$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa File: 39D4D290CB8311E88E74AD83C4F9AE02.roa (raw, json) Hash identifier: AMKohd2NXyHxU0epilwDzSeCCE0dAIfSEgi1/gi9uSg= Subject key identifier: 24:98:E0:1E:3E:6F:34:D2:28:66:15:28:06:71:C7:75:C9:9D:3D:1E Certificate issuer: /CN=A91E46B1/serialNumber=8C7D6BA1F15509ACF3131582597D5CAD9E419B4F Certificate serial: 1318 Authority key identifier: 8C:7D:6B:A1:F1:55:09:AC:F3:13:15:82:59:7D:5C:AD:9E:41:9B:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa Signing time: Mon 26 Jun 2023 17:46:42 +0000 ROA not before: Mon 26 Jun 2023 17:46:42 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 23779 IP address blocks: 2402:af40::/32 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 17:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4888 (0x1318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1/serialNumber=8C7D6BA1F15509ACF3131582597D5CAD9E419B4F Validity Not Before: Jun 26 17:46:42 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6499cf02-c89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1e:ec:48:bd:db:31:38:40:a7:d8:ae:5d:92: ad:df:92:19:7b:9d:f9:45:99:8b:27:cd:50:fe:a3: 62:aa:dd:28:b0:bf:8b:d7:7d:16:48:ba:1b:31:16: 3a:d4:dc:3a:9b:cb:a6:87:09:f1:be:4d:07:80:c8: f6:21:54:c9:a4:2f:cf:73:f1:7b:80:dd:be:02:9a: 59:8b:80:34:8d:d0:4c:05:c6:60:c4:86:a4:99:05: d7:f4:cc:7c:2e:53:8c:5c:ac:04:b1:08:23:4d:a9: f2:5e:1d:31:98:c1:e6:55:28:ea:64:8b:b2:f6:65: e2:16:35:3f:01:a6:ea:55:f3:34:4f:ee:26:45:99: 09:30:2c:ec:9a:e6:68:cd:03:17:f5:aa:58:f5:b8: 7e:8c:cc:55:ad:3b:01:c2:98:cd:10:1e:ed:89:ea: 05:30:a7:b4:c4:28:b5:bd:52:9c:c3:a6:0d:10:2a: a1:d1:a2:8f:40:d5:7c:82:6f:05:b1:38:3e:58:01: 41:35:28:74:fc:ac:6d:a0:0f:41:9b:8c:b5:7f:04: cd:7e:8f:91:82:be:6c:88:5d:7d:d2:22:8f:93:63: e5:03:b2:8c:3b:5c:73:1f:85:80:62:68:f4:45:a5: 41:c5:dd:2c:f9:05:f2:16:67:b1:04:28:46:91:e8: 07:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:98:E0:1E:3E:6F:34:D2:28:66:15:28:06:71:C7:75:C9:9D:3D:1E X509v3 Authority Key Identifier: keyid:8C:7D:6B:A1:F1:55:09:AC:F3:13:15:82:59:7D:5C:AD:9E:41:9B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/jH1rofFVCazzExWCWX1crZ5Bm08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jH1rofFVCazzExWCWX1crZ5Bm08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F90D9476679711E8A7891C48C4F9AE02/39D4D290CB8311E88E74AD83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:af40::/32 Signature Algorithm: sha256WithRSAEncryption 4f:d5:d5:ab:40:b9:3f:bd:b2:40:2f:41:8a:c1:ed:7a:49:44: c9:04:0a:80:1b:71:c7:3a:bb:62:ea:1f:c0:a2:ee:6d:9d:0e: 14:fe:64:9a:0c:c8:20:82:80:cf:9c:5a:49:41:7c:31:4b:c1: 69:26:92:1c:77:c1:0e:a4:d7:83:0f:a3:e3:e7:c1:b9:e8:77: d6:9a:2f:e9:0a:0a:49:a0:39:c2:1f:9b:eb:c2:f1:9a:1a:8b: bb:30:e6:fa:a6:a1:a4:24:38:9e:3c:0f:e8:7f:06:90:06:56: 14:ca:35:22:67:b0:b8:90:84:a1:37:50:2f:62:ee:99:57:04: 42:fc:6a:03:6a:38:6c:28:71:dd:df:63:4e:19:0e:34:69:10: 39:09:ba:d2:38:ec:f3:ca:f6:f6:14:5b:19:d8:c9:18:44:43: 7b:7f:db:06:13:72:b4:ea:8e:96:d9:c1:2d:39:64:e5:51:75: 8b:30:c2:a1:c4:1d:c9:e9:fe:4d:68:24:be:aa:4d:04:43:da: db:89:c7:86:d4:72:78:eb:26:46:ee:d9:49:c6:76:36:07:2c: e1:a7:97:26:72:7a:45:6c:de:e5:1a:af:03:e0:da:a5:74:f9: 59:3b:ae:be:44:b6:7f:de:4d:f8:13:0a:31:fe:8c:3e:79:68: 14:74:4e:83 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICExgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDhDN0Q2QkExRjE1NTA5QUNGMzEzMTU4MjU5N0Q1Q0FE OUU0MTlCNEYwHhcNMjMwNjI2MTc0NjQyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk5Y2YwMi1jODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzh7sSL3bMThAp9iuXZKt35IZe535RZmLJ81Q/qNiqt0osL+L130WSLobMRY6 1Nw6m8umhwnxvk0HgMj2IVTJpC/Pc/F7gN2+AppZi4A0jdBMBcZgxIakmQXX9Mx8 LlOMXKwEsQgjTanyXh0xmMHmVSjqZIuy9mXiFjU/AabqVfM0T+4mRZkJMCzsmuZo zQMX9apY9bh+jMxVrTsBwpjNEB7tieoFMKe0xCi1vVKcw6YNECqh0aKPQNV8gm8F sTg+WAFBNSh0/KxtoA9Bm4y1fwTNfo+Rgr5siF190iKPk2PlA7KMO1xzH4WAYmj0 RaVBxd0s+QXyFmexBChGkegHUwIDAQABo4ICljCCApIwHQYDVR0OBBYEFCSY4B4+ bzTSKGYVKAZxx3XJnT0eMB8GA1UdIwQYMBaAFIx9a6HxVQms8xMVgll9XK2eQZtP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GOTBEOTQ3NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9qSDFyb2ZGVkNhenpFeFdDV1gxY3JaNUJt MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIMXJvZkZWQ2F6ekV4V0NXWDFjclo1Qm0wOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2QjEvRjkwRDk0NzY2Nzk3MTFFOEE3ODkxQzQ4QzRGOUFFMDIvMzlENEQyOTBD QjgzMTFFODhFNzRBRDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAq9AMA0GCSqGSIb3DQEBCwUAA4IBAQBP1dWrQLk/vbJA L0GKwe16SUTJBAqAG3HHOrti6h/Aou5tnQ4U/mSaDMgggoDPnFpJQXwxS8FpJpIc d8EOpNeDD6Pj58G56HfWmi/pCgpJoDnCH5vrwvGaGou7MOb6pqGkJDiePA/ofwaQ BlYUyjUiZ7C4kIShN1AvYu6ZVwRC/GoDajhsKHHd32NOGQ40aRA5CbrSOOzzyvb2 FFsZ2MkYREN7f9sGE3K06o6W2cEtOWTlUXWLMMKhxB3J6f5NaCS+qk0EQ9rbiceG 1HJ46yZG7tlJxnY2Byzhp5cmcnpFbN7lGq8D4NqldPlZO66+RLZ/3k34Ewox/ow+ eWgUdE6D -----END CERTIFICATE-----Generated at Wed May 22 18:46:50 2024 by rpki-client on console-fra.rpki-client.org