$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa File: 3F9CDA68179911EDB9008D18C4F9AE02.roa (raw, json) Hash identifier: zlvr9/gJaaOwUJm+5jV4Slmz0tKdwG2ThIYLDzxv4/g= Subject key identifier: BF:C3:9D:F9:AD:AE:E6:C3:3B:04:57:DC:B7:B2:85:8E:0F:43:3F:C7 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 04E9 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa Signing time: Fri 30 Jun 2023 23:46:02 +0000 ROA not before: Fri 30 Jun 2023 23:46:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 24390 IP address blocks: 2001:dd8::/48 maxlen: 48 2402:2940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Jun 30 23:46:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=649f693a-9382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:54:39:fd:fe:5a:8c:79:33:3d:99:f5:03:f4: e0:5f:b3:f9:56:3b:15:97:49:ec:98:c1:f6:b9:ef: db:b4:a2:e8:4f:a9:b8:48:7e:8f:9c:63:99:23:cc: 1c:96:61:ef:c7:9f:8c:e0:d7:a6:7e:53:e0:15:74: 82:ac:ab:60:26:87:01:f4:7f:60:a3:4a:4e:2e:f8: 83:35:b8:c4:d8:99:17:c1:db:d1:ba:71:31:81:ed: 03:55:fa:06:76:d8:c5:f4:bf:95:e1:73:cd:f3:a8: 1b:1b:43:da:8c:f2:d1:50:27:aa:53:43:3a:9d:98: 2b:60:f0:b0:40:36:1f:b2:7f:ef:fd:9d:c8:4a:d0: b6:36:56:31:6b:81:b1:f6:23:da:42:bc:ed:af:d8: d1:c6:18:76:f6:c0:8f:0c:c1:81:b9:ea:9a:8d:59: f6:b6:1e:be:b5:bb:e7:a1:f9:e6:26:fc:d5:0f:d6: 34:67:ad:14:91:91:cc:ba:96:91:e5:5b:43:ff:38: 07:6a:a5:c8:f0:ed:9f:5a:7a:c4:ed:83:3d:66:08: c9:66:ac:a6:ee:a0:fd:8a:69:7f:87:46:1c:f6:2d: 6b:46:54:64:82:4e:e5:be:cc:f3:55:6e:0b:95:0d: df:24:d5:03:e9:21:54:db:a1:6a:5a:96:4a:a3:c9: b7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C3:9D:F9:AD:AE:E6:C3:3B:04:57:DC:B7:B2:85:8E:0F:43:3F:C7 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8::/48 2402:2940::/32 Signature Algorithm: sha256WithRSAEncryption 7e:d0:b3:02:eb:76:b5:af:f3:36:64:de:bb:8e:e3:2e:ce:8b: 44:92:ab:fe:06:07:71:88:f0:c1:3f:6b:58:68:47:1f:e1:f4: b2:ea:e8:b4:67:b0:da:9f:eb:7b:88:a5:b5:f0:aa:ff:7e:f6: 05:a9:13:e2:7b:89:a2:54:5e:78:88:3c:f4:07:ff:c7:35:4e: 79:49:85:46:23:32:54:e4:63:2e:c1:3d:c0:08:e4:e8:87:4b: f8:e5:39:26:d6:0f:2d:43:94:17:10:24:d5:6a:45:53:d8:1b: 4a:c7:0a:90:c9:fe:4b:db:48:fc:65:96:ee:32:bb:c4:1b:01: 76:da:a0:c6:ae:2f:42:54:42:5e:c4:dd:a8:cb:96:c0:d9:9e: f5:22:1f:a9:89:93:7d:12:0b:ce:d7:d7:d6:61:d1:02:c2:c9: 02:7b:24:ff:7a:09:c4:57:65:4e:55:74:8b:11:00:ad:36:e3: 23:ff:a3:ee:f0:3b:dd:aa:3d:63:8a:9d:00:87:c9:b0:85:e3: 16:5c:d7:26:59:f3:88:8a:2a:c6:9d:17:fe:ef:ba:f9:2d:17: b5:8d:63:98:d1:77:87:25:66:bc:50:cd:7a:13:3f:df:4d:dd: 81:78:25:78:67:46:31:6f:12:11:96:ed:11:dc:99:f5:a1:14: 6b:4e:5e:a9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjMwNjMwMjM0NjAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmNjkzYS05MzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VQ5/f5ajHkzPZn1A/TgX7P5VjsVl0nsmMH2ue/btKLoT6m4SH6PnGOZI8wc lmHvx5+M4NemflPgFXSCrKtgJocB9H9go0pOLviDNbjE2JkXwdvRunExge0DVfoG dtjF9L+V4XPN86gbG0PajPLRUCeqU0M6nZgrYPCwQDYfsn/v/Z3IStC2NlYxa4Gx 9iPaQrztr9jRxhh29sCPDMGBueqajVn2th6+tbvnofnmJvzVD9Y0Z60UkZHMupaR 5VtD/zgHaqXI8O2fWnrE7YM9ZgjJZqym7qD9iml/h0Yc9i1rRlRkgk7lvszzVW4L lQ3fJNUD6SFU26FqWpZKo8m3QQIDAQABo4ICnzCCApswHQYDVR0OBBYEFL/Dnfmt rubDOwRX3LeyhY4PQz/HMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMEQvQTI4RUNCQzA4QUI2MTFFQjgyMzdENDE0QzRGOUFFMDIvM0Y5Q0RBNjgx Nzk5MTFFREI5MDA4RDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQcBAf8E GjAYMBYEAgACMBADBwAgAQ3YAAADBQAkAilAMA0GCSqGSIb3DQEBCwUAA4IBAQB+ 0LMC63a1r/M2ZN67juMuzotEkqv+BgdxiPDBP2tYaEcf4fSy6ui0Z7Dan+t7iKW1 8Kr/fvYFqRPie4miVF54iDz0B//HNU55SYVGIzJU5GMuwT3ACOToh0v45Tkm1g8t Q5QXECTVakVT2BtKxwqQyf5L20j8ZZbuMrvEGwF22qDGri9CVEJexN2oy5bA2Z71 Ih+piZN9EgvO19fWYdECwskCeyT/egnEV2VOVXSLEQCtNuMj/6Pu8Dvdqj1jip0A h8mwheMWXNcmWfOIiirGnRf+77r5LRe1jWOY0XeHJWa8UM16Ez/fTd2BeCV4Z0Yx bxIRlu0R3Jn1oRRrTl6p -----END CERTIFICATE-----Generated at Fri May 17 01:07:00 2024 by rpki-client on console-fra.rpki-client.org