$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa File: BC148566D22B11EE9443A443C4F9AE02.roa (raw, json) Hash identifier: FZdTfIp41BVBApC35umt8ppBjYpTNPxUV8RxbpvDzeE= Subject key identifier: BB:4C:46:3E:E9:1A:EE:3B:D8:07:C6:5C:08:0F:73:0E:27:66:AA:39 Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Certificate serial: 0351 Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa Signing time: Fri 23 Feb 2024 09:12:57 +0000 ROA not before: Fri 23 Feb 2024 09:12:57 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 2001:df0:45c4::/46 maxlen: 47 2001:df0:45c4::/47 maxlen: 48 2001:df0:45c6::/48 maxlen: 48 2001:df0:45c8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Validity Not Before: Feb 23 09:12:57 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d86199-8051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:a7:7a:02:22:a0:e6:5d:67:35:06:00:8a: 9e:a4:30:8c:f2:5e:4d:13:d4:58:d4:53:cb:d5:0a: 33:aa:ea:63:07:0d:90:6b:68:bf:d6:f4:ca:a3:20: 0f:fe:51:9e:d5:01:da:69:c6:b8:17:b3:51:f2:cf: 02:6c:35:bc:2d:21:64:d4:2b:f5:64:fa:d5:6a:5e: 3b:03:0d:53:83:9c:24:44:32:24:e6:2f:29:23:18: 71:90:26:eb:6a:44:1e:89:f7:34:65:ef:4a:2f:66: 92:96:54:ba:fc:05:da:17:60:81:72:da:5f:0f:2c: f2:9b:30:ed:18:de:89:04:0e:e5:c4:f1:55:12:c4: f0:e8:5f:72:a9:71:52:26:e5:f3:1c:00:7c:16:67: d9:eb:16:75:90:fe:5b:56:21:b1:dd:70:16:19:77: 34:42:3c:ac:1b:a1:33:f9:85:cd:37:da:c2:74:28: 44:fd:20:a9:af:a6:21:02:2e:74:0a:b2:6f:d1:80: 7a:51:1f:37:ab:69:37:34:59:a3:72:4a:7b:1a:2c: f3:b1:88:3a:45:6a:2e:1a:5c:da:b3:df:43:4b:84: f9:d3:1c:4a:a7:1e:69:3c:70:e9:b5:ed:3f:4a:da: b9:2a:8e:a8:d5:b7:48:16:20:17:b3:40:a0:87:bb: 88:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4C:46:3E:E9:1A:EE:3B:D8:07:C6:5C:08:0F:73:0E:27:66:AA:39 X509v3 Authority Key Identifier: keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:45c4::-2001:df0:45cf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5a:02:f0:62:f1:bf:51:97:fc:05:05:c9:a0:7f:00:22:89:75: 0a:7e:ab:55:88:01:15:70:fe:d9:c0:0e:23:a5:6e:73:33:7c: 9a:4d:d2:65:5c:2c:de:31:0b:56:3e:8a:2b:c9:6e:18:6f:e8: 9b:92:f5:28:ec:52:12:e7:a7:a4:16:3f:d4:99:f0:f6:ee:3c: 4a:03:74:1e:59:e7:bd:82:f2:07:95:b5:dc:71:26:ae:fe:25: 84:93:44:4c:f3:08:58:1e:bc:93:f1:e1:84:9b:7d:9c:1b:37: c2:4e:b7:af:78:5d:c0:c1:de:db:56:4f:ed:ce:d3:1b:fb:be: 12:62:90:f8:78:1f:88:c6:9e:9e:fe:f5:02:d7:97:46:b9:0d: 21:17:53:25:07:a1:f1:4a:00:0b:44:66:55:07:3e:2e:fe:f6: 7d:ed:5d:d5:cb:72:ee:fc:77:e8:e7:58:06:dc:18:77:ee:38: 8a:5c:25:ac:fe:d9:14:42:2c:53:c1:86:12:66:ac:9b:7a:2f: 5c:3b:4e:13:69:8d:8e:a3:dc:ef:88:8f:4d:5b:19:1b:77:6c: b6:c0:57:58:01:47:c9:94:52:81:c6:8b:68:08:d9:e8:92:5f: 71:f8:7a:b6:6d:e1:a1:6d:c9:01:4b:9c:2b:d3:28:54:92:4f: 9c:b4:5f:ca -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFBRjUxMTAvBgNVBAUTKDQ1ODRBRUEyMzk0QzQ2RDY5MzRFNjNFRDY4ODdENDcy NkZERjdBMTMwHhcNMjQwMjIzMDkxMjU3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ4NjE5OS04MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oWnegIioOZdZzUGAIqepDCM8l5NE9RY1FPL1QozqupjBw2Qa2i/1vTKoyAP /lGe1QHaaca4F7NR8s8CbDW8LSFk1Cv1ZPrVal47Aw1Tg5wkRDIk5i8pIxhxkCbr akQeifc0Ze9KL2aSllS6/AXaF2CBctpfDyzymzDtGN6JBA7lxPFVEsTw6F9yqXFS JuXzHAB8FmfZ6xZ1kP5bViGx3XAWGXc0QjysG6Ez+YXNN9rCdChE/SCpr6YhAi50 CrJv0YB6UR83q2k3NFmjckp7GizzsYg6RWouGlzas99DS4T50xxKpx5pPHDpte0/ Stq5Ko6o1bdIFiAXs0Cgh7uIdQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLtMRj7p Gu472AfGXAgPcw4nZqo5MB8GA1UdIwQYMBaAFEWErqI5TEbWk05j7WiH1HJv33oT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUFGNS9FOTlGNTIzQTZF QzQxMUVDQUZEMjczMzFDNEY5QUUwMi9SWVN1b2psTVJ0YVRUbVB0YUlmVWNtX2Zl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZU3VvamxNUnRhVFRtUHRhSWZVY21fZmVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFBRjUvRTk5RjUyM0E2RUM0MTFFQ0FGRDI3MzMxQzRGOUFFMDIvQkMxNDg1NjZE MjJCMTFFRTk0NDNBNDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHAiABDfBFxAMHBCABDfBFwDANBgkqhkiG9w0BAQsFAAOC AQEAWgLwYvG/UZf8BQXJoH8AIol1Cn6rVYgBFXD+2cAOI6VuczN8mk3SZVws3jEL Vj6KK8luGG/om5L1KOxSEuenpBY/1Jnw9u48SgN0HlnnvYLyB5W13HEmrv4lhJNE TPMIWB68k/HhhJt9nBs3wk63r3hdwMHe21ZP7c7TG/u+EmKQ+HgfiMaenv71AteX RrkNIRdTJQeh8UoAC0RmVQc+Lv72fe1d1cty7vx36OdYBtwYd+44ilwlrP7ZFEIs U8GGEmasm3ovXDtOE2mNjqPc74iPTVsZG3dstsBXWAFHyZRSgcaLaAjZ6JJfcfh6 tm3hoW3JAUucK9MoVJJPnLRfyg== -----END CERTIFICATE-----Generated at Wed May 1 04:49:30 2024 by rpki-client on console-ams.rpki-client.org