$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa File: 38C33A60AF8811E98C7EFC2AC4F9AE02.roa (raw, json) Hash identifier: xvo77n1xYo1ALd8WkBtaJaOiBKrDJnvmPpn8sjTv874= Subject key identifier: 3D:BE:66:23:AC:51:E1:2D:8F:FB:89:F0:42:29:67:62:8F:C2:6F:51 Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 1184 Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa Signing time: Tue 12 Sep 2023 17:55:13 +0000 ROA not before: Tue 12 Sep 2023 17:55:13 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132253 IP address blocks: 2406:3000:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4484 (0x1184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Sep 12 17:55:13 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6500a601-fac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:73:e0:f7:5b:03:6f:b0:94:14:b4:cd:32:e6: ae:81:40:8d:c6:3a:bc:a1:1e:1d:d2:b3:fd:59:88: 86:c9:24:01:57:6b:c5:28:f0:03:2b:99:9c:1a:d0: 92:ce:d6:33:b4:0c:2b:c7:81:88:cf:82:10:ea:50: 06:b3:c1:15:a9:18:90:89:87:e8:64:aa:2b:37:7e: 30:38:78:89:2b:2f:1f:e6:bc:89:80:ed:c5:29:2d: 8b:67:fb:35:b9:34:61:72:97:28:61:29:2c:74:f9: c5:a5:18:19:be:39:9c:52:a7:e1:92:5e:54:ee:91: cc:87:eb:e6:6c:96:e9:cd:05:4a:9e:12:58:73:e8: 61:3a:12:cb:84:c7:2f:81:d2:28:f1:7b:15:1f:3e: 71:0f:4f:4b:52:c1:a4:6e:c8:34:ac:35:43:9f:e7: 5a:98:4f:55:a3:7f:58:23:bc:a6:70:a5:0c:e0:f2: 27:c1:08:de:4d:44:77:63:3f:8d:ac:b0:48:3f:c4: 14:74:85:f5:b6:ba:b9:1b:88:32:9e:f2:8d:a3:95: 40:09:b3:64:f0:cd:5d:9f:d8:bf:66:bd:c4:8b:58: f8:e8:e3:99:cb:72:ba:a3:e6:b0:70:09:e1:15:af: c3:50:36:f2:11:8a:4d:de:0c:41:c0:82:ce:52:d4: 26:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BE:66:23:AC:51:E1:2D:8F:FB:89:F0:42:29:67:62:8F:C2:6F:51 X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/38C33A60AF8811E98C7EFC2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:3000:53::/48 Signature Algorithm: sha256WithRSAEncryption 58:f6:cb:0f:24:ce:3d:38:6e:71:23:87:4d:4c:4d:3d:65:95: ae:a8:33:d2:b7:fd:3a:3d:d6:e1:a5:f6:45:3d:41:d2:fe:f6: cf:70:ea:9d:31:b7:b2:76:5c:c4:41:1e:fe:1d:27:f1:8b:b5: 5e:a5:50:2f:74:cc:2d:d7:4b:d4:31:8d:49:5f:e8:05:54:12: 71:24:0c:91:24:c8:8d:16:eb:a2:a1:ae:7b:3c:5c:4c:cd:41: 81:95:0a:81:21:21:a8:ec:7a:3f:fe:2c:2f:55:6f:61:26:0c: 3f:36:5d:b1:de:c5:4e:16:ad:2b:4b:a8:54:67:da:bd:ad:79: 2c:76:19:16:8b:c9:19:69:17:36:dd:50:cc:8c:ef:83:af:8a: 2b:6e:45:2a:5f:ea:44:26:5c:fc:94:92:68:6a:ff:a1:d3:53: ce:b1:f4:72:ff:4d:4d:27:5a:95:8e:cc:b0:bc:76:5e:c4:3a: 94:58:62:c3:93:63:61:7b:59:86:2d:3d:42:b2:a3:c1:df:ce: e0:ed:fd:c3:23:73:3a:60:0a:c5:94:68:eb:2d:64:05:4e:d4: ac:aa:3f:8d:80:7d:ee:df:2f:fc:9e:41:c0:3a:7c:aa:0b:2b: 54:11:22:7b:4a:11:14:f8:23:a3:76:75:92:84:34:9e:66:a0: fc:eb:aa:08 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjMwOTEyMTc1NTEzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYTYwMS1mYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3Pg91sDb7CUFLTNMuaugUCNxjq8oR4d0rP9WYiGySQBV2vFKPADK5mcGtCS ztYztAwrx4GIz4IQ6lAGs8EVqRiQiYfoZKorN34wOHiJKy8f5ryJgO3FKS2LZ/s1 uTRhcpcoYSksdPnFpRgZvjmcUqfhkl5U7pHMh+vmbJbpzQVKnhJYc+hhOhLLhMcv gdIo8XsVHz5xD09LUsGkbsg0rDVDn+damE9Vo39YI7ymcKUM4PInwQjeTUR3Yz+N rLBIP8QUdIX1trq5G4gynvKNo5VACbNk8M1dn9i/Zr3Ei1j46OOZy3K6o+awcAnh Fa/DUDbyEYpN3gxBwILOUtQmkQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD2+ZiOs UeEtj/uJ8EIpZ2KPwm9RMB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvMzhDMzNBNjBB Rjg4MTFFOThDN0VGQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBjAAAFMwDQYJKoZIhvcNAQELBQADggEBAFj2yw8kzj04 bnEjh01MTT1lla6oM9K3/To91uGl9kU9QdL+9s9w6p0xt7J2XMRBHv4dJ/GLtV6l UC90zC3XS9QxjUlf6AVUEnEkDJEkyI0W66Khrns8XEzNQYGVCoEhIajsej/+LC9V b2EmDD82XbHexU4WrStLqFRn2r2teSx2GRaLyRlpFzbdUMyM74OviituRSpf6kQm XPyUkmhq/6HTU86x9HL/TU0nWpWOzLC8dl7EOpRYYsOTY2F7WYYtPUKyo8HfzuDt /cMjczpgCsWUaOstZAVO1KyqP42Afe7fL/yeQcA6fKoLK1QRIntKERT4I6N2dZKE NJ5moPzrqgg= -----END CERTIFICATE-----Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org