$ rpki-client -vvf rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa File: 2F70E1E0D4C711EB84791C0BC4F9AE02.roa (raw, json) Hash identifier: 8Jl9AiWamPsqzIL3OorWOBFy/PQ9g2itsr3pzc8dDLo= Subject key identifier: F5:F1:6C:8B:AC:3A:8F:93:1F:0C:E7:54:66:D3:94:1A:40:E1:10:A5 Certificate issuer: /CN=A91620ED/serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Certificate serial: 2935 Authority key identifier: AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa Signing time: Mon 12 Feb 2024 16:12:26 +0000 ROA not before: Mon 12 Feb 2024 16:12:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9731 IP address blocks: 2407:6300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10549 (0x2935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620ED/serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Validity Not Before: Feb 12 16:12:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ca436a-0fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:af:85:44:08:34:cd:62:8f:b8:70:3f:8e:66: 4d:23:da:84:fd:d7:d9:6e:03:69:7e:a0:e4:b4:22: d2:22:0f:fa:dd:52:e4:de:d9:18:54:9b:a0:59:be: 86:13:4e:3b:98:58:3a:2e:08:f8:1b:92:21:5a:e1: 2f:78:38:5e:68:78:86:bc:d3:21:56:67:d5:2c:a9: d8:bd:68:4b:73:cb:35:0f:8d:68:dd:da:ed:95:78: 47:15:88:9e:51:07:15:a3:fa:41:93:11:16:2d:1f: bb:3d:aa:aa:f8:ed:9f:a1:25:f1:fe:67:78:3f:43: 08:08:91:a1:2d:b9:d7:fe:17:03:fe:b6:8e:54:ee: 2c:88:15:dd:c7:be:b9:59:75:90:db:d6:9a:d4:f8: b8:02:79:18:87:d5:75:1e:d4:8a:90:af:14:2b:c6: b5:0c:98:1c:97:52:26:13:c7:38:fd:87:98:0c:8b: f8:6f:e7:33:99:30:c6:6a:c3:09:cc:a9:6d:9d:d6: 37:b8:23:35:8d:54:00:0b:57:13:57:6a:c6:20:e4: 85:e3:4e:b9:1c:bc:5d:03:f0:ca:df:e2:0e:f4:e0: 53:57:0c:ce:f4:16:98:ba:e0:6a:ca:e5:b2:0e:59: 55:ff:13:85:6b:1f:2b:ee:9c:44:65:7c:23:d5:18: e3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F1:6C:8B:AC:3A:8F:93:1F:0C:E7:54:66:D3:94:1A:40:E1:10:A5 X509v3 Authority Key Identifier: keyid:AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:6300::/32 Signature Algorithm: sha256WithRSAEncryption 8c:18:47:57:36:d8:e1:2b:03:dc:45:90:25:4d:5d:25:20:f0: 80:b1:06:cb:e0:36:db:4c:88:39:86:1c:2d:f0:fc:25:b3:9e: d3:a4:58:2a:cc:f5:88:d2:7d:d2:7c:60:8d:b5:8a:b7:81:ef: e9:28:56:fc:fb:2f:85:c6:d7:02:e2:52:2b:fa:02:ad:78:35: ba:77:05:d7:af:62:3f:6f:24:f4:9f:c7:3b:9a:c4:e3:85:59: 34:c8:e7:92:b4:ae:7a:c9:c8:19:6d:cb:c2:5e:f8:82:20:0f: dd:10:ef:12:a7:26:07:02:c2:00:f9:ca:bd:79:d2:ab:94:ea: 3d:b9:7f:de:30:6e:e1:c9:ba:93:66:cc:72:a0:6e:b2:f6:31: 44:a6:c2:61:5d:73:68:d8:17:9c:b2:36:77:07:ef:13:bf:fa: 3d:de:4d:bd:c0:09:62:fe:0c:95:42:eb:c7:ce:47:a5:19:05: 88:78:17:4b:60:12:69:59:28:ac:06:b2:1c:12:cf:8c:12:3a: 2c:a5:73:2e:a6:81:1a:68:c9:74:f0:9b:a1:65:78:06:fa:6b: 2b:3b:e9:8d:10:f4:94:8f:50:11:2a:15:55:b7:d8:b9:f5:59: 62:15:63:1b:42:a2:50:62:ee:90:b9:eb:9a:d5:b1:3e:a5:c9: d6:88:bf:83 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICKTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRUQxMTAvBgNVBAUTKEFGNkFFMzI1QjRGODgwRTM2MjA1MUU3QzNERkRGMUI4 QjJBNUE4MTUwHhcNMjQwMjEyMTYxMjI2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhNDM2YS0wZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6+FRAg0zWKPuHA/jmZNI9qE/dfZbgNpfqDktCLSIg/63VLk3tkYVJugWb6G E047mFg6Lgj4G5IhWuEveDheaHiGvNMhVmfVLKnYvWhLc8s1D41o3drtlXhHFYie UQcVo/pBkxEWLR+7Paqq+O2foSXx/md4P0MICJGhLbnX/hcD/raOVO4siBXdx765 WXWQ29aa1Pi4AnkYh9V1HtSKkK8UK8a1DJgcl1ImE8c4/YeYDIv4b+czmTDGasMJ zKltndY3uCM1jVQAC1cTV2rGIOSF4065HLxdA/DK3+IO9OBTVwzO9BaYuuBqyuWy DllV/xOFax8r7pxEZXwj1RjjGQIDAQABo4ICljCCApIwHQYDVR0OBBYEFPXxbIus Oo+THwznVGbTlBpA4RClMB8GA1UdIwQYMBaAFK9q4yW0+IDjYgUefD398biypagV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFRC9FN0UyMzFFNjM3 MDAxMUU0QjMyQkQwNkJDNEY5QUUwMi9yMnJqSmJUNGdPTmlCUjU4UGYzeHVMS2xx QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IycmpKYlQ0Z09OaUJSNThQZjN4dUxLbHFCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIwRUQvRTdFMjMxRTYzNzAwMTFFNEIzMkJEMDZCQzRGOUFFMDIvMkY3MEUxRTBE NEM3MTFFQjg0NzkxQzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB2MAMA0GCSqGSIb3DQEBCwUAA4IBAQCMGEdXNtjhKwPc RZAlTV0lIPCAsQbL4DbbTIg5hhwt8Pwls57TpFgqzPWI0n3SfGCNtYq3ge/pKFb8 +y+FxtcC4lIr+gKteDW6dwXXr2I/byT0n8c7msTjhVk0yOeStK56ycgZbcvCXviC IA/dEO8SpyYHAsIA+cq9edKrlOo9uX/eMG7hybqTZsxyoG6y9jFEpsJhXXNo2Bec sjZ3B+8Tv/o93k29wAli/gyVQuvHzkelGQWIeBdLYBJpWSisBrIcEs+MEjospXMu poEaaMl08JuhZXgG+msrO+mNEPSUj1ARKhVVt9i59VliFWMbQqJQYu6Queua1bE+ pcnWiL+D -----END CERTIFICATE-----Generated at Thu May 16 18:26:05 2024 by rpki-client on console-fra.rpki-client.org