$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa File: 756E0BBCEAE711EE88CD8641C4F9AE02.roa (raw, json) Hash identifier: GCJUJR0jfOMWZSLcjQWqFwBI9XJ1SOGRhbiRnm2E28U= Subject key identifier: 5E:F2:D3:96:2A:E3:03:06:EB:E0:B5:4A:0C:18:B0:DD:3A:88:C2:8D Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 0621 Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa Signing time: Mon 25 Mar 2024 20:37:12 +0000 ROA not before: Mon 25 Mar 2024 20:37:12 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 142045 IP address blocks: 2407:4ac0:1400::/38 maxlen: 40 2407:4ac0:1800::/37 maxlen: 40 2407:4ac0:2000::/35 maxlen: 40 2407:4ac0:2800::/37 maxlen: 40 2407:4ac0:3000::/36 maxlen: 40 2407:4ac0:6000::/35 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Mar 25 20:37:12 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6601e078-badc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f7:7f:e2:f3:02:46:ab:11:de:7a:af:1d:e4: 76:bd:85:91:ab:0d:b1:74:ab:ad:41:c7:a4:80:cc: cf:ee:74:a3:07:6d:a7:d6:5d:63:e8:0e:c2:39:d9: 90:9e:ce:e1:66:a2:80:49:b6:ac:3d:e2:3b:5f:fe: 3b:f4:62:be:0a:ef:59:c8:9f:7b:cb:f6:ee:b2:0f: b2:b3:92:3b:5b:a7:a2:32:a2:eb:2f:0c:df:66:9b: e0:b8:62:30:6f:cc:bb:93:f0:f3:57:72:12:53:0e: 02:1e:39:ac:44:2d:e5:af:5b:2b:07:44:23:fe:cd: bb:fc:2b:28:63:c6:e1:cf:3f:49:9e:0c:e6:6a:0b: 22:32:9d:c5:9f:5f:53:8f:96:ee:51:8c:a0:b3:d4: 76:28:c0:c1:93:38:4a:91:b1:c5:38:86:63:76:8c: 39:4a:b9:2d:b3:ff:9f:49:8c:4a:e4:56:02:96:b3: 3a:2c:ee:c0:66:67:f1:e9:d3:48:72:0b:bf:d2:58: 02:f9:f1:b3:1d:2d:72:aa:21:4c:6f:23:68:31:2f: c5:8e:b8:09:8a:e7:3a:65:80:48:62:65:57:c6:5d: 77:b0:64:65:1f:96:ef:8b:16:23:a4:16:ae:7d:c2: 92:4f:07:e9:c9:95:2b:47:ad:71:b0:28:67:fd:8e: a4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F2:D3:96:2A:E3:03:06:EB:E0:B5:4A:0C:18:B0:DD:3A:88:C2:8D X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:4ac0:1400::-2407:4ac0:3fff:ffff:ffff:ffff:ffff:ffff 2407:4ac0:6000::/35 Signature Algorithm: sha256WithRSAEncryption 4f:14:f4:00:5b:5f:bf:7b:e2:97:49:15:34:0d:3e:1d:f2:e6: f6:26:82:84:db:fc:d4:8c:21:bc:03:20:6d:0b:f8:3b:1e:ed: 48:84:50:d7:44:d9:65:b4:55:13:bf:2c:34:ef:cb:82:5c:3b: db:36:d7:b3:b7:d7:32:b4:1a:7a:55:bb:7d:1c:5f:bb:39:4c: 8e:d5:30:e7:12:ab:2d:a6:0c:41:79:6d:a6:11:1b:f4:3e:5f: d6:fe:f9:87:eb:df:79:d0:e4:5a:c4:5a:e0:2c:66:ae:06:83: cb:58:62:82:e9:b0:df:a3:17:3f:8c:b0:f3:50:4a:65:2c:a8: 55:5f:da:f7:46:32:14:2c:1d:57:e0:56:eb:92:1a:f6:4c:ce: 4a:37:7f:23:fe:d3:97:ee:bc:88:15:19:83:32:ce:2c:f3:fe: ac:fc:4c:5f:b8:4a:29:3b:e0:46:be:3b:86:e6:1f:f5:69:93: 84:08:db:84:83:26:5a:20:c8:ae:b7:6b:63:41:1e:60:7c:8d: 59:b0:35:fd:00:b9:3b:ea:fe:1e:e4:1c:53:09:c0:2a:2b:32: 89:8a:da:ee:ae:b6:61:2c:dd:12:9c:7c:cc:75:6f:55:83:b8: 78:35:81:4f:e1:10:c2:28:9b:71:a0:3b:77:6d:6a:30:00:64: ed:6c:ca:28 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjQwMzI1MjAzNzEyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAxZTA3OC1iYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPd/4vMCRqsR3nqvHeR2vYWRqw2xdKutQcekgMzP7nSjB22n1l1j6A7COdmQ ns7hZqKASbasPeI7X/479GK+Cu9ZyJ97y/busg+ys5I7W6eiMqLrLwzfZpvguGIw b8y7k/DzV3ISUw4CHjmsRC3lr1srB0Qj/s27/CsoY8bhzz9JngzmagsiMp3Fn19T j5buUYygs9R2KMDBkzhKkbHFOIZjdow5Srkts/+fSYxK5FYClrM6LO7AZmfx6dNI cgu/0lgC+fGzHS1yqiFMbyNoMS/FjrgJiuc6ZYBIYmVXxl13sGRlH5bvixYjpBau fcKSTwfpyZUrR61xsChn/Y6kGQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFF7y05Yq 4wMG6+C1SgwYsN06iMKNMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU2QjcvOTVFRjdEQkE5NjdEMTFFQkFERDUwRDJDQzRGOUFFMDIvNzU2RTBCQkNF QUU3MTFFRTg4Q0Q4NjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBowEAMGAiQHSsAUAwYGJAdKwAADBgUkB0rAYDANBgkqhkiG9w0B AQsFAAOCAQEATxT0AFtfv3vil0kVNA0+HfLm9iaChNv81IwhvAMgbQv4Ox7tSIRQ 10TZZbRVE78sNO/Lglw72zbXs7fXMrQaelW7fRxfuzlMjtUw5xKrLaYMQXltphEb 9D5f1v75h+vfedDkWsRa4CxmrgaDy1higumw36MXP4yw81BKZSyoVV/a90YyFCwd V+BW65Ia9kzOSjd/I/7Tl+68iBUZgzLOLPP+rPxMX7hKKTvgRr47huYf9WmThAjb hIMmWiDIrrdrY0EeYHyNWbA1/QC5O+r+HuQcUwnAKisyiYra7q62YSzdEpx8zHVv VYO4eDWBT+EQwiibcaA7d21qMABk7WzKKA== -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org