$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa File: 2AD29284D22A11E8B6E99987C4F9AE02.roa (raw, json) Hash identifier: LEjfBf20yzUBnmQyBbq2NpCPK4WHLME5qJdMAkfwxZU= Subject key identifier: 42:32:06:5B:2F:41:CD:13:94:03:15:45:00:6C:FE:12:60:BA:B7:57 Certificate issuer: /CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Certificate serial: 120A Authority key identifier: 12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa Signing time: Tue 07 May 2024 22:39:21 +0000 ROA not before: Tue 07 May 2024 22:39:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 395403 IP address blocks: 2402:cf80:1001::/48 maxlen: 48 2402:cf80:1002::/48 maxlen: 48 2402:cf80:6259::/48 maxlen: 48 2402:cf80:7ffe::/48 maxlen: 48 2402:cf80:7fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:48:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4618 (0x120a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Validity Not Before: May 7 22:39:21 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=663aad99-4df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:15:4b:11:77:e6:ec:9a:1a:2f:54:96:df: e1:c6:ad:81:3c:b1:93:3a:f7:79:0a:92:bb:e9:28: 04:47:d5:0f:f0:34:df:0a:5f:1f:86:36:ae:e9:0e: d3:4b:60:7a:1a:b3:06:c7:07:8f:13:7e:65:60:6c: 95:9b:cd:be:40:ec:1b:b0:7a:39:5b:9a:94:58:31: 22:54:83:0a:fc:94:b9:b5:d2:ec:2b:18:ae:1e:c9: e9:f0:e1:6c:42:ad:27:70:9b:4f:8a:aa:7c:a1:3e: 27:24:cf:90:40:0f:6e:0b:2f:40:24:1f:3c:10:f8: 28:f4:ff:cc:d3:69:db:77:57:85:a5:9b:f2:8f:b8: 22:43:c4:58:9f:01:0d:01:a2:04:24:5c:fb:c4:2a: 2f:a6:dd:04:d2:a1:3a:6d:48:86:ce:b1:04:32:a2: f1:c7:73:d0:b4:e3:c2:69:92:53:ee:18:8c:64:1e: 31:71:d7:11:37:05:06:35:f5:ed:cf:00:a9:45:82: 5b:39:cc:33:47:cb:2c:b6:ea:8d:04:61:18:b1:28: 12:9c:81:0e:b6:0d:81:32:45:0c:35:d4:19:07:d5: e3:de:72:32:10:68:e6:b6:1f:0c:37:03:a5:02:79: 6f:09:b0:79:f7:f3:f1:0f:61:6c:55:45:0a:20:da: 2a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:32:06:5B:2F:41:CD:13:94:03:15:45:00:6C:FE:12:60:BA:B7:57 X509v3 Authority Key Identifier: keyid:12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/2AD29284D22A11E8B6E99987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:cf80:1001::-2402:cf80:1002:ffff:ffff:ffff:ffff:ffff 2402:cf80:6259::/48 2402:cf80:7ffe::/47 Signature Algorithm: sha256WithRSAEncryption 31:b5:17:f3:15:21:d4:b3:df:18:aa:6a:72:2b:57:82:64:78: 94:b4:b8:59:95:d5:2c:b0:f9:28:77:34:40:0f:51:07:f5:a8: 93:12:8e:9a:f9:c0:c7:73:3b:a9:49:c6:72:7a:7e:38:98:27: 7e:a9:3c:43:d6:72:a7:4d:21:d4:10:b7:c6:b2:db:91:7d:86: 0d:77:24:4c:84:a2:e1:00:85:d3:c8:17:ff:af:1b:c8:35:23: 84:5b:32:1b:84:ee:fe:b4:6f:41:97:c1:7b:68:0b:a5:f6:ec: ad:59:62:ee:63:8b:b3:11:51:13:d5:66:f3:c0:ff:00:17:a5: fe:18:df:8d:d3:b7:84:88:80:6b:67:9f:de:b0:36:58:86:84: 92:79:c3:8d:4e:7f:b5:9f:ce:31:0a:cc:5a:47:7a:ee:5d:64: 2a:26:2e:85:d0:63:e1:55:6e:9e:bf:cd:45:34:b5:f5:70:37: d8:77:08:f1:91:d2:84:bc:a6:97:47:d9:d4:c8:69:09:e8:c4: 66:91:9f:3e:ce:9a:8c:9a:4a:a9:0f:01:a6:5e:86:7b:64:77: af:da:91:5c:99:d7:6b:fa:d1:80:a9:49:66:cc:08:86:81:05: 59:72:40:29:0e:57:1d:01:44:2a:8a:ca:b1:b5:33:66:96:0f: 22:91:bb:3a -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICEgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwMDYxMTAvBgNVBAUTKDEyRjkyRTZDNzJFNkNBMjVDMDc1MDU1QjQ4RkUzN0I2 NUFCNkUwNTIwHhcNMjQwNTA3MjIzOTIxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNhYWQ5OS00ZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmwVSxF35uyaGi9Ult/hxq2BPLGTOvd5CpK76SgER9UP8DTfCl8fhjau6Q7T S2B6GrMGxwePE35lYGyVm82+QOwbsHo5W5qUWDEiVIMK/JS5tdLsKxiuHsnp8OFs Qq0ncJtPiqp8oT4nJM+QQA9uCy9AJB88EPgo9P/M02nbd1eFpZvyj7giQ8RYnwEN AaIEJFz7xCovpt0E0qE6bUiGzrEEMqLxx3PQtOPCaZJT7hiMZB4xcdcRNwUGNfXt zwCpRYJbOcwzR8sstuqNBGEYsSgSnIEOtg2BMkUMNdQZB9Xj3nIyEGjmth8MNwOl AnlvCbB59/PxD2FsVUUKINoqxwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFEIyBlsv Qc0TlAMVRQBs/hJgurdXMB8GA1UdIwQYMBaAFBL5Lmxy5solwHUFW0j+N7ZatuBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjAwNi9FNEZERTQ2QUMz RTgxMUU4QUM3NkVCMTZDNEY5QUUwMi9Fdmt1YkhMbXlpWEFkUVZiU1A0M3RscTI0 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V2a3ViSExteWlYQWRRVmJTUDQzdGxxMjRGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwMDYvRTRGREU0NkFDM0U4MTFFOEFDNzZFQjE2QzRGOUFFMDIvMkFEMjkyODRE MjJBMTFFOEI2RTk5OTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgACMCYwEgMHACQCz4AQAQMHACQCz4AQAgMHACQCz4BiWQMHASQCz4B/ /jANBgkqhkiG9w0BAQsFAAOCAQEAMbUX8xUh1LPfGKpqcitXgmR4lLS4WZXVLLD5 KHc0QA9RB/WokxKOmvnAx3M7qUnGcnp+OJgnfqk8Q9Zyp00h1BC3xrLbkX2GDXck TISi4QCF08gX/68byDUjhFsyG4Tu/rRvQZfBe2gLpfbsrVli7mOLsxFRE9Vm88D/ ABel/hjfjdO3hIiAa2ef3rA2WIaEknnDjU5/tZ/OMQrMWkd67l1kKiYuhdBj4VVu nr/NRTS19XA32HcI8ZHShLyml0fZ1MhpCejEZpGfPs6ajJpKqQ8Bpl6Ge2R3r9qR XJnXa/rRgKlJZswIhoEFWXJAKQ5XHQFEKorKsbUzZpYPIpG7Og== -----END CERTIFICATE-----Generated at Tue May 14 19:10:26 2024 by rpki-client on console-ams.rpki-client.org