$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa File: 3C46738AD49D11EDAD9A672FC4F9AE02.roa (raw, json) Hash identifier: Mgn5QIiSmPYPUH/aqbwxo5wCbtUrVUm3lRyLz4tcGeA= Subject key identifier: 5F:E1:17:18:53:4B:3E:04:48:C6:B7:C5:C3:E3:CA:4F:A1:0F:A0:25 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 0261 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa Signing time: Wed 27 Mar 2024 16:31:01 +0000 ROA not before: Wed 27 Mar 2024 16:31:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 8075 IP address blocks: 2407:30c0:184::/48 maxlen: 48 2407:30c0:185::/48 maxlen: 48 2407:30c0:186::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Mar 27 16:31:01 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=660449c4-63a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:38:1d:2c:1d:de:2f:e4:b9:f1:9b:69:72:bf: 74:ee:73:6d:08:80:b9:6c:31:68:b0:a1:8c:02:50: e2:44:27:44:02:49:a5:b6:69:91:bf:4b:87:3e:89: 3c:8a:3d:11:7e:fc:d6:c3:fa:ad:94:a0:67:30:22: 65:01:0d:cb:f3:1e:55:3c:65:45:48:04:27:d3:78: d9:d7:5e:c8:13:3f:3b:5b:45:5e:43:64:14:c9:8f: 33:40:df:f5:70:f4:e6:36:f7:b2:47:b6:2e:e8:ee: 02:fa:73:1d:70:db:39:f6:02:ab:e1:1e:59:48:9e: ac:c7:f2:31:c7:85:86:8e:c1:4d:58:70:70:d1:53: 97:6e:53:54:3b:a6:65:15:33:41:a2:0d:5e:2c:cf: 63:35:f9:77:83:2d:40:d5:37:e9:a5:71:1f:e7:e6: 2c:46:49:01:64:12:b0:81:38:8c:18:94:3f:4f:32: 42:57:14:c6:6b:24:ed:e2:f3:ce:23:95:56:21:10: f7:d0:a6:ff:11:8f:51:15:02:b2:be:c1:6a:c7:3d: 04:19:88:7a:f2:ff:20:d5:0b:fc:ee:b8:d1:02:95: de:44:da:67:eb:e2:09:17:41:de:db:f4:85:0a:54: 0f:1b:c8:46:a5:73:f8:ed:fb:90:b6:5b:cd:3b:9d: 59:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E1:17:18:53:4B:3E:04:48:C6:B7:C5:C3:E3:CA:4F:A1:0F:A0:25 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/3C46738AD49D11EDAD9A672FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:184::-2407:30c0:186:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3d:4a:0a:cf:da:a3:8e:91:18:57:3f:ee:3e:a5:91:20:bf:15: 87:92:93:b7:4e:78:1b:45:a1:f8:9c:40:87:19:5f:7f:bc:dd: 97:ea:7b:5e:1a:03:cd:9e:99:ef:c6:26:20:4c:c1:61:48:9d: 34:e6:ce:e0:9c:99:d8:10:16:69:21:69:01:8f:33:f9:9d:04: 86:1e:b3:ec:91:f6:2d:40:39:96:f9:88:84:e2:cb:d9:21:3b: 55:03:9e:4e:7c:d2:73:36:13:bd:a9:ff:d8:bc:aa:99:25:ad: f0:85:60:b7:01:0a:1e:09:e6:be:d9:61:5b:ca:f8:d1:37:f5: 0d:bb:90:42:a7:8f:0d:64:70:1c:1f:65:e5:42:32:b8:95:1e: b8:fe:68:ef:e1:00:1c:fb:47:07:22:78:1c:aa:76:84:a6:2e: 3d:c2:e7:4e:61:ed:06:63:71:b2:3e:6d:87:6f:0f:db:b6:b8: c7:73:9e:f5:0f:73:18:bd:45:48:ae:e2:3e:d0:4f:da:7d:f5: b4:dd:a5:1e:f2:93:60:e8:ec:c1:ce:1a:dc:b1:79:f3:09:c3: 2c:e0:30:c4:cf:0d:ef:46:e2:3e:a4:20:d9:75:32:b1:b5:20: 73:bd:c9:3e:ec:c8:3c:42:ab:f6:d5:83:0b:59:20:f8:a5:27: 47:b1:80:9d -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjQwMzI3MTYzMTAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA0NDljNC02M2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zgdLB3eL+S58Ztpcr907nNtCIC5bDFosKGMAlDiRCdEAkmltmmRv0uHPok8 ij0RfvzWw/qtlKBnMCJlAQ3L8x5VPGVFSAQn03jZ117IEz87W0VeQ2QUyY8zQN/1 cPTmNveyR7Yu6O4C+nMdcNs59gKr4R5ZSJ6sx/Ixx4WGjsFNWHBw0VOXblNUO6Zl FTNBog1eLM9jNfl3gy1A1TfppXEf5+YsRkkBZBKwgTiMGJQ/TzJCVxTGayTt4vPO I5VWIRD30Kb/EY9RFQKyvsFqxz0EGYh68v8g1Qv87rjRApXeRNpn6+IJF0He2/SF ClQPG8hGpXP47fuQtlvNO51ZnwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFF/hFxhT Sz4ESMa3xcPjyk+hD6AlMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvM0M0NjczOEFE NDlEMTFFREFEOUE2NzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHAiQHMMABhAMHACQHMMABhjANBgkqhkiG9w0BAQsFAAOC AQEAPUoKz9qjjpEYVz/uPqWRIL8Vh5KTt054G0Wh+JxAhxlff7zdl+p7XhoDzZ6Z 78YmIEzBYUidNObO4JyZ2BAWaSFpAY8z+Z0Ehh6z7JH2LUA5lvmIhOLL2SE7VQOe TnzSczYTvan/2LyqmSWt8IVgtwEKHgnmvtlhW8r40Tf1DbuQQqePDWRwHB9l5UIy uJUeuP5o7+EAHPtHByJ4HKp2hKYuPcLnTmHtBmNxsj5th28P27a4x3Oe9Q9zGL1F SK7iPtBP2n31tN2lHvKTYOjswc4a3LF58wnDLOAwxM8N70biPqQg2XUysbUgc73J PuzIPEKr9tWDC1kg+KUnR7GAnQ== -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org