$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa File: 8FA9D71068D611EEAD2D927FC4F9AE02.roa (raw, json) Hash identifier: 6tlBwsncsPFDS2KjOCcMlnxZ6xN1xmgFM4Emgr76J4Q= Subject key identifier: 35:B8:FC:B9:20:C4:0D:2B:25:AA:E5:8D:08:75:4E:EC:27:20:84:42 Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 022A Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa Signing time: Thu 12 Oct 2023 08:08:44 +0000 ROA not before: Thu 12 Oct 2023 08:08:44 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 149774 IP address blocks: 2400:6c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Oct 12 08:08:44 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6527a98c-7730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fd:a8:45:8a:3d:83:ea:a3:e8:36:6f:7e:2e: 8f:88:ef:4f:fa:67:b8:00:11:2f:79:46:99:df:13: a4:97:c2:ea:f4:6f:fd:d1:7f:59:01:65:e0:1c:4f: a4:f2:ce:ae:5b:c3:85:19:9f:b1:05:ef:70:1d:82: fe:57:bc:62:f4:9c:69:a4:3a:69:63:5d:70:26:4b: eb:8c:55:1d:95:1d:d0:2c:09:da:5c:ee:93:48:b7: 5d:bf:7b:7d:b3:3c:15:16:67:a6:ec:93:c6:59:bf: 1b:ae:e6:6d:f9:a8:04:4a:5f:65:fc:93:55:ba:1f: 92:40:a7:ed:81:5d:82:1c:d1:02:fc:6d:35:a4:89: 00:2a:e0:fd:d6:34:51:3f:8e:f5:c5:97:72:de:57: 23:c3:17:72:b8:a6:75:86:71:56:fb:82:e9:63:4a: 6e:e4:6e:f8:f1:fb:0c:7e:94:a5:ac:98:b2:25:84: cc:62:a2:c6:cf:54:a1:35:13:86:5e:d7:40:54:b9: bc:ef:10:50:6c:4c:f0:66:a1:9a:41:bf:f3:c6:0c: b0:4f:75:f8:fc:0f:90:04:bc:94:25:12:b3:e3:4a: ab:ec:bb:05:28:b8:e4:de:77:e3:49:3d:d7:b7:e2: d3:83:17:fd:11:07:18:c9:13:a8:9f:6c:06:07:50: 37:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B8:FC:B9:20:C4:0D:2B:25:AA:E5:8D:08:75:4E:EC:27:20:84:42 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/8FA9D71068D611EEAD2D927FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6c60::/32 Signature Algorithm: sha256WithRSAEncryption 92:68:99:db:fb:49:ed:96:88:cf:3d:82:5f:3d:30:19:6f:7b: b4:b4:5c:95:5f:03:fc:91:b3:9c:ab:12:81:ae:58:7b:51:89: b5:aa:41:07:d6:3c:d9:56:38:d9:62:d7:55:c3:4b:7b:83:77: cb:80:4b:2a:0c:0f:c6:dd:fa:e7:ff:b6:a6:8a:1e:d1:da:21: 8d:21:40:e0:6f:e3:36:8b:d1:d3:5d:7e:4b:78:f1:9d:0a:58: 94:f8:ee:59:9b:db:2c:7f:40:f0:d2:cf:33:7a:5c:1c:de:c1: dd:c8:1f:92:ef:32:c4:91:e4:b6:d1:cc:7b:f5:73:44:92:ad: b9:db:04:ba:55:86:a2:80:1a:da:52:77:8e:84:8d:15:a2:01: e9:56:25:1d:3b:74:e8:15:af:37:ac:b6:56:15:9a:f8:b0:87: 6a:d9:75:51:ac:b8:23:a0:fa:3e:58:d3:e8:75:51:0f:15:63: c0:3b:6d:09:75:1a:14:cf:76:7d:af:bf:50:83:f8:5f:a9:b9: 9b:3a:81:e7:a2:c6:90:a3:46:cc:c8:1d:8a:dc:90:94:9f:50: 12:f0:5d:e5:41:bd:1a:a8:24:56:b7:62:d1:d5:a4:a6:73:31: 50:d0:ca:43:af:83:82:6b:74:3d:b7:72:0b:48:1c:b8:7a:bd: 39:67:e8:0f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjMxMDEyMDgwODQ0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI3YTk4Yy03NzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P2oRYo9g+qj6DZvfi6PiO9P+me4ABEveUaZ3xOkl8Lq9G/90X9ZAWXgHE+k 8s6uW8OFGZ+xBe9wHYL+V7xi9JxppDppY11wJkvrjFUdlR3QLAnaXO6TSLddv3t9 szwVFmem7JPGWb8bruZt+agESl9l/JNVuh+SQKftgV2CHNEC/G01pIkAKuD91jRR P471xZdy3lcjwxdyuKZ1hnFW+4LpY0pu5G748fsMfpSlrJiyJYTMYqLGz1ShNROG XtdAVLm87xBQbEzwZqGaQb/zxgywT3X4/A+QBLyUJRKz40qr7LsFKLjk3nfjST3X t+LTgxf9EQcYyROon2wGB1A3NQIDAQABo4ICljCCApIwHQYDVR0OBBYEFDW4/Lkg xA0rJarljQh1TuwnIIRCMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCMkQvOTY1QkQ1N0VCODk1MTFFQzgyNDJEMjdFQzRGOUFFMDIvOEZBOUQ3MTA2 OEQ2MTFFRUFEMkQ5MjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGxgMA0GCSqGSIb3DQEBCwUAA4IBAQCSaJnb+0ntlojP PYJfPTAZb3u0tFyVXwP8kbOcqxKBrlh7UYm1qkEH1jzZVjjZYtdVw0t7g3fLgEsq DA/G3frn/7amih7R2iGNIUDgb+M2i9HTXX5LePGdCliU+O5Zm9ssf0Dw0s8zelwc 3sHdyB+S7zLEkeS20cx79XNEkq252wS6VYaigBraUneOhI0VogHpViUdO3ToFa83 rLZWFZr4sIdq2XVRrLgjoPo+WNPodVEPFWPAO20JdRoUz3Z9r79Qg/hfqbmbOoHn osaQo0bMyB2K3JCUn1AS8F3lQb0aqCRWt2LR1aSmczFQ0MpDr4OCa3Q9t3ILSBy4 er05Z+gP -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:45 2024 by rpki-client on console-fra.rpki-client.org