$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa File: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (raw, json) Hash identifier: cfrP8N8FCUzi/lWLmEQz3q6QHultJoyGerNEVZ15ORY= Subject key identifier: F4:81:16:77:4E:EA:2C:51:C1:E9:56:F0:BB:0E:86:C7:5A:24:9E:88 Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 08 Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa Signing time: Wed 10 Jan 2024 07:35:24 +0000 ROA not before: Wed 10 Jan 2024 07:35:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152322 IP address blocks: 2001:df3:5ac0::/49 maxlen: 49 2001:df3:5ac0:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: Jan 10 07:35:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=659e48bb-3a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:9e:95:5d:37:bc:50:23:4f:87:ce:9d:ed: fc:c6:9e:2c:81:ff:f5:35:40:9a:b5:ab:61:2e:3f: 72:21:4f:08:7f:d0:eb:fb:e9:61:bb:96:d6:43:f1: fe:21:c1:19:a1:64:09:7b:a5:b3:02:28:4a:1f:d7: 7c:03:d2:06:e1:d1:30:a4:fd:0c:4d:af:52:c0:14: f7:d2:92:b5:24:23:93:96:7d:ae:6e:6f:56:e6:c7: d4:2d:3e:2a:f2:0f:8e:62:f5:1a:d0:c7:93:3f:61: b2:e8:21:38:88:a3:92:29:42:45:23:a3:1e:d8:51: a8:3c:39:85:f5:8f:13:42:87:63:34:eb:54:3d:a2: 82:ce:61:8d:65:7e:e6:b9:50:44:22:41:7f:e8:a7: 9f:a4:bc:f0:90:f8:19:b0:75:5c:81:bf:15:4c:87: b3:29:e2:5f:75:d0:71:af:c5:31:fa:07:26:0b:e0: 3f:e7:b1:c2:0f:29:79:f5:4a:16:42:a3:c1:8f:3e: 9a:2d:bd:0d:93:58:16:31:21:26:c5:a7:64:6a:ef: 42:9e:5f:f7:cc:e5:74:6f:57:b7:50:79:a9:6e:49: d4:92:6e:3e:e2:72:4f:2a:46:64:8d:6e:70:94:78: 90:c9:04:b8:44:38:63:9a:e7:e1:86:8b:f5:45:2e: f2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:81:16:77:4E:EA:2C:51:C1:E9:56:F0:BB:0E:86:C7:5A:24:9E:88 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5ac0::/48 Signature Algorithm: sha256WithRSAEncryption a2:06:ef:6f:96:64:b4:73:d4:8f:b9:68:2d:25:ca:28:35:9a: 5e:a6:24:89:1e:11:dd:a1:3a:66:99:9b:75:5e:27:35:91:69: 17:92:2b:f0:b4:ab:3c:48:ac:7d:17:b1:e3:19:fe:da:af:2a: c0:a9:30:52:3a:ad:42:a4:42:9d:a7:9c:ee:97:ca:91:a2:52: 2b:61:09:cf:1d:f5:ee:d4:58:d9:f8:74:14:54:6e:93:04:54: 6b:0b:a2:52:1f:1d:79:29:51:3b:a3:a5:5c:70:69:26:98:10: 62:c9:07:b2:e4:01:5a:e1:66:8a:48:8f:cf:fb:15:45:fe:d5: 23:25:9f:6d:b5:db:25:65:36:35:74:4c:18:cb:7c:d7:f4:d1: ef:15:74:bf:a3:bd:5d:ae:f7:68:a0:20:77:15:5e:66:04:df: 12:f3:96:75:fa:43:6a:45:b3:d6:fc:01:60:e2:0e:6a:ab:31: c5:8c:b2:9f:2a:0f:d7:10:20:62:fa:bf:92:57:69:58:8d:fa: ad:9d:92:b4:4f:25:ab:3c:4c:1a:40:59:b7:9c:0c:ea:de:bf: 9c:9f:34:e1:7d:95:2e:7a:07:b6:5f:cb:24:df:17:6a:8c:ba: fd:f6:a6:db:a7:5e:fa:2c:b1:02:3d:27:c8:21:e4:84:72:a1: e7:1b:47:9c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NEIzOTExMC8GA1UEBRMoOUNDODhBODZEMEIzN0VDRUU4RDU3NjU3RUY5OTc4OTUz MjY4MENERjAeFw0yNDAxMTAwNzM1MjRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWU0OGJiLTNhNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+TZ6VXTe8UCNPh86d7fzGniyB//U1QJq1q2EuP3IhTwh/0Ov76WG7ltZD8f4h wRmhZAl7pbMCKEof13wD0gbh0TCk/QxNr1LAFPfSkrUkI5OWfa5ub1bmx9QtPiry D45i9RrQx5M/YbLoITiIo5IpQkUjox7YUag8OYX1jxNCh2M061Q9ooLOYY1lfua5 UEQiQX/op5+kvPCQ+BmwdVyBvxVMh7Mp4l910HGvxTH6ByYL4D/nscIPKXn1ShZC o8GPPpotvQ2TWBYxISbFp2Rq70KeX/fM5XRvV7dQealuSdSSbj7ick8qRmSNbnCU eJDJBLhEOGOa5+GGi/VFLvJ1AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU9IEWd07q LFHB6Vbwuw6Gx1oknogwHwYDVR0jBBgwFoAUnMiKhtCzfs7o1XZX75l4lTJoDN8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0QjM5L0ZFRjU0OUU4QUYx NjExRUU4QzQ4QTc0REM0RjlBRTAyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0RO OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk1pS2h0Q3pmczdvMVhaWDc1bDRsVEpvRE44LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIzOS9GRUY1NDlFOEFGMTYxMUVFOEM0OEE3NERDNEY5QUUwMi9BQTc3OEY0Q0FG OEExMUVFQjE2N0RCNjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNawDANBgkqhkiG9w0BAQsFAAOCAQEAogbvb5ZktHPU j7loLSXKKDWaXqYkiR4R3aE6ZpmbdV4nNZFpF5Ir8LSrPEisfRex4xn+2q8qwKkw UjqtQqRCnaec7pfKkaJSK2EJzx317tRY2fh0FFRukwRUawuiUh8deSlRO6OlXHBp JpgQYskHsuQBWuFmikiPz/sVRf7VIyWfbbXbJWU2NXRMGMt81/TR7xV0v6O9Xa73 aKAgdxVeZgTfEvOWdfpDakWz1vwBYOIOaqsxxYyynyoP1xAgYvq/kldpWI36rZ2S tE8lqzxMGkBZt5wM6t6/nJ804X2VLnoHtl/LJN8Xaoy6/fam26de+iyxAj0nyCHk hHKh5xtHnA== -----END CERTIFICATE-----Generated at Fri May 31 10:42:50 2024 by rpki-client on console-fra.rpki-client.org