$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/B969078EB94B11EB8CFABC23C4F9AE02.roa File: B969078EB94B11EB8CFABC23C4F9AE02.roa (raw, json) Hash identifier: xyiL245zv3soOWNmnQ3CXKrm6KDo3m3M0+ER+m7nz6w= Subject key identifier: E3:4B:4D:FD:21:D4:28:41:48:2F:28:3F:D5:47:5C:CC:DD:57:46:E4 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 0F54 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/B969078EB94B11EB8CFABC23C4F9AE02.roa Signing time: Wed 16 Aug 2023 18:16:16 +0000 ROA not before: Wed 16 Aug 2023 18:16:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142282 IP address blocks: 2404:f4c0:fa80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3924 (0xf54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd1270-cf6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f6:a6:ce:5a:14:5a:3d:10:91:43:ce:e3:1f: 64:21:4c:aa:7d:60:2f:a0:bb:f8:be:ce:54:7b:51: 0e:bb:01:a4:4d:87:29:1c:5b:69:af:33:81:6d:76: cd:5a:98:67:40:fc:9c:2e:39:aa:56:a0:ec:0c:4e: 7f:56:16:a3:13:94:16:df:c0:f6:3f:a2:26:65:aa: 48:54:5e:59:7c:f7:5e:25:ab:17:b5:77:f5:87:15: 5a:17:0f:77:aa:b5:59:b3:28:d4:77:c5:76:f2:f4: 4f:ae:fa:7c:f7:0c:d1:d2:4f:e2:09:3c:e0:19:88: 0b:22:a6:37:7b:f3:a4:f2:46:37:2c:22:e7:39:b0: b3:7c:f6:6f:83:d7:4a:44:5b:5f:52:c1:05:dc:de: 69:4e:fa:99:78:b0:2e:db:6c:35:5a:5d:8c:c0:3f: 5c:a9:23:cb:14:b5:5e:6f:71:97:18:71:2f:f4:ab: c5:f5:54:09:9b:73:cd:d8:e2:cf:d7:97:ef:70:66: 3f:9a:2a:9a:ff:fd:75:b2:94:b0:c7:c1:41:5a:68: 90:a0:3b:d7:d9:0a:f8:98:ac:4a:4e:f1:0f:11:04: 61:88:bb:4d:30:1b:dd:a5:e3:48:52:60:47:56:b2: 9d:5f:a4:f1:c1:ff:23:eb:ec:6c:cd:65:04:02:ce: 10:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4B:4D:FD:21:D4:28:41:48:2F:28:3F:D5:47:5C:CC:DD:57:46:E4 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/B969078EB94B11EB8CFABC23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:fa80::/44 Signature Algorithm: sha256WithRSAEncryption 99:8e:d4:a2:1f:de:8b:3e:57:5f:81:88:e7:3d:0f:6a:da:22: cd:db:b8:62:1c:b7:26:67:8d:53:ab:62:c4:b8:2f:41:47:b4: 9c:06:01:d1:7d:ca:44:e9:18:05:89:72:ea:3a:cc:d6:54:77: ec:a8:ed:9b:24:28:20:d0:27:03:ec:80:00:a0:30:2e:20:6d: 09:68:ee:26:d6:a9:48:41:23:57:de:9b:c4:a7:30:aa:16:77: 05:0d:ba:c7:c8:4b:5d:8a:64:11:a2:5f:5c:bf:74:bb:f9:c3: 7a:09:da:14:f3:42:4e:e3:7b:8c:d6:36:4e:6c:b9:4a:b4:4c: d8:9b:1e:b5:94:47:d1:32:52:38:cd:4e:48:b3:6b:9a:04:54: cb:bb:71:10:de:da:af:ea:8b:13:1f:4e:6c:87:5d:c5:a5:5f: b1:47:07:79:cf:cf:58:10:4e:5f:e5:bc:47:51:6a:c3:cb:13: f8:1f:ff:c2:39:78:8f:83:59:91:8a:48:81:40:c1:cc:dc:0c: e3:4f:dd:90:cc:a9:93:11:5d:24:19:60:17:5c:7a:96:8f:95: 00:e1:ec:2b:e3:b1:e2:cc:83:8b:30:e9:96:3b:e5:f0:c7:b8: 91:82:83:dd:c4:2e:27:d4:81:eb:79:5c:10:76:9f:97:10:07: 66:36:ff:e3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjMwODE2MTgxNjE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMTI3MC1jZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7famzloUWj0QkUPO4x9kIUyqfWAvoLv4vs5Ue1EOuwGkTYcpHFtprzOBbXbN WphnQPycLjmqVqDsDE5/VhajE5QW38D2P6ImZapIVF5ZfPdeJasXtXf1hxVaFw93 qrVZsyjUd8V28vRPrvp89wzR0k/iCTzgGYgLIqY3e/Ok8kY3LCLnObCzfPZvg9dK RFtfUsEF3N5pTvqZeLAu22w1Wl2MwD9cqSPLFLVeb3GXGHEv9KvF9VQJm3PN2OLP 15fvcGY/miqa//11spSwx8FBWmiQoDvX2Qr4mKxKTvEPEQRhiLtNMBvdpeNIUmBH VrKdX6Txwf8j6+xszWUEAs4QYQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFONLTf0h 1ChBSC8oP9VHXMzdV0bkMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQjk2OTA3OEVC OTRCMTFFQjhDRkFCQzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA+oAwDQYJKoZIhvcNAQELBQADggEBAJmO1KIf3os+ V1+BiOc9D2raIs3buGIctyZnjVOrYsS4L0FHtJwGAdF9ykTpGAWJcuo6zNZUd+yo 7ZskKCDQJwPsgACgMC4gbQlo7ibWqUhBI1fem8SnMKoWdwUNusfIS12KZBGiX1y/ dLv5w3oJ2hTzQk7je4zWNk5suUq0TNibHrWUR9EyUjjNTkiza5oEVMu7cRDe2q/q ixMfTmyHXcWlX7FHB3nPz1gQTl/lvEdRasPLE/gf/8I5eI+DWZGKSIFAwczcDONP 3ZDMqZMRXSQZYBdcepaPlQDh7CvjseLMg4sw6ZY75fDHuJGCg93ELifUget5XBB2 n5cQB2Y2/+M= -----END CERTIFICATE-----Generated at Wed May 22 20:42:48 2024 by rpki-client on console-fra.rpki-client.org