$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa File: 07CD68A213AD11EFADED003DC4F9AE02.roa (raw, json) Hash identifier: mw/1AkG0h2/VCsdxl5VCIYoldfBNUqXCdmVhyy1MN0I= Subject key identifier: D1:04:A9:BB:91:3E:46:2A:E8:DC:F6:4F:DD:AC:D2:BC:01:FB:EB:78 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 09B2 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa Signing time: Fri 17 May 2024 16:54:03 +0000 ROA not before: Fri 17 May 2024 16:54:03 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55569 IP address blocks: 2001:218:2000:11::/64 maxlen: 64 2001:218:2000:21::/64 maxlen: 64 2001:218:4001:1::/64 maxlen: 64 2001:218:4001:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: May 17 16:54:03 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66478bab-17e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:03:2b:e2:af:32:b1:d1:bb:04:df:09:30: f5:01:77:e6:29:a7:f1:59:c9:48:7e:0e:05:0d:d6: 90:eb:05:23:9b:a1:56:8d:ee:48:db:3b:c9:f9:f4: 9f:c8:9d:9f:51:ef:0c:d6:d8:15:35:44:24:bd:ff: a0:bb:26:6d:c9:ea:2d:d4:2d:52:b0:e8:79:24:39: 84:11:d0:1a:64:8b:bd:06:36:fc:70:fe:fc:8e:f5: 95:87:26:0b:57:fd:30:e9:eb:b9:5d:c2:ec:ad:da: 6d:cf:ef:ec:bb:99:ad:b6:2b:a4:8a:95:f1:a9:34: 5e:84:6f:a0:de:15:c9:71:9b:41:2f:28:51:07:b4: fa:9d:2e:7d:dc:f0:e1:05:f4:ad:19:88:4f:a2:4b: 21:01:f7:05:cd:49:f3:ba:11:95:b8:b9:c2:01:e6: 1a:52:94:25:03:02:31:ec:ce:b0:d7:05:e8:52:dc: 36:85:9a:34:7d:f1:95:49:e0:cf:20:ef:dc:72:a2: 44:1a:b6:f1:0a:b2:d4:3f:59:73:b7:a0:2b:2b:f4: ee:b8:66:b6:0f:0c:58:90:f3:09:ed:1f:6f:57:7a: eb:bc:2b:4f:32:79:7d:b2:2a:81:1e:35:a7:72:59: 8f:93:31:05:9b:09:59:fd:67:b3:e5:c0:81:f9:45: bc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:04:A9:BB:91:3E:46:2A:E8:DC:F6:4F:DD:AC:D2:BC:01:FB:EB:78 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:2000:11::/64 2001:218:2000:21::/64 2001:218:4001:1::-2001:218:4001:2:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a4:5e:68:38:08:f7:c5:9d:d6:11:c4:b0:08:c6:54:fc:a1:82: bb:b0:db:de:bc:13:2c:d9:d8:22:77:89:ed:98:16:ff:c7:a8: 51:5e:a1:a6:e4:b1:6c:33:e7:07:78:2b:5b:b4:86:8d:ec:b3: f4:00:2c:2d:fd:03:76:16:4d:d5:bf:d3:26:10:c5:e3:71:25: 50:f5:52:d8:c1:be:5f:46:d7:ee:49:91:28:ef:1f:27:ab:c9: ad:59:52:5b:27:66:3b:e7:e9:19:8f:04:d0:5d:7e:23:94:f1: b5:9e:b0:aa:74:f2:90:7f:70:88:0d:d1:7d:e7:76:27:d6:ba: 93:26:58:e7:40:e2:3f:40:d6:44:61:4c:5e:d8:26:45:b1:96: 94:1a:b8:a0:1d:e2:d1:77:a3:59:8e:ae:fa:f4:71:14:ab:4e: 3e:4a:21:42:c4:7d:3d:3f:cd:6d:75:b0:26:98:fa:b5:9b:91: fe:01:8a:fa:e4:2b:84:aa:23:be:e5:49:fe:61:5b:19:1e:a4: 8d:d0:a8:81:3b:16:80:33:ad:14:d8:03:e4:12:50:8c:90:0d: b6:6c:f5:f6:4a:44:83:72:dc:85:15:94:7b:1e:ba:8a:5f:7c: bf:f4:a2:a7:cb:ba:ed:0f:20:52:2d:b7:eb:be:0d:d0:3f:c5: 25:53:c5:40 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwNTE3MTY1NDAzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ3OGJhYi0xN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSwDK+KvMrHRuwTfCTD1AXfmKafxWclIfg4FDdaQ6wUjm6FWje5I2zvJ+fSf yJ2fUe8M1tgVNUQkvf+guyZtyeot1C1SsOh5JDmEEdAaZIu9Bjb8cP78jvWVhyYL V/0w6eu5XcLsrdptz+/su5mttiukipXxqTRehG+g3hXJcZtBLyhRB7T6nS593PDh BfStGYhPokshAfcFzUnzuhGVuLnCAeYaUpQlAwIx7M6w1wXoUtw2hZo0ffGVSeDP IO/ccqJEGrbxCrLUP1lzt6ArK/TuuGa2DwxYkPMJ7R9vV3rrvCtPMnl9siqBHjWn clmPkzEFmwlZ/Wez5cCB+UW8VwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFNEEqbuR PkYq6Nz2T92s0rwB++t4MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvMDdDRDY4QTIx M0FEMTFFRkFERUQwMDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MDQEAgACMC4DCQAgAQIYIAAAEQMJACABAhggAAAhMBYDCQAgAQIYQAEAAQMJ ACABAhhAAQACMA0GCSqGSIb3DQEBCwUAA4IBAQCkXmg4CPfFndYRxLAIxlT8oYK7 sNvevBMs2dgid4ntmBb/x6hRXqGm5LFsM+cHeCtbtIaN7LP0ACwt/QN2Fk3Vv9Mm EMXjcSVQ9VLYwb5fRtfuSZEo7x8nq8mtWVJbJ2Y75+kZjwTQXX4jlPG1nrCqdPKQ f3CIDdF953Yn1rqTJljnQOI/QNZEYUxe2CZFsZaUGrigHeLRd6NZjq769HEUq04+ SiFCxH09P81tdbAmmPq1m5H+AYr65CuEqiO+5Un+YVsZHqSN0KiBOxaAM60U2APk ElCMkA22bPX2SkSDctyFFZR7HrqKX3y/9KKny7rtDyBSLbfrvg3QP8UlU8VA -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:27 2024 by rpki-client on console-ams.rpki-client.org