$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F255E05612DB11EBBE14D853C4F9AE02.roa File: F255E05612DB11EBBE14D853C4F9AE02.roa (raw, json) Hash identifier: 5JG8oJQV0VhQ6KTZPNNgThTgP/gsH9FSBOtQaiD3EDo= Subject key identifier: 51:5E:AF:33:22:29:62:72:F2:B2:E8:0E:85:3B:BE:35:1E:EF:29:49 Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 0610 Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F255E05612DB11EBBE14D853C4F9AE02.roa Signing time: Thu 08 Dec 2022 12:11:04 +0000 ROA not before: Thu 08 Dec 2022 12:11:04 +0000 ROA not after: Wed 31 Jan 2024 00:00:00 +0000 asID: 209557 IP address blocks: 2406:9dc0:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jul 2023 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Dec 8 12:11:04 2022 GMT Not After : Jan 31 00:00:00 2024 GMT Subject: CN=6391d457-71be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:45:16:ec:23:b3:fc:c8:61:49:b8:9e:f5:5c: 61:1c:1d:9a:83:33:71:4d:ed:b9:9d:0e:e6:75:ae: bc:e4:44:50:e1:50:6d:61:2d:f2:7f:97:24:fb:3f: 53:d9:a0:d3:5f:f5:b4:59:4e:2e:13:f7:2f:a0:f6: 31:e1:c7:64:a6:08:2c:51:35:95:72:ea:b2:0f:5b: 5d:f9:f9:cf:b5:cb:f6:fb:8f:82:34:21:67:76:05: 6b:52:5d:b0:ad:c3:fb:6d:0f:a0:84:4f:ad:1f:96: 08:44:1f:49:e4:02:7e:b9:1d:c8:0b:11:a1:16:34: 2e:91:31:a5:1d:c3:09:c0:5c:77:27:53:8e:4a:5f: 1f:8a:fb:56:00:f6:6d:e6:ad:1f:3b:fb:21:86:8b: 8a:ea:20:9c:c2:11:be:e8:0c:c4:b1:16:d8:8a:bb: dd:64:b0:12:ba:6c:c7:3a:c0:98:5a:db:f9:3c:80: 15:f2:8e:1c:6d:38:51:5e:36:19:e8:1c:84:2b:c9: 10:97:2c:a1:9f:e3:8f:f4:f5:a4:67:32:41:cf:fe: 6e:26:21:45:f7:bf:5d:2d:7f:71:34:04:ac:93:ae: 8e:7b:84:13:d1:9c:f5:c9:7f:b9:22:01:56:71:a5: 3f:1e:f4:64:52:03:3b:a0:62:15:c1:a6:c4:b1:45: 0e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5E:AF:33:22:29:62:72:F2:B2:E8:0E:85:3B:BE:35:1E:EF:29:49 X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F255E05612DB11EBBE14D853C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:40::/44 Signature Algorithm: sha256WithRSAEncryption 0b:28:8f:8b:2c:ef:53:e7:9a:68:8e:d6:d4:31:ac:45:ad:0c: b6:d1:83:e3:c6:e7:cd:cd:8e:26:c9:a7:83:65:31:c0:c5:78: 26:99:f4:b5:86:0b:3a:f0:a8:f6:51:22:d5:01:7a:ee:02:46: 5c:f1:38:d1:0d:f6:24:4e:55:27:83:9e:86:b1:ed:5d:c4:8c: 98:92:cb:f5:89:98:e6:d9:39:d6:ae:35:d9:bd:8f:c7:78:4d: d5:ad:4c:46:cc:31:19:c5:50:f3:50:c2:34:9f:b1:fa:cd:0d: 5d:13:c8:1d:02:1e:a1:72:49:a9:c7:62:71:66:1f:e6:08:42: 23:d4:4f:1b:66:a5:d6:94:fc:b1:4c:f5:57:39:e2:1b:58:7e: b4:ca:1d:b8:e4:bc:06:9b:03:d5:44:29:81:fb:ea:38:d5:d5: 95:69:5c:51:ab:47:e5:95:05:49:4c:6b:13:f3:11:6e:33:2e: 96:ed:d0:87:f5:de:1e:e2:c9:36:a1:04:97:4f:5c:05:b9:14: 7b:cb:85:c6:4c:84:1f:29:fd:32:78:05:12:31:ae:03:d0:2e: 0f:52:61:71:0f:e8:47:94:7b:04:bd:51:9f:2d:c3:62:5d:e0: d5:ff:cc:d8:26:0e:87:f1:de:47:f8:49:fe:31:91:0a:66:a4: 6b:89:8c:42 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjIxMjA4MTIxMTA0WhcNMjQwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzkxZDQ1Ny03MWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EUW7COz/MhhSbie9VxhHB2agzNxTe25nQ7mda685ERQ4VBtYS3yf5ck+z9T 2aDTX/W0WU4uE/cvoPYx4cdkpggsUTWVcuqyD1td+fnPtcv2+4+CNCFndgVrUl2w rcP7bQ+ghE+tH5YIRB9J5AJ+uR3ICxGhFjQukTGlHcMJwFx3J1OOSl8fivtWAPZt 5q0fO/shhouK6iCcwhG+6AzEsRbYirvdZLASumzHOsCYWtv5PIAV8o4cbThRXjYZ 6ByEK8kQlyyhn+OP9PWkZzJBz/5uJiFF979dLX9xNASsk66Oe4QT0Zz1yX+5IgFW caU/HvRkUgM7oGIVwabEsUUO4wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFFerzMi KWJy8rLoDoU7vjUe7ylJMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvRjI1NUUwNTYx MkRCMTFFQkJFMTREODUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AAEAwDQYJKoZIhvcNAQELBQADggEBAAsoj4ss71Pn mmiO1tQxrEWtDLbRg+PG583NjibJp4NlMcDFeCaZ9LWGCzrwqPZRItUBeu4CRlzx ONEN9iROVSeDnoax7V3EjJiSy/WJmObZOdauNdm9j8d4TdWtTEbMMRnFUPNQwjSf sfrNDV0TyB0CHqFySanHYnFmH+YIQiPUTxtmpdaU/LFM9Vc54htYfrTKHbjkvAab A9VEKYH76jjV1ZVpXFGrR+WVBUlMaxPzEW4zLpbt0If13h7iyTahBJdPXAW5FHvL hcZMhB8p/TJ4BRIxrgPQLg9SYXEP6EeUewS9UZ8tw2Jd4NX/zNgmDofx3kf4Sf4x kQpmpGuJjEI= -----END CERTIFICATE-----Generated at Wed Jul 19 22:36:02 2023 by rpki-client on console-ams.rpki-client.org