$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa File: ECC41AD2748A11ED80EF3436C4F9AE02.roa (raw, json) Hash identifier: m8IZ4qLO4phX6wK28elZrB9qe1Jr07UMQgFPwPXqMHs= Subject key identifier: 96:AE:DE:38:42:59:D4:53:99:92:16:C5:DD:DB:28:79:67:37:BB:C4 Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 0407 Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:47 +0000 ROA not before: Sat 09 Dec 2023 01:53:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 0 IP address blocks: 2400:5200:402::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 02:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Dec 9 01:53:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6573c8ab-7986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:83:aa:6e:04:79:f0:a5:d7:4d:3f:4f:64: d5:a7:49:6d:27:85:61:a4:8a:38:3c:53:3e:9b:ec: eb:7c:2a:94:f1:c8:fd:0c:f3:5a:c9:1e:68:48:ab: 9e:45:e3:f1:48:a1:6e:fb:15:5c:ff:a6:ca:f1:0d: 29:8a:ee:4c:05:d6:8d:68:e1:f2:cf:7a:dc:54:28: 57:4d:5f:e3:a1:9b:c0:ef:c8:b5:d4:1c:5e:f5:db: 31:89:a0:ec:e9:be:87:aa:6a:de:23:f4:9b:a9:72: 90:92:4e:fe:a0:a9:13:2b:87:4d:d3:5d:e2:46:4b: 8c:16:fc:a6:ae:a6:19:94:c5:40:06:a7:76:65:21: ed:e8:0e:03:6b:42:b3:54:b4:cd:c3:3b:8d:32:d1: b5:08:35:a7:54:31:14:c0:59:3b:54:80:29:1b:b5: 74:8d:0d:15:6b:63:f8:7c:72:e2:6d:b2:fe:93:4f: c8:b8:10:00:a7:88:26:af:bc:e9:25:f0:86:b5:ba: 38:b9:7d:60:65:3c:a5:b8:ad:c8:b4:01:25:8c:2f: 56:dd:67:d4:2a:40:47:76:19:3a:38:4f:f1:f9:fb: 01:e1:8c:57:94:f4:a3:9f:a3:7e:3e:3b:cb:5e:19: 56:cb:12:62:66:31:d7:f1:7b:c1:b3:5f:e7:52:13: a8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AE:DE:38:42:59:D4:53:99:92:16:C5:DD:DB:28:79:67:37:BB:C4 X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/ECC41AD2748A11ED80EF3436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:5200:402::/48 Signature Algorithm: sha256WithRSAEncryption 05:12:c2:36:fd:b4:11:7c:ea:bc:1f:b1:8a:90:cf:ba:d3:81: 5d:24:44:13:c7:50:c2:aa:e3:b6:ab:8e:be:43:e7:db:b9:0f: 5f:95:20:65:b1:c0:a7:4e:20:3a:fe:1e:7e:e6:88:f4:be:f9: 65:d3:5b:cf:83:05:5f:4e:3a:b4:9c:4b:2e:3e:76:4a:c7:6e: d0:99:d6:ed:c3:95:fc:a3:42:47:ba:ae:95:70:e0:2f:ab:dd: 8e:46:69:00:b2:10:5c:d5:de:a4:20:f7:32:6d:cd:92:c2:36: 85:0f:c0:37:19:f6:70:07:23:ec:0a:83:fa:ae:df:1e:11:82: 27:d7:68:7a:9a:bf:ec:43:09:1a:2f:d5:10:69:18:cd:47:7d: 26:c2:01:b8:64:79:d4:83:35:61:a2:0b:c7:d9:3e:a5:80:3e: 5c:81:82:56:cf:47:29:f1:48:ce:78:57:ee:d1:9f:06:8b:18: 77:f9:2f:8a:fe:89:ff:4d:63:04:37:85:1d:53:16:96:26:93: 9c:62:77:81:3d:8b:69:8d:57:91:2a:6b:8f:6f:66:f0:95:e8: 07:f6:f7:82:ed:8d:2d:3d:7e:c0:77:25:58:25:73:73:9d:7d: 77:4d:04:93:89:d2:b7:be:89:ae:9a:48:1d:8b:9b:07:bf:42: 72:60:73:61 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjMxMjA5MDE1MzQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzhhYi03OTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJyDqm4EefCl100/T2TVp0ltJ4VhpIo4PFM+m+zrfCqU8cj9DPNayR5oSKue RePxSKFu+xVc/6bK8Q0piu5MBdaNaOHyz3rcVChXTV/joZvA78i11Bxe9dsxiaDs 6b6HqmreI/SbqXKQkk7+oKkTK4dN013iRkuMFvymrqYZlMVABqd2ZSHt6A4Da0Kz VLTNwzuNMtG1CDWnVDEUwFk7VIApG7V0jQ0Va2P4fHLibbL+k0/IuBAAp4gmr7zp JfCGtbo4uX1gZTyluK3ItAEljC9W3WfUKkBHdhk6OE/x+fsB4YxXlPSjn6N+PjvL XhlWyxJiZjHX8XvBs1/nUhOonQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJau3jhC WdRTmZIWxd3bKHlnN7vEMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvRUNDNDFBRDI3 NDhBMTFFRDgwRUYzNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFIABAIwDQYJKoZIhvcNAQELBQADggEBAAUSwjb9tBF8 6rwfsYqQz7rTgV0kRBPHUMKq47arjr5D59u5D1+VIGWxwKdOIDr+Hn7miPS++WXT W8+DBV9OOrScSy4+dkrHbtCZ1u3DlfyjQke6rpVw4C+r3Y5GaQCyEFzV3qQg9zJt zZLCNoUPwDcZ9nAHI+wKg/qu3x4RgifXaHqav+xDCRov1RBpGM1HfSbCAbhkedSD NWGiC8fZPqWAPlyBglbPRynxSM54V+7RnwaLGHf5L4r+if9NYwQ3hR1TFpYmk5xi d4E9i2mNV5Eqa49vZvCV6Af294LtjS09fsB3JVglc3OdfXdNBJOJ0re+ia6aSB2L mwe/QnJgc2E= -----END CERTIFICATE-----Generated at Thu Apr 25 03:19:30 2024 by rpki-client on console-fra.rpki-client.org