$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa File: C0655836B3B511EA8BFADC14C4F9AE02.roa (raw, json) Hash identifier: ESw9duBCReL8Wp+ONcz10sCJO+y/cVuwZOBDVu1HWH8= Subject key identifier: 30:1F:54:94:C8:B1:C5:63:17:00:8A:1E:BA:C0:EC:D0:60:BC:E7:97 Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 1115 Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa Signing time: Thu 18 Jan 2024 17:55:30 +0000 ROA not before: Thu 18 Jan 2024 17:55:30 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 36351 IP address blocks: 2403:a280:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4373 (0x1115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Jan 18 17:55:30 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a96612-7eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:f6:82:fe:ea:7f:b1:ca:38:c9:43:c7:6a: f4:31:3f:fa:77:42:58:0c:54:62:63:68:46:ee:5e: 72:d3:ba:c8:3a:21:d5:b0:f5:0d:0d:91:0d:a4:e9: be:73:90:f6:dd:30:ef:15:5d:f3:95:42:d2:ff:ba: 75:46:b7:6c:5f:1f:41:e4:06:6d:ed:37:dd:99:af: eb:b0:d1:29:f8:f6:e5:1f:6b:8d:e8:ef:65:fc:dd: f5:4b:ff:2f:e5:bc:a0:12:51:db:17:e8:54:99:9f: 8d:83:6f:e0:d8:cc:99:83:17:b7:8a:98:07:56:51: 87:27:2c:a7:0b:d4:41:c6:41:3e:5d:7f:d9:1f:c5: 3a:a3:b6:a5:44:2c:7f:af:af:0f:d2:52:10:b1:16: 11:5a:d5:f2:e2:22:c8:d8:e9:f8:30:60:84:b3:4a: fe:6b:39:44:fd:5f:6b:1f:c7:fd:b8:a8:1f:b3:ed: 14:f5:d8:fb:fe:a6:d9:0e:7f:35:74:b1:5d:b7:73: 18:11:7e:fb:e4:f3:fb:2f:c7:66:bd:af:9e:c4:78: 8f:6b:6b:3c:ce:93:a3:ec:0b:27:07:5c:fe:f6:33: e7:11:04:a9:77:e8:ca:fe:dd:78:ef:6c:52:bd:d9: 92:ff:49:27:9b:b3:4c:10:43:2c:eb:c8:11:19:b4: 97:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1F:54:94:C8:B1:C5:63:17:00:8A:1E:BA:C0:EC:D0:60:BC:E7:97 X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:a280:8000::/36 Signature Algorithm: sha256WithRSAEncryption 8b:c1:ae:78:13:d7:72:21:c2:05:85:dc:5b:82:b7:46:b3:43: 05:a0:80:48:03:ef:d9:ac:4c:90:ea:68:e3:38:07:05:c6:f8: da:1f:1c:43:7f:8e:b2:6c:81:6f:64:33:81:78:68:7f:19:15: 25:34:43:22:5d:b9:b9:dc:a1:fc:dd:55:a5:c9:9d:fc:63:af: 40:73:44:a8:49:02:72:03:29:ed:24:03:71:34:b5:83:40:fc: f7:4c:92:85:10:2c:05:d5:5a:d3:4f:cf:d6:f4:89:d5:b0:41: 55:c8:c9:94:70:3d:4f:12:e1:7a:be:00:21:54:43:9a:eb:ab: ed:70:8a:6e:fe:d1:b6:ee:92:a3:fc:66:4b:d8:17:80:d7:2d: ea:6e:56:c3:2f:14:6e:18:d3:62:71:a5:14:9e:50:b2:6d:90: 61:a6:36:ed:70:9a:c7:44:c2:42:76:28:3d:85:87:13:b6:ff: d4:1e:0f:16:b3:2b:fc:50:ba:13:e4:5f:91:97:d6:4e:db:b8: 44:4e:c9:ea:26:a4:80:1d:cb:60:79:fb:c6:d6:1d:53:04:28: 14:7d:0a:1b:82:2c:ee:80:9f:86:0e:28:14:f0:b4:f2:d6:19: 6b:ff:3d:67:24:4c:20:ee:53:67:91:00:c0:ce:ea:d2:94:81: 65:ec:7f:2e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICERUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjQwMTE4MTc1NTMwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5NjYxMi03ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxr2gv7qf7HKOMlDx2r0MT/6d0JYDFRiY2hG7l5y07rIOiHVsPUNDZENpOm+ c5D23TDvFV3zlULS/7p1RrdsXx9B5AZt7Tfdma/rsNEp+PblH2uN6O9l/N31S/8v 5bygElHbF+hUmZ+Ng2/g2MyZgxe3ipgHVlGHJyynC9RBxkE+XX/ZH8U6o7alRCx/ r68P0lIQsRYRWtXy4iLI2On4MGCEs0r+azlE/V9rH8f9uKgfs+0U9dj7/qbZDn81 dLFdt3MYEX775PP7L8dmva+exHiPa2s8zpOj7AsnB1z+9jPnEQSpd+jK/t1472xS vdmS/0knm7NMEEMs68gRGbSXmQIDAQABo4IClzCCApMwHQYDVR0OBBYEFDAfVJTI scVjFwCKHrrA7NBgvOeXMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvQzA2NTU4MzZC M0I1MTFFQThCRkFEQzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA6KAgDANBgkqhkiG9w0BAQsFAAOCAQEAi8GueBPXciHC BYXcW4K3RrNDBaCASAPv2axMkOpo4zgHBcb42h8cQ3+OsmyBb2QzgXhofxkVJTRD Il25udyh/N1Vpcmd/GOvQHNEqEkCcgMp7SQDcTS1g0D890yShRAsBdVa00/P1vSJ 1bBBVcjJlHA9TxLher4AIVRDmuur7XCKbv7Rtu6So/xmS9gXgNct6m5Wwy8UbhjT YnGlFJ5Qsm2QYaY27XCax0TCQnYoPYWHE7b/1B4PFrMr/FC6E+RfkZfWTtu4RE7J 6iakgB3LYHn7xtYdUwQoFH0KG4Is7oCfhg4oFPC08tYZa/89ZyRMIO5TZ5EAwM7q 0pSBZex/Lg== -----END CERTIFICATE-----Generated at Thu May 2 20:50:34 2024 by rpki-client on console-fra.rpki-client.org