$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa File: 711115241AD911EA97EF1C30C4F9AE02.roa (raw, json) Hash identifier: GP8wxJbpu8lKGC5wHZVnan9DYdthwH9r41+dEhQM+OU= Subject key identifier: 9A:2E:4C:E7:82:D7:2E:03:E0:EF:3E:D9:11:DF:5B:56:AA:42:21:78 Certificate issuer: /CN=A91C4003/serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Certificate serial: 0A90 Authority key identifier: 03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa Signing time: Fri 28 Jul 2023 19:37:28 +0000 ROA not before: Fri 28 Jul 2023 19:37:28 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4f80::/32 maxlen: 32 2404:2080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2704 (0xa90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4003/serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Validity Not Before: Jul 28 19:37:28 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c418f7-8724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:94:32:b3:b8:fb:86:76:eb:4b:58:e8:11: f3:6b:87:6e:b4:01:1a:19:c3:dc:a3:03:91:90:21: c0:f5:9c:14:86:2d:cf:97:0f:9b:7a:9e:6a:1e:7f: ef:b6:bb:aa:d1:90:14:73:54:3e:fd:65:36:77:5a: 94:a7:38:47:7f:13:af:bd:2e:d9:af:34:38:06:9f: dc:67:7c:9e:1e:4f:76:59:47:37:f7:29:19:6a:78: d6:80:c7:10:a5:97:cc:63:c9:c3:e5:08:b8:66:fd: f6:63:57:2f:20:2c:ab:ef:2c:62:14:a6:bb:00:09: f4:2d:ae:e7:9e:15:9a:f9:99:9f:f6:4b:36:e1:53: db:28:9b:7b:d4:1d:1c:bd:bd:db:f8:5e:a2:15:f8: b1:20:a2:c8:7a:b0:10:01:a5:f1:d8:28:65:ea:b4: 7b:95:9f:fe:3d:f0:d7:5b:4a:49:58:2b:cc:12:3f: a5:06:5a:6a:7f:a4:48:ca:f9:d8:14:d5:d3:ea:c9: 7a:41:db:a1:4b:a4:70:ca:7b:13:6f:c5:75:68:17: d9:df:0b:72:28:9d:48:01:84:a0:4a:e5:33:f7:fb: 46:25:d5:a2:73:ae:8c:ab:77:73:a6:c5:6a:9d:8d: 62:d3:4c:a3:aa:ef:4d:4d:56:6b:b9:3c:22:3b:81: 9f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:2E:4C:E7:82:D7:2E:03:E0:EF:3E:D9:11:DF:5B:56:AA:42:21:78 X509v3 Authority Key Identifier: keyid:03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4f80::/32 2404:2080::/32 Signature Algorithm: sha256WithRSAEncryption 09:c5:08:2d:ce:c6:b0:d1:59:34:c2:2b:41:8f:b7:2f:eb:fa: 42:1f:05:5f:12:35:e0:0e:e9:8e:f1:34:89:4a:57:24:a3:43: c3:56:bf:a3:9d:2e:e0:2c:4e:84:f2:ab:0c:bd:dd:b9:ef:e4: 5f:ef:c4:a0:71:0b:8f:0b:e0:f8:cd:1a:61:32:15:08:8b:b6: 6b:1b:e5:c6:5a:4e:64:50:df:ca:96:80:9f:7e:3e:28:ee:46: 87:09:dd:05:10:c6:dd:aa:fe:81:4d:9e:95:3c:84:02:fa:da: 61:e6:a1:5d:14:90:20:cc:19:d0:a2:4e:f6:7e:95:15:d3:cf: 7d:06:17:9f:d0:bc:ad:10:a3:9e:93:5c:a7:fc:8e:70:1c:0b: 6d:c7:5c:06:73:68:a6:14:c1:ea:f8:d7:91:2d:eb:9f:9d:ae: 22:95:51:7d:f2:79:e7:d8:03:44:ae:22:89:a4:eb:65:2d:bb: 56:17:41:6f:c7:16:a7:13:32:88:bc:0b:f3:bc:c9:4f:26:6b: 8f:3e:0b:5d:e7:60:7d:a3:1f:71:70:42:3d:6c:20:3a:ef:f7: 18:1d:74:74:ac:66:d6:54:99:8d:8a:8c:ca:e1:86:9b:16:ba: e1:4b:b6:32:d5:f4:ed:6f:75:88:d4:e8:b2:d1:d5:b4:82:cd: 5f:61:41:21 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwMDMxMTAvBgNVBAUTKDAzOEE4NkYzNjJCMjU1N0Y5NEJFNzcyRUUwQzVGRDMx ODQ1RkUyNjMwHhcNMjMwNzI4MTkzNzI4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM0MThmNy04NzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4h+UMrO4+4Z260tY6BHza4dutAEaGcPcowORkCHA9ZwUhi3Plw+bep5qHn/v truq0ZAUc1Q+/WU2d1qUpzhHfxOvvS7ZrzQ4Bp/cZ3yeHk92WUc39ykZanjWgMcQ pZfMY8nD5Qi4Zv32Y1cvICyr7yxiFKa7AAn0La7nnhWa+Zmf9ks24VPbKJt71B0c vb3b+F6iFfixIKLIerAQAaXx2Chl6rR7lZ/+PfDXW0pJWCvMEj+lBlpqf6RIyvnY FNXT6sl6QduhS6RwynsTb8V1aBfZ3wtyKJ1IAYSgSuUz9/tGJdWic66Mq3dzpsVq nY1i00yjqu9NTVZruTwiO4Gf8QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJouTOeC 1y4D4O8+2RHfW1aqQiF4MB8GA1UdIwQYMBaAFAOKhvNislV/lL53LuDF/TGEX+Jj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDAwMy9COEU4QUQ3MjFB RDgxMUVBODJFNzRCMkZDNEY5QUUwMi9BNHFHODJLeVZYLVV2bmN1NE1YOU1ZUmY0 bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0cUc4Mkt5VlgtVXZuY3U0TVg5TVlSZjRtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwMDMvQjhFOEFENzIxQUQ4MTFFQTgyRTc0QjJGQzRGOUFFMDIvNzExMTE1MjQx QUQ5MTFFQTk3RUYxQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgACMA4DBQAkA0+AAwUAJAQggDANBgkqhkiG9w0BAQsFAAOCAQEACcUI Lc7GsNFZNMIrQY+3L+v6Qh8FXxI14A7pjvE0iUpXJKNDw1a/o50u4CxOhPKrDL3d ue/kX+/EoHELjwvg+M0aYTIVCIu2axvlxlpOZFDfypaAn34+KO5GhwndBRDG3ar+ gU2elTyEAvraYeahXRSQIMwZ0KJO9n6VFdPPfQYXn9C8rRCjnpNcp/yOcBwLbcdc BnNophTB6vjXkS3rn52uIpVRffJ559gDRK4iiaTrZS27VhdBb8cWpxMyiLwL87zJ TyZrjz4LXedgfaMfcXBCPWwgOu/3GB10dKxm1lSZjYqMyuGGmxa64Uu2MtX07W91 iNTostHVtILNX2FBIQ== -----END CERTIFICATE-----Generated at Mon May 6 23:05:49 2024 by rpki-client on console-fra.rpki-client.org