$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa File: D40753E8F6C411EEAFF62079C4F9AE02.roa (raw, json) Hash identifier: IEVg+iADhHfbTrHmGzasbdnYvtdWc//bt6o2EzSFnLc= Subject key identifier: A8:20:91:60:0A:1C:8B:AF:8C:59:9C:C1:91:78:B9:D0:8E:92:79:F5 Certificate issuer: /CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3 Certificate serial: 020F Authority key identifier: 86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa Signing time: Tue 09 Apr 2024 22:59:33 +0000 ROA not before: Tue 09 Apr 2024 22:59:33 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 262287 IP address blocks: 2404:f980:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.crl rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3 Validity Not Before: Apr 9 22:59:33 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6615c854-9c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:b2:ea:32:70:7f:24:21:70:79:19:b9:da: b7:ea:e7:86:59:f2:31:99:85:2f:60:f0:2c:58:01: 13:b7:75:f9:25:be:96:a0:48:63:3a:93:40:35:fc: 1a:44:bd:e5:53:04:2f:f2:8d:d6:40:8b:ef:2f:bd: 1c:6e:16:34:20:cf:da:bf:d8:f4:d2:ba:de:a4:a9: f8:c7:d3:1f:ca:88:01:81:72:39:8d:21:f4:1a:17: bd:fa:c3:69:79:a0:5e:4f:f0:bd:ee:db:09:4c:2b: 34:0c:e7:ee:cd:37:2e:9f:57:f6:ee:61:10:d7:48: c8:8f:67:b7:2d:11:bb:6d:5a:08:17:a9:6d:b1:2b: 27:56:18:c4:0d:bc:dd:69:38:24:25:b4:9a:30:6a: 0a:cc:82:ed:5a:b3:b6:12:c0:e5:47:af:7e:12:f3: 15:5b:85:e9:9c:53:a1:f6:5f:16:b0:17:a1:31:9e: d0:67:25:74:40:bf:56:ae:73:0e:fa:18:da:78:a7: c5:14:9c:6c:29:56:ea:21:1e:1f:13:56:a3:19:0d: cf:be:3f:dd:44:2a:dc:a6:86:e9:90:d9:3a:28:61: 1e:e4:ad:ef:65:05:6b:4a:6d:fe:6c:9d:eb:5e:8b: 02:88:f9:6a:67:14:10:07:ce:0e:69:95:06:70:bf: 3c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:91:60:0A:1C:8B:AF:8C:59:9C:C1:91:78:B9:D0:8E:92:79:F5 X509v3 Authority Key Identifier: keyid:86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f980:8::/48 Signature Algorithm: sha256WithRSAEncryption 9b:de:78:19:2a:dd:5c:70:76:3d:93:c3:ee:7e:d6:f9:b8:ba: 63:7f:7c:b0:1d:3b:d7:ef:30:19:2c:12:c2:cc:9c:2f:d3:0f: 08:9f:5f:ba:79:07:8c:63:2b:ad:97:90:b9:22:20:64:a6:64: a1:6c:a3:df:cb:38:c1:98:d4:69:17:ef:31:b4:15:fc:d4:40: f4:7e:eb:98:7b:d1:5b:08:80:8d:33:be:bc:05:0a:36:46:4e: d3:30:c6:d0:0a:d1:bb:f4:de:a4:91:42:93:98:07:47:9a:19: 15:dd:5a:8b:08:de:bf:c9:24:43:ed:3d:96:0d:4b:3e:af:67: 8a:00:3e:96:93:84:41:8a:2c:7b:84:f6:e9:c2:fc:6b:83:e0: 28:62:fc:2b:a3:c3:ef:5e:ca:92:39:fe:4e:d0:16:c3:9d:d4: 4e:dc:e5:19:2e:e5:84:3f:7d:c6:3e:70:20:b4:c5:cf:3e:ab: 76:02:78:86:f0:11:4d:c4:f5:8a:c3:bf:db:e7:36:1a:f6:a0: a4:4b:da:cb:0d:f8:8d:47:fe:91:19:60:b6:26:ee:e0:6a:65: 5b:af:ff:c2:81:5a:9e:36:34:b0:70:64:e0:80:d4:f5:13:14: 1b:a2:e2:be:c4:12:20:2d:cf:20:6f:dc:14:56:f9:66:c0:4e: 9e:e5:59:82 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5NDUxMTAvBgNVBAUTKDg2OEVDQjY0MjVEQTgzMzI4ODkyRTU3QkIwREY2NDRF MUFFQjczQjMwHhcNMjQwNDA5MjI1OTMzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE1Yzg1NC05YzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOCy6jJwfyQhcHkZudq36ueGWfIxmYUvYPAsWAETt3X5Jb6WoEhjOpNANfwa RL3lUwQv8o3WQIvvL70cbhY0IM/av9j00rrepKn4x9MfyogBgXI5jSH0Ghe9+sNp eaBeT/C97tsJTCs0DOfuzTcun1f27mEQ10jIj2e3LRG7bVoIF6ltsSsnVhjEDbzd aTgkJbSaMGoKzILtWrO2EsDlR69+EvMVW4XpnFOh9l8WsBehMZ7QZyV0QL9WrnMO +hjaeKfFFJxsKVbqIR4fE1ajGQ3Pvj/dRCrcpobpkNk6KGEe5K3vZQVrSm3+bJ3r XosCiPlqZxQQB84OaZUGcL88lQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKggkWAK HIuvjFmcwZF4udCOknn1MB8GA1UdIwQYMBaAFIaOy2Ql2oMyiJLle7DfZE4a63Oz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTk0NS9CQzAwQzhGMkYw OUUxMUVDQUVFNzNFMTlDNEY5QUUwMi9obzdMWkNYYWd6S0lrdVY3c045a1RocnJj N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvN0xaQ1hhZ3pLSWt1VjdzTjlrVGhycmM3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk5NDUvQkMwMEM4RjJGMDlFMTFFQ0FFRTczRTE5QzRGOUFFMDIvRDQwNzUzRThG NkM0MTFFRUFGRjYyMDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBPmAAAgwDQYJKoZIhvcNAQELBQADggEBAJveeBkq3Vxw dj2Tw+5+1vm4umN/fLAdO9fvMBksEsLMnC/TDwifX7p5B4xjK62XkLkiIGSmZKFs o9/LOMGY1GkX7zG0FfzUQPR+65h70VsIgI0zvrwFCjZGTtMwxtAK0bv03qSRQpOY B0eaGRXdWosI3r/JJEPtPZYNSz6vZ4oAPpaThEGKLHuE9unC/GuD4Chi/Cujw+9e ypI5/k7QFsOd1E7c5Rku5YQ/fcY+cCC0xc8+q3YCeIbwEU3E9YrDv9vnNhr2oKRL 2ssN+I1H/pEZYLYm7uBqZVuv/8KBWp42NLBwZOCA1PUTFBui4r7EEiAtzyBv3BRW +WbATp7lWYI= -----END CERTIFICATE-----Generated at Mon Apr 29 04:55:53 2024 by rpki-client on console-fra.rpki-client.org