$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa File: 3590603EEA9911EDA6A36E18C4F9AE02.roa (raw, json) Hash identifier: uJNCEpY3N5D9PZUEznOLtgfDSFjB7pvoPkUdCD232AQ= Subject key identifier: 46:6B:5E:5B:C0:C6:E8:DC:19:B1:46:A5:00:F3:62:25:E1:84:97:31 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 2FC5 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa Signing time: Tue 30 Apr 2024 15:52:54 +0000 ROA not before: Tue 30 Apr 2024 15:52:54 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140911 IP address blocks: 2405:2000:902::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12229 (0x2fc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:54 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663113d6-a132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:83:80:32:d2:fb:96:27:50:26:2c:66:eb:94: 2e:9a:d7:07:d7:f5:ba:c6:b3:c6:99:1b:09:8e:df: a4:21:c1:61:7b:eb:9e:4b:15:15:dd:ae:27:30:21: 16:96:72:e1:d9:13:fe:12:ec:76:f7:0d:3b:91:ca: de:34:b6:8d:84:3a:77:ae:e8:9d:a0:10:08:c4:f0: 7f:a7:30:9f:25:17:58:4a:55:cc:07:70:29:43:12: 73:4f:69:dc:93:e0:49:b9:a9:9b:a9:5a:af:a8:de: 46:11:dc:50:70:01:6c:cc:f2:6c:20:37:8b:fe:68: 4b:54:f9:6a:cb:8d:b6:22:f3:3d:7b:85:e5:82:34: 75:26:db:f7:eb:b2:93:f6:3e:44:a0:5e:93:c2:28: 30:96:b3:8d:04:ff:7f:b5:cd:6d:dd:bb:6a:2b:a5: d3:51:83:5b:29:d0:17:0c:b9:61:b4:1b:46:67:87: 79:0b:16:81:4f:bb:ff:6e:93:a1:68:a0:cd:f4:28: 97:5a:2f:99:b4:1b:93:f4:d0:b4:67:54:cc:22:b0: 56:20:51:be:7f:1a:06:82:97:fd:a8:2c:70:ca:f8: 7b:c5:da:b8:3a:26:62:78:41:27:91:99:53:82:58: 5d:aa:58:1b:03:7a:bd:c4:25:d2:26:59:b1:c2:4b: 54:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6B:5E:5B:C0:C6:E8:DC:19:B1:46:A5:00:F3:62:25:E1:84:97:31 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2000:902::/48 Signature Algorithm: sha256WithRSAEncryption 34:5f:2d:d7:a8:7d:33:1f:b2:35:0f:10:a8:00:e1:30:c3:35: 9c:be:1b:d0:3e:b0:cb:16:72:5d:04:00:57:5f:ea:a7:4b:63: df:19:ab:18:d7:85:59:24:c3:12:80:1c:9e:82:85:40:6e:49: a8:e6:68:25:0a:ba:ef:da:19:fa:28:64:ca:b2:93:e6:45:5e: 3a:a3:be:8e:df:2a:16:c6:17:38:11:34:17:65:f2:16:8f:7c: 5a:21:34:59:e7:25:ca:60:b7:46:1f:88:95:a8:17:23:c2:a9: 8f:a5:b1:91:0b:78:f1:07:c6:e1:2e:7e:2b:e0:22:2b:6c:57: 65:9b:1c:8b:6f:49:6e:9e:29:91:4d:cd:2f:08:85:02:85:7d: 68:f8:3c:3d:ed:59:7c:22:9c:74:c7:eb:06:f2:ec:32:68:29: 72:da:cd:db:b8:88:c4:bc:07:94:f3:2b:3f:fd:1a:03:6d:9b: 1b:aa:b3:b9:72:59:89:5f:63:d5:95:8e:c3:28:c5:1c:df:00: eb:e8:85:4d:14:5c:92:55:f3:58:df:9a:db:d0:56:48:3f:ee: 09:f4:fa:b1:06:04:ec:22:83:2a:ed:d5:8b:dc:86:7f:74:9e: 3b:f8:7e:28:df:fd:b3:10:85:cd:cd:a7:a3:d6:73:6c:bc:59: 95:33:b1:c6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICL8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjQwNDMwMTU1MjU0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMTNkNi1hMTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YOAMtL7lidQJixm65QumtcH1/W6xrPGmRsJjt+kIcFhe+ueSxUV3a4nMCEW lnLh2RP+Eux29w07kcreNLaNhDp3ruidoBAIxPB/pzCfJRdYSlXMB3ApQxJzT2nc k+BJuambqVqvqN5GEdxQcAFszPJsIDeL/mhLVPlqy422IvM9e4XlgjR1Jtv367KT 9j5EoF6TwigwlrONBP9/tc1t3btqK6XTUYNbKdAXDLlhtBtGZ4d5CxaBT7v/bpOh aKDN9CiXWi+ZtBuT9NC0Z1TMIrBWIFG+fxoGgpf9qCxwyvh7xdq4OiZieEEnkZlT glhdqlgbA3q9xCXSJlmxwktUawIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEZrXlvA xujcGbFGpQDzYiXhhJcxMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMzU5MDYwM0VF QTk5MTFFREE2QTM2RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBSAACQIwDQYJKoZIhvcNAQELBQADggEBADRfLdeofTMf sjUPEKgA4TDDNZy+G9A+sMsWcl0EAFdf6qdLY98ZqxjXhVkkwxKAHJ6ChUBuSajm aCUKuu/aGfooZMqyk+ZFXjqjvo7fKhbGFzgRNBdl8haPfFohNFnnJcpgt0YfiJWo FyPCqY+lsZELePEHxuEufivgIitsV2WbHItvSW6eKZFNzS8IhQKFfWj4PD3tWXwi nHTH6wby7DJoKXLazdu4iMS8B5TzKz/9GgNtmxuqs7lyWYlfY9WVjsMoxRzfAOvo hU0UXJJV81jfmtvQVkg/7gn0+rEGBOwigyrt1Yvchn90njv4fijf/bMQhc3Np6PW c2y8WZUzscY= -----END CERTIFICATE-----Generated at Fri May 31 16:41:37 2024 by rpki-client on console-ams.rpki-client.org