$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa File: 0989F3EE120911EB83107638C4F9AE02.roa (raw, json) Hash identifier: hEd7HFLaHuXdiEK5NPDfl9KI7qALqfHPsjTzHJrWnsk= Subject key identifier: FD:B5:CC:B9:8B:B2:83:5B:4E:78:79:EC:48:3F:1B:26:26:53:27:BB Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 06CC Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa Signing time: Mon 20 Nov 2023 22:50:24 +0000 ROA not before: Mon 20 Nov 2023 22:50:24 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 207268 IP address blocks: 2406:9dc0:10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Nov 20 22:50:24 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655be2b0-811c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3b:47:a2:24:f7:74:75:f2:c1:2c:2e:07:24: e0:82:77:4a:3b:45:5a:4f:3a:af:b2:a5:00:b4:4e: 26:9e:7c:36:c6:6e:9c:53:f9:9e:94:7d:44:29:12: c5:8a:ad:78:b5:2c:52:2f:e9:be:a8:a2:27:a6:a0: 33:a1:8d:b6:ce:e4:b6:88:24:93:bb:c0:59:f7:6e: 55:ef:8a:51:5e:09:45:92:d2:33:5f:61:d3:0a:35: 0f:b6:ae:42:7e:8e:01:18:b9:f4:f6:75:b7:a3:ff: 99:b8:ec:9d:cd:2d:85:c7:5b:a5:94:8a:d6:38:07: 9a:8a:c7:14:68:f9:f1:c0:f0:74:cb:c3:aa:8a:eb: dd:ff:e1:24:48:ac:ed:f4:90:ce:27:cc:f1:2c:25: 5d:f5:94:8e:5b:96:4d:8b:22:cc:51:67:0a:91:6c: 1c:5e:a9:25:48:fb:77:0a:7e:42:33:74:66:f9:b1: b9:76:b2:3b:e1:c4:fd:e6:e5:45:37:f3:7e:1b:99: ff:d1:73:07:d6:62:fc:72:20:ca:cb:c5:00:a5:bc: 48:70:45:68:13:c9:7a:56:53:9c:9b:1a:43:2e:2c: 79:67:93:21:9d:a3:c3:ce:9d:ff:f1:71:0f:cc:0a: 0b:93:bb:bf:d8:86:65:15:66:96:ed:6f:08:df:b7: e9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B5:CC:B9:8B:B2:83:5B:4E:78:79:EC:48:3F:1B:26:26:53:27:BB X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:10::/44 Signature Algorithm: sha256WithRSAEncryption 09:c6:84:8b:cf:2f:bb:e0:33:a5:97:fc:88:83:b1:ae:be:cd: bc:6f:61:81:ef:d0:e4:5b:27:93:44:40:83:fa:a8:4b:fc:bd: 76:55:38:b3:28:f5:ee:fb:e1:7e:dd:c3:5c:9b:7e:27:cb:37: ff:42:f6:fa:50:39:bd:52:42:83:37:66:1c:03:3b:0c:cf:48: ba:6d:88:df:98:93:29:af:2e:29:68:ae:7a:46:c9:bd:e7:e9: c6:70:61:a9:30:47:7a:be:0d:df:bf:36:e7:e9:ec:1a:c1:60: 52:74:ab:79:02:e3:ff:a8:1a:28:01:b7:20:24:62:57:9a:77: 84:9b:23:fb:49:e8:55:fe:4b:da:49:6e:75:c8:05:f4:11:64: 75:a7:84:58:30:f5:98:7e:5e:c7:97:28:52:d2:06:82:bb:27: c2:91:cd:d5:68:24:ef:c7:95:af:1c:92:fa:0c:c7:b2:e9:fe: bf:ad:ea:a0:43:c4:2d:24:32:36:b3:92:3e:87:09:19:db:c5: a1:58:71:74:c6:e5:6b:0b:2e:ca:4c:0c:28:31:a5:53:a0:f2: b7:c4:24:1b:ca:75:bf:cd:2d:d1:52:32:13:7b:fd:73:72:8d: 11:0b:8e:58:05:4a:8f:cb:33:c3:40:31:0c:b3:d0:d4:7a:75: b0:c5:32:5e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjMxMTIwMjI1MDI0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTViZTJiMC04MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjtHoiT3dHXywSwuByTggndKO0VaTzqvsqUAtE4mnnw2xm6cU/melH1EKRLF iq14tSxSL+m+qKInpqAzoY22zuS2iCSTu8BZ925V74pRXglFktIzX2HTCjUPtq5C fo4BGLn09nW3o/+ZuOydzS2Fx1ullIrWOAeaiscUaPnxwPB0y8Oqiuvd/+EkSKzt 9JDOJ8zxLCVd9ZSOW5ZNiyLMUWcKkWwcXqklSPt3Cn5CM3Rm+bG5drI74cT95uVF N/N+G5n/0XMH1mL8ciDKy8UApbxIcEVoE8l6VlOcmxpDLix5Z5MhnaPDzp3/8XEP zAoLk7u/2IZlFWaW7W8I37fpcQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP21zLmL soNbTnh57Eg/GyYmUye7MB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvMDk4OUYzRUUx MjA5MTFFQjgzMTA3NjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AABAwDQYJKoZIhvcNAQELBQADggEBAAnGhIvPL7vg M6WX/IiDsa6+zbxvYYHv0ORbJ5NEQIP6qEv8vXZVOLMo9e774X7dw1ybfifLN/9C 9vpQOb1SQoM3ZhwDOwzPSLptiN+YkymvLilornpGyb3n6cZwYakwR3q+Dd+/Nufp 7BrBYFJ0q3kC4/+oGigBtyAkYlead4SbI/tJ6FX+S9pJbnXIBfQRZHWnhFgw9Zh+ XseXKFLSBoK7J8KRzdVoJO/Hla8ckvoMx7Lp/r+t6qBDxC0kMjazkj6HCRnbxaFY cXTG5WsLLspMDCgxpVOg8rfEJBvKdb/NLdFSMhN7/XNyjRELjlgFSo/LM8NAMQyz 0NR6dbDFMl4= -----END CERTIFICATE-----Generated at Fri Apr 19 00:06:09 2024 by rpki-client on console-ams.rpki-client.org