$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa File: 54FB2C8CD61711EEB983D919C4F9AE02.roa (raw, json) Hash identifier: yKcLsbx1IuVp0GKhmlBOaq3IPS7ZvYSWgHFOkDGnv+Y= Subject key identifier: BA:A4:E3:6E:A6:4E:9C:FA:8C:51:A3:64:1B:D7:1F:8C:2C:F9:F2:D3 Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: B6 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa Signing time: Wed 28 Feb 2024 08:56:59 +0000 ROA not before: Wed 28 Feb 2024 08:56:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135381 IP address blocks: 2403:f040:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Feb 28 08:56:59 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65def55b-e811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c5:19:68:a5:66:86:bd:ca:a7:3f:dc:46:fc: 34:9d:2c:d4:99:2b:bf:1a:99:3f:5b:b6:40:c4:65: cf:d7:aa:1d:dc:9f:e9:05:33:96:0d:2b:61:97:df: ee:de:22:3a:ed:9b:63:7d:c9:98:3b:42:e9:35:84: e5:cb:a2:4c:a5:1c:84:71:89:e8:ae:25:22:6c:46: 83:8b:38:53:8e:19:30:77:0d:81:b3:be:81:47:45: 50:3b:91:18:72:16:45:ab:d4:61:92:d8:6f:8c:2a: ed:4a:b5:c6:a8:4e:1b:57:1b:0d:13:ce:82:8a:15: cd:83:db:83:1e:79:45:3d:af:a7:18:89:01:26:d1: ef:80:d7:66:aa:2b:ca:ac:1f:8e:3f:f2:af:52:89: 4f:a9:ed:91:c0:f0:d0:54:a1:da:c4:67:a5:7f:28: 69:db:bd:cd:38:a1:b9:54:84:44:e1:51:df:b8:6f: 66:d8:fd:98:04:6f:b9:db:e1:fe:68:58:98:67:61: eb:47:2c:0d:72:14:d8:8f:11:13:66:46:c1:3f:c6: ed:ca:b2:b4:b2:83:6d:6b:cc:00:2e:56:ce:75:48: 9c:7b:57:56:d2:df:83:6f:a8:09:33:b5:43:90:07: 12:bd:d0:43:40:55:8a:f5:8a:13:fa:1c:70:ae:5c: db:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A4:E3:6E:A6:4E:9C:FA:8C:51:A3:64:1B:D7:1F:8C:2C:F9:F2:D3 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/54FB2C8CD61711EEB983D919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:f040:13::/48 Signature Algorithm: sha256WithRSAEncryption 5a:9f:28:4e:f9:7e:e6:56:82:5c:1f:73:b7:b9:64:ce:85:02: c1:a6:36:88:4e:9e:7a:af:08:cc:36:6d:b1:51:2d:00:67:93: 10:64:95:fe:51:a1:48:95:93:2d:8e:38:f7:17:f1:b4:1b:98: a3:e0:99:8a:08:4e:03:52:3f:f5:a3:3e:f7:df:b9:19:e6:8b: 25:1a:a2:58:4a:35:fa:38:7e:85:eb:98:c6:71:5e:4f:f1:29: b0:7c:71:7b:b0:d3:8b:53:8d:47:e1:1f:b4:37:8c:cd:ac:2a: a7:3b:f7:ab:23:0d:fa:56:7c:1f:9f:ad:03:97:13:ca:88:65: 54:21:c7:4a:28:ec:d4:b7:66:eb:c8:29:79:a3:1c:01:43:99: dd:ce:0e:7f:30:21:9d:19:36:a0:56:88:c0:58:6d:7d:d7:ad: f0:35:80:48:35:bf:a7:17:a2:a2:91:4d:83:8b:f5:2e:29:8e: 9d:ff:02:ff:f3:e4:ed:f2:71:e7:b0:78:3b:30:0b:cd:b9:bf: b9:10:de:72:ab:df:f7:4a:6a:67:f0:8f:31:1b:8b:22:c8:20: 59:97:b6:4e:f0:37:80:df:ad:9a:27:77:6e:d3:53:50:de:62: c7:31:02:be:61:b0:f5:59:48:86:94:73:db:c0:a7:91:3d:2c: 79:5c:08:3d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjQwMjI4MDg1NjU5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRlZjU1Yi1lODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8UZaKVmhr3Kpz/cRvw0nSzUmSu/Gpk/W7ZAxGXP16od3J/pBTOWDSthl9/u 3iI67ZtjfcmYO0LpNYTly6JMpRyEcYnoriUibEaDizhTjhkwdw2Bs76BR0VQO5EY chZFq9RhkthvjCrtSrXGqE4bVxsNE86CihXNg9uDHnlFPa+nGIkBJtHvgNdmqivK rB+OP/KvUolPqe2RwPDQVKHaxGelfyhp273NOKG5VIRE4VHfuG9m2P2YBG+52+H+ aFiYZ2HrRywNchTYjxETZkbBP8btyrK0soNta8wALlbOdUice1dW0t+Db6gJM7VD kAcSvdBDQFWK9YoT+hxwrlzbSQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLqk426m Tpz6jFGjZBvXH4ws+fLTMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU4QkUvN0M3RkIyRkVDMjE5MTFFRDgwMjU2RjRFQzRGOUFFMDIvNTRGQjJDOENE NjE3MTFFRUI5ODNEOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA/BAABMwDQYJKoZIhvcNAQELBQADggEBAFqfKE75fuZW glwfc7e5ZM6FAsGmNohOnnqvCMw2bbFRLQBnkxBklf5RoUiVky2OOPcX8bQbmKPg mYoITgNSP/WjPvffuRnmiyUaolhKNfo4foXrmMZxXk/xKbB8cXuw04tTjUfhH7Q3 jM2sKqc796sjDfpWfB+frQOXE8qIZVQhx0oo7NS3ZuvIKXmjHAFDmd3ODn8wIZ0Z NqBWiMBYbX3XrfA1gEg1v6cXoqKRTYOL9S4pjp3/Av/z5O3yceeweDswC825v7kQ 3nKr3/dKamfwjzEbiyLIIFmXtk7wN4DfrZond27TU1DeYscxAr5hsPVZSIaUc9vA p5E9LHlcCD0= -----END CERTIFICATE-----Generated at Sun May 19 08:25:05 2024 by rpki-client on console-ams.rpki-client.org