$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/26BE1334558F11EDB3A5ED4FC4F9AE02.roa File: 26BE1334558F11EDB3A5ED4FC4F9AE02.roa (raw, json) Hash identifier: sMnTVVIG0bU72TKbOdi8+QBWhbPXKm3qru48EVYfCi4= Subject key identifier: 25:DE:86:EF:47:61:19:75:AD:AC:EB:13:17:BF:4A:7F:AF:D5:37:82 Certificate issuer: /CN=A91FFEDB/serialNumber=13B27FD46248F4A733D924651C940CB7F1A30609 Certificate serial: C3 Authority key identifier: 13:B2:7F:D4:62:48:F4:A7:33:D9:24:65:1C:94:0C:B7:F1:A3:06:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/26BE1334558F11EDB3A5ED4FC4F9AE02.roa Signing time: Wed 01 Nov 2023 05:15:46 +0000 ROA not before: Wed 01 Nov 2023 05:15:46 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38327 IP address blocks: 2400:b960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB/serialNumber=13B27FD46248F4A733D924651C940CB7F1A30609 Validity Not Before: Nov 1 05:15:46 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6541df02-7d07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:fe:11:26:42:12:96:5f:d2:bd:c0:32:f5: c9:20:2a:b9:eb:a7:f8:96:49:d4:bd:4d:43:28:fc: e6:27:46:04:51:00:e6:a2:12:38:7b:a2:a0:fe:b6: 1a:09:b2:30:4e:45:4f:30:b2:fe:46:5c:af:76:3f: 64:1d:21:99:56:da:07:9e:15:bf:7d:47:9d:db:4f: 35:8d:31:a0:37:e0:d1:58:f3:f5:bf:e3:5d:19:78: fc:e7:eb:7a:ce:f5:fe:77:cd:e8:9b:09:03:6a:3d: 87:da:c7:37:48:60:d0:b4:23:82:b0:8b:40:a6:b5: 11:7e:df:d6:3f:a0:33:55:bc:c2:c5:eb:31:2d:17: 8e:37:af:71:f8:92:e8:4f:da:4e:18:70:b5:06:72: c8:9c:72:34:fa:67:54:c1:d0:ca:f7:52:dc:60:3b: 26:f2:16:c9:ab:60:44:be:86:90:55:2a:58:d4:55: cf:5f:83:e9:01:73:f9:03:0a:fe:7c:36:3c:50:55: 5a:d2:d4:fa:59:8c:b1:30:13:5b:f9:85:c0:27:3e: e9:bf:da:13:59:32:44:4a:b5:5e:e5:d4:14:28:f3: aa:26:86:52:aa:cf:8c:8a:7b:9e:2c:4b:cd:49:42: e4:45:ba:74:84:1a:ab:a3:64:de:ca:f2:99:3b:4c: f1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DE:86:EF:47:61:19:75:AD:AC:EB:13:17:BF:4A:7F:AF:D5:37:82 X509v3 Authority Key Identifier: keyid:13:B2:7F:D4:62:48:F4:A7:33:D9:24:65:1C:94:0C:B7:F1:A3:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E7J_1GJI9Kcz2SRlHJQMt_GjBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/3EF7E9BC550211ED964B7A4AC4F9AE02/26BE1334558F11EDB3A5ED4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b960::/32 Signature Algorithm: sha256WithRSAEncryption 00:53:8b:8f:ec:4d:53:56:84:5d:31:7b:40:84:94:f2:ef:55: c2:02:15:db:14:43:fd:89:00:f9:fd:22:96:92:dd:f2:79:20: f1:cb:43:c9:f8:3e:b2:4f:b0:a0:5c:0a:46:06:1c:ff:da:79: 72:9a:7f:0f:aa:31:27:98:35:64:92:da:cb:37:6f:d4:07:e9: 28:34:5f:d3:f5:af:20:35:80:8b:27:5a:f9:64:af:ce:f6:47: 5f:76:57:9b:dd:55:32:b4:81:25:e2:7b:50:56:3e:e4:a4:34: 5f:31:8d:f6:02:aa:c8:fb:ae:52:eb:81:07:52:8a:98:48:f9: 53:e9:fc:76:e2:36:07:bf:5b:4e:bd:ff:d5:67:cb:3d:bf:5d: a4:65:75:2e:1a:f0:07:20:c5:a0:80:96:97:3a:7d:74:a0:d0: f0:32:66:65:f7:15:9b:86:c3:e5:44:b0:9c:17:27:e4:a7:a1: 34:e4:00:89:3a:c9:b6:c9:7f:e4:0c:67:25:84:96:5f:7b:5e: 02:dd:ee:51:e8:83:9a:a5:00:1e:85:2b:03:42:c5:9e:a6:51: be:42:3a:ca:1b:d9:24:bf:93:fb:2c:5b:08:2f:39:47:c8:ee: 56:71:ff:ec:75:59:e4:1d:fe:e1:10:ab:08:e0:cf:4e:66:4a: f3:93:f7:6c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDEzQjI3RkQ0NjI0OEY0QTczM0Q5MjQ2NTFDOTQwQ0I3 RjFBMzA2MDkwHhcNMjMxMTAxMDUxNTQ2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxZGYwMi03ZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3af+ESZCEpZf0r3AMvXJICq566f4lknUvU1DKPzmJ0YEUQDmohI4e6Kg/rYa CbIwTkVPMLL+Rlyvdj9kHSGZVtoHnhW/fUed2081jTGgN+DRWPP1v+NdGXj85+t6 zvX+d83omwkDaj2H2sc3SGDQtCOCsItAprURft/WP6AzVbzCxesxLReON69x+JLo T9pOGHC1BnLInHI0+mdUwdDK91LcYDsm8hbJq2BEvoaQVSpY1FXPX4PpAXP5Awr+ fDY8UFVa0tT6WYyxMBNb+YXAJz7pv9oTWTJESrVe5dQUKPOqJoZSqs+MinueLEvN SULkRbp0hBqro2TeyvKZO0zxAwIDAQABo4ICljCCApIwHQYDVR0OBBYEFCXehu9H YRl1razrExe/Sn+v1TeCMB8GA1UdIwQYMBaAFBOyf9RiSPSnM9kkZRyUDLfxowYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zRUY3RTlCQzU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9FN0pfMUdKSTlLY3oyU1JsSEpRTXRfR2pC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U3Sl8xR0pJOUtjejJTUmxISlFNdF9HakJnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZFREIvM0VGN0U5QkM1NTAyMTFFRDk2NEI3QTRBQzRGOUFFMDIvMjZCRTEzMzQ1 NThGMTFFREIzQTVFRDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALlgMA0GCSqGSIb3DQEBCwUAA4IBAQAAU4uP7E1TVoRd MXtAhJTy71XCAhXbFEP9iQD5/SKWkt3yeSDxy0PJ+D6yT7CgXApGBhz/2nlymn8P qjEnmDVkktrLN2/UB+koNF/T9a8gNYCLJ1r5ZK/O9kdfdleb3VUytIEl4ntQVj7k pDRfMY32AqrI+65S64EHUoqYSPlT6fx24jYHv1tOvf/VZ8s9v12kZXUuGvAHIMWg gJaXOn10oNDwMmZl9xWbhsPlRLCcFyfkp6E05ACJOsm2yX/kDGclhJZfe14C3e5R 6IOapQAehSsDQsWeplG+QjrKG9kkv5P7LFsILzlHyO5Wcf/sdVnkHf7hEKsI4M9O Zkrzk/ds -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:32 2024 by rpki-client on console-ams.rpki-client.org