$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/C4C0B9160E4C11EF82F91F39C4F9AE02.roa File: C4C0B9160E4C11EF82F91F39C4F9AE02.roa (raw, json) Hash identifier: NyvsbGaq1HKR+L0PRnbDheo2EQMUIsjiG+x1CykE4V4= Subject key identifier: 29:2D:CC:C0:69:50:8F:A2:DA:30:98:E2:0A:08:11:79:9D:C8:94:C3 Certificate issuer: /CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Certificate serial: 3C Authority key identifier: E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/C4C0B9160E4C11EF82F91F39C4F9AE02.roa Signing time: Thu 09 May 2024 21:40:35 +0000 ROA not before: Thu 09 May 2024 21:40:35 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152334 IP address blocks: 2001:df3:c940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Oct 2024 04:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6CAF/serialNumber=E015F393E7A323C3F4F1BFE26E5BFE040E35E553 Validity Not Before: May 9 21:40:35 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=663d42d3-ca29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:79:e2:7b:28:e9:eb:c2:22:b2:9f:bb:83:f0: 31:8a:d8:44:57:f0:12:9c:34:25:72:2f:23:6b:78: f5:1a:6e:0a:c3:fa:e9:db:fa:8c:ad:62:bc:6f:9b: f5:bb:e0:66:2c:73:11:b7:90:13:e7:2b:c1:d3:1d: fd:41:43:a8:ee:94:7d:70:7b:d8:1d:05:2c:8d:d1: e8:19:b2:64:0e:34:aa:dd:b3:d0:14:6e:46:7a:ca: 84:a2:47:99:14:54:3a:ff:91:da:91:d3:ae:59:83: 2b:52:1b:fd:12:a0:97:41:5b:71:44:e7:4c:1a:a9: c7:82:13:f1:1b:69:8b:52:31:99:86:96:6f:63:e0: 8c:f3:f3:11:b6:a1:42:25:7f:10:ff:c8:ef:63:bd: 3e:64:12:0e:af:a5:d8:4e:ac:8c:ff:ec:bf:f8:b2: 07:c4:65:a8:22:67:47:51:82:88:b1:c9:30:b7:3f: 85:53:dc:7c:2f:71:f4:e6:c6:94:11:1f:e6:cb:f7: a8:4e:59:07:d0:8c:4d:39:85:6f:80:6a:a7:22:cc: 16:f9:6a:89:e2:0f:b5:93:1f:e1:d6:0d:4f:76:ad: 88:85:4d:9d:60:3b:66:1b:d4:0c:9c:83:a5:07:b0: 9c:bb:db:05:38:98:79:3e:7c:9b:cd:04:18:8b:fb: a4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2D:CC:C0:69:50:8F:A2:DA:30:98:E2:0A:08:11:79:9D:C8:94:C3 X509v3 Authority Key Identifier: keyid:E0:15:F3:93:E7:A3:23:C3:F4:F1:BF:E2:6E:5B:FE:04:0E:35:E5:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/4BXzk-ejI8P08b_iblv-BA415VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BXzk-ejI8P08b_iblv-BA415VM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6CAF/FD26DC22B6F411EEAC203810C4F9AE02/C4C0B9160E4C11EF82F91F39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:c940::/48 Signature Algorithm: sha256WithRSAEncryption 0d:0c:46:3f:9f:9d:63:58:07:59:4e:3e:e0:04:46:4d:b6:af: 5f:00:e1:11:55:61:5c:a6:d3:43:8e:c1:49:71:e9:78:b2:63: 9a:eb:4d:e7:2f:62:21:b9:58:79:ab:46:ec:b5:20:03:78:aa: a4:4d:17:a5:6a:73:df:d5:7e:b6:d3:c3:92:ae:68:4b:52:a7: 55:ce:ce:76:93:78:33:c3:29:07:64:5f:94:de:f2:63:6e:d2: aa:d1:5e:00:db:f5:55:8a:51:ee:54:21:7e:b6:b8:a3:2d:9d: 08:8c:84:8f:1e:ec:94:f2:c2:d7:ee:9e:05:65:b9:ba:cf:1d: 7b:27:af:83:80:2f:34:db:3a:a7:b6:14:29:5b:4f:eb:f4:2d: cb:39:e3:aa:b1:c3:66:51:0d:52:65:43:bb:f5:39:f1:db:d6: 13:84:da:e5:64:19:65:a2:f5:bc:14:1f:ae:df:ae:ca:78:78: 2a:32:3f:30:30:4a:1f:5c:8a:d9:7f:7f:80:a2:6d:af:80:2b: 3d:0b:73:6d:52:bf:d6:60:8e:50:df:5e:3e:b4:f8:2a:c3:ce: ef:c3:19:a9:ec:37:4b:89:03:8e:d9:1c:8a:e1:c3:a9:fb:0b: 0d:e9:81:ab:b9:f4:1b:be:62:32:fb:15:11:09:47:30:aa:68: 1e:07:1b:88 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkNBRjExMC8GA1UEBRMoRTAxNUYzOTNFN0EzMjNDM0Y0RjFCRkUyNkU1QkZFMDQw RTM1RTU1MzAeFw0yNDA1MDkyMTQwMzVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2Q0MmQzLWNhMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVeeJ7KOnrwiKyn7uD8DGK2ERX8BKcNCVyLyNrePUabgrD+unb+oytYrxvm/W7 4GYscxG3kBPnK8HTHf1BQ6julH1we9gdBSyN0egZsmQONKrds9AUbkZ6yoSiR5kU VDr/kdqR065ZgytSG/0SoJdBW3FE50waqceCE/EbaYtSMZmGlm9j4Izz8xG2oUIl fxD/yO9jvT5kEg6vpdhOrIz/7L/4sgfEZagiZ0dRgoixyTC3P4VT3HwvcfTmxpQR H+bL96hOWQfQjE05hW+AaqcizBb5aoniD7WTH+HWDU92rYiFTZ1gO2Yb1Aycg6UH sJy72wU4mHk+fJvNBBiL+6QBAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUKS3MwGlQ j6LaMJjiCggReZ3IlMMwHwYDVR0jBBgwFoAU4BXzk+ejI8P08b/iblv+BA415VMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2Q0FGL0ZEMjZEQzIyQjZG NDExRUVBQzIwMzgxMEM0RjlBRTAyLzRCWHprLWVqSThQMDhiX2libHYtQkE0MTVW TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNEJYemstZWpJOFAwOGJfaWJsdi1CQTQxNVZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkNBRi9GRDI2REMyMkI2RjQxMUVFQUMyMDM4MTBDNEY5QUUwMi9DNEMwQjkxNjBF NEMxMUVGODJGOTFGMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPJQDANBgkqhkiG9w0BAQsFAAOCAQEADQxGP5+dY1gH WU4+4ARGTbavXwDhEVVhXKbTQ47BSXHpeLJjmutN5y9iIblYeatG7LUgA3iqpE0X pWpz39V+ttPDkq5oS1KnVc7OdpN4M8MpB2RflN7yY27SqtFeANv1VYpR7lQhfra4 oy2dCIyEjx7slPLC1+6eBWW5us8deyevg4AvNNs6p7YUKVtP6/QtyznjqrHDZlEN UmVDu/U58dvWE4Ta5WQZZaL1vBQfrt+uynh4KjI/MDBKH1yK2X9/gKJtr4ArPQtz bVK/1mCOUN9ePrT4KsPO78MZqew3S4kDjtkciuHDqfsLDemBq7n0G75iMvsVEQlH MKpoHgcbiA== -----END CERTIFICATE-----Generated at Fri Sep 27 06:22:55 2024 by rpki-client on console-ams.rpki-client.org