$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa File: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: 71xd5/5FhMriYHoOL/tPwY0AhjMl++Dxo9Z6XFBNqNs= Subject key identifier: 41:68:67:EA:5B:BF:99:D4:F3:DA:74:55:EA:B3:12:4F:5A:93:FE:1E Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0A87 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa Signing time: Thu 31 Aug 2023 19:46:40 +0000 ROA not before: Thu 31 Aug 2023 19:46:40 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 31 19:46:40 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0ee20-a1fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b0:4c:ee:73:59:25:ed:94:4a:6e:ee:1e:3a: 61:65:1e:f2:56:6e:88:de:c8:c4:28:4c:ad:aa:f3: 44:04:2c:83:a6:ed:6b:73:8a:83:59:23:91:79:33: f9:4b:41:00:57:a9:8d:fd:d1:41:d7:64:69:ae:9d: 28:af:9d:d0:05:7e:77:66:75:cc:a8:9d:24:33:cd: be:7a:5b:6e:46:0d:70:7f:e4:bc:cb:b3:15:a2:22: 30:e8:dc:32:13:0c:62:7b:9b:f5:36:5f:71:69:0e: 87:ce:28:a8:2f:f9:1a:d2:33:52:b7:ad:18:0d:c1: d1:b0:d4:a8:30:13:65:83:27:0c:8f:b4:81:b2:fe: ec:73:69:a9:6c:66:e9:32:98:ff:9c:e6:62:5d:e8: 5b:b1:a9:69:38:0c:55:1f:17:48:a1:c3:a4:db:91: a8:80:da:b6:55:8b:66:cf:84:26:17:9f:f9:35:47: 0a:ec:ee:5e:a4:19:f0:ac:a1:85:3c:76:4a:20:9d: 5f:99:15:0f:68:b5:e8:90:8b:f5:73:a0:a3:12:a2: 9c:97:58:bb:31:4a:5f:1e:7c:76:eb:ad:b7:ec:00: 83:0c:2f:41:95:ac:72:a7:2d:d1:76:4c:c8:4e:8f: b3:bb:a4:13:46:10:b7:e2:fd:7e:e5:fa:6b:32:85: 49:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:68:67:EA:5B:BF:99:D4:F3:DA:74:55:EA:B3:12:4F:5A:93:FE:1E X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4e80::/32 Signature Algorithm: sha256WithRSAEncryption 92:45:f4:cf:7e:22:bf:d5:51:cb:a8:f1:1d:77:75:7d:6d:38: 33:6d:63:57:e5:0d:56:2c:cc:06:43:71:dd:aa:35:ba:a4:51: e7:f8:4f:5b:bc:af:b0:3f:c1:96:40:a7:f6:37:5b:e6:b0:48: 4c:ff:31:8a:43:59:32:9c:71:1a:e6:1c:b4:02:f7:f9:3f:ba: 46:60:49:91:0f:4b:1c:ba:bd:3d:c7:2a:d2:15:c7:61:f8:c5: 08:42:e8:35:7d:bc:90:97:0f:25:d0:af:95:e4:54:2c:a1:74: 35:17:b2:46:62:fc:e4:56:0a:63:b8:3d:85:b8:50:28:13:e5: 2d:b0:29:c1:89:ad:30:fb:4a:52:13:af:c2:14:2a:e6:b1:8c: 22:c4:36:c2:a0:59:a0:33:a8:d5:f4:e7:3c:aa:31:11:c5:3c: 17:f5:39:b1:04:46:9b:22:94:9d:7f:03:e9:77:48:3c:bb:a3: 3d:b9:18:d8:bd:15:34:71:9d:72:b1:b7:a2:a7:c6:6d:13:0f: 71:13:59:fe:97:d5:2e:8c:c4:b7:a1:b7:8d:bf:b1:23:35:c4: 6c:aa:36:8c:34:e7:74:dd:8a:69:2f:9a:bf:b3:4e:d4:6f:ad: ba:74:77:e6:54:06:83:ee:9b:99:e9:ab:53:17:55:15:b2:54: 59:f4:a9:43 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjMwODMxMTk0NjQwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwZWUyMC1hMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27BM7nNZJe2USm7uHjphZR7yVm6I3sjEKEytqvNEBCyDpu1rc4qDWSOReTP5 S0EAV6mN/dFB12Rprp0or53QBX53ZnXMqJ0kM82+eltuRg1wf+S8y7MVoiIw6Nwy Ewxie5v1Nl9xaQ6HziioL/ka0jNSt60YDcHRsNSoMBNlgycMj7SBsv7sc2mpbGbp Mpj/nOZiXehbsalpOAxVHxdIocOk25GogNq2VYtmz4QmF5/5NUcK7O5epBnwrKGF PHZKIJ1fmRUPaLXokIv1c6CjEqKcl1i7MUpfHnx266237ACDDC9Blaxypy3RdkzI To+zu6QTRhC34v1+5fprMoVJLwIDAQABo4ICljCCApIwHQYDVR0OBBYEFEFoZ+pb v5nU89p0VeqzEk9ak/4eMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEFBRjgwM0Ex QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA06AMA0GCSqGSIb3DQEBCwUAA4IBAQCSRfTPfiK/1VHL qPEdd3V9bTgzbWNX5Q1WLMwGQ3HdqjW6pFHn+E9bvK+wP8GWQKf2N1vmsEhM/zGK Q1kynHEa5hy0Avf5P7pGYEmRD0scur09xyrSFcdh+MUIQug1fbyQlw8l0K+V5FQs oXQ1F7JGYvzkVgpjuD2FuFAoE+UtsCnBia0w+0pSE6/CFCrmsYwixDbCoFmgM6jV 9Oc8qjERxTwX9TmxBEabIpSdfwPpd0g8u6M9uRjYvRU0cZ1ysbeip8ZtEw9xE1n+ l9UujMS3obeNv7EjNcRsqjaMNOd03YppL5q/s07Ub626dHfmVAaD7puZ6atTF1UV slRZ9KlD -----END CERTIFICATE-----Generated at Fri May 10 23:04:10 2024 by rpki-client on console-ams.rpki-client.org