$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa File: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (raw, json) Hash identifier: Rj8n+2yGLpPEffYtU7Pl0JRlS/00Rv2udr91N57/9aM= Subject key identifier: 06:E9:D1:18:9F:FF:D0:30:59:EA:71:53:70:B9:12:A1:9A:06:45:9F Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 03 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa Signing time: Mon 21 Aug 2023 13:58:17 +0000 ROA not before: Mon 21 Aug 2023 13:58:17 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45566 IP address blocks: 2401:fa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Aug 21 13:58:17 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64e36d79-6fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:d4:fd:46:1c:2d:61:db:3c:36:44:7a:07: dc:bc:c1:2c:60:ac:ce:30:38:54:5a:48:00:c8:cb: 66:9e:6a:c9:7c:e6:4d:72:56:57:0e:8e:0c:77:c2: fd:b5:52:2c:d8:60:62:2f:2a:77:da:25:52:1c:cf: 11:2d:99:76:e0:65:ca:ec:a2:6d:cb:aa:c6:01:e1: 84:75:31:b0:2d:37:06:3d:41:60:61:2f:b4:1c:37: 44:92:14:1d:40:1f:a9:76:b7:43:88:26:da:94:c8: 12:25:85:bb:cd:f6:d6:21:e0:cd:52:35:c7:b4:c6: 36:06:a7:c5:40:59:3c:93:c1:c4:36:ca:09:a4:98: 23:26:e2:39:98:db:e1:07:0e:83:37:55:4d:da:ce: 66:ac:b5:be:41:f9:92:d4:f7:93:67:14:84:15:09: 19:ed:29:2b:bb:96:1f:e4:24:b3:ef:4b:e2:f0:57: de:26:4c:6f:38:b6:6e:69:6e:b7:f1:5d:11:cd:e6: 98:04:73:cf:90:a8:df:64:8a:06:73:ad:59:06:33: b8:2e:6c:6b:b5:d1:d3:96:28:e7:b6:fb:81:f2:2f: e0:ae:79:36:ef:ad:d5:52:f1:ce:9b:cb:cd:f8:77: f5:61:34:e7:a2:29:28:0d:c5:41:bd:66:35:76:09: cd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E9:D1:18:9F:FF:D0:30:59:EA:71:53:70:B9:12:A1:9A:06:45:9F X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/C778D8FA402A11EEAC7DEF72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 7a:6d:92:67:3e:16:db:63:b0:12:d2:d5:38:59:39:51:9d:84: 99:8f:d6:9f:4e:1d:8d:c1:f6:82:a4:41:8d:95:ec:9c:a9:fc: 00:51:e4:67:da:77:e1:fa:65:70:bb:8b:7d:a0:37:f2:08:66: fa:92:f8:e3:05:99:e8:f5:3a:01:54:98:99:15:68:b3:0c:17: d3:48:c6:70:e5:2e:de:2c:86:21:0e:f7:e5:38:83:a4:5a:3f: 40:f8:05:7e:eb:97:dc:76:bb:00:59:26:95:b7:f3:8d:46:bb: 98:a4:04:41:ee:e7:b0:95:a5:ff:af:33:9e:63:d4:79:c2:47: 55:00:29:91:44:bb:5b:2c:f5:cb:4d:49:2e:6f:f9:9f:48:8d: 76:47:91:66:57:71:d0:57:bc:64:3e:7b:f1:65:51:35:ea:ad: bc:f9:c4:c6:eb:74:ef:d7:cf:8b:c2:0e:ae:49:62:24:d5:10: 00:c5:52:ac:e4:39:2f:97:0f:96:f2:b2:ff:61:cd:3c:a7:a5: 9b:86:67:76:56:95:b2:72:cb:bc:cd:9d:e6:e9:43:e4:19:ec: 2c:68:97:40:7b:72:9e:e3:f3:01:aa:87:8a:46:5b:c8:35:43: 9b:95:70:62:43:90:31:0e:53:c7:65:e8:77:6a:0e:3b:f6:d2: cf:76:0a:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NUQ5MjExMC8GA1UEBRMoNjExMTgwN0U4MjhBQzRGOTg0MjY5M0QzODYxMTk1MkRG MDNENzI0NzAeFw0yMzA4MjExMzU4MTdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTM2ZDc5LTZmYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAktT9RhwtYds8NkR6B9y8wSxgrM4wOFRaSADIy2aeasl85k1yVlcOjgx3wv21 UizYYGIvKnfaJVIczxEtmXbgZcrsom3LqsYB4YR1MbAtNwY9QWBhL7QcN0SSFB1A H6l2t0OIJtqUyBIlhbvN9tYh4M1SNce0xjYGp8VAWTyTwcQ2ygmkmCMm4jmY2+EH DoM3VU3azmastb5B+ZLU95NnFIQVCRntKSu7lh/kJLPvS+LwV94mTG84tm5pbrfx XRHN5pgEc8+QqN9kigZzrVkGM7gubGu10dOWKOe2+4HyL+CueTbvrdVS8c6by834 d/VhNOeiKSgNxUG9ZjV2Cc1zAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUBunRGJ// 0DBZ6nFTcLkSoZoGRZ8wHwYDVR0jBBgwFoAUYRGAfoKKxPmEJpPThhGVLfA9ckcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1RDkyLzM1Nzc5OEIwNDAy QTExRUVBNzE2MTg3MkM0RjlBRTAyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNr Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVJHQWZvS0t4UG1FSnBQVGhoR1ZMZkE5Y2tjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9DNzc4RDhGQTQw MkExMUVFQUM3REVGNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB+gAwDQYJKoZIhvcNAQELBQADggEBAHptkmc+FttjsBLS 1ThZOVGdhJmP1p9OHY3B9oKkQY2V7Jyp/ABR5Gfad+H6ZXC7i32gN/IIZvqS+OMF mej1OgFUmJkVaLMMF9NIxnDlLt4shiEO9+U4g6RaP0D4BX7rl9x2uwBZJpW3841G u5ikBEHu57CVpf+vM55j1HnCR1UAKZFEu1ss9ctNSS5v+Z9IjXZHkWZXcdBXvGQ+ e/FlUTXqrbz5xMbrdO/Xz4vCDq5JYiTVEADFUqzkOS+XD5bysv9hzTynpZuGZ3ZW lbJyy7zNnebpQ+QZ7Cxol0B7cp7j8wGqh4pGW8g1Q5uVcGJDkDEOU8dl6HdqDjv2 0s92CiQ= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:30 2024 by rpki-client on console-ams.rpki-client.org