$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa File: 792023A8E0DD11EE86DB926AC4F9AE02.roa (raw, json) Hash identifier: DKJ8iu+zuHS7KwrheI8Sl8n5VdUWE4MJD7AtLu88Mok= Subject key identifier: 08:17:3B:0F:77:9E:1F:8C:D2:B1:32:22:F0:80:06:4D:C7:D8:9D:69 Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 11CF Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa Signing time: Wed 13 Mar 2024 02:00:32 +0000 ROA not before: Wed 13 Mar 2024 02:00:32 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38255 IP address blocks: 2001:255::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4559 (0x11cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Mar 13 02:00:32 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65f108c0-0d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:77:b4:e4:2e:ad:d5:98:1b:b7:80:06:b8:1b: 78:56:de:cf:38:97:f0:70:f1:e1:41:c0:a9:68:d5: 0d:5c:a5:9f:2a:e9:88:09:7a:90:80:21:89:99:89: 77:c9:e1:63:9f:f1:f2:19:5f:f5:8c:aa:0b:7c:4e: 8e:a3:e7:c2:7b:5c:81:4d:77:d0:c1:57:3e:a4:d2: 47:38:6d:84:36:3d:0f:01:a5:7c:ea:d8:b0:81:80: 1b:35:73:50:e3:c2:3f:ec:f1:a2:53:da:10:b9:7a: 0d:e5:a5:29:bc:1a:f7:8b:c8:e9:5f:ad:a8:76:84: 4e:8e:e6:45:32:07:f4:01:af:38:3a:7a:0c:5e:76: cb:f5:e8:c5:9d:24:83:37:6f:55:0e:e0:2a:93:d7: 0f:13:6d:c8:cd:d6:9d:2d:42:e7:e6:71:80:14:29: 39:83:ca:61:8d:f5:22:92:8a:63:ef:b2:a5:13:4b: da:87:8b:c7:8b:f9:b9:3e:37:0f:bc:dc:5b:8a:cf: e6:21:4d:a0:f1:f1:88:85:f0:e4:4f:b3:c6:5e:fd: 58:d8:2b:13:8f:1b:60:83:82:b7:05:b4:cb:e6:6b: a9:eb:94:93:a9:89:02:4d:a3:46:80:11:b5:b4:34: e3:2c:48:9e:05:eb:ef:06:e3:27:d6:9c:d7:15:f2: 87:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:17:3B:0F:77:9E:1F:8C:D2:B1:32:22:F0:80:06:4D:C7:D8:9D:69 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/792023A8E0DD11EE86DB926AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:255::/32 Signature Algorithm: sha256WithRSAEncryption 6a:34:b9:48:0a:ef:13:b0:56:45:57:d4:3f:08:7d:c7:8e:bf: 34:75:e8:81:25:bd:bc:d9:36:52:bd:70:d3:3f:2f:64:41:a8: 79:a2:71:5d:93:5c:b1:d4:da:ca:9d:c2:c2:19:98:71:58:27: d5:6e:e5:06:b0:52:bb:4b:52:c5:d4:37:7d:e4:a4:ce:11:23: cd:ac:81:7e:c5:c8:41:f6:18:97:d1:b6:d5:70:7b:b2:dc:9f: 1e:f2:79:b7:92:13:70:bb:1b:aa:de:55:77:61:e9:a9:58:ac: 7a:6b:6d:6b:ff:60:ec:ab:84:65:10:b6:60:2f:c3:81:2d:43: 71:1d:58:4f:a7:21:ea:f5:65:4a:c7:30:69:ac:06:d6:4f:a7: d1:da:6e:7a:18:f2:12:05:67:cf:d9:14:a6:2f:1b:fc:c0:1b: e3:a8:e0:e2:b8:bc:b3:c7:66:8a:93:57:9b:dd:15:00:39:4f: a4:b1:7d:81:9e:91:b5:05:fa:a5:fa:03:7c:b5:f4:53:aa:c1: dc:ba:74:a0:26:cc:0f:41:a1:a8:57:37:ac:bc:76:9d:7e:76: 3d:1b:08:9c:ec:43:86:e9:5a:1f:65:19:33:ea:94:d4:c8:6b: 25:39:8c:d1:6d:b5:36:94:fb:a3:3f:de:72:c5:9d:32:c9:2b: 10:2f:70:36 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICEc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwMzEzMDIwMDMyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYxMDhjMC0wZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHe05C6t1Zgbt4AGuBt4Vt7POJfwcPHhQcCpaNUNXKWfKumICXqQgCGJmYl3 yeFjn/HyGV/1jKoLfE6Oo+fCe1yBTXfQwVc+pNJHOG2ENj0PAaV86tiwgYAbNXNQ 48I/7PGiU9oQuXoN5aUpvBr3i8jpX62odoROjuZFMgf0Aa84OnoMXnbL9ejFnSSD N29VDuAqk9cPE23IzdadLULn5nGAFCk5g8phjfUikopj77KlE0vah4vHi/m5PjcP vNxbis/mIU2g8fGIhfDkT7PGXv1Y2CsTjxtgg4K3BbTL5mup65STqYkCTaNGgBG1 tDTjLEieBevvBuMn1pzXFfKHOQIDAQABo4ICljCCApIwHQYDVR0OBBYEFAgXOw93 nh+M0rEyIvCABk3H2J1pMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVENjEvMEM2QTBDOUUxRDc5MTFFMjg3OUUzOEM1MDhCMDJDRDIvNzkyMDIzQThF MEREMTFFRTg2REI5MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAQJVMA0GCSqGSIb3DQEBCwUAA4IBAQBqNLlICu8TsFZF V9Q/CH3Hjr80deiBJb282TZSvXDTPy9kQah5onFdk1yx1NrKncLCGZhxWCfVbuUG sFK7S1LF1Dd95KTOESPNrIF+xchB9hiX0bbVcHuy3J8e8nm3khNwuxuq3lV3Yemp WKx6a21r/2Dsq4RlELZgL8OBLUNxHVhPpyHq9WVKxzBprAbWT6fR2m56GPISBWfP 2RSmLxv8wBvjqODiuLyzx2aKk1eb3RUAOU+ksX2BnpG1Bfql+gN8tfRTqsHcunSg JswPQaGoVzesvHadfnY9Gwic7EOG6VofZRkz6pTUyGslOYzRbbU2lPujP95yxZ0y ySsQL3A2 -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org