$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa File: C4A85FD48FE811E98B967A66C4F9AE02.roa (raw, json) Hash identifier: DmzaO72DSmzPNQVFym/EVTnQP4L6rePeT6KQTHPm75o= Subject key identifier: 48:EA:04:A1:63:21:61:8A:51:43:8A:47:E4:D5:4C:23:5D:D3:A6:3E Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 0F63 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa Signing time: Wed 16 Aug 2023 18:16:29 +0000 ROA not before: Wed 16 Aug 2023 18:16:29 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 24239 IP address blocks: 2404:f4c0:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3939 (0xf63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:29 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd127d-7bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6c:aa:d4:a4:e8:83:fb:73:7e:2b:8c:c1:de: 4f:ad:3b:9e:62:90:7d:e4:a2:54:d1:71:00:ce:39: bb:33:05:2f:31:32:b9:70:22:d4:6f:d9:14:79:65: 52:ed:5d:34:bc:a5:e9:4e:32:a8:49:05:53:65:1b: 8f:c3:60:35:81:be:8e:53:fe:3f:6a:af:e4:6d:f6: aa:1e:9a:e6:7c:90:6e:59:d7:38:d3:a2:d5:a9:6f: 6f:cc:a7:50:91:22:f9:e1:42:c1:d2:dc:e1:50:62: 44:85:ea:e6:24:40:7c:27:6e:54:09:fd:d5:98:bc: 40:37:b4:b5:8a:83:c5:0b:67:ff:62:67:df:7b:bd: 6a:c2:37:03:ff:78:54:53:d5:cb:d0:3b:97:04:a5: 0a:19:c5:b9:91:39:47:b6:1b:a7:fa:9f:17:6a:a0: 76:94:e3:08:1c:ff:e4:e6:0e:1c:ef:31:7e:ac:b1: f7:c4:81:cc:2f:37:f5:a0:aa:6f:71:15:93:57:d9: ac:02:4a:2b:02:a2:3f:e4:33:74:ef:15:df:5e:f7: e5:fb:8c:57:dc:f5:54:05:c1:1e:8d:53:02:9f:47: d2:bd:e9:7a:a8:8f:95:a0:f8:39:d3:35:be:a0:5e: a9:92:58:1c:53:83:50:58:72:fd:c6:2b:2b:d3:fb: 05:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:EA:04:A1:63:21:61:8A:51:43:8A:47:E4:D5:4C:23:5D:D3:A6:3E X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f000::/44 Signature Algorithm: sha256WithRSAEncryption 47:c6:8d:90:ef:4f:0c:71:32:b6:af:a0:e9:c6:13:ff:4a:30: 95:14:d9:cd:70:6c:ab:ce:35:da:e8:3a:81:11:c5:45:01:bc: dc:4c:ab:3f:b7:12:3a:be:27:c0:41:30:77:90:d4:52:d0:a6: d1:d6:4b:3f:50:ef:66:b2:75:cd:b0:1c:ff:1a:ec:49:0e:4b: 6d:d9:64:97:ca:71:39:db:3e:21:e3:c4:f8:8b:74:d4:2d:c3: 4d:55:fd:bb:63:7b:ba:82:5b:47:50:04:b4:44:84:6a:29:1c: 76:10:1c:d5:00:13:63:94:da:f1:6c:85:cc:e6:f9:c5:23:be: e1:46:b3:37:b1:88:3c:b5:8c:26:bc:2b:06:36:3a:58:c9:67: ff:77:4a:ca:a7:3a:c3:86:fe:fe:0e:f3:c9:57:17:ff:75:90: 18:fb:1c:26:f8:9b:1e:8f:50:f8:26:29:4b:0a:be:54:52:57: cc:a3:92:28:b7:4b:0d:ae:31:ca:cb:10:ca:29:de:8d:25:ad: e3:09:81:5a:d3:67:f3:c2:56:fa:f7:8d:58:4b:77:e8:ec:71: 9a:78:41:3b:2f:02:f6:fc:0b:2f:cb:7e:ef:18:9e:77:66:e7: 9c:d3:02:f6:7d:b5:bb:24:32:ee:11:0d:4c:a1:87:e9:ac:d8: 9d:c3:75:c0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjMwODE2MTgxNjI5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMTI3ZC03YmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8myq1KTog/tzfiuMwd5PrTueYpB95KJU0XEAzjm7MwUvMTK5cCLUb9kUeWVS 7V00vKXpTjKoSQVTZRuPw2A1gb6OU/4/aq/kbfaqHprmfJBuWdc406LVqW9vzKdQ kSL54ULB0tzhUGJEhermJEB8J25UCf3VmLxAN7S1ioPFC2f/Ymffe71qwjcD/3hU U9XL0DuXBKUKGcW5kTlHthun+p8XaqB2lOMIHP/k5g4c7zF+rLH3xIHMLzf1oKpv cRWTV9msAkorAqI/5DN07xXfXvfl+4xX3PVUBcEejVMCn0fSvel6qI+VoPg50zW+ oF6pklgcU4NQWHL9xisr0/sFRQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEjqBKFj IWGKUUOKR+TVTCNd06Y+MB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzRBODVGRDQ4 RkU4MTFFOThCOTY3QTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA8AAwDQYJKoZIhvcNAQELBQADggEBAEfGjZDvTwxx MravoOnGE/9KMJUU2c1wbKvONdroOoERxUUBvNxMqz+3Ejq+J8BBMHeQ1FLQptHW Sz9Q72aydc2wHP8a7EkOS23ZZJfKcTnbPiHjxPiLdNQtw01V/btje7qCW0dQBLRE hGopHHYQHNUAE2OU2vFshczm+cUjvuFGszexiDy1jCa8KwY2OljJZ/93SsqnOsOG /v4O88lXF/91kBj7HCb4mx6PUPgmKUsKvlRSV8yjkii3Sw2uMcrLEMop3o0lreMJ gVrTZ/PCVvr3jVhLd+jscZp4QTsvAvb8Cy/Lfu8Ynndm55zTAvZ9tbskMu4RDUyh h+ms2J3DdcA= -----END CERTIFICATE-----Generated at Wed May 22 20:08:10 2024 by rpki-client on console-ams.rpki-client.org