$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/65552C3AE8D411ED8D0FAD45C4F9AE02.roa File: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (raw, json) Hash identifier: dkWNK4jxbpzIxES4Gj9U+we0c/5UWZUM/X3Kdhehu+4= Subject key identifier: B9:97:35:A2:20:A9:20:2B:18:F6:AE:34:6E:A9:48:B5:72:FF:42:42 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 33BC Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/65552C3AE8D411ED8D0FAD45C4F9AE02.roa Signing time: Wed 10 Jan 2024 15:10:50 +0000 ROA not before: Wed 10 Jan 2024 15:10:50 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 142435 IP address blocks: 2403:5000:187::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13244 (0x33bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 10 15:10:50 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659eb379-3a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:bf:b6:f0:37:cd:be:61:3e:d0:da:b6:8a: 39:62:64:32:47:fe:ba:a3:df:28:2c:de:83:18:f1: 96:62:30:de:58:ba:be:61:38:b1:b0:4c:25:79:38: 85:cb:29:d1:da:66:42:0d:32:28:b5:a1:3e:04:97: 70:33:bb:27:95:f4:68:7b:8d:0f:44:0b:68:68:40: 86:41:6f:46:05:b6:b0:bc:b3:d3:17:6c:4f:09:2f: b8:24:5c:06:48:05:6e:fc:fd:a6:2d:73:8d:b8:2f: b8:65:33:c1:53:ce:95:18:aa:0f:b1:7d:3e:83:a6: fe:cb:b9:46:e2:d2:2d:49:ca:ff:73:e8:b0:60:6f: 67:9b:f9:60:26:f1:56:a0:65:3d:aa:73:22:c4:9e: 09:d6:e4:9b:fe:96:88:06:f3:1b:fb:4c:64:54:38: 63:b5:e6:f4:ed:74:de:41:f8:43:21:80:e9:11:9a: dd:e3:55:28:48:dc:85:56:8a:86:92:8f:62:9d:0c: 30:8d:e8:bf:a1:c3:6b:ca:7e:0b:f7:f2:f0:8b:04: b4:66:c2:8f:fa:4a:d3:7e:c6:f4:ce:20:a0:db:95: 21:28:c5:0d:11:c0:f6:1a:50:93:bc:15:bd:0d:00: da:f4:15:05:ee:70:4b:ff:0d:77:34:b0:b2:12:21: 62:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:97:35:A2:20:A9:20:2B:18:F6:AE:34:6E:A9:48:B5:72:FF:42:42 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/65552C3AE8D411ED8D0FAD45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:5000:187::/48 Signature Algorithm: sha256WithRSAEncryption 54:e9:c5:13:ee:4f:22:e9:e3:2c:dd:53:f1:84:f3:12:4a:5f: f3:11:58:fd:ca:45:12:96:ef:48:ed:64:07:b6:1f:47:01:7d: 09:6c:5d:4f:6c:a9:14:bf:f7:bc:eb:aa:86:9c:2c:7e:a9:0d: 71:76:4c:2a:ca:62:68:22:92:c6:de:bb:54:3d:ff:f6:b2:b3: 6c:85:74:4e:7c:f2:d8:f1:cf:bc:cf:56:7d:f0:ce:d3:ae:c0: 10:3e:e7:6d:ec:05:51:c6:85:44:5e:df:6e:82:0b:dc:7e:c7: 00:8c:ee:89:49:ad:b1:f5:70:2c:c8:c7:2c:fc:e5:95:08:5f: 8e:eb:eb:69:28:3b:68:97:17:e1:94:db:3b:d8:67:8b:c0:b9: e8:a2:fc:32:ef:2e:89:4a:4e:0a:8a:a1:2f:11:05:a1:78:d9: dd:f8:70:56:81:26:46:23:c3:dd:78:9a:27:b0:3a:85:5a:5c: 31:5b:91:cf:d4:a6:84:71:cd:94:aa:56:60:6a:a0:7c:74:aa: 12:4f:0f:71:d2:0b:5d:2e:03:37:d9:6b:d5:13:5b:a2:31:ae: ee:2c:e7:da:db:e0:0a:8b:33:b5:65:e9:c4:b7:05:a4:07:0f: 95:4a:bd:3c:67:b0:2c:9e:a3:38:3a:e7:af:89:99:7a:6f:c9: a8:c8:b1:f5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICM7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjQwMTEwMTUxMDUwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYjM3OS0zYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto+/tvA3zb5hPtDatoo5YmQyR/66o98oLN6DGPGWYjDeWLq+YTixsEwleTiF yynR2mZCDTIotaE+BJdwM7snlfRoe40PRAtoaECGQW9GBbawvLPTF2xPCS+4JFwG SAVu/P2mLXONuC+4ZTPBU86VGKoPsX0+g6b+y7lG4tItScr/c+iwYG9nm/lgJvFW oGU9qnMixJ4J1uSb/paIBvMb+0xkVDhjteb07XTeQfhDIYDpEZrd41UoSNyFVoqG ko9inQwwjei/ocNryn4L9/LwiwS0ZsKP+krTfsb0ziCg25UhKMUNEcD2GlCTvBW9 DQDa9BUF7nBL/w13NLCyEiFiNQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLmXNaIg qSArGPauNG6pSLVy/0JCMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvNjU1NTJDM0FF OEQ0MTFFRDhEMEZBRDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA1AAAYcwDQYJKoZIhvcNAQELBQADggEBAFTpxRPuTyLp 4yzdU/GE8xJKX/MRWP3KRRKW70jtZAe2H0cBfQlsXU9sqRS/97zrqoacLH6pDXF2 TCrKYmgiksbeu1Q9//ays2yFdE588tjxz7zPVn3wztOuwBA+523sBVHGhURe326C C9x+xwCM7olJrbH1cCzIxyz85ZUIX47r62koO2iXF+GU2zvYZ4vAueii/DLvLolK TgqKoS8RBaF42d34cFaBJkYjw914miewOoVaXDFbkc/UpoRxzZSqVmBqoHx0qhJP D3HSC10uAzfZa9UTW6Ixru4s59rb4AqLM7Vl6cS3BaQHD5VKvTxnsCyeozg656+J mXpvyajIsfU= -----END CERTIFICATE-----Generated at Fri May 31 17:44:51 2024 by rpki-client on console-fra.rpki-client.org