$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa File: ED352AAEBFE511EEBB3B4D25C4F9AE02.roa (raw, json) Hash identifier: RF60v/sSHyFBd9DX6rUeFztFrcMi4xrRDE9ajqiCa+o= Subject key identifier: C3:92:75:DC:D2:F4:47:39:BF:07:01:F4:8E:DA:DD:7B:60:A7:80:89 Certificate issuer: /CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Certificate serial: 0F Authority key identifier: BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa Signing time: Thu 22 Feb 2024 11:37:13 +0000 ROA not before: Thu 22 Feb 2024 11:37:13 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 15830 IP address blocks: 2401:5aa0::/32 maxlen: 32 2401:5aa1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 08:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Validity Not Before: Feb 22 11:37:13 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65d731e9-2a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a9:37:68:3e:3f:c3:00:87:a5:7e:27:ff:e2: 1b:05:6d:61:fb:17:52:a7:c6:88:03:a8:2d:cd:0f: 66:89:ce:11:e3:26:ed:1f:21:4f:77:97:cf:95:d3: 06:e7:31:1a:85:a6:1a:3b:35:a5:a3:2e:e6:0c:45: 25:26:8e:d0:35:62:ad:3f:cb:5a:8d:c7:53:73:d9: c9:66:82:70:59:54:c1:85:67:5f:96:c8:9a:ce:14: 02:f0:65:c1:7c:af:01:27:1e:a9:1f:41:9e:68:ab: b6:e7:ea:32:04:de:52:6f:25:54:52:0c:6f:8c:41: f5:7f:73:09:40:ad:2e:fa:82:16:45:bd:ef:43:01: be:ba:ac:e0:60:2d:23:f4:92:04:38:19:ec:f3:20: 51:72:f2:09:2d:9f:c4:99:44:74:71:d5:8f:9e:4b: 2f:a8:42:7f:9c:46:f6:3e:96:2c:8c:6f:fe:b9:48: 0c:b5:de:c8:ee:4b:14:61:c9:b6:00:e1:f7:c2:47: b9:4d:2d:7f:23:bb:64:37:94:cc:08:a7:c8:9b:d3: f2:aa:14:2a:2a:90:cd:75:3b:17:ba:17:5c:75:c8: 6b:59:1d:c0:bf:66:5c:3d:30:b1:78:27:a4:39:8c: e6:7e:4f:9f:c5:42:e0:ee:79:46:37:cf:0e:af:b0: 11:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:92:75:DC:D2:F4:47:39:BF:07:01:F4:8E:DA:DD:7B:60:A7:80:89 X509v3 Authority Key Identifier: keyid:BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5aa0::/31 Signature Algorithm: sha256WithRSAEncryption a3:68:df:11:3f:d8:a5:36:9a:3e:2c:b5:51:d3:88:47:db:64: 4a:20:09:27:75:4c:00:8f:12:20:c6:2e:28:5f:53:12:2b:8d: 22:53:0e:fa:25:68:ff:52:a0:dc:68:2f:bf:3a:0f:6a:45:bb: 47:fa:59:85:db:e3:0e:59:1d:4f:a5:ca:cf:99:ea:2c:4d:13: 1c:72:a4:84:11:b7:0c:7e:00:6c:bb:dd:2c:6f:22:60:4a:f0: 18:65:2a:a2:3f:f3:a5:19:97:32:f0:03:d2:3c:c3:6e:2c:a0: 0f:53:72:64:1b:93:5d:35:c3:c4:17:e5:d6:24:c3:ed:6a:ee: 94:d0:37:85:61:be:7c:6a:32:ad:3d:1e:0f:45:36:7f:95:27: a4:66:f7:b8:9e:99:64:5b:da:1f:09:73:6b:4d:6e:2b:05:7d: 00:ca:40:f2:3a:ae:d9:de:73:08:27:8b:14:f5:78:9f:f2:e1: 9a:ef:cf:3b:b3:62:3a:5b:a1:e5:50:60:62:a5:f5:64:4c:10: cf:78:c8:50:03:6d:44:b6:8f:72:fd:5f:61:69:27:4a:fa:d6: b8:a1:e8:15:96:d9:24:e3:53:dd:d5:29:05:a1:76:db:ed:18: c3:4f:2a:d1:a8:dd:02:61:35:ff:bc:73:2d:43:c6:1c:16:6e: d7:d0:3a:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEVDNzExMC8GA1UEBRMoQkE4OTAxNEVCQzQ5NEI2N0ZEOEIzRjgyRThCMzhFRjZG NkM1NzI0RDAeFw0yNDAyMjIxMTM3MTNaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDczMWU5LTJhNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXqTdoPj/DAIelfif/4hsFbWH7F1KnxogDqC3ND2aJzhHjJu0fIU93l8+V0wbn MRqFpho7NaWjLuYMRSUmjtA1Yq0/y1qNx1Nz2clmgnBZVMGFZ1+WyJrOFALwZcF8 rwEnHqkfQZ5oq7bn6jIE3lJvJVRSDG+MQfV/cwlArS76ghZFve9DAb66rOBgLSP0 kgQ4GezzIFFy8gktn8SZRHRx1Y+eSy+oQn+cRvY+liyMb/65SAy13sjuSxRhybYA 4ffCR7lNLX8ju2Q3lMwIp8ib0/KqFCoqkM11Oxe6F1x1yGtZHcC/Zlw9MLF4J6Q5 jOZ+T5/FQuDueUY3zw6vsBHPAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUw5J13NL0 Rzm/BwH0jtrde2CngIkwHwYDVR0jBBgwFoAUuokBTrxJS2f9iz+C6LOO9vbFck0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RUM3Lzc1NzU3ODcwQkZF NTExRUVBQUNFNDMxMkM0RjlBRTAyL3Vva0JUcnhKUzJmOWl6LUM2TE9POXZiRmNr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdW9rQlRyeEpTMmY5aXotQzZMT085dmJGY2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEVDNy83NTc1Nzg3MEJGRTUxMUVFQUFDRTQzMTJDNEY5QUUwMi9FRDM1MkFBRUJG RTUxMUVFQkIzQjREMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFASQBWqAwDQYJKoZIhvcNAQELBQADggEBAKNo3xE/2KU2mj4s tVHTiEfbZEogCSd1TACPEiDGLihfUxIrjSJTDvolaP9SoNxoL786D2pFu0f6WYXb 4w5ZHU+lys+Z6ixNExxypIQRtwx+AGy73SxvImBK8BhlKqI/86UZlzLwA9I8w24s oA9TcmQbk101w8QX5dYkw+1q7pTQN4VhvnxqMq09Hg9FNn+VJ6Rm97iemWRb2h8J c2tNbisFfQDKQPI6rtnecwgnixT1eJ/y4ZrvzzuzYjpboeVQYGKl9WRMEM94yFAD bUS2j3L9X2FpJ0r61rih6BWW2STjU93VKQWhdtvtGMNPKtGo3QJhNf+8cy1DxhwW btfQOqM= -----END CERTIFICATE-----Generated at Fri May 3 10:34:10 2024 by rpki-client on console-ams.rpki-client.org