$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/0C5EDCDA716911EDA03D4A50C4F9AE02.roa File: 0C5EDCDA716911EDA03D4A50C4F9AE02.roa (raw, json) Hash identifier: ejFMT70IjHWQKzZaSEDxOf+KHahnD09ISiZqpnsDA5o= Subject key identifier: 4A:0A:1F:0B:8D:4C:AC:66:F8:50:1B:CC:11:5A:54:CF:AD:6F:04:8D Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 040A Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/0C5EDCDA716911EDA03D4A50C4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:49 +0000 ROA not before: Sat 09 Dec 2023 01:53:49 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16625 IP address blocks: 2400:5200:402::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Dec 9 01:53:49 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6573c8ad-c655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f5:63:df:61:47:75:21:69:8f:a3:75:a7:d2: 94:95:0f:5e:48:3c:61:4e:47:10:fb:53:22:4d:76: 67:51:86:34:1a:2c:24:df:ac:c0:f2:88:96:9d:09: 00:86:67:76:c3:ca:16:6a:d7:36:c9:0f:de:f5:a1: d6:4c:28:a1:7e:b8:b8:04:4f:75:58:4f:f3:a9:93: a7:b5:38:53:1f:81:14:59:84:db:7e:31:cd:45:2f: 14:1f:d4:26:8f:2c:f3:13:40:6e:f1:48:ed:a6:02: 68:54:1a:b2:11:97:ed:93:67:78:d7:7a:b2:04:33: 98:09:73:92:25:01:91:47:ca:1f:36:3e:4d:9e:3b: 10:6b:59:30:44:89:39:b6:53:95:81:34:36:50:89: 8a:19:84:2e:0e:0f:5e:06:2d:ee:96:16:9e:42:fb: bd:a6:d7:dc:96:79:00:f4:0f:ef:ce:28:19:81:ce: 1f:46:59:a5:08:97:5a:9d:9d:88:f4:8e:92:4e:b9: 57:06:62:69:4b:3a:e3:38:05:b8:e6:b5:a2:6b:3c: 86:d5:69:08:f1:a1:e4:d3:e4:a2:9d:87:cc:77:78: 0d:76:1b:3f:48:33:84:16:19:19:25:f1:2d:60:30: 15:3c:a3:d1:d7:d9:8f:dd:07:de:89:75:da:32:cd: d9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0A:1F:0B:8D:4C:AC:66:F8:50:1B:CC:11:5A:54:CF:AD:6F:04:8D X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/0C5EDCDA716911EDA03D4A50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:5200:402::/48 Signature Algorithm: sha256WithRSAEncryption a1:4f:53:3a:13:5c:99:d7:63:21:bf:99:09:9a:74:38:37:3c: 03:e2:c5:41:0f:d1:e7:2d:8d:19:ae:57:49:c4:b1:41:be:4c: a5:44:62:46:69:b4:8d:ca:7e:72:89:9d:cb:e5:4e:9e:52:8f: 77:b7:0f:3d:db:ed:e6:a4:47:81:34:31:fb:61:0b:63:b2:2a: b7:85:bf:8c:05:9a:70:29:ca:c3:74:4c:0e:a5:1a:37:69:c1: b0:e4:5b:d4:19:31:5e:a6:0f:1e:54:4b:07:07:20:5b:e0:97: bc:9e:e2:27:d9:72:5f:3e:31:c2:4c:2f:4d:5b:51:1c:66:a4: f7:86:1e:cb:8e:56:ad:75:8f:ab:57:65:49:61:d5:cf:6a:79: f6:60:90:7f:61:0c:94:df:07:41:bb:55:34:7b:08:00:e7:a8: 17:69:99:b4:12:54:eb:5e:77:89:95:94:3b:ac:e4:ac:b2:a6: ae:8e:21:09:18:6c:5a:3e:70:01:12:48:d4:04:bc:28:ad:92: f4:c8:b7:49:5b:0e:48:53:3d:af:8c:81:1f:31:01:05:3f:28: 14:bb:cf:f9:81:76:8d:08:96:38:81:6f:b2:0e:6f:3f:c2:ae: ac:8b:58:09:66:27:34:db:26:c1:00:1a:b4:d6:bd:9d:be:50: e4:79:c8:00 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjMxMjA5MDE1MzQ5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzhhZC1jNjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPVj32FHdSFpj6N1p9KUlQ9eSDxhTkcQ+1MiTXZnUYY0Giwk36zA8oiWnQkA hmd2w8oWatc2yQ/e9aHWTCihfri4BE91WE/zqZOntThTH4EUWYTbfjHNRS8UH9Qm jyzzE0Bu8UjtpgJoVBqyEZftk2d413qyBDOYCXOSJQGRR8ofNj5NnjsQa1kwRIk5 tlOVgTQ2UImKGYQuDg9eBi3ulhaeQvu9ptfclnkA9A/vzigZgc4fRlmlCJdanZ2I 9I6STrlXBmJpSzrjOAW45rWiazyG1WkI8aHk0+SinYfMd3gNdhs/SDOEFhkZJfEt YDAVPKPR19mP3QfeiXXaMs3Z0wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEoKHwuN TKxm+FAbzBFaVM+tbwSNMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvMEM1RURDREE3 MTY5MTFFREEwM0Q0QTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFIABAIwDQYJKoZIhvcNAQELBQADggEBAKFPUzoTXJnX YyG/mQmadDg3PAPixUEP0ectjRmuV0nEsUG+TKVEYkZptI3KfnKJncvlTp5Sj3e3 Dz3b7eakR4E0MfthC2OyKreFv4wFmnApysN0TA6lGjdpwbDkW9QZMV6mDx5USwcH IFvgl7ye4ifZcl8+McJML01bURxmpPeGHsuOVq11j6tXZUlh1c9qefZgkH9hDJTf B0G7VTR7CADnqBdpmbQSVOted4mVlDus5Kyypq6OIQkYbFo+cAESSNQEvCitkvTI t0lbDkhTPa+MgR8xAQU/KBS7z/mBdo0IljiBb7IObz/CrqyLWAlmJzTbJsEAGrTW vZ2+UOR5yAA= -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org