$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/67C2BFEC61EC11EDB740B02AC4F9AE02.roa File: 67C2BFEC61EC11EDB740B02AC4F9AE02.roa (raw, json) Hash identifier: Pq201IsTrNxwMMzkfRqpoadX9HhS8xCJAXl8YupXHWE= Subject key identifier: 2A:6A:40:4C:B9:66:AA:65:CD:A0:A4:17:23:A6:D6:F4:65:01:E9:86 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03B2 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/67C2BFEC61EC11EDB740B02AC4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:27 +0000 ROA not before: Wed 31 Jan 2024 03:05:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 57401 IP address blocks: 2407:9240:3700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8f7-ed79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fc:bb:3a:44:e0:21:bd:d9:04:2a:3a:82:81: 79:b7:88:d3:7b:b0:e3:a0:a4:8d:11:1a:3d:82:1e: 27:8e:6e:06:4f:89:ac:55:dc:3c:17:29:67:11:e1: 14:5b:c2:de:1b:0a:97:49:b4:dd:84:b5:8d:e2:6b: 4d:94:65:ba:60:a7:05:90:b8:27:0f:09:1e:4b:af: 30:8a:2c:77:33:cc:43:59:b8:d4:28:40:2e:65:9a: 30:55:65:0e:78:5e:99:30:ea:4a:00:16:f7:ac:b7: f5:64:24:04:e8:9b:17:12:b5:c6:21:84:53:b1:19: 52:67:8b:76:37:b1:4b:54:45:a9:76:48:10:ba:f1: 92:86:24:a4:7b:be:66:a3:49:be:68:fc:cf:02:b0: 29:32:f1:db:c9:74:77:78:9b:e2:01:e5:7a:cb:15: 23:32:96:4b:f2:67:e0:c0:17:8a:b5:2a:15:74:d6: da:82:03:b4:52:e3:72:d0:d8:1c:b0:f3:36:c3:40: bd:b1:7b:f0:cb:ff:70:4d:8b:86:82:f1:15:56:57: 26:c9:c5:c6:1b:16:5e:05:98:1a:74:f3:28:90:8a: 68:aa:c5:dd:e5:94:79:33:e2:01:ca:21:eb:dd:65: 65:ab:1a:aa:36:76:da:12:d7:48:d1:be:df:84:cc: f1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6A:40:4C:B9:66:AA:65:CD:A0:A4:17:23:A6:D6:F4:65:01:E9:86 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/67C2BFEC61EC11EDB740B02AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:3700::/40 Signature Algorithm: sha256WithRSAEncryption 08:47:1a:59:9d:58:88:01:43:3e:97:1b:56:92:95:a7:26:3a: 71:9c:dc:29:99:77:54:6f:f7:fe:a1:24:d5:66:e3:12:55:03: 3b:65:9b:29:16:58:a6:d7:97:cb:be:67:f8:e1:87:39:ac:51: 17:9b:35:68:f0:df:b5:a1:90:06:d4:97:f0:10:18:4b:97:ab: a8:f6:11:ae:3e:40:25:71:ce:2d:70:92:77:f8:02:73:5d:25: ed:aa:c2:9a:1c:7d:d7:09:39:53:a7:bb:70:9c:16:22:9b:e5: e1:08:d3:58:af:dd:d2:c8:14:cf:e5:3b:e9:26:ac:1b:bf:23: 23:8f:35:4f:57:b4:fd:dd:18:bd:df:c3:1e:79:43:9a:33:f1: 86:56:b3:6f:3e:aa:65:05:d5:dc:f4:f6:49:84:6c:2e:dc:9b: 27:d2:45:a3:a5:3b:79:36:6b:a1:c2:62:59:30:8f:e7:aa:4c: aa:f6:7e:69:2f:44:34:c1:3e:a6:1e:8d:75:ef:4a:36:2b:41: 04:08:fe:33:c1:a3:40:9c:67:34:36:73:43:16:20:4b:7c:26: c7:a6:c4:99:d7:21:79:aa:08:7d:bc:08:7c:38:92:f6:b5:4c: d5:1f:f0:30:9a:7a:f2:e8:d9:4b:b0:e9:a6:3e:64:66:6c:ae: 3a:ff:cb:0a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhmNy1lZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/y7OkTgIb3ZBCo6goF5t4jTe7DjoKSNERo9gh4njm4GT4msVdw8FylnEeEU W8LeGwqXSbTdhLWN4mtNlGW6YKcFkLgnDwkeS68wiix3M8xDWbjUKEAuZZowVWUO eF6ZMOpKABb3rLf1ZCQE6JsXErXGIYRTsRlSZ4t2N7FLVEWpdkgQuvGShiSke75m o0m+aPzPArApMvHbyXR3eJviAeV6yxUjMpZL8mfgwBeKtSoVdNbaggO0UuNy0Ngc sPM2w0C9sXvwy/9wTYuGgvEVVlcmycXGGxZeBZgadPMokIpoqsXd5ZR5M+IByiHr 3WVlqxqqNnbaEtdI0b7fhMzxLQIDAQABo4IClzCCApMwHQYDVR0OBBYEFCpqQEy5 ZqplzaCkFyOm1vRlAemGMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNjdDMkJGRUM2 MUVDMTFFREI3NDBCMDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JANzANBgkqhkiG9w0BAQsFAAOCAQEACEcaWZ1YiAFD PpcbVpKVpyY6cZzcKZl3VG/3/qEk1WbjElUDO2WbKRZYpteXy75n+OGHOaxRF5s1 aPDftaGQBtSX8BAYS5erqPYRrj5AJXHOLXCSd/gCc10l7arCmhx91wk5U6e7cJwW Ipvl4QjTWK/d0sgUz+U76SasG78jI481T1e0/d0Yvd/DHnlDmjPxhlazbz6qZQXV 3PT2SYRsLtybJ9JFo6U7eTZrocJiWTCP56pMqvZ+aS9ENME+ph6Nde9KNitBBAj+ M8GjQJxnNDZzQxYgS3wmx6bEmdcheaoIfbwIfDiS9rVM1R/wMJp68ujZS7Dppj5k ZmyuOv/LCg== -----END CERTIFICATE-----Generated at Fri May 17 03:52:21 2024 by rpki-client on console-ams.rpki-client.org