$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa File: C9848396CD1711ED898C311FC4F9AE02.roa (raw, json) Hash identifier: yZFbVVTPBwvrRTsqOgmswnZyFQQB/4sMbv/BLqO/6WI= Subject key identifier: 6F:8F:46:AE:E0:BC:8A:15:6E:97:C3:3E:74:B7:F2:89:57:8F:58:86 Certificate issuer: /CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Certificate serial: 24DF Authority key identifier: B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa Signing time: Sat 30 Sep 2023 16:12:47 +0000 ROA not before: Sat 30 Sep 2023 16:12:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24429 IP address blocks: 2404:8d02:28c8::/48 maxlen: 48 2404:8d02:4881::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9439 (0x24df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Validity Not Before: Sep 30 16:12:47 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651848fe-547f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:59:e2:a1:92:ca:81:e6:da:5e:18:a8:40:87: b2:f3:ea:39:12:37:a0:65:1e:7a:71:bf:7f:ce:4c: f9:58:31:99:07:b9:40:3e:a5:f2:c1:ce:1a:5e:52: 93:d6:94:89:0e:bd:f5:ad:62:b0:a8:f8:f3:12:40: c8:aa:ed:59:46:7a:19:f8:c3:35:95:d0:57:94:3e: b1:50:4f:00:86:72:66:de:a7:3b:46:3e:11:b2:9c: d9:f3:b5:c5:f7:9c:3f:56:e4:ef:2a:75:78:11:1f: 5e:e7:3b:a7:98:05:d8:d7:1d:a8:93:39:ea:de:9c: 1c:77:98:aa:5c:e4:53:01:76:60:b1:11:15:91:5a: 81:e8:77:47:c3:bc:46:28:5d:22:04:3a:5a:61:45: ed:61:17:bb:83:d0:a7:e9:ca:8c:df:79:0e:e1:54: cb:53:c0:e6:29:9e:e6:43:bd:b9:00:1b:0b:b0:b8: 4f:48:a4:ef:c6:65:4f:9f:cf:c9:36:7a:b1:5d:51: 56:4d:f0:94:aa:05:d6:f6:1b:b9:4e:d4:48:5c:60: a7:2e:8f:8c:c6:5b:f5:36:d3:b6:1a:d5:a3:fe:4b: f4:00:bd:c9:1b:c7:a1:94:20:a8:6e:e0:55:be:e0: 3f:8a:1d:6e:4a:c4:8d:54:03:95:7f:41:59:cd:51: ef:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8F:46:AE:E0:BC:8A:15:6E:97:C3:3E:74:B7:F2:89:57:8F:58:86 X509v3 Authority Key Identifier: keyid:B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/C9848396CD1711ED898C311FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8d02:28c8::/48 2404:8d02:4881::/48 Signature Algorithm: sha256WithRSAEncryption 77:ab:58:f5:1c:e0:c9:f9:83:7e:78:1c:16:8b:e0:96:73:76: 9e:60:62:25:3d:45:1e:4a:d3:a4:51:0a:e5:b3:d7:ac:f4:c2: f1:23:01:05:ec:7b:b4:3f:c3:d2:79:99:b4:99:9b:48:8a:4e: 58:62:a4:8e:23:07:aa:14:0a:cd:40:80:c1:fd:97:a2:a3:05: 94:d1:8b:ec:6a:cc:a0:2a:bf:39:4f:b1:fa:0b:cb:1e:9c:e8: 6f:fb:8b:34:c4:fb:a6:0e:9a:f2:24:e7:f8:d7:66:93:d1:f5: 61:ad:39:12:6f:cb:29:c0:d1:6f:d6:82:c2:1a:0c:b3:25:9f: 82:5f:79:11:65:69:dd:cd:5a:66:38:cb:df:5d:d4:39:4e:65: 3c:a9:b8:a9:3b:7a:c4:6a:39:03:17:25:70:96:8f:10:de:7e: f1:fd:18:fb:ab:c7:65:84:6d:0c:c0:e4:26:63:7b:07:10:29: 6c:b1:a6:6b:04:e4:3f:d9:12:bd:0b:e4:31:fe:5b:41:11:14: d5:07:f6:0c:0a:12:a1:2c:16:43:29:11:3d:2a:53:4f:df:91: 2b:00:d7:65:f3:d4:42:1b:89:53:74:3e:4b:21:24:3f:22:1e: 25:e1:97:ac:be:4f:f2:65:f9:68:0f:14:d5:b1:81:b4:c9:38: ce:06:50:b6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICJN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMzYxMTAvBgNVBAUTKEI3QjczRTg5QjYyMTA4MTYwOUNENjg5QUIwQUVGN0ZB RjE0ODkyNkMwHhcNMjMwOTMwMTYxMjQ3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4NDhmZS01NDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlnioZLKgebaXhioQIey8+o5EjegZR56cb9/zkz5WDGZB7lAPqXywc4aXlKT 1pSJDr31rWKwqPjzEkDIqu1ZRnoZ+MM1ldBXlD6xUE8AhnJm3qc7Rj4RspzZ87XF 95w/VuTvKnV4ER9e5zunmAXY1x2okznq3pwcd5iqXORTAXZgsREVkVqB6HdHw7xG KF0iBDpaYUXtYRe7g9Cn6cqM33kO4VTLU8DmKZ7mQ725ABsLsLhPSKTvxmVPn8/J NnqxXVFWTfCUqgXW9hu5TtRIXGCnLo+Mxlv1NtO2GtWj/kv0AL3JG8ehlCCobuBV vuA/ih1uSsSNVAOVf0FZzVHvbwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFG+PRq7g vIoVbpfDPnS38olXj1iGMB8GA1UdIwQYMBaAFLe3Pom2IQgWCc1omrCu9/rxSJJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEzNi9DRjMyODFDODIx NUIxMUU1QTdCRjg5MEVDNEY5QUUwMi90N2MtaWJZaENCWUp6V2lhc0s3My12Rklr bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q3Yy1pYlloQ0JZSnpXaWFzSzczLXZGSWttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMzYvQ0YzMjgxQzgyMTVCMTFFNUE3QkY4OTBFQzRGOUFFMDIvQzk4NDgzOTZD RDE3MTFFRDg5OEMzMTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBI0CKMgDBwAkBI0CSIEwDQYJKoZIhvcNAQELBQADggEB AHerWPUc4Mn5g354HBaL4JZzdp5gYiU9RR5K06RRCuWz16z0wvEjAQXse7Q/w9J5 mbSZm0iKTlhipI4jB6oUCs1AgMH9l6KjBZTRi+xqzKAqvzlPsfoLyx6c6G/7izTE +6YOmvIk5/jXZpPR9WGtORJvyynA0W/WgsIaDLMln4JfeRFlad3NWmY4y99d1DlO ZTypuKk7esRqOQMXJXCWjxDefvH9GPurx2WEbQzA5CZjewcQKWyxpmsE5D/ZEr0L 5DH+W0ERFNUH9gwKEqEsFkMpET0qU0/fkSsA12Xz1EIbiVN0PkshJD8iHiXhl6y+ T/Jl+WgPFNWxgbTJOM4GULY= -----END CERTIFICATE-----Generated at Wed May 8 17:47:41 2024 by rpki-client on console-ams.rpki-client.org