$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa File: B8F67148DC6611ED89F0804EC4F9AE02.roa (raw, json) Hash identifier: WxZPI2oPHz7gN6E65pAyKQEG7K9nNAiq+cLE8EnqxTo= Subject key identifier: 09:D5:D6:94:C0:46:EC:56:1E:26:E3:83:74:19:DE:5B:C6:2F:9A:55 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 105D Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:17 +0000 ROA not before: Thu 28 Mar 2024 18:26:17 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4842 IP address blocks: 2404:7ac0:660::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Mar 28 18:26:17 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b649-be1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:fd:3a:e3:f3:35:1a:aa:ff:70:d3:7d:ea: 2b:40:96:ae:1a:5e:66:41:77:13:75:95:b7:3e:8c: 72:8e:ab:c6:a5:af:3e:6f:ea:db:5b:d0:a0:0a:7b: bf:e0:07:ad:2d:1e:5f:e2:ab:76:1a:30:08:1d:28: 52:48:83:7f:fe:08:14:0d:c5:27:b8:b3:56:a9:3b: ce:f1:09:9f:6b:42:49:b5:16:5b:6f:3a:4c:97:89: c1:7e:75:92:26:39:14:5d:e9:5c:b0:1a:c7:ac:d0: ec:53:6b:28:cb:1d:bc:3b:2c:97:b1:94:7d:2f:c5: 33:f2:a4:83:45:01:99:1c:a0:c5:12:2c:e0:92:77: 6d:4d:d3:8a:b6:98:5f:55:92:bf:63:ad:6d:fe:10: 1f:b2:4c:38:7e:f4:ce:a2:3a:6a:d6:0f:29:a0:f6: 09:20:83:f9:a8:7e:db:ca:75:5c:4e:00:48:b8:36: c5:c6:8a:ea:6e:4c:2a:95:33:af:f8:e1:1e:3c:61: ad:a0:0b:01:b8:cc:7c:c4:2a:c9:e6:08:c1:55:fa: c8:70:d5:bb:72:92:23:ef:21:fd:6e:8a:28:5a:ad: ba:1c:8e:97:93:7e:55:8f:75:d9:9d:5d:28:92:3d: d2:41:03:0c:b0:9b:5e:61:f7:09:55:79:74:ce:3b: 3b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D5:D6:94:C0:46:EC:56:1E:26:E3:83:74:19:DE:5B:C6:2F:9A:55 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:660::/44 Signature Algorithm: sha256WithRSAEncryption 4b:67:d4:c6:ef:de:98:27:74:d8:a1:13:7f:80:86:d8:d3:ac: 2a:f1:f4:34:02:78:78:39:c0:f7:76:94:e7:15:34:0f:95:13: 23:83:1c:0b:f9:b6:32:dc:fa:a8:e2:e9:ca:52:ca:66:16:51: 8f:f5:7a:8c:d8:b7:d4:00:fc:cf:52:1c:d1:f3:7d:07:8a:10: 18:d8:e3:75:41:d3:77:3a:05:4f:cf:cb:47:9e:b8:1b:d0:7d: 1a:c0:69:1d:97:43:03:5a:aa:0d:07:0e:bc:17:70:c9:66:6b: 8d:65:b4:96:15:2c:58:a2:7b:38:d2:9d:f9:55:6c:7e:db:8d: fc:55:7d:8a:83:7a:78:88:f3:4d:eb:53:95:97:96:6c:38:3a: 2b:2b:a3:bb:63:30:bb:86:26:72:df:01:9c:fc:e6:df:00:a8: 61:7a:69:46:6a:f6:18:17:e3:1b:00:4f:f2:e7:0d:df:a5:fa: a5:e3:f7:5c:4e:68:b5:44:eb:96:97:2d:a5:2f:60:62:1c:4c: 14:c7:09:c2:b9:cc:aa:f4:c5:bb:25:25:30:3c:bf:de:9e:79: b6:df:85:89:38:c3:7d:0f:a3:53:68:cf:69:f1:29:44:d1:81: 02:a2:e5:6e:92:62:50:91:84:de:69:7a:ae:88:fc:27:34:d5: af:9a:cd:bc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjQwMzI4MTgyNjE3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY0OS1iZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUH9OuPzNRqq/3DTfeorQJauGl5mQXcTdZW3PoxyjqvGpa8+b+rbW9CgCnu/ 4AetLR5f4qt2GjAIHShSSIN//ggUDcUnuLNWqTvO8Qmfa0JJtRZbbzpMl4nBfnWS JjkUXelcsBrHrNDsU2soyx28OyyXsZR9L8Uz8qSDRQGZHKDFEizgkndtTdOKtphf VZK/Y61t/hAfskw4fvTOojpq1g8poPYJIIP5qH7bynVcTgBIuDbFxorqbkwqlTOv +OEePGGtoAsBuMx8xCrJ5gjBVfrIcNW7cpIj7yH9boooWq26HI6Xk35Vj3XZnV0o kj3SQQMMsJteYfcJVXl0zjs77QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAnV1pTA RuxWHibjg3QZ3lvGL5pVMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQjhGNjcxNDhE QzY2MTFFRDg5RjA4MDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBHrABmAwDQYJKoZIhvcNAQELBQADggEBAEtn1Mbv3pgn dNihE3+AhtjTrCrx9DQCeHg5wPd2lOcVNA+VEyODHAv5tjLc+qji6cpSymYWUY/1 eozYt9QA/M9SHNHzfQeKEBjY43VB03c6BU/Py0eeuBvQfRrAaR2XQwNaqg0HDrwX cMlma41ltJYVLFiiezjSnflVbH7bjfxVfYqDeniI803rU5WXlmw4Oisro7tjMLuG JnLfAZz85t8AqGF6aUZq9hgX4xsAT/LnDd+l+qXj91xOaLVE65aXLaUvYGIcTBTH CcK5zKr0xbslJTA8v96eebbfhYk4w30Po1Noz2nxKUTRgQKi5W6SYlCRhN5peq6I /Cc01a+azbw= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:07 2024 by rpki-client on console-ams.rpki-client.org