$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa File: 1FD94540C98111EEB0FF0E1CC4F9AE02.roa (raw, json) Hash identifier: lIFyxj9aC+iXtbhSkjDwBiYtiotkp3LnBhX8Lz9S9NA= Subject key identifier: A1:93:F9:70:AA:7A:79:EA:60:AB:4F:4A:61:9E:B1:C7:35:19:4E:6F Certificate issuer: /CN=A91B0BAB/serialNumber=81F467ADC317D16348AF43304B0441443A1FE32C Certificate serial: 060B Authority key identifier: 81:F4:67:AD:C3:17:D1:63:48:AF:43:30:4B:04:41:44:3A:1F:E3:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gfRnrcMX0WNIr0MwSwRBRDof4yw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa Signing time: Mon 12 Feb 2024 08:31:32 +0000 ROA not before: Mon 12 Feb 2024 08:31:32 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138185 IP address blocks: 2403:7e40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/gfRnrcMX0WNIr0MwSwRBRDof4yw.crl rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/gfRnrcMX0WNIr0MwSwRBRDof4yw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gfRnrcMX0WNIr0MwSwRBRDof4yw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Oct 2024 18:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0BAB/serialNumber=81F467ADC317D16348AF43304B0441443A1FE32C Validity Not Before: Feb 12 08:31:32 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65c9d764-91c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:67:5a:59:1b:75:71:57:b6:51:70:0c:57: 28:1d:83:14:85:a6:44:f7:f5:ab:e7:33:41:1f:7a: ed:23:d8:9f:44:aa:06:60:12:65:c8:7f:4e:5c:62: 69:3b:e8:bd:01:a0:8d:b3:17:bf:e0:0f:73:b0:63: 2b:c1:5e:d4:55:00:42:98:b5:b0:2e:57:87:a6:38: be:4f:73:e4:07:8b:4b:43:05:86:81:a1:a8:81:01: ef:c9:12:1f:4c:34:81:b2:b8:59:9e:84:1a:c2:50: f7:93:00:62:90:e9:37:cb:65:ef:a0:b3:12:d3:36: 51:5b:2b:c4:8d:ab:b8:76:03:fe:32:09:59:26:32: 85:4e:20:96:15:10:b5:52:d6:f2:f1:76:b0:9c:89: df:76:7a:ba:1a:7a:85:cc:4f:e1:5b:3e:41:ec:be: a2:3f:52:48:7a:12:f9:d8:59:73:d3:60:40:0c:73: 76:58:5c:a9:25:72:77:16:13:0c:8f:12:a0:bf:bc: 10:09:fd:87:bc:84:41:64:e6:91:25:bf:ba:dd:37: a2:0c:ec:97:02:a2:65:7c:bc:44:f8:79:92:b9:a5: 25:94:f4:8d:ba:a7:51:38:af:7f:03:f7:f2:8b:63: 50:50:7d:00:69:9c:55:60:19:7a:b5:f4:69:cb:8c: 37:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:93:F9:70:AA:7A:79:EA:60:AB:4F:4A:61:9E:B1:C7:35:19:4E:6F X509v3 Authority Key Identifier: keyid:81:F4:67:AD:C3:17:D1:63:48:AF:43:30:4B:04:41:44:3A:1F:E3:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/gfRnrcMX0WNIr0MwSwRBRDof4yw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gfRnrcMX0WNIr0MwSwRBRDof4yw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0BAB/602C66547B1511EAA5A4A869C4F9AE02/1FD94540C98111EEB0FF0E1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 11:68:b5:7a:be:b5:23:4e:7f:36:e0:9b:f0:e1:c8:86:23:66: 7b:91:64:c0:a5:48:a7:cc:4f:c7:5f:5c:87:e5:59:ad:b1:67: 5c:b7:d1:2b:af:bb:12:27:27:cf:1d:ea:57:76:1b:76:54:66: 40:aa:7f:c1:26:49:85:46:00:b0:ee:ed:ef:9d:e5:8d:20:93: c6:03:a7:12:19:3a:37:91:51:09:4c:bb:6c:d5:c4:ae:4d:ea: 76:b0:63:68:bf:d0:4d:35:c7:1b:de:69:db:e4:14:16:e8:8d: e1:da:8e:72:e3:14:ca:7c:f1:2d:eb:61:0e:01:58:c7:77:09: 9a:b9:2a:42:ad:8a:b9:2d:50:1d:80:3b:b4:f8:6a:a2:06:00: 3d:83:ed:55:c9:d0:ad:0a:a5:f3:40:46:b2:de:ad:eb:75:83: 3b:69:23:6e:dc:48:be:6b:61:03:5b:29:24:1d:0b:15:c3:4b: 31:50:7c:6f:d1:89:fb:0b:ea:a1:15:49:4c:1a:34:63:e0:75: c8:b1:81:09:81:47:03:a1:48:d8:87:15:fd:f7:62:ca:17:7c: 44:80:6a:ff:e6:b0:17:5e:b7:4b:aa:50:c0:a9:e4:60:c9:79: 75:80:aa:3b:9e:1d:58:b3:74:74:33:0d:cb:99:7f:63:96:22: 6d:18:de:bc -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCQUIxMTAvBgNVBAUTKDgxRjQ2N0FEQzMxN0QxNjM0OEFGNDMzMDRCMDQ0MTQ0 M0ExRkUzMkMwHhcNMjQwMjEyMDgzMTMyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM5ZDc2NC05MWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIpnWlkbdXFXtlFwDFcoHYMUhaZE9/Wr5zNBH3rtI9ifRKoGYBJlyH9OXGJp O+i9AaCNsxe/4A9zsGMrwV7UVQBCmLWwLleHpji+T3PkB4tLQwWGgaGogQHvyRIf TDSBsrhZnoQawlD3kwBikOk3y2XvoLMS0zZRWyvEjau4dgP+MglZJjKFTiCWFRC1 Utby8XawnInfdnq6GnqFzE/hWz5B7L6iP1JIehL52Flz02BADHN2WFypJXJ3FhMM jxKgv7wQCf2HvIRBZOaRJb+63TeiDOyXAqJlfLxE+HmSuaUllPSNuqdROK9/A/fy i2NQUH0AaZxVYBl6tfRpy4w3uQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKGT+XCq ennqYKtPSmGescc1GU5vMB8GA1UdIwQYMBaAFIH0Z63DF9FjSK9DMEsEQUQ6H+Ms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEJBQi82MDJDNjY1NDdC MTUxMUVBQTVBNEE4NjlDNEY5QUUwMi9nZlJucmNNWDBXTklyME13U3dSQlJEb2Y0 eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dmUm5yY01YMFdOSXIwTXdTd1JCUkRvZjR5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCQUIvNjAyQzY2NTQ3QjE1MTFFQUE1QTRBODY5QzRGOUFFMDIvMUZEOTQ1NDBD OTgxMTFFRUIwRkYwRTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA35AMA0GCSqGSIb3DQEBCwUAA4IBAQARaLV6vrUjTn82 4Jvw4ciGI2Z7kWTApUinzE/HX1yH5VmtsWdct9Err7sSJyfPHepXdht2VGZAqn/B JkmFRgCw7u3vneWNIJPGA6cSGTo3kVEJTLts1cSuTep2sGNov9BNNccb3mnb5BQW 6I3h2o5y4xTKfPEt62EOAVjHdwmauSpCrYq5LVAdgDu0+GqiBgA9g+1VydCtCqXz QEay3q3rdYM7aSNu3Ei+a2EDWykkHQsVw0sxUHxv0Yn7C+qhFUlMGjRj4HXIsYEJ gUcDoUjYhxX992LKF3xEgGr/5rAXXrdLqlDAqeRgyXl1gKo7nh1Ys3R0Mw3LmX9j liJtGN68 -----END CERTIFICATE-----Generated at Sat Sep 28 20:52:21 2024 by rpki-client on console-fra.rpki-client.org