$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa File: FA39CA70790E11EE86665E43C4F9AE02.roa (raw, json) Hash identifier: FSbVou6g0ly8ZFCtnN84trCFPpoq9PbAT6B3VvQ6Zf4= Subject key identifier: 6C:6C:9C:01:13:15:19:D1:38:13:7D:9E:C6:BD:D8:52:3D:73:1D:78 Certificate issuer: /CN=A91D6DBD/serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Certificate serial: 04 Authority key identifier: B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa Signing time: Wed 01 Nov 2023 23:43:05 +0000 ROA not before: Wed 01 Nov 2023 23:43:05 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9792 IP address blocks: 203.1.240.0/21 maxlen: 21 2406:11c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 07:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD/serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Validity Not Before: Nov 1 23:43:05 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6542e289-6021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:7e:9d:2f:8a:27:cd:92:e1:3a:e2:8c:d7: 02:f0:20:d4:3f:df:fc:de:53:8f:be:27:44:60:70: 06:86:27:a5:42:bc:99:cc:6d:c7:dc:a7:02:e4:8a: 77:db:2e:99:61:8d:ee:0b:ed:9b:38:62:5e:95:3d: 53:ea:2f:ec:f5:a7:26:f0:c3:74:d2:eb:6d:22:65: ae:1a:cf:13:66:47:31:1e:32:a0:f8:86:83:d6:6a: e2:41:63:b9:e2:7a:ea:d2:03:33:88:83:d9:31:a4: fa:e8:7d:fd:9d:c1:c1:dd:c6:04:ba:fd:97:c5:59: cd:7a:a8:c0:67:33:15:0a:ce:e5:39:a2:fa:08:73: fe:1f:8a:0b:ea:ec:8f:52:d9:09:0b:3a:b4:60:e9: 8d:ab:d3:ca:52:61:f0:1a:16:4b:51:6e:42:a6:12: d7:39:b9:5d:6f:c2:1a:40:3a:52:04:fc:91:e4:27: 79:26:6d:ac:e7:6c:f6:fb:6f:56:0f:ce:11:e6:cd: ec:b1:b7:2a:c3:74:dd:63:43:6a:fc:82:2a:11:13: 8c:63:aa:0a:50:d7:67:f1:53:1d:61:51:1f:4b:92: 81:7b:82:e9:b7:70:b2:52:ba:fe:17:88:e4:f1:66: 04:bf:96:42:42:bc:75:5b:dc:cc:c8:b5:34:99:94: 3e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6C:9C:01:13:15:19:D1:38:13:7D:9E:C6:BD:D8:52:3D:73:1D:78 X509v3 Authority Key Identifier: keyid:B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.1.240.0/21 IPv6: 2406:11c0::/32 Signature Algorithm: sha256WithRSAEncryption 91:27:6f:15:0c:06:57:ec:7d:a5:95:a8:f4:32:98:49:4e:ab: 05:f3:48:22:6b:ac:75:0c:46:1b:94:d9:aa:0c:db:e6:c1:bb: f0:62:5d:58:ab:33:84:5b:e0:78:cc:31:ba:7f:0e:4c:62:43: 2d:fe:2f:5f:bf:4f:da:5d:a9:3d:70:17:ff:03:f3:11:98:06: 8c:2b:05:3b:f3:f7:2b:4a:90:11:d0:32:35:ef:53:b3:c7:b1: 9b:20:29:de:82:d5:e6:74:55:90:54:f7:49:d8:cc:69:07:00: 5c:b9:d2:e2:ee:c2:94:1b:e3:46:31:ad:1e:ed:c3:cc:59:65: 0a:1f:89:fa:5a:ef:89:f0:ca:49:8e:2c:50:15:cf:95:56:84: f3:87:d4:5e:c2:30:45:94:89:b2:ba:97:6c:37:dc:da:3b:0d: ed:7c:c5:f0:a4:88:a4:5c:f0:7c:b1:1f:a4:45:2b:57:e7:43: 7a:f0:84:e2:1d:f6:25:54:3c:84:ef:84:88:67:45:34:8d:fa: 5a:0d:1d:fc:d5:28:3f:5d:5f:96:49:cb:1a:00:be:cb:db:6e: 96:91:dd:80:ed:db:da:01:e8:7a:79:4b:b2:b2:df:0d:8d:ba: 18:5e:a5:56:1a:ba:4e:54:31:16:b2:9a:c0:2f:95:52:6d:17: 66:8b:b6:96 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkRCRDExMC8GA1UEBRMoQjFDNThDMDc4NTE1OUVENzM2OTZBRkIzMTJEMjM1Q0Y0 MEYzQzQ0MTAeFw0yMzExMDEyMzQzMDVaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDJlMjg5LTYwMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+DH6dL4onzZLhOuKM1wLwINQ/3/zeU4++J0RgcAaGJ6VCvJnMbcfcpwLkinfb Lplhje4L7Zs4Yl6VPVPqL+z1pybww3TS620iZa4azxNmRzEeMqD4hoPWauJBY7ni eurSAzOIg9kxpProff2dwcHdxgS6/ZfFWc16qMBnMxUKzuU5ovoIc/4figvq7I9S 2QkLOrRg6Y2r08pSYfAaFktRbkKmEtc5uV1vwhpAOlIE/JHkJ3kmbaznbPb7b1YP zhHmzeyxtyrDdN1jQ2r8gioRE4xjqgpQ12fxUx1hUR9LkoF7gum3cLJSuv4XiOTx ZgS/lkJCvHVb3MzItTSZlD7pAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUbGycARMV GdE4E32exr3YUj1zHXgwHwYDVR0jBBgwFoAUscWMB4UVntc2lq+zEtI1z0DzxEEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2REJELzAyQUE0OTUwNzkw QTExRUU5OUVERDExRkM0RjlBRTAyL3NjV01CNFVWbnRjMmxxLXpFdEkxejBEenhF RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2NXTUI0VVZudGMybHEtekV0STF6MER6eEVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkRCRC8wMkFBNDk1MDc5MEExMUVFOTlFREQxMUZDNEY5QUUwMi9GQTM5Q0E3MDc5 MEUxMUVFODY2NjVFNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA8sB8DANBAIAAjAHAwUAJAYRwDANBgkqhkiG9w0BAQsFAAOC AQEAkSdvFQwGV+x9pZWo9DKYSU6rBfNIImusdQxGG5TZqgzb5sG78GJdWKszhFvg eMwxun8OTGJDLf4vX79P2l2pPXAX/wPzEZgGjCsFO/P3K0qQEdAyNe9Ts8exmyAp 3oLV5nRVkFT3SdjMaQcAXLnS4u7ClBvjRjGtHu3DzFllCh+J+lrvifDKSY4sUBXP lVaE84fUXsIwRZSJsrqXbDfc2jsN7XzF8KSIpFzwfLEfpEUrV+dDevCE4h32JVQ8 hO+EiGdFNI36Wg0d/NUoP11flknLGgC+y9tulpHdgO3b2gHoenlLsrLfDY26GF6l Vhq6TlQxFrKawC+VUm0XZou2lg== -----END CERTIFICATE-----Generated at Fri May 3 10:34:11 2024 by rpki-client on console-ams.rpki-client.org