$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3503A838EA9911EDA6A36E18C4F9AE02.roa File: 3503A838EA9911EDA6A36E18C4F9AE02.roa (raw, json) Hash identifier: 0GtekBL2dOHyHHnoJe/8fq1ahw3kmkZ3Jf2VXcQA8mI= Subject key identifier: EC:C7:34:3A:BE:93:DE:DA:8B:6B:B5:52:44:D9:45:C5:3E:57:F3:07 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 2FC4 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3503A838EA9911EDA6A36E18C4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:54 +0000 ROA not before: Tue 30 Apr 2024 15:52:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139309 IP address blocks: 2405:2000:901::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12228 (0x2fc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113d5-7163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:20:7c:b6:33:fe:38:30:73:a1:e9:9e:0b: a4:1c:be:db:ef:9c:1f:0b:b6:b5:c1:9b:1b:8f:4b: ff:a3:22:56:68:34:e7:be:62:df:71:b6:40:e9:39: 26:90:8f:24:19:96:17:cc:1c:1a:b2:0b:18:21:9e: 77:4b:ec:9a:f3:04:25:56:5b:3f:e6:83:97:cb:96: 2e:6b:1f:71:4d:27:aa:bd:45:31:c9:cc:f0:01:f0: fe:cd:83:47:bc:0e:93:21:ff:4e:f1:bf:bc:05:e7: e5:b7:3c:02:9a:21:25:70:ae:ba:34:89:a3:0f:03: 74:42:4d:0e:c2:0f:00:ab:fa:7c:4f:b1:72:04:80: ae:36:f8:f1:6f:d7:45:6f:ad:c7:48:57:3f:0b:45: 49:2b:c7:2f:4b:9a:6f:c8:06:4e:9f:20:93:90:15: c9:9b:1a:09:2a:a8:d2:7e:11:4b:9d:20:eb:a6:f5: 2f:9a:b5:6d:69:6d:b8:f6:15:47:ac:f7:99:f6:83: d3:18:37:ed:b6:e3:dd:42:c2:51:e6:1c:d3:4c:77: 73:c6:eb:25:48:c4:2c:d7:5a:f9:d4:e5:71:c2:30: 15:d3:5a:43:21:06:95:52:24:e4:97:21:80:7c:42: 41:a0:bf:3d:b8:5b:81:14:8d:67:60:cd:a3:06:7e: ea:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C7:34:3A:BE:93:DE:DA:8B:6B:B5:52:44:D9:45:C5:3E:57:F3:07 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3503A838EA9911EDA6A36E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2000:901::/48 Signature Algorithm: sha256WithRSAEncryption 30:b4:ac:be:f7:02:2b:e3:05:0c:ed:fd:f6:48:e3:32:d5:79: 1b:20:71:a6:82:d4:80:ab:5f:ed:4d:b1:7c:3a:45:31:f0:9d: 8d:9e:2f:0e:c9:f6:d4:c0:75:42:3a:c9:1b:5f:c3:b4:d8:47: cf:cf:cc:70:0a:76:40:e9:b3:df:4e:9d:97:11:d0:c7:71:1a: 0d:39:98:76:51:e8:1e:5b:78:2d:66:98:96:11:21:81:f9:1c: 3a:24:5d:5c:ea:94:70:a8:72:49:67:85:c4:76:59:0d:b3:da: 43:07:6a:43:4e:2f:f9:31:89:13:98:55:cc:cc:bc:25:c7:11: f8:80:ad:22:d4:34:b2:b5:82:a1:db:01:83:3d:2b:b5:e3:36: cf:42:21:3b:15:ea:d6:96:0b:07:61:94:ef:85:1b:50:54:92: 89:33:79:56:0f:93:6c:b0:de:81:93:f5:ba:34:ab:76:4b:54: af:d7:b7:d7:18:1e:d6:d8:35:c4:4d:2f:6d:f7:53:7f:67:6e: 2f:87:3d:50:da:66:45:07:0b:21:4c:d4:2d:39:e3:c7:c6:ed: 1c:3b:19:d0:e0:f9:93:5e:dd:75:a9:b8:96:8f:58:1e:63:36: a9:ce:9b:0a:e5:65:2a:de:dc:6c:95:2c:47:d4:3b:da:fe:55: ed:31:06:7f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICL8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjQwNDMwMTU1MjU0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNkNS03MTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2sgfLYz/jgwc6HpngukHL7b75wfC7a1wZsbj0v/oyJWaDTnvmLfcbZA6Tkm kI8kGZYXzBwasgsYIZ53S+ya8wQlVls/5oOXy5Yuax9xTSeqvUUxyczwAfD+zYNH vA6TIf9O8b+8BefltzwCmiElcK66NImjDwN0Qk0Owg8Aq/p8T7FyBICuNvjxb9dF b63HSFc/C0VJK8cvS5pvyAZOnyCTkBXJmxoJKqjSfhFLnSDrpvUvmrVtaW249hVH rPeZ9oPTGDfttuPdQsJR5hzTTHdzxuslSMQs11r51OVxwjAV01pDIQaVUiTklyGA fEJBoL89uFuBFI1nYM2jBn7qGQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOzHNDq+ k97ai2u1UkTZRcU+V/MHMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMzUwM0E4MzhF QTk5MTFFREE2QTM2RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBSAACQEwDQYJKoZIhvcNAQELBQADggEBADC0rL73Aivj BQzt/fZI4zLVeRsgcaaC1ICrX+1NsXw6RTHwnY2eLw7J9tTAdUI6yRtfw7TYR8/P zHAKdkDps99OnZcR0MdxGg05mHZR6B5beC1mmJYRIYH5HDokXVzqlHCocklnhcR2 WQ2z2kMHakNOL/kxiROYVczMvCXHEfiArSLUNLK1gqHbAYM9K7XjNs9CITsV6taW CwdhlO+FG1BUkokzeVYPk2yw3oGT9bo0q3ZLVK/Xt9cYHtbYNcRNL233U39nbi+H PVDaZkUHCyFM1C0548fG7Rw7GdDg+ZNe3XWpuJaPWB5jNqnOmwrlZSre3GyVLEfU O9r+Ve0xBn8= -----END CERTIFICATE-----Generated at Thu May 16 17:51:49 2024 by rpki-client on console-ams.rpki-client.org