$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa File: 45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa (raw, json) Hash identifier: P/dwuYuq/RjQ4OTqqJrvPuQ932drfrvNeWMoPtPcM6I= Subject key identifier: FA:B1:04:BA:BA:84:F8:03:B5:7B:86:46:A8:C0:F3:99:89:5F:BA:5D Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0CED Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa Signing time: Sun 24 Sep 2023 18:36:41 +0000 ROA not before: Sun 24 Sep 2023 18:36:40 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9516 IP address blocks: 2405:84c0:ff20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3309 (0xced) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 24 18:36:40 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651081b8-c9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5a:61:36:13:3d:b8:35:4d:89:17:52:57:74: dd:f7:da:72:eb:18:4e:13:8e:bb:db:0c:c4:87:c5: a3:51:0d:9c:5c:11:9e:b6:7e:7a:a8:92:b3:30:4d: 65:a0:3e:d0:2b:c3:07:46:52:56:7a:39:64:da:78: 65:64:18:b9:4c:49:e9:51:5a:af:a8:a9:2a:65:b5: 50:05:4b:3d:73:96:6b:d5:c0:8e:89:4d:36:7a:bc: 1a:ad:0b:b6:04:4d:26:30:54:61:a1:71:92:98:74: 82:69:9c:b6:19:d8:db:42:1b:12:4c:c0:d8:14:35: 07:2f:4e:aa:77:ec:45:5e:6e:5a:1a:4f:37:51:95: 23:29:f3:cf:cd:f0:e0:53:74:46:e0:1e:8e:c7:eb: 4c:ac:fa:85:b0:0b:62:d2:fd:89:1f:40:4d:eb:91: bc:66:0c:9e:43:41:d7:32:a7:81:27:75:8d:59:55: b9:5e:99:48:dc:43:86:1a:88:70:6d:f1:a3:41:70: ba:db:1c:23:78:0f:47:71:cb:14:06:d9:b1:b3:c9: 64:c1:3b:c1:73:39:03:67:fc:43:c3:a7:44:70:0e: e2:89:6e:1f:10:0c:07:27:cf:ea:f9:8a:21:1c:2d: 69:66:b1:b3:a4:94:1b:56:a2:95:b5:6a:df:4c:a7: 12:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B1:04:BA:BA:84:F8:03:B5:7B:86:46:A8:C0:F3:99:89:5F:BA:5D X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 75:87:2c:6d:c1:23:7d:de:27:12:5c:2a:50:94:1a:69:c9:a3: dc:3b:35:4f:08:98:3a:53:16:30:43:b9:1b:0b:19:a3:6e:0d: b9:63:7d:f7:9f:d6:ef:f0:3a:3c:e7:ee:30:77:1e:c2:6b:6f: 1d:c5:a7:a0:57:5e:69:cc:2a:91:70:94:e3:48:74:22:ff:cf: 71:60:0d:14:11:3f:d7:f3:0e:82:af:3d:0a:1d:72:c1:eb:05: a0:ea:0a:07:f1:d1:f8:23:90:38:ec:9f:0a:ff:67:f4:fd:30: 7c:6f:0c:83:17:2c:b5:79:7c:42:46:3f:c7:e0:1a:75:a0:6c: 19:00:b7:54:73:cf:e1:e5:8e:5b:94:bc:91:a1:3d:0b:a6:2c: 43:74:b4:55:52:ff:3e:8e:24:f9:6b:44:a2:36:66:b4:1f:04: c5:32:26:7d:8d:78:76:b9:a3:33:25:c5:ad:21:dd:80:dc:3d: 60:dd:fd:8d:13:c3:89:c1:9b:ef:5e:c0:73:20:1a:7a:6e:12: b1:c5:44:1d:93:a1:52:dc:ad:46:bf:d9:69:73:22:2d:49:e1: 03:20:17:50:80:dd:ec:a0:2e:04:60:53:77:3b:c5:42:5b:d7: 48:a0:48:b6:1c:08:5e:5f:53:b2:a3:87:f0:4a:48:4b:98:6b: f6:58:f2:49 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjMwOTI0MTgzNjQwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEwODFiOC1jOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1phNhM9uDVNiRdSV3Td99py6xhOE4672wzEh8WjUQ2cXBGetn56qJKzME1l oD7QK8MHRlJWejlk2nhlZBi5TEnpUVqvqKkqZbVQBUs9c5Zr1cCOiU02erwarQu2 BE0mMFRhoXGSmHSCaZy2GdjbQhsSTMDYFDUHL06qd+xFXm5aGk83UZUjKfPPzfDg U3RG4B6Ox+tMrPqFsAti0v2JH0BN65G8ZgyeQ0HXMqeBJ3WNWVW5XplI3EOGGohw bfGjQXC62xwjeA9HccsUBtmxs8lkwTvBczkDZ/xDw6dEcA7iiW4fEAwHJ8/q+Yoh HC1pZrGzpJQbVqKVtWrfTKcSOQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPqxBLq6 hPgDtXuGRqjA85mJX7pdMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNDVGNEREQTI2 NUNGMTFFQjlFM0NGQTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBAHWHLG3BI33e JxJcKlCUGmnJo9w7NU8ImDpTFjBDuRsLGaNuDbljffef1u/wOjzn7jB3HsJrbx3F p6BXXmnMKpFwlONIdCL/z3FgDRQRP9fzDoKvPQodcsHrBaDqCgfx0fgjkDjsnwr/ Z/T9MHxvDIMXLLV5fEJGP8fgGnWgbBkAt1Rzz+HljluUvJGhPQumLEN0tFVS/z6O JPlrRKI2ZrQfBMUyJn2NeHa5ozMlxa0h3YDcPWDd/Y0Tw4nBm+9ewHMgGnpuErHF RB2ToVLcrUa/2WlzIi1J4QMgF1CA3eygLgRgU3c7xUJb10igSLYcCF5fU7Kjh/BK SEuYa/ZY8kk= -----END CERTIFICATE-----Generated at Thu May 16 19:49:59 2024 by rpki-client on console-fra.rpki-client.org