$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa File: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: C+ub+CENSJtyHyu/2AvvJdYuCVWeMlxkJN2l0lgPcTw= Subject key identifier: 55:CC:1E:B9:70:A1:67:C3:7C:D2:2B:43:57:3B:36:4B:75:82:90:EF Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0994 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:10:22 +0000 ROA not before: Tue 26 Mar 2024 21:10:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 3949 IP address blocks: 2001:218:2008::/48 maxlen: 48 2001:218:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 21:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2452 (0x994) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 21:10:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660339be-f9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:9d:ad:7f:e3:3c:50:f6:a7:08:ac:71:1c: ef:72:0c:e0:d8:16:af:0f:a9:98:22:ab:5e:b9:1a: 15:a3:87:91:32:ad:74:3d:e6:b0:b3:fb:24:5c:92: a6:12:94:e0:5b:e0:00:53:7c:74:cb:ee:e0:0b:79: 70:fa:98:21:68:2c:4d:49:ad:fa:d4:e7:f2:59:9b: af:da:18:90:2e:a4:4f:44:01:d8:29:29:3e:f6:03: 71:d3:18:58:e4:01:b4:12:54:14:b7:6d:39:51:0c: 26:de:48:5e:54:8c:97:c7:80:b3:ac:36:d5:56:83: f1:79:23:d5:de:38:41:a4:d4:e5:d4:5f:66:fa:a0: 0f:4c:26:62:55:53:19:8f:d6:2d:eb:cc:91:8f:47: 70:76:ca:a3:f3:06:7e:af:b3:2b:4e:ba:bb:2c:05: 3c:16:9a:02:39:9d:4c:e9:ce:7c:f1:91:f3:09:e3: 2c:74:1b:b2:ab:7f:7d:5f:38:5b:26:c3:d0:41:d3: d1:63:d7:f8:d5:d8:65:de:08:26:02:1e:75:2c:e5: c1:d9:e3:a7:d2:02:a5:36:7d:cf:46:4e:0d:e5:1e: 1b:e9:be:9e:59:fd:8e:58:a8:f9:04:5f:10:2d:85: b2:2e:bf:32:fa:01:91:68:d8:3d:be:7e:bd:4d:21: bc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CC:1E:B9:70:A1:67:C3:7C:D2:2B:43:57:3B:36:4B:75:82:90:EF X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:2008::/48 2001:218:3001::/48 Signature Algorithm: sha256WithRSAEncryption 0d:a7:1c:e9:17:99:c0:c7:1f:83:f7:bd:cb:f2:35:b1:3e:a7: 30:bb:19:c6:59:0d:4e:0d:b2:f1:e2:92:62:53:1b:4a:4b:56: 84:eb:b3:02:4a:f1:3e:6e:70:26:e9:38:1a:d2:20:e3:82:b9: c2:9f:90:12:89:89:f1:d0:be:e6:47:ee:7e:6d:d0:99:6c:94: 4e:ba:23:01:b8:81:f0:ca:7f:31:a2:f0:f2:d1:65:2c:0f:67: a2:9b:9e:b1:03:6c:f2:c2:49:ba:8f:27:cd:92:10:b4:59:0b: d7:2b:5b:f5:00:4d:ca:b2:25:27:68:77:43:6b:76:e8:51:f1: 0f:db:fe:9d:ee:5b:27:10:3e:e4:64:c8:71:3b:c5:0f:38:47: 19:7c:4b:b9:5a:48:4a:5f:34:5c:08:a4:22:8c:01:5b:fe:64: 67:19:64:98:9b:b3:57:be:b5:0a:58:52:37:b6:2e:5c:b2:fc: 31:0a:f7:27:d3:0d:a2:a1:78:fc:1f:8d:10:bb:d0:b4:52:3b: 6b:45:51:08:dd:26:78:d5:5a:c6:c4:a4:d1:35:19:a7:61:8f: df:b1:df:06:37:67:d1:11:bd:90:27:73:60:b1:ee:72:a9:ca: 8d:29:ef:1d:74:1b:d7:7f:23:2e:80:dc:46:98:39:06:7c:fe: 61:27:ac:e2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjQwMzI2MjExMDIyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzliZS1mOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUOdrX/jPFD2pwiscRzvcgzg2BavD6mYIqteuRoVo4eRMq10Peaws/skXJKm EpTgW+AAU3x0y+7gC3lw+pghaCxNSa361OfyWZuv2hiQLqRPRAHYKSk+9gNx0xhY 5AG0ElQUt205UQwm3kheVIyXx4CzrDbVVoPxeSPV3jhBpNTl1F9m+qAPTCZiVVMZ j9Yt68yRj0dwdsqj8wZ+r7MrTrq7LAU8FpoCOZ1M6c588ZHzCeMsdBuyq399Xzhb JsPQQdPRY9f41dhl3ggmAh51LOXB2eOn0gKlNn3PRk4N5R4b6b6eWf2OWKj5BF8Q LYWyLr8y+gGRaNg9vn69TSG8TwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFXMHrlw oWfDfNIrQ1c7Nkt1gpDvMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEMwODY4RDBD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAgAQIYIAgDBwAgAQIYMAEwDQYJKoZIhvcNAQELBQADggEB AA2nHOkXmcDHH4P3vcvyNbE+pzC7GcZZDU4NsvHikmJTG0pLVoTrswJK8T5ucCbp OBrSIOOCucKfkBKJifHQvuZH7n5t0JlslE66IwG4gfDKfzGi8PLRZSwPZ6KbnrED bPLCSbqPJ82SELRZC9crW/UATcqyJSdod0NrduhR8Q/b/p3uWycQPuRkyHE7xQ84 Rxl8S7laSEpfNFwIpCKMAVv+ZGcZZJibs1e+tQpYUje2Llyy/DEK9yfTDaKhePwf jRC70LRSO2tFUQjdJnjVWsbEpNE1Gadhj9+x3wY3Z9ERvZAnc2Cx7nKpyo0p7x10 G9d/Iy6A3EaYOQZ8/mEnrOI= -----END CERTIFICATE-----Generated at Sat May 25 01:00:17 2024 by rpki-client on console-ams.rpki-client.org