$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa File: 81CDB96A53F111EB85FBFA19C4F9AE02.roa (raw, json) Hash identifier: pg2Ci6tq/1wl5du0uAjYwDomOMSkJdR56ApR/7bheNo= Subject key identifier: E6:B8:9F:C5:A0:D3:25:AF:D5:47:59:AC:4D:E7:DD:92:86:69:1E:B9 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0CEC Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa Signing time: Sun 24 Sep 2023 18:36:40 +0000 ROA not before: Sun 24 Sep 2023 18:36:40 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 59598 IP address blocks: 2405:84c0:ff20::/44 maxlen: 44 2405:84c0:ff20::/48 maxlen: 48 2405:84c0:ff21::/48 maxlen: 48 2405:84c0:ff22::/48 maxlen: 48 2405:84c0:ff23::/48 maxlen: 48 2405:84c0:ff24::/48 maxlen: 48 2405:84c0:ff25::/48 maxlen: 48 2405:84c0:ff26::/48 maxlen: 48 2405:84c0:ff27::/48 maxlen: 48 2405:84c0:ff28::/48 maxlen: 48 2405:84c0:ff29::/48 maxlen: 48 2405:84c0:ff2a::/48 maxlen: 48 2405:84c0:ff2b::/48 maxlen: 48 2405:84c0:ff2c::/48 maxlen: 48 2405:84c0:ff2d::/48 maxlen: 48 2405:84c0:ff2e::/48 maxlen: 48 2405:84c0:ff2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 24 18:36:40 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651081b7-2cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0b:5a:6f:ab:38:19:b9:33:9d:fe:ca:be:11: cb:2a:c1:9a:bb:4d:2e:7c:3b:9c:46:2b:a2:87:47: 22:5e:34:44:74:71:ae:4d:ee:08:22:6d:11:33:e7: b5:4c:73:f6:f9:1c:5e:33:c6:dc:f5:9e:ea:d7:24: cd:3c:78:e6:60:fc:f6:09:b2:2e:ae:f0:2e:f9:c1: c2:07:1c:82:d2:be:69:bf:fc:ef:cb:0c:0e:d4:71: ec:75:f0:27:42:d9:fe:81:25:33:e9:15:23:ae:4d: 56:22:4d:e3:9d:e3:27:99:21:b5:da:12:72:70:3f: 61:48:f7:58:b7:de:59:e5:be:d9:e0:81:9d:26:90: a5:3d:d1:f4:72:d1:e0:d9:63:60:33:09:59:7b:0d: 7f:ed:df:06:4f:6c:a3:7f:58:5a:dd:e1:d0:43:67: 98:f2:a3:97:52:1a:01:e1:34:c9:8b:e6:be:22:ec: 02:1d:a1:9d:1d:47:b9:af:00:45:03:f8:17:78:62: 34:5f:aa:8c:8a:67:1f:06:d4:fe:46:e4:5d:ef:cf: 81:82:b0:50:85:53:92:e6:63:01:d4:36:e1:a6:72: 74:ec:9e:8a:ad:1e:78:88:44:8c:31:bc:9a:11:2d: d5:e0:59:57:23:dd:c9:4f:6a:fd:72:1a:18:80:41: 9c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B8:9F:C5:A0:D3:25:AF:D5:47:59:AC:4D:E7:DD:92:86:69:1E:B9 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 7c:d5:62:c5:e6:27:d7:ca:14:f0:b2:22:2a:0e:3c:b9:ea:e1: b9:5f:7b:3e:ea:94:0e:2b:35:0a:f7:1e:7a:53:cb:af:dd:a8: ed:e4:97:0d:79:4e:c1:a9:ad:94:73:f1:48:2e:09:11:d7:f5: c5:8f:f4:57:d5:4a:7e:3b:5c:3f:86:fd:53:29:cf:c1:1f:c3: 99:fb:66:10:f4:de:7f:20:58:27:1c:23:f4:9b:b2:76:b5:db: e2:fe:79:1e:f0:9a:09:dc:8a:9b:04:6e:f0:7c:0a:c5:4f:20: 15:fd:e9:54:cc:80:21:6e:26:8b:30:54:3a:93:50:53:76:3b: 6b:e0:f0:11:7f:8b:36:c1:6a:ac:7a:8b:23:0c:ca:65:a3:c6: 5f:6a:82:0f:28:97:7f:a1:50:ab:9f:ac:cc:b9:db:29:fa:c3: 5e:3c:03:3d:9f:a9:9e:97:36:9d:9f:71:bb:80:ff:56:e4:3c: fd:84:02:07:99:47:42:47:46:b0:9b:23:5a:0f:40:5f:25:58: 0b:b6:34:45:df:b6:fd:87:9d:19:ce:5b:1d:ea:02:80:55:eb: 82:48:e9:f3:10:74:69:08:b6:f1:a3:4c:cf:52:02:21:05:d5: 4d:48:4b:3b:87:8f:26:8a:a8:16:9e:11:74:94:27:56:31:d3: 5e:ae:36:7b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjMwOTI0MTgzNjQwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEwODFiNy0yY2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Atab6s4Gbkznf7KvhHLKsGau00ufDucRiuih0ciXjREdHGuTe4IIm0RM+e1 THP2+RxeM8bc9Z7q1yTNPHjmYPz2CbIurvAu+cHCBxyC0r5pv/zvywwO1HHsdfAn Qtn+gSUz6RUjrk1WIk3jneMnmSG12hJycD9hSPdYt95Z5b7Z4IGdJpClPdH0ctHg 2WNgMwlZew1/7d8GT2yjf1ha3eHQQ2eY8qOXUhoB4TTJi+a+IuwCHaGdHUe5rwBF A/gXeGI0X6qMimcfBtT+RuRd78+BgrBQhVOS5mMB1DbhpnJ07J6KrR54iESMMbya ES3V4FlXI93JT2r9choYgEGcuwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOa4n8Wg 0yWv1UdZrE3n3ZKGaR65MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvODFDREI5NkE1 M0YxMTFFQjg1RkJGQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBAHzVYsXmJ9fK FPCyIioOPLnq4blfez7qlA4rNQr3HnpTy6/dqO3klw15TsGprZRz8UguCRHX9cWP 9FfVSn47XD+G/VMpz8Efw5n7ZhD03n8gWCccI/Sbsna12+L+eR7wmgncipsEbvB8 CsVPIBX96VTMgCFuJoswVDqTUFN2O2vg8BF/izbBaqx6iyMMymWjxl9qgg8ol3+h UKufrMy52yn6w148Az2fqZ6XNp2fcbuA/1bkPP2EAgeZR0JHRrCbI1oPQF8lWAu2 NEXftv2HnRnOWx3qAoBV64JI6fMQdGkItvGjTM9SAiEF1U1ISzuHjyaKqBaeEXSU J1Yx016uNns= -----END CERTIFICATE-----Generated at Mon May 6 20:19:42 2024 by rpki-client on console-ams.rpki-client.org