$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa File: C37CCA126FE611EA9D9F5E67C4F9AE02.roa (raw, json) Hash identifier: kt3Yk+E/EE3f1S73Kn5W6atQhH5e6Q2wDMxAcInFDQ4= Subject key identifier: 57:7D:FC:2B:AA:DC:05:40:D4:14:BA:52:E9:E1:1F:B4:BC:2D:60:07 Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 1117 Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa Signing time: Thu 18 Jan 2024 17:55:33 +0000 ROA not before: Thu 18 Jan 2024 17:55:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64087 IP address blocks: 2403:a280:1000::/48 maxlen: 48 2403:a280:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4375 (0x1117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Jan 18 17:55:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a96614-a51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e2:93:4b:f2:dd:2c:fe:c6:6c:c4:6e:c4:b3: 12:2c:dd:d5:52:c8:bf:b6:2e:7a:0d:4b:4a:3e:03: 86:0a:d5:01:f4:8b:b8:d9:70:61:e1:57:38:57:6f: cc:5b:fb:a0:78:95:bf:40:85:a4:5a:a5:7e:e7:96: 7d:c9:90:5f:0e:b6:0c:34:05:34:6b:ab:89:41:0b: 2d:20:ff:1e:c9:27:bc:bb:81:cb:f1:a4:f1:45:3f: b1:16:78:12:09:87:96:4e:39:16:d4:ca:9c:3e:e6: 66:44:0b:ec:da:d7:f5:6e:98:b7:61:3f:7b:75:13: c8:50:a5:cc:df:1b:bd:c8:52:19:2c:be:ff:72:ee: d6:eb:31:e2:e6:9a:93:62:db:cf:e9:35:36:97:65: e5:b7:f3:2f:6b:2b:2c:9d:7a:1b:23:76:5e:e8:c6: d0:58:45:8f:1e:95:09:e9:a5:96:d4:95:38:e9:59: 4d:2f:f1:37:63:19:3f:ee:27:da:cd:7a:fb:01:ac: 0f:3f:9b:83:19:af:82:9f:ca:c2:b2:60:d7:7a:71: a8:64:5c:c1:89:87:af:4a:78:3f:a5:ab:f0:4b:05: 35:37:53:b5:20:80:e1:00:45:7c:ac:a9:59:bf:f8: 13:e1:dd:cb:2d:73:c4:ee:71:48:3a:29:c3:0b:83: f9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:7D:FC:2B:AA:DC:05:40:D4:14:BA:52:E9:E1:1F:B4:BC:2D:60:07 X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:a280:1000::/48 2403:a280:3000::/48 Signature Algorithm: sha256WithRSAEncryption 9c:c8:5f:db:da:df:f8:b9:e8:83:7e:99:58:38:46:03:14:4f: 49:e5:95:a2:79:b4:73:ed:9d:98:eb:2d:c2:f9:d4:e5:26:d4: db:63:c3:51:f1:65:50:14:b9:cd:63:c4:e7:19:63:f8:86:61: bf:5b:27:ea:b5:7c:d2:40:d1:89:cf:5c:f2:6e:e5:6c:79:a7: b8:9f:98:9f:59:b5:41:4a:6e:f1:8a:84:f7:99:1b:6d:6a:6a: 3e:05:63:fd:2d:b0:47:43:d6:92:d5:75:42:1a:0e:1f:23:36: 90:79:bf:fb:0f:ab:f4:8a:ad:7f:cd:59:bb:ca:c0:3e:da:46: 2c:87:1b:25:91:dc:2b:42:ab:a2:75:dd:a0:49:0d:31:17:12: dd:12:b7:c8:c5:49:27:f6:d3:f9:13:c5:f8:bf:20:d8:85:23: f5:c5:8b:2f:50:bd:f6:ae:76:79:d6:ba:b8:ef:03:dd:8b:4e: fa:8a:8b:82:9e:84:9c:18:d3:ce:e0:84:de:07:97:67:c5:01: 71:1d:6e:3c:a4:06:db:6b:d3:32:d9:f3:2d:a1:ad:7d:c3:d0: 47:f5:ba:33:a8:7f:7b:2e:58:da:c1:f9:50:1e:60:35:02:07: b6:63:95:c8:39:e3:c4:c9:b8:84:42:ce:85:43:63:1d:d1:be: dc:c3:77:bb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICERcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjQwMTE4MTc1NTMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5NjYxNC1hNTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uKTS/LdLP7GbMRuxLMSLN3VUsi/ti56DUtKPgOGCtUB9Iu42XBh4Vc4V2/M W/ugeJW/QIWkWqV+55Z9yZBfDrYMNAU0a6uJQQstIP8eySe8u4HL8aTxRT+xFngS CYeWTjkW1MqcPuZmRAvs2tf1bpi3YT97dRPIUKXM3xu9yFIZLL7/cu7W6zHi5pqT YtvP6TU2l2Xlt/MvayssnXobI3Ze6MbQWEWPHpUJ6aWW1JU46VlNL/E3Yxk/7ifa zXr7AawPP5uDGa+Cn8rCsmDXenGoZFzBiYevSng/pavwSwU1N1O1IIDhAEV8rKlZ v/gT4d3LLXPE7nFIOinDC4P5qQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFd9/Cuq 3AVA1BS6UunhH7S8LWAHMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvQzM3Q0NBMTI2 RkU2MTFFQTlEOUY1RTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkA6KAEAADBwAkA6KAMAAwDQYJKoZIhvcNAQELBQADggEB AJzIX9va3/i56IN+mVg4RgMUT0nllaJ5tHPtnZjrLcL51OUm1Ntjw1HxZVAUuc1j xOcZY/iGYb9bJ+q1fNJA0YnPXPJu5Wx5p7ifmJ9ZtUFKbvGKhPeZG21qaj4FY/0t sEdD1pLVdUIaDh8jNpB5v/sPq/SKrX/NWbvKwD7aRiyHGyWR3CtCq6J13aBJDTEX Et0St8jFSSf20/kTxfi/INiFI/XFiy9QvfaudnnWurjvA92LTvqKi4KehJwY087g hN4Hl2fFAXEdbjykBttr0zLZ8y2hrX3D0Ef1ujOof3suWNrB+VAeYDUCB7Zjlcg5 48TJuIRCzoVDYx3RvtzDd7s= -----END CERTIFICATE-----Generated at Thu May 16 18:26:08 2024 by rpki-client on console-fra.rpki-client.org