$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa File: CB1303A4A28F11EBA97D6163C4F9AE02.roa (raw, json) Hash identifier: FNiise5HlPMqJU88Oo2OfD6hA2hia5LOkeE3rDOQyAY= Subject key identifier: 34:0F:93:91:1E:3B:57:CD:A4:6C:2E:CE:3D:7D:30:32:6D:AF:12:6B Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 105B Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:15 +0000 ROA not before: Thu 28 Mar 2024 18:26:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 24124 IP address blocks: 2404:7ac0:200::/48 maxlen: 48 2404:7ac0:206::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4187 (0x105b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Mar 28 18:26:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b647-7d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:b1:42:62:50:9b:b4:98:e6:2d:d2:a2:e6: 08:04:41:ee:62:ec:e3:1e:4d:fc:41:de:d1:cd:79: 7a:8b:e1:37:7a:50:6b:7f:69:53:61:c6:31:44:dc: f4:0c:9b:92:61:e0:d3:2d:53:f5:b3:d7:7e:07:b5: ac:12:1b:44:dd:b0:a4:3a:2c:25:e3:1a:48:0f:6b: 87:31:73:fe:03:9c:e9:4f:af:39:56:7c:55:24:c0: 1f:1a:07:b1:f0:52:c2:39:43:88:97:5d:e1:51:be: 67:af:36:99:c4:70:2b:df:62:97:e5:89:d5:62:ac: 23:cc:b3:27:7f:7d:ce:e8:ab:ae:af:69:d2:7b:62: ae:35:13:0e:66:c8:0f:73:4d:ae:44:0e:8f:8d:68: ff:30:4f:c8:3d:39:c2:d7:d7:f9:d3:6a:86:f8:3b: fe:9c:74:18:05:73:7b:b3:9b:84:76:a8:37:4b:60: ff:76:db:a2:b2:46:b5:33:0a:c7:7c:dd:51:2f:00: 9e:c8:96:98:e4:64:40:1d:27:61:ed:f7:68:cd:33: ed:8b:13:48:92:07:e7:8e:96:97:9f:09:48:d6:6b: a4:67:cc:5f:63:2e:b3:a0:1d:40:40:fe:fb:ba:96: 5e:c6:59:bd:3d:a9:0d:0a:8a:c2:5a:27:e7:4c:6e: 2e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0F:93:91:1E:3B:57:CD:A4:6C:2E:CE:3D:7D:30:32:6D:AF:12:6B X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:200::/48 2404:7ac0:206::/47 Signature Algorithm: sha256WithRSAEncryption 74:d1:e4:b1:90:c6:c7:29:39:90:6e:dd:68:aa:31:eb:8e:be: 85:9e:4b:dd:cb:d5:64:7d:6e:61:40:f2:dd:49:4a:9f:50:fd: 37:ba:f6:59:72:32:89:03:9c:fe:e8:5e:b5:8a:4b:e6:44:72: 76:30:38:ca:24:af:18:bf:9c:f0:77:f3:f7:81:fc:3b:34:15: 6c:f2:26:2c:66:95:af:83:a2:2b:71:70:6d:cb:d0:10:23:d0: 2b:1b:9c:25:79:a8:5e:c1:e3:45:7f:30:2b:94:f8:58:00:84: 17:60:54:52:95:f8:a3:2d:12:ab:7a:3a:ab:49:28:f7:d6:fc: f0:1f:07:dd:53:07:96:02:8c:64:cf:c9:8f:09:b7:09:bc:d1: ed:ef:cc:89:11:39:1d:87:e1:13:aa:ee:1a:17:46:2a:80:9f: 34:8f:17:3b:7a:a3:3b:b0:bc:23:fc:25:dc:2b:20:8c:bb:7d: 31:d8:a4:a4:9d:7d:5c:93:6c:c3:16:ff:61:b5:8f:c0:6e:57: 9e:b4:45:06:d2:52:11:04:ab:0a:64:29:37:c4:49:48:50:97: 28:b5:8c:82:9c:a4:ac:e6:4a:b4:c0:27:dc:c4:20:bf:e7:ae: b7:c2:27:33:4c:b0:ac:51:9b:fd:e4:84:c7:69:35:ba:50:1e: a6:fa:95:ee -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjQwMzI4MTgyNjE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY0Ny03ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy2xQmJQm7SY5i3SouYIBEHuYuzjHk38Qd7RzXl6i+E3elBrf2lTYcYxRNz0 DJuSYeDTLVP1s9d+B7WsEhtE3bCkOiwl4xpID2uHMXP+A5zpT685VnxVJMAfGgex 8FLCOUOIl13hUb5nrzaZxHAr32KX5YnVYqwjzLMnf33O6Kuur2nSe2KuNRMOZsgP c02uRA6PjWj/ME/IPTnC19f502qG+Dv+nHQYBXN7s5uEdqg3S2D/dtuiska1MwrH fN1RLwCeyJaY5GRAHSdh7fdozTPtixNIkgfnjpaXnwlI1mukZ8xfYy6zoB1AQP77 upZexlm9PakNCorCWifnTG4uOQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDQPk5Ee O1fNpGwuzj19MDJtrxJrMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQ0IxMzAzQTRB MjhGMTFFQkE5N0Q2MTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBHrAAgADBwEkBHrAAgYwDQYJKoZIhvcNAQELBQADggEB AHTR5LGQxscpOZBu3WiqMeuOvoWeS93L1WR9bmFA8t1JSp9Q/Te69llyMokDnP7o XrWKS+ZEcnYwOMokrxi/nPB38/eB/Ds0FWzyJixmla+DoitxcG3L0BAj0CsbnCV5 qF7B40V/MCuU+FgAhBdgVFKV+KMtEqt6OqtJKPfW/PAfB91TB5YCjGTPyY8Jtwm8 0e3vzIkROR2H4ROq7hoXRiqAnzSPFzt6ozuwvCP8JdwrIIy7fTHYpKSdfVyTbMMW /2G1j8BuV560RQbSUhEEqwpkKTfESUhQlyi1jIKcpKzmSrTAJ9zEIL/nrrfCJzNM sKxRm/3khMdpNbpQHqb6le4= -----END CERTIFICATE-----Generated at Fri May 24 18:40:29 2024 by rpki-client on console-fra.rpki-client.org