$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa File: 2D89110A9A5311EE9CB13140C4F9AE02.roa (raw, json) Hash identifier: +wGN3Wjuhjw4Q4VpvH4C2sux09XcSo7oyefpGwMO99A= Subject key identifier: AD:FA:85:B4:A7:F1:E2:37:89:32:BB:7C:AC:48:47:D7:55:03:07:23 Certificate issuer: /CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Certificate serial: 33A7 Authority key identifier: AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa Signing time: Thu 14 Dec 2023 07:34:13 +0000 ROA not before: Thu 14 Dec 2023 07:34:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 131203 IP address blocks: 2001:df2:a980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13223 (0x33a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Validity Not Before: Dec 14 07:34:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=657aaff5-7cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:74:bf:60:9f:af:de:a1:92:7b:e6:a6:3a: 6c:bc:b4:84:70:78:d8:ab:32:4c:1b:14:37:8c:90: f9:f6:9e:7d:cb:e6:4d:60:44:8d:81:9a:d0:0b:de: 0d:58:cb:dc:be:32:6c:ec:0d:c7:3c:9c:6f:53:0b: 87:7b:8d:21:f9:bb:4f:4f:78:bb:63:c8:20:94:50: 53:ab:1b:8a:e5:15:b9:52:87:91:c5:6f:c8:81:91: 92:50:70:70:be:71:8b:d4:9c:6a:8c:26:f5:57:0e: d4:96:ec:47:36:d2:55:4c:83:97:f6:31:06:eb:6b: ca:d2:23:ec:88:c5:2e:e7:5b:e7:77:43:a4:92:ff: 8a:7c:a6:c8:b1:d7:15:17:16:25:5d:b7:56:68:bb: 4c:f7:f8:a6:71:e9:53:4b:d0:1a:ae:fd:74:e4:f8: 06:3b:7a:2b:1d:e6:2d:38:e2:4a:d3:b8:7c:63:ef: 2a:ef:d8:c9:63:38:4e:5a:fa:6f:e6:22:62:af:fc: 89:65:4b:f8:51:34:af:4c:6e:10:c3:42:88:8a:fb: 70:7c:ce:d1:3d:17:2e:91:d6:68:bd:52:0e:e7:04: 9f:6d:f2:fd:ed:75:d7:02:af:42:9c:2c:d5:3a:9e: 3b:75:fa:2a:c9:3d:26:a4:c3:e3:78:10:bc:47:0a: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FA:85:B4:A7:F1:E2:37:89:32:BB:7C:AC:48:47:D7:55:03:07:23 X509v3 Authority Key Identifier: keyid:AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:a980::/48 Signature Algorithm: sha256WithRSAEncryption a4:15:e1:3f:b4:0b:a4:31:bc:81:2b:d7:69:fe:21:aa:a6:3d: 9d:a7:a9:f6:b2:c7:1c:56:60:57:3b:1e:87:7d:eb:88:a3:dd: 65:7c:5b:85:c8:d6:95:8e:27:6e:e5:4e:f0:95:56:bb:1d:29: 57:1d:e0:ff:6d:3f:48:db:c6:fd:04:cf:76:a0:d7:92:72:d0: 14:b4:7b:8c:22:a0:08:80:e6:a9:1a:f7:a8:92:e4:30:ee:e4: 33:1d:0f:6c:1c:9e:57:0d:82:89:ad:42:bf:5a:99:1c:19:a5: 8a:67:63:74:3c:12:eb:53:e6:d4:3a:fc:ab:e1:43:2d:48:50: 01:55:13:bf:c1:8f:fe:2e:bf:da:0f:fe:83:cd:7d:a3:1c:c3: 8e:f3:69:67:79:c6:f3:93:a8:1a:08:e8:b5:0f:ce:15:75:a9: 09:03:0c:0f:94:d5:8f:c8:c0:cb:f3:e8:e5:7b:78:25:9d:63: dd:71:ea:f7:f3:f1:6f:18:c3:73:6a:7d:c6:d5:b9:25:92:c0: e0:52:29:6a:90:b4:fc:11:58:30:a1:81:5d:4b:95:bc:1d:e8: da:40:03:e7:64:07:d5:1b:0f:6e:17:5e:91:c4:16:4c:91:bb: 05:4c:d5:7d:f0:63:06:69:d0:c0:8f:41:40:2f:d4:9c:85:d4: 6c:bf:ac:c2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICM6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENBRTgxMTAvBgNVBAUTKEFBQjBFMkI2MkY2MzQzODk1NzMwQzA1NDg4RTdGQzRF MjZDNTFBNkMwHhcNMjMxMjE0MDczNDEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdhYWZmNS03Y2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzV0v2Cfr96hknvmpjpsvLSEcHjYqzJMGxQ3jJD59p59y+ZNYESNgZrQC94N WMvcvjJs7A3HPJxvUwuHe40h+btPT3i7Y8gglFBTqxuK5RW5UoeRxW/IgZGSUHBw vnGL1JxqjCb1Vw7UluxHNtJVTIOX9jEG62vK0iPsiMUu51vnd0Okkv+KfKbIsdcV FxYlXbdWaLtM9/imcelTS9Aarv105PgGO3orHeYtOOJK07h8Y+8q79jJYzhOWvpv 5iJir/yJZUv4UTSvTG4Qw0KIivtwfM7RPRcukdZovVIO5wSfbfL97XXXAq9CnCzV Op47dfoqyT0mpMPjeBC8RwrN4QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFK36hbSn 8eI3iTK7fKxIR9dVAwcjMB8GA1UdIwQYMBaAFKqw4rYvY0OJVzDAVIjn/E4mxRps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0FFOC84QjZBREUxNDFE OTMxMUUyOTJDQjIzRjcwOEIwMkNEMi9xckRpdGk5alE0bFhNTUJVaU9mOFRpYkZH bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyRGl0aTlqUTRsWE1NQlVpT2Y4VGliRkdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENBRTgvOEI2QURFMTQxRDkzMTFFMjkyQ0IyM0Y3MDhCMDJDRDIvMkQ4OTExMEE5 QTUzMTFFRTlDQjEzMTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yqYAwDQYJKoZIhvcNAQELBQADggEBAKQV4T+0C6Qx vIEr12n+IaqmPZ2nqfayxxxWYFc7Hod964ij3WV8W4XI1pWOJ27lTvCVVrsdKVcd 4P9tP0jbxv0Ez3ag15Jy0BS0e4wioAiA5qka96iS5DDu5DMdD2wcnlcNgomtQr9a mRwZpYpnY3Q8EutT5tQ6/KvhQy1IUAFVE7/Bj/4uv9oP/oPNfaMcw47zaWd5xvOT qBoI6LUPzhV1qQkDDA+U1Y/IwMvz6OV7eCWdY91x6vfz8W8Yw3NqfcbVuSWSwOBS KWqQtPwRWDChgV1Llbwd6NpAA+dkB9UbD24XXpHEFkyRuwVM1X3wYwZp0MCPQUAv 1JyF1Gy/rMI= -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org