$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa File: 594EEA2CAEA711EE961B0558C4F9AE02.roa (raw, json) Hash identifier: 1OottJ+jVSIpn9/qIbqYxFLpDRPxTkPCkdhUb2jBhmM= Subject key identifier: 1A:D0:07:8B:39:F0:76:00:10:CA:67:80:AB:E6:95:0F:B8:95:4D:3C Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 064B Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa Signing time: Tue 09 Jan 2024 04:27:08 +0000 ROA not before: Tue 09 Jan 2024 04:27:08 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24545 IP address blocks: 2400:7e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Jan 9 04:27:08 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659ccb1b-4b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cf:91:d1:6d:a3:ce:9a:e1:79:54:c3:1f:12: 2b:91:67:6f:cc:fe:e6:47:d9:3d:e3:5b:ad:69:8b: c6:71:ac:99:68:db:bc:7c:7e:90:a7:e7:46:a0:f6: 20:02:91:76:b9:0c:97:5f:5e:3f:f1:5f:a5:cf:3a: 9f:80:3c:0e:5a:bb:f6:2a:ad:5f:b5:87:29:dc:3c: d4:d0:86:e6:53:c8:8f:66:89:10:30:be:2b:b6:2f: 74:2f:85:30:66:e8:c9:6e:8f:56:b1:d4:d7:81:69: ab:78:81:7c:21:0b:38:a8:58:86:81:25:be:67:6e: e6:41:f0:84:f9:e0:92:1d:a0:61:3c:2c:fa:6a:3b: 8e:53:d7:ac:55:e3:4b:f4:04:6f:4a:90:91:c1:f8: 34:d2:e9:cc:93:3c:7d:72:86:4e:12:8b:20:56:41: e5:81:f9:ec:0c:bc:3b:5b:f9:04:e1:8f:97:0c:8f: 05:c7:fd:78:35:47:d2:b2:43:98:90:d0:0d:3d:06: 86:fb:3b:f6:cd:e9:ab:da:a7:48:76:de:8e:bc:99: 17:9e:37:06:c9:99:d1:5c:94:56:78:ad:b5:6b:70: c9:6c:b5:de:30:e6:89:9c:8c:63:19:33:ef:90:eb: 9e:e2:cc:07:3e:7a:96:39:ee:0b:ae:32:05:6d:a8: 2d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D0:07:8B:39:F0:76:00:10:CA:67:80:AB:E6:95:0F:B8:95:4D:3C X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 63:d4:7f:b0:c8:c8:4d:fa:00:72:b4:ed:96:1f:75:08:93:23: 3f:5a:a8:88:d3:88:09:4a:e4:e8:60:8d:88:71:8c:73:9b:59: 7a:f9:37:09:b4:ff:00:17:68:08:ff:16:78:57:f2:25:90:0b: 43:49:38:5b:af:be:85:d1:be:e2:71:3f:85:4b:4b:58:7c:e6: 3c:6f:18:5a:52:25:37:29:64:09:7f:19:70:63:93:92:11:d3: 0c:d0:3e:62:8b:50:d6:90:1e:c9:00:1d:72:b0:0c:1a:35:ee: 06:27:fe:83:ad:b6:6d:cf:00:ab:3e:95:67:2a:c6:fa:e4:f9: 59:02:32:e0:de:35:e1:a1:3e:fb:db:17:96:42:cd:a0:e9:c7: 2c:d5:81:f4:ef:e5:38:70:c2:0a:a9:74:3a:88:cc:99:62:c2: 0d:6d:89:bd:16:c2:a8:7a:ef:7b:4e:5b:fd:fa:96:d8:84:b7: 12:ee:38:8a:49:b7:c4:f6:e7:ea:87:4a:6b:48:33:9c:6b:19: 8f:97:90:16:04:d6:52:6e:75:ac:30:f5:c7:ac:8b:d3:48:26: 1c:b6:43:a3:1e:3b:8a:1b:fa:42:8e:ff:89:44:5d:d0:2d:a2: 3c:bb:29:e9:3e:b6:ad:f6:28:67:9a:b1:3a:6d:dc:d6:e9:87: e9:5e:f7:ff -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjQwMTA5MDQyNzA4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljY2IxYi00YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38+R0W2jzprheVTDHxIrkWdvzP7mR9k941utaYvGcayZaNu8fH6Qp+dGoPYg ApF2uQyXX14/8V+lzzqfgDwOWrv2Kq1ftYcp3DzU0IbmU8iPZokQML4rti90L4Uw ZujJbo9WsdTXgWmreIF8IQs4qFiGgSW+Z27mQfCE+eCSHaBhPCz6ajuOU9esVeNL 9ARvSpCRwfg00unMkzx9coZOEosgVkHlgfnsDLw7W/kE4Y+XDI8Fx/14NUfSskOY kNANPQaG+zv2zemr2qdIdt6OvJkXnjcGyZnRXJRWeK21a3DJbLXeMOaJnIxjGTPv kOue4swHPnqWOe4LrjIFbagt1wIDAQABo4ICljCCApIwHQYDVR0OBBYEFBrQB4s5 8HYAEMpngKvmlQ+4lU08MB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFBMjMvQUM1MzNERUUyODk2MTFFQkJBQUQ1NzIxQzRGOUFFMDIvNTk0RUVBMkNB RUE3MTFFRTk2MUIwNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAH5AMA0GCSqGSIb3DQEBCwUAA4IBAQBj1H+wyMhN+gBy tO2WH3UIkyM/WqiI04gJSuToYI2IcYxzm1l6+TcJtP8AF2gI/xZ4V/IlkAtDSThb r76F0b7icT+FS0tYfOY8bxhaUiU3KWQJfxlwY5OSEdMM0D5ii1DWkB7JAB1ysAwa Ne4GJ/6DrbZtzwCrPpVnKsb65PlZAjLg3jXhoT772xeWQs2g6ccs1YH07+U4cMIK qXQ6iMyZYsINbYm9FsKoeu97Tlv9+pbYhLcS7jiKSbfE9ufqh0prSDOcaxmPl5AW BNZSbnWsMPXHrIvTSCYctkOjHjuKG/pCjv+JRF3QLaI8uynpPrat9ihnmrE6bdzW 6YfpXvf/ -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org