$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3BF787825C4511ED9CD04525C4F9AE02.roa File: 3BF787825C4511ED9CD04525C4F9AE02.roa (raw, json) Hash identifier: T9MUNPUE9VPgTYFlOKzYoloA7Mxhg/FYOsE8wbcrHFo= Subject key identifier: 8D:9E:36:7D:0F:62:1A:2B:D3:DC:FC:D1:73:2F:D8:C2:F3:6B:9C:35 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03AA Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3BF787825C4511ED9CD04525C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:19 +0000 ROA not before: Wed 31 Jan 2024 03:05:19 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 210769 IP address blocks: 2407:9240:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:19 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8ef-437e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:0a:68:97:4b:7d:77:11:91:f9:fd:bc:19: 3a:bb:55:0d:1e:62:c7:b4:f9:bf:5e:3a:08:d4:26: 82:b8:d0:0d:f0:6e:22:c8:9d:99:f3:f5:17:10:d6: 11:c7:53:d4:99:9a:7f:bb:3c:ea:75:60:cd:49:64: b9:d1:13:9f:8a:39:ec:b7:42:4f:aa:b0:75:4e:66: b6:84:a9:7e:eb:f7:26:9d:fc:e1:b4:0b:32:f8:05: e0:9a:6e:97:9e:8e:76:45:69:87:7c:5b:58:63:8a: 86:7d:ca:61:6c:aa:2a:0e:fd:f3:dd:8a:37:07:64: 46:e5:c5:d9:a6:29:6e:e2:53:57:4f:2a:32:55:78: f5:69:5a:3d:32:01:17:71:84:b8:6d:ee:52:83:fc: b9:63:05:70:da:b9:9f:61:af:45:1b:43:7c:e3:6d: 8d:50:bd:ad:90:31:ba:d5:38:a9:a2:f5:0b:91:0a: 7b:4d:39:71:12:15:db:03:94:97:2e:33:56:9b:a4: ff:7d:0a:b0:ae:ab:7f:00:af:07:8c:1d:72:27:9d: cc:ed:6b:90:49:c0:47:ab:0f:67:c5:02:b9:42:ba: 5f:2c:04:ad:98:86:04:8c:20:e1:37:eb:69:d5:3e: 11:57:3e:eb:eb:9e:41:58:cc:6b:19:75:3e:b2:6c: bd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9E:36:7D:0F:62:1A:2B:D3:DC:FC:D1:73:2F:D8:C2:F3:6B:9C:35 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/3BF787825C4511ED9CD04525C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:1002::/48 Signature Algorithm: sha256WithRSAEncryption 5a:65:11:e6:dc:75:c8:fb:56:a4:ff:2e:9c:5b:9e:dc:3c:4c: ed:21:c8:a8:c0:fa:6f:88:fc:62:85:4c:24:59:6e:b0:0e:dd: 75:18:1c:35:1d:bd:21:e0:6e:d4:e8:d4:ee:41:ec:29:b8:9a: 2a:2d:22:40:ef:f3:46:7f:9b:59:8f:a7:b9:a6:4d:46:4a:2c: 32:d9:15:3f:ce:84:d4:e2:c5:44:0b:68:09:31:38:c3:d9:74: 67:46:9b:0c:f0:bd:c3:f2:d6:e8:3f:bf:03:bc:fc:d8:7a:f2: f6:1b:4d:0d:ad:39:95:f6:3e:e6:a6:92:56:d4:67:c2:d5:4f: 4f:a5:d5:b8:a1:ad:d4:c8:50:45:09:87:c0:ef:76:44:88:0c: 78:e5:95:0f:57:f8:c6:94:55:8e:0a:63:5f:8c:66:37:b7:75: fa:07:63:fe:e8:8c:47:4a:c4:6f:09:9d:9b:7b:77:0d:81:39: 73:5d:72:b7:4c:b9:dd:01:6a:31:86:1d:ce:39:14:90:a2:36: 7d:a6:d5:c3:67:6a:81:f8:70:60:9e:70:af:f0:d5:3d:7b:c7: aa:ae:77:21:5f:f0:cc:38:c5:91:69:af:06:46:ce:3e:a9:99: d1:50:4b:73:82:7c:b2:b2:b8:52:ea:40:0a:48:d4:df:b0:68: 19:c0:cc:e5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTE5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhlZi00MzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnEKaJdLfXcRkfn9vBk6u1UNHmLHtPm/XjoI1CaCuNAN8G4iyJ2Z8/UXENYR x1PUmZp/uzzqdWDNSWS50ROfijnst0JPqrB1Tma2hKl+6/cmnfzhtAsy+AXgmm6X no52RWmHfFtYY4qGfcphbKoqDv3z3Yo3B2RG5cXZpilu4lNXTyoyVXj1aVo9MgEX cYS4be5Sg/y5YwVw2rmfYa9FG0N8422NUL2tkDG61TipovULkQp7TTlxEhXbA5SX LjNWm6T/fQqwrqt/AK8HjB1yJ53M7WuQScBHqw9nxQK5QrpfLAStmIYEjCDhN+tp 1T4RVz7r655BWMxrGXU+smy9UwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI2eNn0P Yhor09z80XMv2MLza5w1MB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvM0JGNzg3ODI1 QzQ1MTFFRDlDRDA0NTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkB5JAEAIwDQYJKoZIhvcNAQELBQADggEBAFplEebcdcj7 VqT/Lpxbntw8TO0hyKjA+m+I/GKFTCRZbrAO3XUYHDUdvSHgbtTo1O5B7Cm4miot IkDv80Z/m1mPp7mmTUZKLDLZFT/OhNTixUQLaAkxOMPZdGdGmwzwvcPy1ug/vwO8 /Nh68vYbTQ2tOZX2PuamklbUZ8LVT0+l1bihrdTIUEUJh8DvdkSIDHjllQ9X+MaU VY4KY1+MZje3dfoHY/7ojEdKxG8JnZt7dw2BOXNdcrdMud0BajGGHc45FJCiNn2m 1cNnaoH4cGCecK/w1T17x6qudyFf8Mw4xZFprwZGzj6pmdFQS3OCfLKyuFLqQApI 1N+waBnAzOU= -----END CERTIFICATE-----Generated at Fri May 17 03:16:59 2024 by rpki-client on console-fra.rpki-client.org