$ rpki-client -vvf rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa File: BFFAF880912711EE92065180C4F9AE02.roa (raw, json) Hash identifier: usBBmsqJ17R+qU+xUFVVD1nF5mXi8I/Ggw/RKZoDCbQ= Subject key identifier: CD:FC:BD:17:A3:2D:A5:E0:EF:30:07:D2:CD:E9:28:C8:26:8C:8A:02 Certificate issuer: /CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Certificate serial: 0257 Authority key identifier: 28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa Signing time: Sat 02 Dec 2023 15:30:41 +0000 ROA not before: Sat 02 Dec 2023 15:30:41 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151396 IP address blocks: 2400:6be0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Validity Not Before: Dec 2 15:30:41 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=656b4da0-feee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5e:16:ae:7e:56:7d:34:87:8e:7d:63:ec:1a: 1f:1f:bb:da:aa:2e:e2:a7:15:0c:64:e9:8b:0d:f5: 98:c2:ed:a8:22:bf:c8:c7:b5:99:8b:e6:ec:70:20: 81:81:28:65:1e:04:2c:83:7b:be:6f:99:81:72:c0: 7a:7f:3f:1a:c3:d4:16:27:86:8b:23:b6:8d:cd:09: 54:60:a5:f7:58:88:8b:af:a4:8d:80:4e:6e:c9:4a: b7:3f:10:b8:63:d8:1e:50:b0:a5:28:5e:d6:45:31: 86:57:11:df:b0:32:4a:e2:fa:55:59:2d:cd:2e:a3: 8d:c1:44:b4:83:be:11:15:0a:82:9b:2a:57:49:f1: a7:90:cd:9e:01:3c:2d:d6:95:df:49:cf:29:55:b8: ec:f4:6d:d9:ee:57:fc:66:0a:30:92:a5:b0:83:d7: 04:89:d2:7a:73:a1:f4:11:58:f6:b4:42:f7:7f:01: 30:8f:27:6d:e4:25:2c:fb:34:64:14:3d:8a:bc:65: 5a:28:66:87:3b:74:d9:05:0e:79:10:a3:94:b4:f0: 62:bf:ca:c4:f7:20:83:f8:6d:ff:f4:f9:56:e3:76: ac:12:e7:ff:fe:d7:89:ad:9b:b6:f1:5a:a6:7e:c0: 53:2c:fb:91:a1:19:06:3b:66:61:65:ef:a0:33:2b: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FC:BD:17:A3:2D:A5:E0:EF:30:07:D2:CD:E9:28:C8:26:8C:8A:02 X509v3 Authority Key Identifier: keyid:28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6be0::/36 Signature Algorithm: sha256WithRSAEncryption 89:57:29:75:2c:ea:b2:41:de:94:f3:80:48:6c:8f:cc:58:b9: 79:6e:30:ba:25:6b:45:50:ec:93:5a:1c:a3:70:be:12:b0:29: 04:19:a7:e8:ce:3b:27:d3:ae:2c:e8:72:72:b4:d8:aa:55:e4: c3:d1:30:60:fb:be:ba:fb:3c:04:d7:f5:a0:1d:9e:f1:99:07: d9:ff:89:67:95:ec:ac:4d:78:47:a1:ed:c3:f8:85:58:9f:d3: 46:1b:4f:40:37:e9:37:39:b5:92:49:c8:65:a7:a6:14:87:72: 47:75:e5:9b:b8:56:b6:dd:be:b5:a3:4e:fc:88:29:e3:f5:e5: 18:7f:bd:60:32:f3:02:fc:78:f2:61:ca:72:b4:f9:72:a2:b9: 07:2e:8a:94:18:03:5e:e7:84:bf:09:4d:6d:f1:e4:93:75:b1: 45:3b:d9:d0:bd:7e:00:fb:48:56:1f:98:b1:40:cc:bf:46:9c: 10:8a:23:ab:89:f1:ee:7a:da:95:6e:c8:c4:a0:49:45:f9:a5: f5:f0:28:95:b7:c5:ad:70:c9:93:61:d2:ae:20:66:bf:e0:5b: b7:51:47:44:f8:e0:b9:c5:2d:42:de:d2:4b:e1:91:56:96:76: 42:ab:87:65:b9:4f:d4:ed:db:09:4d:c0:e0:df:68:e1:aa:5a: 30:ae:46:ae -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAwQkYxMTAvBgNVBAUTKDI4RUExNTU3Qjk5RTJCMTI3NTUxQ0QzNDBDM0FBRjRD MEE2MTAwNkIwHhcNMjMxMjAyMTUzMDQxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNGRhMC1mZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV4Wrn5WfTSHjn1j7BofH7vaqi7ipxUMZOmLDfWYwu2oIr/Ix7WZi+bscCCB gShlHgQsg3u+b5mBcsB6fz8aw9QWJ4aLI7aNzQlUYKX3WIiLr6SNgE5uyUq3PxC4 Y9geULClKF7WRTGGVxHfsDJK4vpVWS3NLqONwUS0g74RFQqCmypXSfGnkM2eATwt 1pXfSc8pVbjs9G3Z7lf8ZgowkqWwg9cEidJ6c6H0EVj2tEL3fwEwjydt5CUs+zRk FD2KvGVaKGaHO3TZBQ55EKOUtPBiv8rE9yCD+G3/9PlW43asEuf//teJrZu28Vqm fsBTLPuRoRkGO2ZhZe+gMysbPwIDAQABo4IClzCCApMwHQYDVR0OBBYEFM38vRej LaXg7zAH0s3pKMgmjIoCMB8GA1UdIwQYMBaAFCjqFVe5nisSdVHNNAw6r0wKYQBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDBCRi9GRUExQ0Q2OEI2 RTMxMUVDQkU1OTk5MkRDNEY5QUUwMi9LT29WVjdtZUt4SjFVYzAwRERxdlRBcGhB R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPb1ZWN21lS3hKMVVjMDBERHF2VEFwaEFHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTAwQkYvRkVBMUNENjhCNkUzMTFFQ0JFNTk5OTJEQzRGOUFFMDIvQkZGQUY4ODA5 MTI3MTFFRTkyMDY1MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAGvgADANBgkqhkiG9w0BAQsFAAOCAQEAiVcpdSzqskHe lPOASGyPzFi5eW4wuiVrRVDsk1oco3C+ErApBBmn6M47J9OuLOhycrTYqlXkw9Ew YPu+uvs8BNf1oB2e8ZkH2f+JZ5XsrE14R6Htw/iFWJ/TRhtPQDfpNzm1kknIZaem FIdyR3Xlm7hWtt2+taNO/Igp4/XlGH+9YDLzAvx48mHKcrT5cqK5By6KlBgDXueE vwlNbfHkk3WxRTvZ0L1+APtIVh+YsUDMv0acEIojq4nx7nralW7IxKBJRfml9fAo lbfFrXDJk2HSriBmv+Bbt1FHRPjgucUtQt7SS+GRVpZ2QquHZblP1O3bCU3A4N9o 4apaMK5Grg== -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org