$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa File: DDBFCC3E74D011EDBF68684EC4F9AE02.roa (raw, json) Hash identifier: ihxLm6XIXBAjIObNodtGB1dJgX0H12HwTIUYBEc7+sU= Subject key identifier: 6D:05:0B:70:F3:D0:21:05:78:AD:E1:0B:33:38:61:DD:30:81:55:52 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 0257 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa Signing time: Thu 14 Mar 2024 21:26:51 +0000 ROA not before: Thu 14 Mar 2024 21:26:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 31898 IP address blocks: 2407:30c0:200::/48 maxlen: 48 2407:30c0:201::/48 maxlen: 48 2407:30c0:202::/48 maxlen: 48 2407:30c0:203::/48 maxlen: 48 2407:30c0:204::/48 maxlen: 48 2407:30c0:205::/48 maxlen: 48 2407:30c0:206::/48 maxlen: 48 2407:30c0:207::/48 maxlen: 48 2407:30c0:208::/48 maxlen: 48 2407:30c0:209::/48 maxlen: 48 2407:30c0:20a::/48 maxlen: 48 2407:30c0:20b::/48 maxlen: 48 2407:30c0:20c::/48 maxlen: 48 2407:30c0:20d::/48 maxlen: 48 2407:30c0:20e::/48 maxlen: 48 2407:30c0:20f::/48 maxlen: 48 2407:30c0:211::/48 maxlen: 48 2407:30c0:212::/48 maxlen: 48 2407:30c0:213::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Mar 14 21:26:51 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65f36b9b-3e83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4b:14:12:3f:4a:db:ec:21:af:16:d4:fb:11: 27:ad:b3:0e:36:21:d5:52:a9:57:3a:73:27:d5:5f: bc:10:f7:96:75:0d:a3:a8:68:7f:38:92:32:8a:13: 0a:15:e0:fc:61:5f:98:13:03:b6:c9:15:c6:08:7c: 4f:28:cc:b8:fa:73:8b:27:0d:e6:d4:2a:d8:46:8f: 28:5a:ae:46:47:0f:3b:2c:03:95:fb:5f:63:8b:3f: 48:c8:ea:a4:2a:30:c4:61:59:2d:43:72:12:77:89: 18:37:70:71:b4:21:5d:07:7f:4e:78:41:54:ad:98: e2:ec:05:0b:de:d1:b9:7f:ee:dc:90:b4:9d:38:00: 39:14:b4:2b:ee:b1:d5:c5:d4:03:fb:6d:1a:bf:5b: 6e:23:37:9f:87:c1:be:6f:4d:e2:07:92:82:62:b9: 34:46:2e:b8:bf:e1:2a:3b:cb:cd:f6:a5:b1:6b:8e: 5f:76:f6:dd:b9:7e:0b:a6:09:74:38:d1:c0:51:69: 67:bc:6a:ce:a1:a7:7e:da:a2:28:01:c1:8a:4b:4d: fc:28:cd:e0:51:cf:c4:17:e2:cb:61:2b:18:3a:8e: 2d:aa:69:6c:92:71:50:4d:82:47:bf:b0:8f:f7:32: bd:6d:52:e9:62:eb:07:f1:19:ff:12:18:44:81:41: 07:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:05:0B:70:F3:D0:21:05:78:AD:E1:0B:33:38:61:DD:30:81:55:52 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/DDBFCC3E74D011EDBF68684EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:200::/44 2407:30c0:211::-2407:30c0:213:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 87:20:85:a6:6d:bf:43:fa:19:08:2e:69:75:20:d1:7e:fd:50: 9d:fc:eb:67:55:9c:cd:49:c1:bd:5d:03:4e:6a:f3:fd:7a:6e: 3b:06:fe:a2:65:2d:6b:42:57:01:e9:49:03:20:cf:6b:cc:47: 04:20:1d:0a:e6:d8:c4:bd:2c:bb:d7:e0:62:e1:e9:ac:49:e4: 91:04:02:07:ff:46:97:37:ca:6c:54:62:9e:61:01:d0:8a:05: 59:e6:2a:dc:75:8e:a8:4e:63:2a:bc:83:90:e3:3e:c7:ff:7b: 54:0d:66:ae:d9:e1:bd:34:00:82:90:54:d0:87:16:ff:7a:07: 15:0d:55:c1:b9:99:70:fb:ca:cc:cb:c0:2b:60:ea:71:99:88: d3:6f:47:04:f7:23:2f:13:6b:f2:51:90:54:8b:7b:73:be:04: 90:44:98:a8:31:ee:26:f6:bf:6a:b7:95:1d:b6:73:b5:d0:af: 08:13:a0:08:01:30:7c:61:25:72:bb:8d:5e:f6:e4:c9:f4:1c: 0a:a8:1f:fc:c4:9a:f2:98:30:61:3b:3c:e3:77:38:d9:f2:1e: cf:32:a0:d9:ba:66:01:bf:d5:39:af:c8:6f:f1:fa:f8:dd:14: 69:17:4e:e1:fe:d1:6d:c2:03:0d:04:81:bd:79:1c:3d:2b:46: af:c5:d5:7d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjQwMzE0MjEyNjUxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzNmI5Yi0zZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ksUEj9K2+whrxbU+xEnrbMONiHVUqlXOnMn1V+8EPeWdQ2jqGh/OJIyihMK FeD8YV+YEwO2yRXGCHxPKMy4+nOLJw3m1CrYRo8oWq5GRw87LAOV+19jiz9IyOqk KjDEYVktQ3ISd4kYN3BxtCFdB39OeEFUrZji7AUL3tG5f+7ckLSdOAA5FLQr7rHV xdQD+20av1tuIzefh8G+b03iB5KCYrk0Ri64v+EqO8vN9qWxa45fdvbduX4Lpgl0 ONHAUWlnvGrOoad+2qIoAcGKS038KM3gUc/EF+LLYSsYOo4tqmlsknFQTYJHv7CP 9zK9bVLpYusH8Rn/EhhEgUEHewIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFG0FC3Dz 0CEFeK3hCzM4Yd0wgVVSMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvRERCRkNDM0U3 NEQwMTFFREJGNjg2ODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0DBwQkBzDAAgAwEgMHACQHMMACEQMHAiQHMMACEDANBgkqhkiG 9w0BAQsFAAOCAQEAhyCFpm2/Q/oZCC5pdSDRfv1QnfzrZ1WczUnBvV0DTmrz/Xpu Owb+omUta0JXAelJAyDPa8xHBCAdCubYxL0su9fgYuHprEnkkQQCB/9GlzfKbFRi nmEB0IoFWeYq3HWOqE5jKryDkOM+x/97VA1mrtnhvTQAgpBU0IcW/3oHFQ1VwbmZ cPvKzMvAK2DqcZmI029HBPcjLxNr8lGQVIt7c74EkESYqDHuJva/areVHbZztdCv CBOgCAEwfGElcruNXvbkyfQcCqgf/MSa8pgwYTs843c42fIezzKg2bpmAb/VOa/I b/H6+N0UaRdO4f7RbcIDDQSBvXkcPStGr8XVfQ== -----END CERTIFICATE-----Generated at Wed May 1 05:55:46 2024 by rpki-client on console-ams.rpki-client.org