$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa File: 312AAAD4BB7E11E9AFB49C42C4F9AE02.roa (raw, json) Hash identifier: hk7xry9rV52DaLNbR3V0PziX4NkqYuWldri3QW1j7mw= Subject key identifier: 99:4E:65:3C:E0:28:A8:95:29:99:80:5B:53:07:C4:CF:44:03:D8:F6 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3421 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa Signing time: Mon 02 Oct 2023 15:10:58 +0000 ROA not before: Mon 02 Oct 2023 15:10:58 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45177 IP address blocks: 2403:cc00:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13345 (0x3421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Oct 2 15:10:58 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651add82-f2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:99:77:54:a7:fd:d7:2d:94:30:95:c5:51:94: 64:22:88:fc:2a:79:bc:44:c2:8e:69:0c:c8:4c:8a: 5a:65:7b:84:dd:f7:91:15:b5:42:28:04:fe:6f:74: 7b:75:af:71:7c:7c:f3:af:5c:aa:3a:2a:dc:3e:03: b3:ae:b5:1f:fe:ba:67:75:8d:b8:1f:ab:ef:ad:a5: 8b:9c:89:32:ae:00:d5:2a:2d:2f:96:80:64:47:66: 66:3b:91:dd:e0:d8:9a:6b:76:4a:b6:6b:56:01:c3: e2:3a:d2:24:26:b4:71:37:55:43:17:df:78:0a:8c: 57:86:a7:46:0d:c4:b9:0c:84:06:e3:8b:01:72:a6: e4:64:5a:53:21:26:6d:a8:ac:ba:8a:47:26:39:ba: cd:97:e3:a2:9e:bb:a3:ff:d6:99:e9:b5:0b:e1:54: 2d:99:82:ac:e3:1f:cc:71:02:f0:0c:29:07:09:22: 25:6a:ba:cc:9a:3b:d1:9d:a9:b3:6d:06:d5:5b:61: 5b:c0:a8:e5:29:49:44:e5:ce:74:29:a3:48:46:fd: 8c:b9:3f:e4:66:53:9e:95:f1:ab:0f:4c:41:ec:1d: 50:8d:55:25:82:db:55:e5:1b:62:7d:df:00:d3:a6: e5:ab:e7:8e:b7:b3:dc:03:dc:c8:d9:83:7c:fa:32: d6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4E:65:3C:E0:28:A8:95:29:99:80:5B:53:07:C4:CF:44:03:D8:F6 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc00:4000::/36 Signature Algorithm: sha256WithRSAEncryption a8:8c:80:1a:48:95:f2:5c:3c:ca:c0:65:38:6c:5f:0d:10:43: 6d:c5:f1:5d:bc:23:83:7f:03:b7:d1:d1:f7:6c:97:42:91:d6: b3:82:a2:3d:e0:2a:55:4c:42:60:15:be:22:11:73:67:25:2a: 1b:a7:6a:62:0f:40:1e:d5:aa:8a:ea:c1:16:3b:c6:c6:4a:44: 7f:b8:7f:dd:0e:be:5e:28:90:7c:fe:e4:16:f3:9c:10:0c:42: ee:9d:ec:28:88:d5:b7:62:3c:69:b2:10:67:35:a2:c8:b2:c2: c1:7e:1d:3d:0f:54:9f:86:68:14:68:f2:c6:67:41:a8:9f:eb: 81:19:f4:5e:49:80:96:fd:60:dc:7a:ab:76:20:63:1f:2d:89: 53:c5:c2:45:b3:38:7f:aa:e0:9e:00:07:0d:f3:49:9e:13:c8: 37:e5:10:d9:b4:83:f0:f2:7c:fd:49:3f:fa:ea:36:85:bf:d1: fb:e1:a6:70:61:f5:33:1a:e9:f0:73:c5:73:09:14:65:b4:0a: 57:8f:95:f3:ba:29:b2:0b:cc:ce:6f:2a:dc:c5:77:9a:67:cf: 53:33:19:ae:0a:99:a3:f7:2f:e1:c7:2f:31:c6:0f:76:da:b2: a4:a7:86:c5:67:fa:2b:9d:85:1f:00:d7:ef:1b:f0:7d:d2:4b: 45:28:92:20 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICNCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjMxMDAyMTUxMDU4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZGQ4Mi1mMmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5l3VKf91y2UMJXFUZRkIoj8Knm8RMKOaQzITIpaZXuE3feRFbVCKAT+b3R7 da9xfHzzr1yqOircPgOzrrUf/rpndY24H6vvraWLnIkyrgDVKi0vloBkR2ZmO5Hd 4Niaa3ZKtmtWAcPiOtIkJrRxN1VDF994CoxXhqdGDcS5DIQG44sBcqbkZFpTISZt qKy6ikcmObrNl+Oinruj/9aZ6bUL4VQtmYKs4x/McQLwDCkHCSIlarrMmjvRnamz bQbVW2FbwKjlKUlE5c50KaNIRv2MuT/kZlOelfGrD0xB7B1QjVUlgttV5Rtifd8A 06blq+eOt7PcA9zI2YN8+jLWKQIDAQABo4IClzCCApMwHQYDVR0OBBYEFJlOZTzg KKiVKZmAW1MHxM9EA9j2MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMzEyQUFBRDRC QjdFMTFFOUFGQjQ5QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA8wAQDANBgkqhkiG9w0BAQsFAAOCAQEAqIyAGkiV8lw8 ysBlOGxfDRBDbcXxXbwjg38Dt9HR92yXQpHWs4KiPeAqVUxCYBW+IhFzZyUqG6dq Yg9AHtWqiurBFjvGxkpEf7h/3Q6+XiiQfP7kFvOcEAxC7p3sKIjVt2I8abIQZzWi yLLCwX4dPQ9Un4ZoFGjyxmdBqJ/rgRn0XkmAlv1g3HqrdiBjHy2JU8XCRbM4f6rg ngAHDfNJnhPIN+UQ2bSD8PJ8/Uk/+uo2hb/R++GmcGH1Mxrp8HPFcwkUZbQKV4+V 87opsgvMzm8q3MV3mmfPUzMZrgqZo/cv4ccvMcYPdtqypKeGxWf6K52FHwDX7xvw fdJLRSiSIA== -----END CERTIFICATE-----Generated at Thu May 16 17:51:53 2024 by rpki-client on console-ams.rpki-client.org