:9e:0b:30:cb:dc:d2:c6:ab:0b:5e: 0b:1a:12:5e:94:2e:d5:35:09:76:99:d8:5a:5c:6b:a8:93:d5: e1:1c:cd:9c:7d:9c:74:dc:df:54:13:c1:f8:2c:85:99:c6:34: 8c:5c:68:c4:b7:af:51:40:a4:fb:65:02:c3:41:ab:80:c3:bf: 4b:f9:a4:66:cd:01:43:de:56:b7:ff:a0:4a:02:25:a0:7b:30: 95:ba:d1:c9:76:c4:e1:ff:81:e3:0a:24:53:96:3c:88:f4:04: e9:19:c3:c7:18:dc:6f:a3:74:db:c6:81:92:9a:d6:8d:2a:84: 2c:16:67:29:bf:17:6d:69:09:cd:e0:f5:a9:94:bc:ce:23:58: ab:9d:7e:b5:29:fe:b9:04:e9:ef:cc:53:ce:83:a6:ae:84:70: ab:ae:5b:d2:21:4e:8e:41:6a:f8:2d:98:7c:d7:37:17:b1:21: c6:cf:f0:3e:12:c7:9d:e3:be:b0:86:06:d4:d6:48:cd:7d:df: 20:1a:6d:ef -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTE4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhlZS01ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUmA4BQIu1WdicLH0kh3rP3EOQneNScJoJ8h5Kt9fKMLlkxe1UhWKlyF2Ds9 wJ1eokt8VORVpFIKz5ccp5cqOV6wioCoMBhpl5qk5F+ZxaEyNfHoFyrJgHvVPmWL qQeTc+mzahJMV+HnuOylvU0Q5EXgp4Eyt0yDuGdgJi+daiwNB5PRKeuog1jlSVQc HJAqm5HD1nLMmUHa7FEFdkLIdPSvNMm4BXNB68yqrucM7DkuriTWXpSSbh+UsQ0y oFBssRNiyucXjZnmswiVwgonYpWTujn2CC5sM8/RFXiSTuaeMQRCtWV4DxXSYwGG pgsL6+2JsccRqS/j3uhWUgTYtwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFDF+0tFZ 6pdIB+KehI1RU1WK0LENMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNjRCOTcxRTA1 RjE1MTFFQ0JFRDkyRDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBwAkB5JAIgEDBgAkB5JAKDANBgkqhkiG9w0BAQsFAAOCAQEA I8ZyXYLBIjCmqRVU7FPvxFBs4OIteOH59UA/DxgM/sKa44zzRlHjZt5zLN9umxby QI0hI4MTKE0ARmOBIrKeCzDL3NLGqwteCxoSXpQu1TUJdpnYWlxrqJPV4RzNnH2c dNzfVBPB+CyFmcY0jFxoxLevUUCk+2UCw0GrgMO/S/mkZs0BQ95Wt/+gSgIloHsw lbrRyXbE4f+B4wokU5Y8iPQE6RnDxxjcb6N028aBkprWjSqELBZnKb8XbWkJzeD1 qZS8ziNYq51+tSn+uQTp78xTzoOmroRwq65b0iFOjkFq+C2YfNc3F7Ehxs/wPhLH neO+sIYG1NZIzX3fIBpt7w== -----END CERTIFICATE-----Generated at Sun May 19 03:38:14 2024 by rpki-client on console-ams.rpki-client.org