$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa File: F5D6628C205011EB9EC2AA46C4F9AE02.roa (raw, json) Hash identifier: 832ynpuro+RO0MMQGMpZcyGF5ZzjUvj68zh78iub0dU= Subject key identifier: 8D:C2:F8:63:30:74:2B:F9:B6:91:97:F4:2A:D2:08:B9:AF:52:61:C0 Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 06C9 Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa Signing time: Mon 20 Nov 2023 22:50:22 +0000 ROA not before: Mon 20 Nov 2023 22:50:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141173 IP address blocks: 2406:9dc0:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 23:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Nov 20 22:50:22 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655be2ae-33d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:16:82:4f:ad:db:00:7e:64:ac:0c:b9:99:31: 67:b1:df:9e:d9:41:f3:ae:61:d0:c8:d4:be:8b:39: 0d:8f:93:ad:9e:a6:0e:9a:e7:8f:0b:88:7b:ed:25: a3:4d:00:a5:d3:e7:99:93:5c:2c:7e:27:a5:04:0e: 3b:dd:4e:aa:d5:91:2a:ec:bc:50:a0:41:0e:da:3d: 72:c6:2d:a4:df:10:c1:1d:45:ab:bf:47:62:e5:55: 93:ea:e6:43:fe:0e:c6:93:09:dd:f0:1b:5d:8e:6a: 54:d7:c2:3d:f8:b6:fd:61:80:f1:6c:e2:65:d8:0e: 30:03:70:e7:ae:02:a5:1c:b8:80:1d:0c:18:01:3d: df:da:da:bb:a6:d6:90:77:87:61:c8:b7:cc:b7:ac: 4b:1f:83:55:5a:e5:85:ef:a7:5d:88:38:49:2f:cb: 73:36:ea:14:27:7e:1a:96:48:e5:80:67:3a:73:d2: f2:08:a2:d0:15:95:9b:04:e9:e1:6d:7e:a7:1b:99: 8b:f4:3d:f2:06:7b:7c:52:96:5e:60:0e:b1:88:08: 1d:1a:51:9b:75:db:f0:9d:27:93:80:43:db:1a:31: 5c:f8:55:cb:de:2d:6b:5a:d0:78:47:03:b0:04:0d: e3:c2:ce:4f:26:cd:a6:34:03:f8:9c:9b:d4:85:d8: d1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C2:F8:63:30:74:2B:F9:B6:91:97:F4:2A:D2:08:B9:AF:52:61:C0 X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:40::/44 Signature Algorithm: sha256WithRSAEncryption 4c:df:d3:a1:45:50:b0:fe:ac:c9:2a:e3:7b:a2:d6:33:5c:09: 0b:b8:70:cc:36:5d:19:63:17:aa:b8:b0:8a:fd:e8:4b:ab:1b: d9:1b:24:2f:46:b0:c8:dc:c4:dd:cf:19:55:08:e7:ee:5f:2a: 69:c5:05:b3:06:08:d3:21:e7:86:f5:4f:d8:03:f9:dc:68:ef: b7:84:32:9c:00:ad:2d:fe:ed:05:9c:d6:18:df:25:ce:f2:ee: 18:08:03:c3:0f:6b:6a:10:d0:00:61:87:3c:43:be:7d:20:82: 0e:70:38:80:82:f1:6f:52:91:60:75:90:00:91:19:74:5f:df: 25:3d:7e:93:eb:0c:1f:fa:d7:96:98:8f:3b:cd:70:32:1d:6e: ff:81:74:fa:ea:6e:e1:ff:81:f9:a6:33:f5:33:e6:31:dd:40: 42:19:83:7a:8c:82:ff:65:e8:a0:09:50:82:d3:b2:30:92:67: 33:c5:71:4e:82:0a:89:06:ac:3c:30:de:f4:89:f0:5f:99:e8: af:7c:a1:f4:fa:30:02:f9:4b:0e:64:51:34:a5:35:fe:03:8f: b1:4a:b3:94:b7:bf:81:ec:f9:24:dc:8a:95:32:ef:ef:bb:d6: 64:17:cd:f7:43:5f:05:78:6b:9d:7b:7d:21:b1:55:41:df:37: 59:7c:f2:2d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjMxMTIwMjI1MDIyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTViZTJhZS0zM2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBaCT63bAH5krAy5mTFnsd+e2UHzrmHQyNS+izkNj5OtnqYOmuePC4h77SWj TQCl0+eZk1wsfielBA473U6q1ZEq7LxQoEEO2j1yxi2k3xDBHUWrv0di5VWT6uZD /g7Gkwnd8BtdjmpU18I9+Lb9YYDxbOJl2A4wA3DnrgKlHLiAHQwYAT3f2tq7ptaQ d4dhyLfMt6xLH4NVWuWF76ddiDhJL8tzNuoUJ34alkjlgGc6c9LyCKLQFZWbBOnh bX6nG5mL9D3yBnt8UpZeYA6xiAgdGlGbddvwnSeTgEPbGjFc+FXL3i1rWtB4RwOw BA3jws5PJs2mNAP4nJvUhdjRRwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI3C+GMw dCv5tpGX9CrSCLmvUmHAMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvRjVENjYyOEMy MDUwMTFFQjlFQzJBQTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AAEAwDQYJKoZIhvcNAQELBQADggEBAEzf06FFULD+ rMkq43ui1jNcCQu4cMw2XRljF6q4sIr96EurG9kbJC9GsMjcxN3PGVUI5+5fKmnF BbMGCNMh54b1T9gD+dxo77eEMpwArS3+7QWc1hjfJc7y7hgIA8MPa2oQ0ABhhzxD vn0ggg5wOICC8W9SkWB1kACRGXRf3yU9fpPrDB/615aYjzvNcDIdbv+BdPrqbuH/ gfmmM/Uz5jHdQEIZg3qMgv9l6KAJUILTsjCSZzPFcU6CCokGrDww3vSJ8F+Z6K98 ofT6MAL5Sw5kUTSlNf4Dj7FKs5S3v4Hs+STcipUy7++71mQXzfdDXwV4a517fSGx VUHfN1l88i0= -----END CERTIFICATE-----Generated at Tue Apr 23 18:44:25 2024 by rpki-client on console-ams.rpki-client.org