$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3632957E441311EE8A03A472C4F9AE02.roa File: 3632957E441311EE8A03A472C4F9AE02.roa (raw, json) Hash identifier: EbtnDh4DWIA3j8RXQsbBr4w4FEuv/RXRXjqDIP+V60Y= Subject key identifier: 86:49:D4:EE:E6:9A:C0:6C:B1:42:93:B6:14:FF:BD:85:CB:58:F4:F4 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 0152 Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3632957E441311EE8A03A472C4F9AE02.roa Signing time: Sat 26 Aug 2023 13:20:08 +0000 ROA not before: Sat 26 Aug 2023 13:20:08 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 148996 IP address blocks: 2400:9ce0:6000::/36 maxlen: 36 2400:9ce0:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Aug 26 13:20:08 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e9fc08-9f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:2e:e7:49:7a:17:26:39:67:33:f0:42:d4: 06:f1:e2:07:32:bb:e3:73:6f:8a:74:e4:7b:d7:cc: fb:45:7b:39:5b:f3:1d:1f:86:25:02:c2:65:55:be: b8:23:f8:5f:63:fd:b4:51:60:54:15:4d:d2:6d:1e: ec:9c:3f:1d:da:94:02:11:c4:ea:45:11:77:b3:4b: c7:c7:01:ab:e4:fb:86:f5:0e:bf:9c:d3:c9:b7:0d: 11:56:25:66:32:63:4f:b4:c3:2c:a0:71:54:f4:1e: 7e:95:93:08:05:05:98:ce:3c:42:c2:24:13:78:44: 77:6d:b8:88:9a:3c:59:16:b1:ee:90:a4:13:b0:a6: bd:01:0a:e4:a3:df:91:7f:85:79:9b:66:29:25:bd: 1b:37:fa:c6:0b:cf:c7:34:96:6e:da:bf:3f:d7:60: 7a:2a:7c:2c:a6:f1:2e:91:b1:eb:1b:39:31:c1:dc: 36:17:06:37:7f:5b:96:40:b4:a6:29:94:cb:75:c9: 8f:d4:69:28:97:e5:e1:94:0e:58:49:20:40:10:8a: d8:f7:73:f3:36:c5:9e:b7:3b:23:57:4c:33:8e:62: ad:a9:ff:d6:7b:35:49:fa:1c:ee:92:79:5d:f6:9a: 2e:b9:93:8d:03:f4:57:43:b6:4c:d2:a4:0a:b5:41: e7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:49:D4:EE:E6:9A:C0:6C:B1:42:93:B6:14:FF:BD:85:CB:58:F4:F4 X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/3632957E441311EE8A03A472C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9ce0:6000::/35 Signature Algorithm: sha256WithRSAEncryption b7:53:8b:fc:c8:3d:4b:c6:2f:33:05:7b:ab:c4:95:08:67:cc: 35:78:95:e1:73:eb:42:0d:d5:7c:92:15:bd:27:fa:9d:52:32: fc:91:16:70:db:43:e6:11:f9:55:bc:8f:f0:3d:7e:a1:a2:4b: b8:26:35:8b:20:90:7b:19:e5:16:e5:0e:f3:a3:32:ff:58:6a: e5:22:6f:3a:13:0d:b3:2f:08:0e:e3:88:46:f9:a3:69:df:25: 60:be:e5:1a:e2:f7:73:d7:68:69:bf:20:bf:76:b1:44:97:df: 25:3e:d0:a3:e3:61:f3:0e:ae:56:ad:d6:7c:c9:fc:cd:5f:9b: b5:4a:d3:39:36:6a:fe:b7:de:0c:66:b4:b2:be:03:c5:45:ca: b7:5b:91:f8:b1:88:09:17:9d:a0:10:a3:45:69:08:92:67:04: 4e:79:1d:63:e6:cf:4c:1e:17:e3:89:26:8c:bd:21:5b:f9:3a: 45:81:2c:5a:10:7a:e3:d1:2a:11:bd:99:62:18:e7:80:23:70: f3:4c:9e:9b:4b:16:d7:cf:7b:27:5b:05:c7:2e:26:42:e2:c9: 33:e8:b1:be:06:c5:4f:c3:3e:3e:da:21:a3:12:8a:c6:4e:a9: 88:26:fd:4a:af:a4:1c:37:28:75:37:5d:94:32:7e:5f:47:45: 96:80:3d:44 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjMwODI2MTMyMDA4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU5ZmMwOC05ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiAu50l6FyY5ZzPwQtQG8eIHMrvjc2+KdOR718z7RXs5W/MdH4YlAsJlVb64 I/hfY/20UWBUFU3SbR7snD8d2pQCEcTqRRF3s0vHxwGr5PuG9Q6/nNPJtw0RViVm MmNPtMMsoHFU9B5+lZMIBQWYzjxCwiQTeER3bbiImjxZFrHukKQTsKa9AQrko9+R f4V5m2YpJb0bN/rGC8/HNJZu2r8/12B6KnwspvEukbHrGzkxwdw2FwY3f1uWQLSm KZTLdcmP1Gkol+XhlA5YSSBAEIrY93PzNsWetzsjV0wzjmKtqf/WezVJ+hzuknld 9pouuZONA/RXQ7ZM0qQKtUHnbQIDAQABo4IClzCCApMwHQYDVR0OBBYEFIZJ1O7m msBssUKTthT/vYXLWPT0MB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JBQzUvNDcwQTYyMDQxNTMwMTFFREJBQTNEMDI3QzRGOUFFMDIvMzYzMjk1N0U0 NDEzMTFFRThBMDNBNDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgUkAJzgYDANBgkqhkiG9w0BAQsFAAOCAQEAt1OL/Mg9S8Yv MwV7q8SVCGfMNXiV4XPrQg3VfJIVvSf6nVIy/JEWcNtD5hH5VbyP8D1+oaJLuCY1 iyCQexnlFuUO86My/1hq5SJvOhMNsy8IDuOIRvmjad8lYL7lGuL3c9doab8gv3ax RJffJT7Qo+Nh8w6uVq3WfMn8zV+btUrTOTZq/rfeDGa0sr4DxUXKt1uR+LGICRed oBCjRWkIkmcETnkdY+bPTB4X44kmjL0hW/k6RYEsWhB649EqEb2ZYhjngCNw80ye m0sW1897J1sFxy4mQuLJM+ixvgbFT8M+PtohoxKKxk6piCb9Sq+kHDcodTddlDJ+ X0dFloA9RA== -----END CERTIFICATE-----Generated at Sun May 19 05:48:51 2024 by rpki-client on console-fra.rpki-client.org