$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/DC23F5180E1611EF91DF311EC4F9AE02.roa File: DC23F5180E1611EF91DF311EC4F9AE02.roa (raw, json) Hash identifier: 5YTtYU8GaHrvE4yyR1EY9hka1AZ6ZuRNXoHQQl1jR3s= Subject key identifier: 84:DB:D1:3A:49:A9:E9:AE:20:0B:4E:F4:00:21:D8:94:37:B0:E1:B6 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 1B Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/DC23F5180E1611EF91DF311EC4F9AE02.roa Signing time: Thu 09 May 2024 15:14:42 +0000 ROA not before: Thu 09 May 2024 15:14:42 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138195 IP address blocks: 2400:b8c0::/32 maxlen: 32 2404:2040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: May 9 15:14:42 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=663ce861-5d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b9:ab:5e:fa:29:2f:ef:e3:12:31:c2:10:3d: 22:15:ca:d0:23:20:1c:0a:f5:26:74:51:a5:48:05: d2:a9:a4:b9:61:c2:1d:13:76:82:72:c3:c2:6d:8a: 17:f0:3d:30:f9:12:0a:57:6f:0e:34:ee:a3:f7:98: 4a:94:c4:99:5e:15:c5:bb:53:e3:9c:70:36:65:0e: ea:1c:df:73:56:3b:67:a4:12:6d:a7:35:ed:50:cd: 89:67:dc:2b:be:11:ac:8b:c1:cc:07:2f:d5:d3:48: 5e:f8:e5:7f:30:16:55:16:ce:b0:0b:ae:64:8f:1a: 5e:5d:0c:ea:69:2a:73:f2:ff:5a:a0:dd:d1:be:f0: 8a:ab:bc:14:4d:cd:41:a2:2b:1a:99:03:74:4b:2a: be:d7:0c:fe:62:ce:f3:67:09:a6:b5:7d:3e:46:fd: 17:21:75:43:c9:21:f1:bf:11:06:16:66:94:db:11: 91:a7:6a:67:c3:fe:1d:37:aa:8a:ad:b0:aa:3c:53: 14:7d:a3:c3:2d:a8:4c:0a:6c:22:c2:ea:ca:2f:a3: 88:ec:99:95:15:1d:d6:43:8b:82:83:0a:fd:7e:9e: 9e:45:42:91:59:98:07:e8:7c:35:cf:ae:9d:74:a4: 49:5b:7a:78:73:ff:95:0e:59:ae:66:79:ea:48:cf: 92:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DB:D1:3A:49:A9:E9:AE:20:0B:4E:F4:00:21:D8:94:37:B0:E1:B6 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/DC23F5180E1611EF91DF311EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b8c0::/32 2404:2040::/32 Signature Algorithm: sha256WithRSAEncryption be:55:74:74:86:8b:34:65:b3:54:72:76:2f:a6:d7:bd:a7:f0: 58:24:8d:bf:ef:ee:c4:fa:22:99:9f:cf:80:b7:a6:24:1b:0c: 05:7f:58:3d:5c:c6:d2:3b:88:40:c2:4f:3f:67:4a:92:49:1f: 6f:98:9a:b3:19:8a:41:83:2e:6d:01:0f:28:51:1c:e2:ca:67: d3:3c:60:8d:f0:70:66:f8:cb:b8:26:7d:ae:f2:bf:46:d5:44: a4:0f:c4:8e:a5:bc:fb:b4:e8:b5:ca:75:e3:a5:7c:18:49:5d: db:b6:85:1e:b8:f2:54:a7:8a:0c:74:e5:14:48:61:89:4c:d4: 70:cf:97:d5:c1:3b:1e:a2:32:4e:c4:c7:53:5b:ce:a1:80:da: e0:69:8b:05:e6:d1:25:68:c0:29:62:5f:72:f1:63:7d:91:ca: 58:c3:f2:8e:7d:19:3e:ef:cd:8f:6f:08:89:86:36:de:63:7c: 90:74:ae:d7:4e:50:32:69:ed:14:8b:51:d0:5a:b1:d7:82:98: e1:c9:e6:f3:bf:d9:ba:05:0c:0d:fb:e7:15:db:87:ae:f1:67: 7d:39:b2:7a:01:f9:2b:0b:74:08:f7:12:52:7b:2e:5b:d4:35: cf:cd:95:97:b0:8d:14:ef:d7:ec:03:4a:22:0e:8f:dc:01:43: 11:46:2f:cd -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Qjg2RDExMC8GA1UEBRMoMjU2QjVEMTc5MEQyNEM0RDZDOTcyMDY0RTkxQzZBRjAw QkQ2OEUzMjAeFw0yNDA1MDkxNTE0NDJaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2NlODYxLTVkMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKuate+ikv7+MSMcIQPSIVytAjIBwK9SZ0UaVIBdKppLlhwh0TdoJyw8Jtihfw PTD5EgpXbw407qP3mEqUxJleFcW7U+OccDZlDuoc33NWO2ekEm2nNe1QzYln3Cu+ EayLwcwHL9XTSF745X8wFlUWzrALrmSPGl5dDOppKnPy/1qg3dG+8IqrvBRNzUGi KxqZA3RLKr7XDP5izvNnCaa1fT5G/RchdUPJIfG/EQYWZpTbEZGnamfD/h03qoqt sKo8UxR9o8MtqEwKbCLC6sovo4jsmZUVHdZDi4KDCv1+np5FQpFZmAfofDXPrp10 pElbenhz/5UOWa5meepIz5JRAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUhNvROkmp 6a4gC070ACHYlDew4bYwHwYDVR0jBBgwFoAUJWtdF5DSTE1slyBk6Rxq8AvWjjIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCODZELzZGMDU4MjBFRTUz RTExRUVBMzhGMDg3N0M0RjlBRTAyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSld0ZEY1RFNURTFzbHlCazZSeHE4QXZXampJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9EQzIzRjUxODBF MTYxMUVGOTFERjMxMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAIwDgMFACQAuMADBQAkBCBAMA0GCSqGSIb3DQEBCwUAA4IBAQC+VXR0 hos0ZbNUcnYvpte9p/BYJI2/7+7E+iKZn8+At6YkGwwFf1g9XMbSO4hAwk8/Z0qS SR9vmJqzGYpBgy5tAQ8oURziymfTPGCN8HBm+Mu4Jn2u8r9G1USkD8SOpbz7tOi1 ynXjpXwYSV3btoUeuPJUp4oMdOUUSGGJTNRwz5fVwTseojJOxMdTW86hgNrgaYsF 5tElaMApYl9y8WN9kcpYw/KOfRk+782PbwiJhjbeY3yQdK7XTlAyae0Ui1HQWrHX gpjhyebzv9m6BQwN++cV24eu8Wd9ObJ6AfkrC3QI9xJSey5b1DXPzZWXsI0U79fs A0oiDo/cAUMRRi/N -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:32 2024 by rpki-client on console-ams.rpki-client.org