$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa File: 9CEB71A45BA811ED875C2452C4F9AE02.roa (raw, json) Hash identifier: 2CGRw9JLuNklY24mWe/aGdmEYnKZD7KM8HVRkwtPh1A= Subject key identifier: AA:B3:76:C6:FF:8C:B7:B2:3F:A1:FD:35:00:EA:4E:78:D3:6C:AE:DC Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03A4 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:14 +0000 ROA not before: Wed 31 Jan 2024 03:05:14 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138181 IP address blocks: 2407:9240:3200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:14 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8e9-30e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:98:f1:d3:1a:0a:a6:9c:7c:75:d0:3f:61: 75:6b:ed:2d:5f:39:70:f4:04:27:fe:e3:d5:e9:78: 09:41:4d:6f:76:a8:42:c9:89:17:48:25:5e:a5:06: 2d:78:6d:4a:c5:42:a1:08:ae:aa:bd:ff:8b:05:9b: 95:8b:47:98:e6:92:53:d5:5a:81:19:e5:2f:1a:93: 97:59:f8:67:c2:e3:4c:17:d6:d7:14:c4:99:d7:b4: ed:75:53:f8:56:80:e5:93:82:fc:ea:e9:a7:dd:ec: 56:1b:08:90:11:b0:0c:f3:a6:dc:9b:ad:6e:01:4e: 09:50:f5:6f:24:68:44:71:0e:d2:c9:3c:1d:c2:ac: 93:ee:77:a3:7d:b8:77:83:db:59:ea:f6:cc:e9:e1: 2a:c0:dd:47:5e:ab:5a:c3:1b:97:86:3a:ce:88:df: a5:17:d2:45:83:03:c7:77:cc:f5:dc:34:f0:02:08: 9c:ad:89:68:44:99:71:66:f4:55:9f:05:41:37:48: 4c:e7:da:b5:a5:f0:30:14:05:df:35:6b:55:76:82: 4c:cb:d8:78:ee:0a:7a:95:e0:c0:e3:f0:52:08:e3: 0a:ad:9d:c9:ec:8f:e8:eb:d1:a3:bc:23:b7:43:2a: 8e:da:ee:b7:17:fe:4f:03:15:34:d1:53:f4:21:9d: 6e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B3:76:C6:FF:8C:B7:B2:3F:A1:FD:35:00:EA:4E:78:D3:6C:AE:DC X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:3200::/40 Signature Algorithm: sha256WithRSAEncryption 73:35:cb:26:47:ab:b6:08:e4:e1:ca:b4:60:df:6d:12:66:3e: e7:5d:01:0e:70:de:1c:4a:10:9e:aa:20:e5:c6:ee:57:e5:a2: ba:76:04:16:a8:c5:a9:fb:d4:38:b2:76:4e:a9:4c:ac:0f:d3: f6:fc:76:9a:a4:4c:25:79:ff:98:37:a8:0e:31:7a:6d:0c:0d: 09:50:c6:75:6e:9c:78:44:cd:30:08:b5:8f:8a:3f:02:58:ae: be:ac:25:e6:7a:73:99:d1:58:32:48:0c:0e:d3:bb:f9:63:d5: c8:64:56:35:33:c2:6d:6c:4d:cb:2e:29:3f:8e:3c:b1:cb:4f: 01:8a:f8:53:69:40:ba:e1:ad:3e:10:57:12:c6:e9:f7:c1:b6: 75:70:ef:60:e7:66:7b:45:d5:6e:14:03:14:c1:70:74:bb:f4: f1:92:32:09:f0:cd:a7:cb:e2:22:e1:75:e1:78:83:30:85:3d: b2:d1:84:6e:8e:cd:ca:63:72:7d:1c:5a:34:f9:3d:84:72:5c: c2:fe:4f:7d:21:d9:65:51:6d:45:5b:03:8f:2d:ee:66:06:f0: 44:f9:7a:f0:df:13:8e:57:69:e1:43:7a:52:26:48:11:4c:0e: 91:da:3a:82:48:2c:56:01:21:19:b8:46:45:1a:2c:c0:65:95: d7:23:f4:f4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTE0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhlOS0zMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0qY8dMaCqacfHXQP2F1a+0tXzlw9AQn/uPV6XgJQU1vdqhCyYkXSCVepQYt eG1KxUKhCK6qvf+LBZuVi0eY5pJT1VqBGeUvGpOXWfhnwuNMF9bXFMSZ17TtdVP4 VoDlk4L86umn3exWGwiQEbAM86bcm61uAU4JUPVvJGhEcQ7SyTwdwqyT7nejfbh3 g9tZ6vbM6eEqwN1HXqtawxuXhjrOiN+lF9JFgwPHd8z13DTwAgicrYloRJlxZvRV nwVBN0hM59q1pfAwFAXfNWtVdoJMy9h47gp6leDA4/BSCOMKrZ3J7I/o69GjvCO3 QyqO2u63F/5PAxU00VP0IZ1uDwIDAQABo4IClzCCApMwHQYDVR0OBBYEFKqzdsb/ jLeyP6H9NQDqTnjTbK7cMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvOUNFQjcxQTQ1 QkE4MTFFRDg3NUMyNDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAMjANBgkqhkiG9w0BAQsFAAOCAQEAczXLJkertgjk 4cq0YN9tEmY+510BDnDeHEoQnqog5cbuV+WiunYEFqjFqfvUOLJ2TqlMrA/T9vx2 mqRMJXn/mDeoDjF6bQwNCVDGdW6ceETNMAi1j4o/Aliuvqwl5npzmdFYMkgMDtO7 +WPVyGRWNTPCbWxNyy4pP448sctPAYr4U2lAuuGtPhBXEsbp98G2dXDvYOdme0XV bhQDFMFwdLv08ZIyCfDNp8viIuF14XiDMIU9stGEbo7NymNyfRxaNPk9hHJcwv5P fSHZZVFtRVsDjy3uZgbwRPl68N8Tjldp4UN6UiZIEUwOkdo6gkgsVgEhGbhGRRos wGWV1yP09A== -----END CERTIFICATE-----Generated at Sun May 5 03:47:45 2024 by rpki-client on console-fra.rpki-client.org