$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A069EA0C8EE911EE8698A64FC4F9AE02.roa File: A069EA0C8EE911EE8698A64FC4F9AE02.roa (raw, json) Hash identifier: 7KqpIMgH6JpoVNcqLc+sZRMpc7iSMv2cIDHlXsq46/I= Subject key identifier: 7B:28:64:90:FE:0B:A2:C2:8B:19:F9:64:88:97:1B:D6:AE:9D:9A:96 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 6E Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A069EA0C8EE911EE8698A64FC4F9AE02.roa Signing time: Wed 29 Nov 2023 19:00:56 +0000 ROA not before: Wed 29 Nov 2023 19:00:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 23470 IP address blocks: 2401:b60:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Nov 29 19:00:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65678a68-4172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a5:17:9d:fa:a0:76:56:5f:c6:ec:b5:d9:be: 3b:94:fa:bf:c8:9e:75:34:68:62:97:e6:9e:83:21: 7f:56:a5:f7:6b:24:63:26:4e:b7:b1:b2:98:7a:48: 0d:cb:cf:98:88:fb:05:8d:d6:bd:10:05:35:59:c7: 2a:26:f8:ba:40:34:ea:fa:ef:d8:e0:f2:6c:22:1e: ad:5a:db:f0:92:f8:a3:a8:b2:fb:bc:de:1b:90:3c: 59:d0:51:e0:ef:7c:7e:7f:38:a1:2c:3e:62:02:71: 0e:94:72:ab:49:1f:f7:b8:0d:c3:ad:01:64:52:85: 1e:42:d2:7f:81:5e:1a:8c:2d:24:0e:8a:f7:f6:08: bd:55:1a:2d:22:87:3e:a7:b0:8e:96:eb:bf:f9:04: 33:d0:32:fa:de:63:2a:35:05:0f:7e:14:52:88:56: 16:ff:2b:8c:de:ac:5d:5b:f2:30:ca:ed:a4:a3:ce: 66:80:89:73:6e:ca:32:de:99:90:f0:49:3c:56:05: 6b:ba:43:84:83:96:c2:73:1d:8a:f1:b4:79:93:e5: fe:e7:47:6b:8b:84:c3:90:df:9a:42:f7:94:4a:d2: 2a:72:2e:a5:ce:2e:54:74:bf:d6:45:92:d5:ed:9e: 83:29:ed:25:8f:2e:48:b1:21:e9:23:52:17:68:78: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:28:64:90:FE:0B:A2:C2:8B:19:F9:64:88:97:1B:D6:AE:9D:9A:96 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A069EA0C8EE911EE8698A64FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 28:36:7f:ea:41:9f:45:7e:56:db:17:17:49:57:d1:91:8b:ac: fc:a2:a7:60:51:82:36:bb:f1:23:48:45:2b:fd:e7:f4:09:9b: f2:31:3f:77:6d:b2:f0:a3:ab:93:23:f3:c1:a0:6e:ec:42:61: d5:38:95:ae:be:71:22:2a:cf:93:ef:6c:9c:b0:9a:84:18:52: 36:19:53:9c:59:b7:cb:09:33:e8:91:a5:b3:61:92:29:a6:a8: 35:12:e5:0c:93:3a:38:2e:4c:83:3e:f5:1e:ca:0f:1f:5a:92: 42:18:d3:c7:81:75:9b:10:92:9e:58:10:4f:c3:e8:37:98:e0: 35:8c:0d:3d:79:65:71:ec:d3:c9:53:b1:7b:2f:93:ae:e7:0d: 2e:9a:41:48:54:96:2a:b8:9c:c5:24:db:91:08:83:d1:87:ba: 55:3f:dc:66:66:b4:d1:62:fb:17:e2:51:da:01:fe:1d:c0:5e: 9f:1b:93:93:ea:da:c9:37:f7:a0:11:f3:65:af:4f:1d:45:d4: fe:3d:ab:d0:f2:bc:04:7e:54:6f:22:a7:45:6e:d5:0e:85:c5: 20:8c:38:bc:67:3c:c7:b1:51:75:f6:a8:8a:81:d1:63:4e:dc: db:eb:a4:53:c5:6c:f7:74:d7:e7:ba:0d:e5:8f:3e:2d:67:0b: 03:ca:5b:c5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTAzQjExMC8GA1UEBRMoQjlFNjBDRjE3OUY0RUFDQkRCOTQ5MkJBNUY3Q0FDRjQ1 MjM5Q0NGNDAeFw0yMzExMjkxOTAwNTZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Njc4YTY4LTQxNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzpRed+qB2Vl/G7LXZvjuU+r/InnU0aGKX5p6DIX9WpfdrJGMmTrexsph6SA3L z5iI+wWN1r0QBTVZxyom+LpANOr679jg8mwiHq1a2/CS+KOosvu83huQPFnQUeDv fH5/OKEsPmICcQ6UcqtJH/e4DcOtAWRShR5C0n+BXhqMLSQOivf2CL1VGi0ihz6n sI6W67/5BDPQMvreYyo1BQ9+FFKIVhb/K4zerF1b8jDK7aSjzmaAiXNuyjLemZDw STxWBWu6Q4SDlsJzHYrxtHmT5f7nR2uLhMOQ35pC95RK0ipyLqXOLlR0v9ZFktXt noMp7SWPLkixIekjUhdoeIFBAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUeyhkkP4L osKLGflkiJcb1q6dmpYwHwYDVR0jBBgwFoAUueYM8Xn06svblJK6X3ys9FI5zPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFMDNCL0FGOTY3MTY2MEI2 RTExRUVCMjlCQjE3MEM0RjlBRTAyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWVZTThYbjA2c3ZibEpLNlgzeXM5Rkk1elBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTAzQi9BRjk2NzE2NjBCNkUxMUVFQjI5QkIxNzBDNEY5QUUwMi9BMDY5RUEwQzhF RTkxMUVFODY5OEE2NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBC2D//zANBgkqhkiG9w0BAQsFAAOCAQEAKDZ/6kGfRX5W 2xcXSVfRkYus/KKnYFGCNrvxI0hFK/3n9Amb8jE/d22y8KOrkyPzwaBu7EJh1TiV rr5xIirPk+9snLCahBhSNhlTnFm3ywkz6JGls2GSKaaoNRLlDJM6OC5Mgz71HsoP H1qSQhjTx4F1mxCSnlgQT8PoN5jgNYwNPXllcezTyVOxey+TrucNLppBSFSWKric xSTbkQiD0Ye6VT/cZma00WL7F+JR2gH+HcBenxuTk+rayTf3oBHzZa9PHUXU/j2r 0PK8BH5UbyKnRW7VDoXFIIw4vGc8x7FRdfaoioHRY07c2+ukU8Vs93TX57oN5Y8+ LWcLA8pbxQ== -----END CERTIFICATE-----Generated at Wed May 1 08:05:05 2024 by rpki-client on console-ams.rpki-client.org