$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa File: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (raw, json) Hash identifier: kIKE4PiWDLu72KJWjxN7ko60yw2GrqSNLFSheBlWS3k= Subject key identifier: 17:22:85:63:79:38:1A:0E:DD:72:A2:DB:2F:0F:A6:F3:F2:B4:79:24 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: 06 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa Signing time: Tue 23 Jan 2024 05:25:36 +0000 ROA not before: Tue 23 Jan 2024 05:25:36 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152342 IP address blocks: 2001:df3:6540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Jan 23 05:25:36 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65af4dcf-7090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4f:88:fa:88:81:6d:15:8a:c1:51:17:5f:8f: b0:4e:3d:44:ff:ad:fd:2a:85:0b:77:8d:03:d3:e4: 10:bc:a4:88:40:0a:31:75:6f:52:c4:99:0b:f2:fc: 59:8b:ce:1a:30:45:3b:5a:48:60:3a:a3:e0:46:83: 4d:99:80:a3:61:ef:e7:8f:b1:ba:aa:28:0c:a1:de: fb:88:45:88:a6:b5:16:e5:3b:bd:06:b6:e1:3c:df: 71:bf:e8:a8:50:73:db:e9:77:14:a5:18:80:04:3a: 41:a5:00:69:9a:fe:11:a7:ce:c5:18:95:9a:3c:b2: bf:31:a4:a9:0f:38:a9:d7:9e:c6:70:11:ea:ca:41: 06:66:d7:6e:27:72:9a:6d:85:90:1f:09:0e:88:2e: c1:e8:9b:60:10:d1:b9:cb:c5:39:af:ee:c0:e2:61: 3f:7c:61:2d:a5:3d:57:a1:c7:c1:fd:32:88:e8:82: 97:01:37:2f:e9:b3:7a:c7:2c:4e:a0:f5:04:6a:fe: 7b:24:a8:34:d7:20:00:00:8a:ce:1b:0b:65:de:8c: e7:ae:c6:f6:d7:b0:52:6d:c4:1f:0c:7c:3d:89:34: 94:e6:db:f7:c7:13:d6:cf:78:f8:5e:0c:97:bb:e3: d4:19:6b:a9:69:39:e7:13:bb:a4:cb:54:5d:16:2a: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:22:85:63:79:38:1A:0E:DD:72:A2:DB:2F:0F:A6:F3:F2:B4:79:24 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6540::/48 Signature Algorithm: sha256WithRSAEncryption 4e:5b:7e:d6:d6:b0:64:cc:55:15:31:f0:9a:da:ca:30:ab:43: 77:4f:f9:e4:ec:95:2a:d8:5a:ef:96:2d:db:ed:1e:7d:a6:c9: 91:75:8f:02:e6:83:2e:01:11:41:bf:f6:57:65:12:d5:ef:81: 40:46:e7:04:50:73:69:01:0e:ce:0d:87:58:9a:39:27:a3:25: 13:96:9a:91:9b:27:92:3f:a1:b2:ae:8f:53:07:70:01:35:f5: 40:d9:19:7a:4e:9d:ba:20:8e:ef:9a:eb:d5:7f:47:ce:c0:02: e4:44:f0:82:5d:a9:51:aa:c6:bd:ec:ce:d1:5d:44:c5:8e:83: 01:4f:7f:f4:80:86:09:47:e6:60:59:7e:de:70:48:09:62:66: b5:77:3c:96:f0:d3:1d:90:a6:f0:8c:2c:4e:f2:31:c9:13:f9: c8:de:df:41:34:71:b6:62:92:82:ca:b1:23:2d:fc:13:2c:0b: 48:79:b4:6f:bd:ce:91:35:5c:45:66:cc:b8:00:6b:7a:6c:f9: 0e:ec:ca:0a:5b:02:f8:87:5d:41:c5:03:c7:c8:ea:8d:13:96: fe:52:1f:9d:a8:4f:fd:48:fa:81:c6:72:fe:d5:0a:ea:cd:11: 78:1d:54:ad:28:26:34:fe:3b:87:1f:ac:b4:3e:ba:76:df:ab: 1b:3f:b1:56 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkQ1QTExMC8GA1UEBRMoNEE4QTM5NUU1NTZDQzdGMTlBQUU2QUIwNkFGRjA2Nzk0 NDk1NkI0NjAeFw0yNDAxMjMwNTI1MzZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWY0ZGNmLTcwOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcT4j6iIFtFYrBURdfj7BOPUT/rf0qhQt3jQPT5BC8pIhACjF1b1LEmQvy/FmL zhowRTtaSGA6o+BGg02ZgKNh7+ePsbqqKAyh3vuIRYimtRblO70GtuE833G/6KhQ c9vpdxSlGIAEOkGlAGma/hGnzsUYlZo8sr8xpKkPOKnXnsZwEerKQQZm124ncppt hZAfCQ6ILsHom2AQ0bnLxTmv7sDiYT98YS2lPVehx8H9MojogpcBNy/ps3rHLE6g 9QRq/nskqDTXIAAAis4bC2XejOeuxvbXsFJtxB8MfD2JNJTm2/fHE9bPePheDJe7 49QZa6lpOecTu6TLVF0WKmHPAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUFyKFY3k4 Gg7dcqLbLw+m8/K0eSQwHwYDVR0jBBgwFoAUSoo5XlVsx/Garmqwav8GeUSVa0Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRDVBLzIzNzVCMzA2Qjk0 NTExRUVCQjgxODgzNEM0RjlBRTAyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEw WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU29vNVhsVnN4X0dhcm1xd2F2OEdlVVNWYTBZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9ENjBCMUJDQ0I5 QUYxMUVFOTdFRURCNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNlQDANBgkqhkiG9w0BAQsFAAOCAQEATlt+1tawZMxV FTHwmtrKMKtDd0/55OyVKtha75Yt2+0efabJkXWPAuaDLgERQb/2V2US1e+BQEbn BFBzaQEOzg2HWJo5J6MlE5aakZsnkj+hsq6PUwdwATX1QNkZek6duiCO75rr1X9H zsAC5ETwgl2pUarGvezO0V1ExY6DAU9/9ICGCUfmYFl+3nBICWJmtXc8lvDTHZCm 8IwsTvIxyRP5yN7fQTRxtmKSgsqxIy38EywLSHm0b73OkTVcRWbMuABremz5DuzK ClsC+IddQcUDx8jqjROW/lIfnahP/Uj6gcZy/tUK6s0ReB1UrSgmNP47hx+stD66 dt+rGz+xVg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:33 2024 by rpki-client on console-ams.rpki-client.org