$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa File: C2356A948FE811E98B967A66C4F9AE02.roa (raw, json) Hash identifier: GNxhtGxMnmiC+UkBLvn1SuqbaYeBUxWI95G1mP6k7nA= Subject key identifier: 68:FF:05:B6:25:ED:CC:F0:9A:38:9A:80:5D:D7:F9:F4:D3:B0:8A:3A Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 0F5D Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa Signing time: Wed 16 Aug 2023 18:16:24 +0000 ROA not before: Wed 16 Aug 2023 18:16:24 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 209300 IP address blocks: 2404:f4c0:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3933 (0xf5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:24 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd1277-4191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:80:22:ac:7c:71:d0:cc:c6:33:29:58:80: f5:22:f1:ef:37:c9:7c:e0:f2:24:27:78:d7:83:0c: b8:b6:f0:38:f7:84:f7:03:b6:a0:51:88:93:fd:bd: 1e:77:8a:d9:90:12:ac:e7:53:41:23:e1:8a:5a:92: 01:73:8e:60:32:c6:b6:5e:05:9c:3e:d7:59:53:ee: 84:cb:49:a1:ce:07:03:4b:ea:5c:36:4e:22:28:a7: 0a:cf:75:65:44:40:10:f1:8f:ea:2b:9f:c8:fe:bd: b3:5d:df:a4:95:d7:04:77:ae:db:9e:9e:cb:e6:43: 33:17:b1:06:ee:18:04:07:6c:20:21:9d:ba:53:07: 7d:d4:e7:7d:b7:a2:fa:cf:db:ae:b8:3c:8d:a6:ef: c8:36:29:aa:d1:1a:5b:e4:83:ba:5e:97:6b:b6:ae: 98:d0:47:fe:2f:00:0e:ab:16:07:00:f1:d5:2b:2b: 5b:1a:d2:06:3c:86:4e:05:91:44:2d:9b:f1:af:24: a1:8b:2c:bf:7b:ec:56:e0:11:ea:07:38:ac:11:63: 47:44:16:fa:92:31:b6:6e:f6:ea:56:2c:a1:66:33: 15:4a:e4:8c:ad:8f:32:c7:2b:b6:ad:57:e4:72:e3: 3a:19:4f:a9:33:e1:d9:91:d4:07:07:03:f5:06:e5: 46:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FF:05:B6:25:ED:CC:F0:9A:38:9A:80:5D:D7:F9:F4:D3:B0:8A:3A X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C2356A948FE811E98B967A66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f000::/44 Signature Algorithm: sha256WithRSAEncryption 19:7d:ac:85:f9:9a:3f:a3:c9:07:a7:57:48:df:1a:f5:58:4e: fa:80:61:7b:11:2b:56:40:ad:0e:bb:05:56:13:03:a2:2e:64: e8:12:18:d9:c1:c7:14:77:df:cb:58:14:2b:e0:9e:7a:d7:27: 62:d4:99:bb:56:fd:13:0d:de:73:4b:bf:36:34:9a:ca:5f:93: 5c:bf:56:90:c8:a4:0c:bc:07:bf:0e:a5:43:a5:1d:40:f5:e6: 47:3f:5e:b5:fa:e1:e6:2b:2a:2e:cb:5d:17:08:d9:82:0d:0d: 07:67:4c:00:68:a3:8d:0a:c8:64:6a:0b:95:26:ec:bb:d9:87: 08:c9:37:60:a2:8a:70:e9:3b:24:60:91:34:15:da:59:ed:16: b9:94:e8:c8:c5:ec:e7:1a:47:20:72:c2:49:bf:27:72:51:14: 59:c1:67:98:7c:63:5b:09:6b:bb:38:4d:a0:31:57:07:c4:eb: 15:0d:8d:bb:0d:93:6b:48:cf:ca:a6:1c:17:2e:1e:e0:65:a3: fb:a2:f2:f0:73:43:88:0c:08:03:26:1a:87:c4:7a:78:3c:3e: c6:9b:f4:b7:81:77:02:15:e9:56:b6:98:93:55:de:6e:ea:45: bb:d5:0d:12:2a:a2:63:7a:21:48:a4:3b:2e:14:e4:23:5f:16: 06:7f:09:ed -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjMwODE2MTgxNjI0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMTI3Ny00MTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VqAIqx8cdDMxjMpWID1IvHvN8l84PIkJ3jXgwy4tvA494T3A7agUYiT/b0e d4rZkBKs51NBI+GKWpIBc45gMsa2XgWcPtdZU+6Ey0mhzgcDS+pcNk4iKKcKz3Vl REAQ8Y/qK5/I/r2zXd+kldcEd67bnp7L5kMzF7EG7hgEB2wgIZ26Uwd91Od9t6L6 z9uuuDyNpu/INimq0Rpb5IO6Xpdrtq6Y0Ef+LwAOqxYHAPHVKytbGtIGPIZOBZFE LZvxryShiyy/e+xW4BHqBzisEWNHRBb6kjG2bvbqViyhZjMVSuSMrY8yxyu2rVfk cuM6GU+pM+HZkdQHBwP1BuVGxQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGj/BbYl 7czwmjiagF3X+fTTsIo6MB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzIzNTZBOTQ4 RkU4MTFFOThCOTY3QTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA8AAwDQYJKoZIhvcNAQELBQADggEBABl9rIX5mj+j yQenV0jfGvVYTvqAYXsRK1ZArQ67BVYTA6IuZOgSGNnBxxR338tYFCvgnnrXJ2LU mbtW/RMN3nNLvzY0mspfk1y/VpDIpAy8B78OpUOlHUD15kc/XrX64eYrKi7LXRcI 2YINDQdnTABoo40KyGRqC5Um7LvZhwjJN2CiinDpOyRgkTQV2lntFrmU6MjF7Oca RyBywkm/J3JRFFnBZ5h8Y1sJa7s4TaAxVwfE6xUNjbsNk2tIz8qmHBcuHuBlo/ui 8vBzQ4gMCAMmGofEeng8Psab9LeBdwIV6Va2mJNV3m7qRbvVDRIqomN6IUikOy4U 5CNfFgZ/Ce0= -----END CERTIFICATE-----Generated at Thu May 16 19:10:55 2024 by rpki-client on console-fra.rpki-client.org