$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/2FD7D72EBB7E11E9AFB49C42C4F9AE02.roa File: 2FD7D72EBB7E11E9AFB49C42C4F9AE02.roa (raw, json) Hash identifier: 6KWTd2rXh+ful8oeipK3kh8zEc7Yh6+AszVcCtxE0nI= Subject key identifier: 4E:B8:51:C6:8F:0D:5F:18:3F:BA:02:98:82:DF:58:52:9B:06:52:5D Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 341B Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/2FD7D72EBB7E11E9AFB49C42C4F9AE02.roa Signing time: Mon 02 Oct 2023 15:10:53 +0000 ROA not before: Mon 02 Oct 2023 15:10:53 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23033 IP address blocks: 2403:cc00:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13339 (0x341b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Oct 2 15:10:53 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651add7c-803d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:6d:41:55:b9:76:94:8f:3a:14:69:ae:39: 7e:94:27:a1:c9:64:6f:cf:79:39:63:60:da:b2:ba: df:e6:82:07:03:01:48:f5:a9:30:31:49:dc:02:75: c4:f0:1f:af:95:6b:d3:a6:ec:7a:a9:cf:8b:b5:c3: 45:95:f4:da:61:47:58:57:c8:9e:7a:5b:2b:52:75: 75:a2:b3:0e:1c:d0:0b:4a:ad:95:99:58:20:b6:b2: b0:4b:49:bc:53:b9:84:8d:07:41:57:65:12:c0:b2: 78:a9:e9:a6:61:d8:8b:56:86:2b:42:2a:75:e3:8e: c0:0a:b2:be:95:85:24:60:ba:de:34:05:cb:70:aa: 17:ec:be:2f:2c:6d:8b:53:85:a8:b3:b6:4b:df:fe: 81:92:74:de:ee:e5:b1:2e:21:7f:11:83:d9:13:18: 34:1a:1e:73:d3:75:ed:61:09:41:51:7c:a7:35:54: 5c:4d:3a:1f:c0:b2:36:87:08:1f:6a:26:03:f4:cb: fe:c4:08:27:01:9a:ec:0c:84:5c:90:0e:90:ae:f1: f5:21:b6:d6:e8:51:51:a8:b4:a2:6f:f2:ee:f7:22: 0c:2e:8a:75:8b:77:0a:64:8b:e2:20:b7:23:a0:82: cd:d0:37:51:a6:54:82:74:6b:d4:ab:9d:8e:eb:b2: 8e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B8:51:C6:8F:0D:5F:18:3F:BA:02:98:82:DF:58:52:9B:06:52:5D X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/2FD7D72EBB7E11E9AFB49C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc00:1000::/36 Signature Algorithm: sha256WithRSAEncryption a6:72:9c:0a:37:e9:a5:e6:b7:18:2b:22:f0:99:3d:65:a0:e7: b9:48:5d:d0:b7:24:1f:0a:b4:0f:25:07:08:e3:26:02:e1:73: dc:6b:50:5b:bc:45:6c:f5:22:42:bf:08:47:af:d8:80:01:3f: 0f:b4:f3:05:a9:7c:a4:8f:a0:73:2e:4a:f4:56:2c:4a:08:55: 5c:73:65:5d:ea:1f:5a:1c:12:46:f1:24:5a:b8:d3:4b:23:a8: 8a:01:2f:9d:c3:8d:1f:03:0e:95:d5:19:b9:a6:68:9c:2e:8a: bd:87:85:45:5d:9b:af:31:28:68:0d:91:ce:f0:03:48:64:bd: 70:6e:5a:a6:39:46:2d:b8:3d:2a:69:21:5d:85:b9:b7:88:ef: 82:e7:9a:72:ee:3f:97:94:07:a1:04:36:da:61:d6:89:dd:f1: fc:3d:0c:33:6e:41:46:96:de:2e:70:96:6d:0a:04:48:21:0e: 60:b7:87:81:3f:16:cb:32:72:ad:1f:e3:d1:7b:58:2f:7f:b4: 50:cc:48:42:8e:02:37:bb:1c:46:2a:1a:a5:8e:cc:e1:46:a7: cd:76:2c:99:30:41:78:1d:e3:94:13:94:18:4f:86:b1:3c:4f: a8:7e:5d:31:ec:e1:10:c3:fc:ce:dc:91:3b:aa:31:fc:97:e4: 2c:a9:c7:25 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICNBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjMxMDAyMTUxMDUzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZGQ3Yy04MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwattQVW5dpSPOhRprjl+lCehyWRvz3k5Y2Dasrrf5oIHAwFI9akwMUncAnXE 8B+vlWvTpux6qc+LtcNFlfTaYUdYV8ieelsrUnV1orMOHNALSq2VmVggtrKwS0m8 U7mEjQdBV2USwLJ4qemmYdiLVoYrQip1447ACrK+lYUkYLreNAXLcKoX7L4vLG2L U4Wos7ZL3/6BknTe7uWxLiF/EYPZExg0Gh5z03XtYQlBUXynNVRcTTofwLI2hwgf aiYD9Mv+xAgnAZrsDIRckA6QrvH1IbbW6FFRqLSib/Lu9yIMLop1i3cKZIviILcj oILN0DdRplSCdGvUq52O67KO/QIDAQABo4IClzCCApMwHQYDVR0OBBYEFE64UcaP DV8YP7oCmILfWFKbBlJdMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMkZEN0Q3MkVC QjdFMTFFOUFGQjQ5QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA8wAEDANBgkqhkiG9w0BAQsFAAOCAQEApnKcCjfppea3 GCsi8Jk9ZaDnuUhd0LckHwq0DyUHCOMmAuFz3GtQW7xFbPUiQr8IR6/YgAE/D7Tz Bal8pI+gcy5K9FYsSghVXHNlXeofWhwSRvEkWrjTSyOoigEvncONHwMOldUZuaZo nC6KvYeFRV2brzEoaA2RzvADSGS9cG5apjlGLbg9KmkhXYW5t4jvgueacu4/l5QH oQQ22mHWid3x/D0MM25BRpbeLnCWbQoESCEOYLeHgT8WyzJyrR/j0XtYL3+0UMxI Qo4CN7scRioapY7M4UanzXYsmTBBeB3jlBOUGE+GsTxPqH5dMezhEMP8ztyRO6ox /JfkLKnHJQ== -----END CERTIFICATE-----Generated at Thu May 16 16:15:00 2024 by rpki-client on console-fra.rpki-client.org