$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa File: F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa (raw, json) Hash identifier: oOv8IWm3CJSx/2lXFPDKWEyMUTroKLJl6Cmo0UJ6tYQ= Subject key identifier: A7:CE:D1:53:C5:FF:D3:8D:2E:0F:F8:9B:11:B1:F9:0A:53:9F:07:F5 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: D1 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa Signing time: Tue 05 Dec 2023 04:55:09 +0000 ROA not before: Tue 05 Dec 2023 04:55:09 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 8071 IP address blocks: 2404:f801:8050::/48 maxlen: 48 2404:f801:a808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 05:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 5 04:55:09 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656ead2d-12cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ec:ae:1f:9a:a7:e2:4d:b2:a4:3d:60:8d:12: 57:ec:9e:27:25:40:e9:99:1e:30:14:5f:95:22:9f: c9:b0:a0:83:57:4b:5b:c7:43:6c:4f:55:49:bd:51: 9a:15:7f:a2:fb:d3:e1:d8:bb:e8:eb:7b:8e:d5:dc: 5a:3b:9f:98:35:50:b1:ea:6f:2a:8e:8f:8e:f2:63: 30:32:a0:3f:43:54:25:83:9a:a6:c5:7d:2f:26:42: 53:92:a5:34:fe:51:ca:48:b4:1e:20:fc:d3:c9:a5: 1f:1c:15:48:c4:05:03:a6:70:39:ea:73:5c:b4:99: 8a:60:24:4b:27:f7:10:61:af:48:7f:1c:c5:77:93: c0:a6:ce:1d:4f:ce:ee:16:01:89:ad:e8:e8:a3:10: 43:9d:96:31:e5:b4:5a:a4:41:38:d3:a0:92:70:f2: aa:a6:d7:dc:f5:1d:92:23:37:ea:74:55:6e:b4:86: f1:a4:c9:55:31:66:84:88:d3:c9:88:5b:d4:f5:63: a2:4c:3c:49:9e:52:5a:61:97:49:bf:cc:a6:5f:19: 7d:f1:ac:31:33:38:f5:a5:15:d9:96:71:84:f3:a1: 11:d8:6c:ca:4a:af:f1:f5:ac:fd:74:99:f6:5a:ed: 19:4a:a2:b2:6a:89:66:c3:fb:e9:bb:24:be:2b:b8: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CE:D1:53:C5:FF:D3:8D:2E:0F:F8:9B:11:B1:F9:0A:53:9F:07:F5 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f801:8050::/48 2404:f801:a808::/48 Signature Algorithm: sha256WithRSAEncryption 6e:8c:99:3c:64:6b:83:2e:28:2d:75:12:97:c9:98:f2:be:d1: 62:01:f0:80:a5:b8:45:04:00:45:4c:5f:c5:f8:c6:96:3a:c0: 84:3d:42:d3:17:31:b9:e2:e0:52:c9:ef:b7:b9:d3:93:25:65: 3f:c0:25:d2:d8:bc:95:45:42:6e:f1:35:38:b2:20:54:81:f7: 50:e5:85:57:7f:25:42:d5:05:ff:8e:6f:02:44:aa:0b:1e:42: 8b:e9:f7:e7:93:d0:a3:2e:69:f5:0b:5f:33:40:98:ef:06:ff: 97:75:e0:d9:fb:fb:7f:e2:c7:c5:08:9c:d1:25:2e:8f:df:79: 8a:f0:3e:56:ff:a0:7e:a2:2b:81:df:b7:41:bb:a5:4c:a2:b2: 3d:f4:10:d2:8f:11:02:b7:e4:a9:f9:05:57:2c:d9:16:ce:df: 1b:d6:d4:51:4b:65:82:ab:5b:6e:07:04:8c:de:59:1f:92:54: d8:06:1d:e7:eb:24:cd:f8:1e:42:08:52:22:e4:ea:9e:3a:6c: 1b:0d:35:f6:29:d2:ef:54:b2:51:71:e7:76:04:9c:cc:b9:8b: a1:27:22:f8:93:d7:55:5b:3b:6e:2b:73:70:76:98:36:bb:95: 95:7e:b7:93:d9:4c:03:f6:4a:c1:ef:be:a9:e1:53:54:9e:0c: f2:6b:b2:53 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjMxMjA1MDQ1NTA5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlYWQyZC0xMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOyuH5qn4k2ypD1gjRJX7J4nJUDpmR4wFF+VIp/JsKCDV0tbx0NsT1VJvVGa FX+i+9Ph2Lvo63uO1dxaO5+YNVCx6m8qjo+O8mMwMqA/Q1Qlg5qmxX0vJkJTkqU0 /lHKSLQeIPzTyaUfHBVIxAUDpnA56nNctJmKYCRLJ/cQYa9IfxzFd5PAps4dT87u FgGJrejooxBDnZYx5bRapEE406CScPKqptfc9R2SIzfqdFVutIbxpMlVMWaEiNPJ iFvU9WOiTDxJnlJaYZdJv8ymXxl98awxMzj1pRXZlnGE86ER2GzKSq/x9az9dJn2 Wu0ZSqKyaolmw/vpuyS+K7i7IwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKfO0VPF /9ONLg/4mxGx+QpTnwf1MB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvRjNBNUJBQjQ3 RjRDMTFFRDlENzlEQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBPgBgFADBwAkBPgBqAgwDQYJKoZIhvcNAQELBQADggEB AG6MmTxka4MuKC11EpfJmPK+0WIB8ICluEUEAEVMX8X4xpY6wIQ9QtMXMbni4FLJ 77e505MlZT/AJdLYvJVFQm7xNTiyIFSB91DlhVd/JULVBf+ObwJEqgseQovp9+eT 0KMuafULXzNAmO8G/5d14Nn7+3/ix8UInNElLo/feYrwPlb/oH6iK4Hft0G7pUyi sj30ENKPEQK35Kn5BVcs2RbO3xvW1FFLZYKrW24HBIzeWR+SVNgGHefrJM34HkII UiLk6p46bBsNNfYp0u9UslFx53YEnMy5i6EnIviT11VbO24rc3B2mDa7lZV+t5PZ TAP2SsHvvqnhU1SeDPJrslM= -----END CERTIFICATE-----Generated at Mon Jun 17 08:43:23 2024 by rpki-client on console-ams.rpki-client.org