$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa File: 538172167F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: t+tOioULLbdadbVo+wcXgqHV26aKT7BFQ5ZKogdQLMI= Subject key identifier: 16:85:03:28:80:02:84:3C:79:AE:CE:56:DD:46:62:BF:C3:0E:A3:1C Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: D0 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa Signing time: Tue 05 Dec 2023 04:55:08 +0000 ROA not before: Tue 05 Dec 2023 04:55:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45139 IP address blocks: 2404:f801:8020::/48 maxlen: 48 2404:f801:802c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 5 04:55:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656ead2c-b02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:1a:db:e6:04:05:e9:a0:2f:08:c8:63:be:06: c6:dc:55:2d:d5:f5:1e:26:af:83:7f:e6:c1:9c:d6: c3:bd:45:4a:ec:fb:87:8b:2d:d2:ad:1e:5e:60:3e: e4:f5:0f:f3:3e:b1:b8:cd:31:57:6f:e0:e5:78:20: 51:90:04:2f:9a:55:7b:bd:ce:95:c3:79:77:af:b4: 95:fd:61:dc:eb:fd:4a:83:ce:6b:4d:8e:83:51:78: 34:c2:9f:74:9c:da:f2:42:03:d0:0c:76:57:33:15: 43:de:db:82:57:be:90:5f:5f:a5:9d:69:80:ff:8c: ed:91:c1:b7:c4:6a:d2:47:43:bf:68:87:fe:10:58: 85:ab:99:97:42:33:15:6e:03:f8:67:f1:4b:3f:bd: 3d:7d:b2:d7:cd:1c:d8:94:41:0d:fc:93:b1:c3:09: e5:bc:c1:57:66:16:df:41:0a:33:a2:09:3c:b7:3e: d7:7d:1f:0b:15:86:1f:1c:f9:7a:17:12:f7:52:38: b5:4e:4c:0c:60:14:2e:f9:bf:13:46:8b:56:b7:48: 07:b4:02:32:f7:b6:d8:9d:73:e7:47:3c:2b:f9:af: 3d:53:32:4f:8c:41:40:79:8a:a7:4b:5f:4e:35:6b: 0a:d6:e7:c5:77:02:f2:5c:d7:2a:5b:15:fe:8b:36: cd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:85:03:28:80:02:84:3C:79:AE:CE:56:DD:46:62:BF:C3:0E:A3:1C X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f801:8020::/48 2404:f801:802c::/48 Signature Algorithm: sha256WithRSAEncryption 2d:71:d6:8f:02:2a:7f:ad:79:67:61:c8:6a:10:ef:d0:e7:68: 8e:2a:fa:1d:bf:92:73:61:9d:c3:7e:18:29:a1:87:60:84:2b: 94:80:38:3e:e7:de:5c:8f:a9:bd:ca:dd:75:11:29:13:0c:2c: 3d:3c:70:65:a0:c8:99:40:78:1a:d6:5b:7f:78:09:c4:5c:07: 68:39:67:fd:4b:09:77:e7:e3:94:0b:ae:84:9d:ec:63:38:f9: 09:de:3c:0c:1d:d2:d6:92:25:7d:60:3f:94:90:b8:c5:a5:2f: 5e:f3:49:df:d5:ef:a5:1f:0d:b0:0d:9b:54:d3:4c:44:04:2b: 50:9a:c4:e8:0c:d1:d4:72:80:1f:b9:c9:90:d7:21:2c:6e:c3: 48:55:8a:d1:65:61:13:8d:ad:fd:e5:0b:fb:d8:f3:55:fa:54: ef:e3:be:79:4c:7b:f5:2a:b0:9d:d1:73:f3:84:be:53:f6:b5: 7a:77:02:04:c0:0f:c8:cf:ec:08:45:fd:5a:36:5b:aa:d2:30: 24:b4:87:7c:b2:87:fa:7e:6b:6b:0e:6b:e9:e9:98:63:4f:e3: d0:2e:46:2f:be:20:c5:7b:ae:4a:5c:26:76:9f:18:6b:19:9d: 06:d0:68:af:08:dd:14:49:3a:9f:46:3f:d6:30:c6:d1:79:3f: 25:ed:2d:9f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjMxMjA1MDQ1NTA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlYWQyYy1iMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRrb5gQF6aAvCMhjvgbG3FUt1fUeJq+Df+bBnNbDvUVK7PuHiy3SrR5eYD7k 9Q/zPrG4zTFXb+DleCBRkAQvmlV7vc6Vw3l3r7SV/WHc6/1Kg85rTY6DUXg0wp90 nNryQgPQDHZXMxVD3tuCV76QX1+lnWmA/4ztkcG3xGrSR0O/aIf+EFiFq5mXQjMV bgP4Z/FLP709fbLXzRzYlEEN/JOxwwnlvMFXZhbfQQozogk8tz7XfR8LFYYfHPl6 FxL3Uji1TkwMYBQu+b8TRotWt0gHtAIy97bYnXPnRzwr+a89UzJPjEFAeYqnS19O NWsK1ufFdwLyXNcqWxX+izbNFQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBaFAyiA AoQ8ea7OVt1GYr/DDqMcMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvNTM4MTcyMTY3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBPgBgCADBwAkBPgBgCwwDQYJKoZIhvcNAQELBQADggEB AC1x1o8CKn+teWdhyGoQ79DnaI4q+h2/knNhncN+GCmhh2CEK5SAOD7n3lyPqb3K 3XURKRMMLD08cGWgyJlAeBrWW394CcRcB2g5Z/1LCXfn45QLroSd7GM4+QnePAwd 0taSJX1gP5SQuMWlL17zSd/V76UfDbANm1TTTEQEK1CaxOgM0dRygB+5yZDXISxu w0hVitFlYRONrf3lC/vY81X6VO/jvnlMe/UqsJ3Rc/OEvlP2tXp3AgTAD8jP7AhF /Vo2W6rSMCS0h3yyh/p+a2sOa+npmGNP49AuRi++IMV7rkpcJnafGGsZnQbQaK8I 3RRJOp9GP9YwxtF5PyXtLZ8= -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:20 2024 by rpki-client on console-fra.rpki-client.org