$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/DF7D72D28A8811EE986F3825C4F9AE02.roa File: DF7D72D28A8811EE986F3825C4F9AE02.roa (raw, json) Hash identifier: QTp2TxOMQbsB84Y12D72EouelXAZvEZaDQJFm9KhceQ= Subject key identifier: B7:B8:D5:48:78:66:60:2D:18:6E:E3:8D:03:4F:A7:25:9D:1A:84:54 Certificate issuer: /CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3 Certificate serial: 37 Authority key identifier: D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/DF7D72D28A8811EE986F3825C4F9AE02.roa Signing time: Fri 24 Nov 2023 05:18:17 +0000 ROA not before: Fri 24 Nov 2023 05:18:17 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137443 IP address blocks: 2403:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.crl rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3 Validity Not Before: Nov 24 05:18:17 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65603218-94c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d8:d4:98:66:1c:37:0f:10:5b:f1:2d:a1:5f: 5d:37:2c:db:83:91:3e:aa:0d:85:19:8d:c6:b7:af: 8b:7a:cc:07:8a:74:6e:93:11:aa:63:51:62:02:e7: 1e:94:75:54:9f:ab:62:7c:39:0f:84:d4:be:78:4f: e5:04:34:1e:10:ae:3b:57:46:19:4c:18:77:ed:64: b3:75:52:e7:15:29:b7:a6:b6:c7:92:8d:bc:b7:95: 45:34:4f:d3:a6:f5:26:f8:b2:8b:8f:d8:ee:a5:9e: 87:2e:4c:60:55:72:88:2d:3e:f9:5d:36:1f:82:09: 79:11:ca:75:7e:ed:30:68:a5:96:fa:2b:5a:45:24: e0:64:27:5b:94:ad:b7:ae:26:37:ce:08:a2:03:ff: 4f:fe:54:16:7a:f7:78:bb:f8:8b:7e:5b:72:e8:db: b8:92:a5:85:43:15:7a:5d:3a:4e:2d:f6:9d:c3:30: 74:45:34:7a:a2:18:cb:2a:f8:94:ca:75:3f:62:8e: 3a:0b:54:65:88:78:2d:54:bc:04:ef:3a:ef:8c:6e: b3:46:a0:f3:ec:ee:e1:73:20:f1:e5:c6:b7:1d:36: 65:a5:2f:e3:6e:e2:d7:12:6d:4b:8e:80:0a:9a:b8: fd:69:41:f9:f5:f4:a9:63:c4:38:92:2f:64:27:13: 86:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B8:D5:48:78:66:60:2D:18:6E:E3:8D:03:4F:A7:25:9D:1A:84:54 X509v3 Authority Key Identifier: keyid:D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/DF7D72D28A8811EE986F3825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 17:ab:94:5c:9e:ae:21:e8:85:7c:9d:f3:b2:6d:ae:f6:0c:ef: b3:c6:39:64:2f:c4:38:e7:a5:a6:6e:47:8f:0b:d8:b4:05:5f: 4e:04:a5:78:06:37:c7:49:04:e0:24:63:67:81:35:c1:32:96: c5:f1:8e:85:a3:1b:f6:0c:85:43:2d:2b:c7:cc:40:e9:a7:0b: 56:d1:2d:13:c9:ed:4f:d5:2e:ed:3e:f7:c3:c6:03:12:1c:b1: 0e:b3:f6:34:fc:c1:8f:cf:e3:86:15:b1:be:e3:c7:76:93:df: eb:11:5b:01:46:b8:73:fc:c3:0e:39:44:b4:d8:ef:6b:3c:7c: bf:12:9c:64:a8:77:36:0d:20:50:5a:6a:09:13:e9:08:91:88: 6d:c5:14:cf:7b:d5:26:c2:ab:81:d8:67:5c:d7:de:1a:4c:30: 44:94:39:5f:8a:2f:64:db:fb:74:00:25:2b:93:a5:0b:bd:a6: e9:a8:42:95:c6:6e:82:21:eb:96:47:35:0c:38:e1:8b:78:95: 05:e9:c1:98:8b:1c:4d:15:18:51:9a:8e:ae:ea:c0:1c:9c:c7: ba:2d:0d:3f:42:4a:48:72:d6:97:b4:08:6b:9d:47:1a:0d:95: 4e:d2:a3:a7:d7:1e:36:a4:49:74:5a:4a:5d:cb:78:1d:6b:2f: 72:36:6f:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjA3RDExMC8GA1UEBRMoRDQzMTA2OTBEQ0VCN0VFNEExOERBMzU3OUFDQUQxNzQ4 MTg2NDZBMzAeFw0yMzExMjQwNTE4MTdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjAzMjE4LTk0YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc2NSYZhw3DxBb8S2hX103LNuDkT6qDYUZjca3r4t6zAeKdG6TEapjUWIC5x6U dVSfq2J8OQ+E1L54T+UENB4QrjtXRhlMGHftZLN1UucVKbemtseSjby3lUU0T9Om 9Sb4souP2O6lnocuTGBVcogtPvldNh+CCXkRynV+7TBopZb6K1pFJOBkJ1uUrbeu JjfOCKID/0/+VBZ693i7+It+W3Lo27iSpYVDFXpdOk4t9p3DMHRFNHqiGMsq+JTK dT9ijjoLVGWIeC1UvATvOu+MbrNGoPPs7uFzIPHlxrcdNmWlL+Nu4tcSbUuOgAqa uP1pQfn19KljxDiSL2QnE4YFAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUt7jVSHhm YC0YbuONA0+nJZ0ahFQwHwYDVR0jBBgwFoAU1DEGkNzrfuShjaNXmsrRdIGGRqMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMDdEL0U5QjQ4NTNDNEFD NDExRUU5ODM5Mzg2RkM0RjlBRTAyLzFERUdrTnpyZnVTaGphTlhtc3JSZElHR1Jx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMURFR2tOenJmdVNoamFOWG1zclJkSUdHUnFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA3RC9FOUI0ODUzQzRBQzQxMUVFOTgzOTM4NkZDNEY5QUUwMi9ERjdENzJEMjhB ODgxMUVFOTg2RjM4MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQDGkAwDQYJKoZIhvcNAQELBQADggEBABerlFyeriHohXyd 87JtrvYM77PGOWQvxDjnpaZuR48L2LQFX04EpXgGN8dJBOAkY2eBNcEylsXxjoWj G/YMhUMtK8fMQOmnC1bRLRPJ7U/VLu0+98PGAxIcsQ6z9jT8wY/P44YVsb7jx3aT 3+sRWwFGuHP8ww45RLTY72s8fL8SnGSodzYNIFBaagkT6QiRiG3FFM971SbCq4HY Z1zX3hpMMESUOV+KL2Tb+3QAJSuTpQu9pumoQpXGboIh65ZHNQw44Yt4lQXpwZiL HE0VGFGajq7qwBycx7otDT9CSkhy1pe0CGudRxoNlU7So6fXHjakSXRaSl3LeB1r L3I2bxI= -----END CERTIFICATE-----Generated at Wed May 1 08:05:04 2024 by rpki-client on console-ams.rpki-client.org