$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa File: 7072DE7601C911EC9286E827C4F9AE02.roa (raw, json) Hash identifier: 1cpvBaCWQnQAxW3FRrDokeXtwUUmdJUoE+UfQzFNuqU= Subject key identifier: 64:7C:02:C9:67:E3:EA:81:88:87:0D:81:40:72:7E:8F:F1:35:D4:F2 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0CE6 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa Signing time: Sun 24 Sep 2023 18:36:34 +0000 ROA not before: Sun 24 Sep 2023 18:36:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 210872 IP address blocks: 2405:84c0:fdfc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 24 18:36:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651081b1-7edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:29:0d:f5:5f:97:72:82:40:50:18:aa:97: 63:16:a3:f8:49:af:7b:99:4a:3e:2e:99:cc:27:ae: 45:d9:5f:27:6b:5b:ea:01:91:d6:55:ce:bd:57:4d: 17:6e:02:e0:c7:55:b8:77:12:9f:9f:59:52:cf:3f: a3:86:4c:be:78:06:66:20:44:19:1f:a2:20:a8:45: cf:56:d7:18:f3:ec:4f:5f:2c:df:27:c7:e7:d4:fe: 52:23:27:e1:c7:b5:0d:e3:51:71:14:90:77:66:fb: d1:8c:91:fc:14:f2:2d:2a:23:91:3e:ea:f7:02:b2: d9:7d:0d:df:a9:7e:28:bc:05:33:0a:21:6c:4f:7c: a4:7b:d3:3c:1e:04:61:ba:95:49:c9:3f:cb:e5:54: 95:21:70:84:15:4f:28:7f:d9:eb:6c:f7:2c:e9:9d: 14:27:e8:3c:51:a9:45:1e:11:b4:a7:43:d2:34:75: 3c:a3:04:d8:5e:ab:b5:c6:c8:a4:84:88:0a:e1:e8: d4:69:56:84:88:18:17:3a:66:df:e7:af:35:8f:f0: 3c:72:34:a9:e9:c8:9c:36:22:e9:7c:7b:a5:5e:09: 97:f4:a7:d6:9d:f2:06:46:c2:04:d8:8e:37:ca:05: 8a:d9:0d:4a:39:93:4a:7c:14:54:6b:96:97:a1:c6: a8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7C:02:C9:67:E3:EA:81:88:87:0D:81:40:72:7E:8F:F1:35:D4:F2 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fdfc::/46 Signature Algorithm: sha256WithRSAEncryption 38:14:c3:8b:b9:b6:8d:4d:36:13:53:3e:5a:f7:42:b1:26:7f: 10:7e:dc:42:a9:31:2a:7b:6d:6e:c8:93:e0:5a:c3:af:55:12: 43:bf:71:f8:f6:41:91:47:39:d7:61:14:1e:dc:2f:ca:9e:10: 6f:0d:3e:2b:8a:b9:12:70:0f:15:db:a3:85:e0:94:28:c1:86: 18:82:17:84:ea:0a:2f:f6:11:48:47:95:27:ed:0d:e7:28:0f: 1b:40:b0:c0:0f:0e:41:a3:76:4b:e3:02:78:f6:30:c4:fb:20: 5e:57:52:32:42:d6:75:a1:c3:0f:7e:99:66:c5:cf:d3:c4:bc: 1b:8c:39:2c:24:f2:74:2d:7a:00:b5:db:8c:0b:58:c6:69:50: ab:47:73:c7:b9:b5:c6:96:09:f6:20:3b:3a:f9:25:be:c8:01: 68:1e:95:6b:6e:87:f8:96:20:3c:3b:af:3d:74:34:61:00:fb: ab:4b:3c:0f:76:59:1f:5c:e3:b9:01:5c:b0:08:5b:37:94:58: 54:81:82:e5:37:02:66:62:94:fd:03:08:69:38:d7:7e:8d:64: 8c:45:1b:b8:13:f4:bc:03:16:f6:b3:b1:f7:c7:62:46:cc:b6: 40:ec:fe:9c:47:9d:cc:67:55:d3:f3:b9:d5:93:f8:ad:7b:c8: 5e:88:56:9d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjMwOTI0MTgzNjM0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEwODFiMS03ZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8cpDfVfl3KCQFAYqpdjFqP4Sa97mUo+LpnMJ65F2V8na1vqAZHWVc69V00X bgLgx1W4dxKfn1lSzz+jhky+eAZmIEQZH6IgqEXPVtcY8+xPXyzfJ8fn1P5SIyfh x7UN41FxFJB3ZvvRjJH8FPItKiORPur3ArLZfQ3fqX4ovAUzCiFsT3yke9M8HgRh upVJyT/L5VSVIXCEFU8of9nrbPcs6Z0UJ+g8UalFHhG0p0PSNHU8owTYXqu1xsik hIgK4ejUaVaEiBgXOmbf5681j/A8cjSp6cicNiLpfHulXgmX9KfWnfIGRsIE2I43 ygWK2Q1KOZNKfBRUa5aXocaoTQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGR8Asln 4+qBiIcNgUByfo/xNdTyMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNzA3MkRFNzYw MUM5MTFFQzkyODZFODI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwIkBYTA/fwwDQYJKoZIhvcNAQELBQADggEBADgUw4u5to1N NhNTPlr3QrEmfxB+3EKpMSp7bW7Ik+Baw69VEkO/cfj2QZFHOddhFB7cL8qeEG8N PiuKuRJwDxXbo4XglCjBhhiCF4TqCi/2EUhHlSftDecoDxtAsMAPDkGjdkvjAnj2 MMT7IF5XUjJC1nWhww9+mWbFz9PEvBuMOSwk8nQtegC124wLWMZpUKtHc8e5tcaW CfYgOzr5Jb7IAWgelWtuh/iWIDw7rz10NGEA+6tLPA92WR9c47kBXLAIWzeUWFSB guU3AmZilP0DCGk4136NZIxFG7gT9LwDFvazsffHYkbMtkDs/pxHncxnVdPzudWT +K17yF6IVp0= -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org