$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa File: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (raw, json) Hash identifier: S9FtoobeEXjBIMtrH5kmu9M+KuE/HN8Pt+tkB33Mzwo= Subject key identifier: 62:D3:98:7A:40:A3:04:12:61:D9:0B:8E:22:6C:85:46:15:E3:47:94 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0B20 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa Signing time: Wed 28 Feb 2024 21:16:35 +0000 ROA not before: Wed 28 Feb 2024 21:16:35 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 38565 IP address blocks: 36.252.0.0/15 maxlen: 23 43.243.96.0/22 maxlen: 24 49.126.0.0/16 maxlen: 20 103.38.196.0/22 maxlen: 24 116.68.208.0/21 maxlen: 24 2400:9500::/32 maxlen: 32 2400:9500:4000::/36 maxlen: 44 2400:9500:6000::/36 maxlen: 44 2400:9500:8000::/36 maxlen: 44 2400:9500:c000::/36 maxlen: 44 2400:9500:e000::/36 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Feb 28 21:16:35 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65dfa2b2-55c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:36:bc:4a:72:7d:be:85:27:76:9b:b1:bf:69: 40:1f:74:d2:b5:0e:d5:04:b7:df:71:65:a7:86:40: 38:81:b9:aa:11:95:22:d9:0c:24:8d:3c:b2:19:36: 15:69:29:06:63:63:94:5e:a4:0e:3b:d2:c4:06:9b: 08:2d:94:d6:a7:30:e7:c5:69:38:e6:f9:19:fc:ac: 6d:24:a2:3e:bf:1d:6c:9e:52:5b:53:4c:68:0e:da: dd:f3:43:c8:b3:2b:f6:df:c6:88:ef:1c:19:2f:18: c1:81:7a:f7:28:b6:2a:41:a6:8c:98:a0:0f:6a:9b: 22:92:84:1b:32:85:da:f5:d8:c6:d0:7c:29:71:11: e3:1c:4d:bb:88:40:45:d6:2d:8c:50:01:06:ec:f2: 80:61:1a:f2:bf:bd:6a:50:3d:48:a1:18:0a:35:2a: b7:9c:75:b2:2d:93:c4:7f:ee:e1:62:6b:86:1b:04: 80:18:2a:80:1f:6e:73:f0:72:40:1e:dd:f7:4a:71: 09:cd:66:8b:5a:5c:a6:55:e3:28:33:c8:cd:9c:1e: 0d:d2:59:bd:fe:d7:c0:e1:2a:cb:23:b2:4f:d4:a8: 97:62:7e:69:99:66:aa:1b:86:4f:c5:ae:15:fb:7f: 46:53:42:dc:54:09:b5:bc:a9:b4:ad:1c:53:91:49: 13:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D3:98:7A:40:A3:04:12:61:D9:0B:8E:22:6C:85:46:15:E3:47:94 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.252.0.0/15 43.243.96.0/22 49.126.0.0/16 103.38.196.0/22 116.68.208.0/21 IPv6: 2400:9500::/32 Signature Algorithm: sha256WithRSAEncryption 34:41:ea:db:cd:e4:27:d5:db:f6:69:c0:f4:ed:de:6e:b2:35: 12:2d:49:3e:7c:b0:17:32:3d:a3:b9:ca:42:35:8a:c5:de:5d: 54:5e:a9:5e:e0:a6:bc:14:8b:90:fb:56:93:95:2e:96:f9:a6: 35:2c:67:6c:44:1f:c4:16:87:3e:9a:5c:f8:00:ba:8c:93:e2: e5:46:22:2e:cf:92:54:0a:e4:cc:e9:93:a6:74:7d:45:d6:9c: 79:ee:06:e7:33:41:e5:77:fe:2e:cd:46:1b:41:ef:6a:1d:8d: ab:e9:00:27:7b:ea:10:e9:f2:16:9a:e3:66:88:eb:e6:16:5d: c0:6a:82:68:7c:24:05:ed:5e:ad:e7:b4:6e:97:50:6e:7d:6c: dc:c8:20:79:4b:8f:a8:79:0f:5f:a0:62:77:82:36:2d:1b:b4: 8f:c7:5c:23:7c:61:d7:ef:45:27:e7:9c:a5:0d:af:e2:16:4b: 21:0d:93:3b:47:a3:c8:ef:e6:d6:94:a9:66:a4:5f:96:ff:62: 38:db:92:4d:37:60:d2:0e:d8:f2:e5:f8:64:18:fe:28:7c:6c: c8:b3:d7:86:5f:3d:13:90:40:96:0c:b3:0b:45:8d:f4:a3:69: a9:1e:86:0d:47:94:4d:46:0e:35:b7:b7:f0:86:a0:a8:19:e3: 3f:c5:44:cd -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQwMjI4MjExNjM1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmYTJiMi01NWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyja8SnJ9voUndpuxv2lAH3TStQ7VBLffcWWnhkA4gbmqEZUi2QwkjTyyGTYV aSkGY2OUXqQOO9LEBpsILZTWpzDnxWk45vkZ/KxtJKI+vx1snlJbU0xoDtrd80PI syv238aI7xwZLxjBgXr3KLYqQaaMmKAPapsikoQbMoXa9djG0HwpcRHjHE27iEBF 1i2MUAEG7PKAYRryv71qUD1IoRgKNSq3nHWyLZPEf+7hYmuGGwSAGCqAH25z8HJA Ht33SnEJzWaLWlymVeMoM8jNnB4N0lm9/tfA4SrLI7JP1KiXYn5pmWaqG4ZPxa4V +39GU0LcVAm1vKm0rRxTkUkTEwIDAQABo4ICujCCArYwHQYDVR0OBBYEFGLTmHpA owQSYdkLjiJshUYV40eUMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvQTZBNTNGQTJE NjdFMTFFRUFBMkNBMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMCIEAgABMBwDAwEk/AMEAivzYAMDADF+AwQCZybEAwQDdETQMA0EAgACMAcD BQAkAJUAMA0GCSqGSIb3DQEBCwUAA4IBAQA0QerbzeQn1dv2acD07d5usjUSLUk+ fLAXMj2jucpCNYrF3l1UXqle4Ka8FIuQ+1aTlS6W+aY1LGdsRB/EFoc+mlz4ALqM k+LlRiIuz5JUCuTM6ZOmdH1F1px57gbnM0Hld/4uzUYbQe9qHY2r6QAne+oQ6fIW muNmiOvmFl3AaoJofCQF7V6t57Rul1BufWzcyCB5S4+oeQ9foGJ3gjYtG7SPx1wj fGHX70Un55ylDa/iFkshDZM7R6PI7+bWlKlmpF+W/2I425JNN2DSDtjy5fhkGP4o fGzIs9eGXz0TkECWDLMLRY30o2mpHoYNR5RNRg41t7fwhqCoGeM/xUTN -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org