$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa File: 6E44CE88597B11EDB603273AC4F9AE02.roa (raw, json) Hash identifier: sm5vPKkEaH8kN/zqvnkW8+ebxqe9IR2OltpT7FLU+38= Subject key identifier: 49:05:7B:CC:F5:87:8E:B3:15:22:3C:04:7F:40:06:5B:54:1C:20:A7 Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 192C Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa Signing time: Tue 08 Aug 2023 16:53:45 +0000 ROA not before: Tue 08 Aug 2023 16:53:45 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 16509 IP address blocks: 2401:1d80:3000::/40 maxlen: 48 2401:1d80:3100::/40 maxlen: 46 2401:1d80:3200::/40 maxlen: 46 2401:1d80:3300::/40 maxlen: 46 2401:1d80:4000::/40 maxlen: 46 2401:1d80:4100::/40 maxlen: 46 2401:1d80:4200::/40 maxlen: 46 2401:1d80:4300::/40 maxlen: 46 2401:1d80:5000::/40 maxlen: 46 2401:1d80:5100::/40 maxlen: 46 2401:1d80:5200::/40 maxlen: 46 2401:1d80:5300::/40 maxlen: 46 2401:1d80:5800::/40 maxlen: 46 2401:1d80:5900::/40 maxlen: 46 2401:1d80:5a00::/40 maxlen: 46 2401:1d80:5b00::/40 maxlen: 46 2401:1d80:6000::/40 maxlen: 46 2401:1d80:6100::/40 maxlen: 46 2401:1d80:6200::/40 maxlen: 46 2401:1d80:6300::/40 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6444 (0x192c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Aug 8 16:53:45 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d27319-335f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:f7:af:fa:c7:05:5d:72:5b:88:e1:48:93: b0:51:53:e5:6a:03:44:2b:67:9e:72:02:63:78:6e: 58:8f:23:4f:17:8f:5b:be:21:b9:d2:12:b8:82:76: 7e:72:07:5e:ca:fb:f0:be:a5:a5:29:fd:21:b3:f1: af:0a:cf:f2:97:b4:da:ba:8f:20:69:23:d5:d7:50: 30:d3:09:5b:94:6d:92:08:7d:9a:07:b2:e8:e3:57: 6b:6e:85:59:83:1f:8e:3b:5b:bc:8e:a3:df:95:67: 06:81:b8:6f:a0:75:f0:e8:eb:32:64:d4:ab:d2:cc: f9:13:f0:83:e8:26:c1:a7:2f:97:68:dd:29:2c:07: 26:41:dd:08:7a:f0:d6:04:da:80:f3:56:62:f1:2c: 9e:ce:a3:4c:a4:69:14:f1:2b:77:fd:0d:e3:60:74: e3:a9:9e:78:e7:dc:be:01:f5:67:10:40:6b:7b:0b: 88:63:cc:28:18:d2:84:95:9c:47:5e:82:24:b2:c2: b7:b5:3d:36:13:fc:aa:88:ce:4b:b5:7f:34:ae:df: b9:18:f0:73:7b:80:c2:5c:d8:c5:f3:71:e4:ec:64: 3c:7e:f6:4f:46:a0:49:b5:95:c1:4d:d7:8c:dc:9f: 61:6e:2e:24:59:a4:be:dc:fc:cd:27:22:cf:e0:f3: 72:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:05:7B:CC:F5:87:8E:B3:15:22:3C:04:7F:40:06:5B:54:1C:20:A7 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1d80:3000::/38 2401:1d80:4000::/38 2401:1d80:5000::/38 2401:1d80:5800::/38 2401:1d80:6000::/38 Signature Algorithm: sha256WithRSAEncryption c8:2b:14:dc:ac:7a:e5:eb:28:b4:15:af:6d:37:eb:1a:a6:e4: e6:2d:40:ea:1a:6d:a1:fa:a9:fc:dd:7a:63:47:26:e3:b3:a3: 86:c1:34:0d:22:9a:bb:94:ba:1e:32:77:53:07:95:b1:90:88: fc:b1:11:73:af:ee:dc:1b:45:a2:7f:be:c5:b5:d5:60:54:52: d3:e5:bc:29:9b:5e:97:5f:5b:69:5b:80:75:7d:c4:fb:16:13: 95:bd:a6:78:33:85:6b:1f:28:67:e3:fb:2e:81:62:80:0b:55: 34:8f:23:0f:0a:6d:e0:05:b7:c7:11:30:e1:ff:a7:b5:eb:be: 3f:20:a5:7b:7b:ab:14:b3:53:91:93:5c:da:ee:1f:78:db:88: 30:1e:81:c8:18:c8:76:dd:25:d7:7f:c4:3e:46:33:e8:0a:45: 25:a8:53:87:98:a5:a6:9f:bb:0b:47:aa:78:66:d2:fd:5b:ad: 83:70:fb:05:15:55:17:b3:54:57:d1:fa:62:e1:38:3e:ed:74: c8:34:7f:1d:cc:db:2c:a8:72:23:09:e7:93:db:1d:84:cb:8c: dd:6c:b6:a6:85:e9:02:81:2a:00:46:da:97:01:35:1f:2a:fa: cf:d2:72:6f:8f:67:eb:4e:fb:f7:b5:f7:12:50:8d:ed:01:11: 3e:74:0e:d7 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICGSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjMwODA4MTY1MzQ1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQyNzMxOS0zMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbP3r/rHBV1yW4jhSJOwUVPlagNEK2eecgJjeG5YjyNPF49bviG50hK4gnZ+ cgdeyvvwvqWlKf0hs/GvCs/yl7Tauo8gaSPV11Aw0wlblG2SCH2aB7Lo41drboVZ gx+OO1u8jqPflWcGgbhvoHXw6OsyZNSr0sz5E/CD6CbBpy+XaN0pLAcmQd0IevDW BNqA81Zi8SyezqNMpGkU8St3/Q3jYHTjqZ5459y+AfVnEEBrewuIY8woGNKElZxH XoIkssK3tT02E/yqiM5LtX80rt+5GPBze4DCXNjF83Hk7GQ8fvZPRqBJtZXBTdeM 3J9hbi4kWaS+3PzNJyLP4PNyvQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFEkFe8z1 h46zFSI8BH9ABltUHCCnMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwNzcvREI3QjcwMDY0ODI0MTFFNzk0MDQxRDJEQzRGOUFFMDIvNkU0NENFODg1 OTdCMTFFREI2MDMyNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgACMCgDBgIkAR2AMAMGAiQBHYBAAwYCJAEdgFADBgIkAR2AWAMGAiQB HYBgMA0GCSqGSIb3DQEBCwUAA4IBAQDIKxTcrHrl6yi0Fa9tN+sapuTmLUDqGm2h +qn83XpjRybjs6OGwTQNIpq7lLoeMndTB5WxkIj8sRFzr+7cG0Wif77FtdVgVFLT 5bwpm16XX1tpW4B1fcT7FhOVvaZ4M4VrHyhn4/sugWKAC1U0jyMPCm3gBbfHETDh /6e1674/IKV7e6sUs1ORk1za7h9424gwHoHIGMh23SXXf8Q+RjPoCkUlqFOHmKWm n7sLR6p4ZtL9W62DcPsFFVUXs1RX0fpi4Tg+7XTINH8dzNssqHIjCeeT2x2Ey4zd bLamhekCgSoARtqXATUfKvrP0nJvj2frTvv3tfcSUI3tARE+dA7X -----END CERTIFICATE-----Generated at Sat May 18 17:37:34 2024 by rpki-client on console-fra.rpki-client.org