$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa File: A48D6CEEED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: SDBXkp0iRqPJfJyoyUGCnWJgvABrerY7dAJnSQzu8Uo= Subject key identifier: B7:18:B8:A7:84:C6:29:D2:51:96:F4:5C:E1:D4:70:7C:7F:C8:79:54 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: D2 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa Signing time: Mon 03 Jul 2023 03:32:54 +0000 ROA not before: Mon 03 Jul 2023 03:32:54 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140224 IP address blocks: 2407:2440:1a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jul 3 03:32:54 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a24166-6d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:81:28:8e:77:6f:f1:19:25:9d:68:41:79:5b: 21:02:5f:52:96:89:e3:d7:bc:65:d5:af:0b:b5:8c: 13:cd:fc:17:0e:3e:c9:5b:1e:15:8b:f4:b2:4f:cc: 44:93:63:c1:9c:2f:d1:87:12:56:91:94:d9:a1:ba: 0e:52:12:1a:6c:79:49:20:cd:b4:2f:44:6c:6d:37: bc:89:68:be:88:cc:40:43:27:2b:2f:88:90:cd:6d: 1a:4e:0e:da:8b:9c:a5:c3:f2:d2:5c:a6:0a:cf:58: 18:80:2b:ba:b4:d0:05:68:87:78:6a:bc:8e:dc:fd: b0:02:43:d6:fc:6d:a0:ef:58:44:72:f9:cd:3b:89: 60:d9:88:3f:0c:36:22:8f:47:3c:d4:8b:97:9f:81: 58:28:c0:4c:d3:8c:30:75:02:73:6a:93:78:9e:26: 7a:a3:c3:29:32:e5:f5:2e:b6:bb:58:5a:c7:02:6c: 04:85:39:f9:c7:b2:97:10:78:6a:98:ba:4a:ce:a9: 20:7a:9f:2b:b7:a7:a2:c4:3e:b7:0e:12:b9:dc:ce: 4a:a3:9c:79:ce:03:6d:e7:e9:7f:c2:d6:95:bc:36: df:25:0f:d4:95:51:62:e2:bf:9e:4b:b3:cd:84:9a: 85:08:b4:38:c8:c6:28:a0:b1:17:16:e6:db:bb:04: a5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:18:B8:A7:84:C6:29:D2:51:96:F4:5C:E1:D4:70:7C:7F:C8:79:54 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:1a::/48 Signature Algorithm: sha256WithRSAEncryption 60:5c:c9:3b:c3:c4:46:b8:6e:0e:f9:66:48:02:22:45:9d:11: ba:b0:97:b2:a4:9d:95:c5:b1:20:72:c6:a5:4b:cd:27:64:ac: 5d:ab:14:02:c0:89:6e:5b:21:33:e8:5f:d3:68:80:28:2c:97: 40:41:94:32:2d:d4:48:d7:57:18:a0:5a:ad:b8:3d:f9:a0:ed: 6c:29:9e:3d:40:b2:ba:14:fb:ed:62:fa:7b:d1:85:53:a4:d3: 35:82:4e:90:1f:2f:b5:05:be:14:e1:f2:3d:07:9f:4b:40:b1: 65:37:56:1b:46:3c:4b:81:8e:e0:a9:a3:6b:12:f9:71:c1:ff: 90:3f:34:76:18:cf:d4:ec:06:c5:d6:bf:e3:cf:67:a3:cc:3d: 0b:40:75:be:92:69:3c:de:3c:98:25:10:f1:fb:f6:94:86:72: d2:24:57:f1:42:98:0d:5a:43:b7:a9:2f:8a:03:fc:e5:7a:f1: 3c:a4:94:10:03:32:54:b4:44:66:c7:e3:3d:40:ef:bd:6f:e6: 58:8e:53:c0:d7:ea:c8:e1:88:c3:19:88:32:6d:3b:ca:3c:09: 1e:f7:d1:ae:eb:4d:2a:d4:f9:c9:19:13:1f:c3:02:b3:30:63: c7:9c:4a:93:27:2e:57:3b:56:55:76:51:a8:4d:4b:7d:45:e6: d6:5c:56:19 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjMwNzAzMDMzMjU0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGEyNDE2Ni02ZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAloEojndv8RklnWhBeVshAl9Slonj17xl1a8LtYwTzfwXDj7JWx4Vi/SyT8xE k2PBnC/RhxJWkZTZoboOUhIabHlJIM20L0RsbTe8iWi+iMxAQycrL4iQzW0aTg7a i5ylw/LSXKYKz1gYgCu6tNAFaId4aryO3P2wAkPW/G2g71hEcvnNO4lg2Yg/DDYi j0c81IuXn4FYKMBM04wwdQJzapN4niZ6o8MpMuX1Lra7WFrHAmwEhTn5x7KXEHhq mLpKzqkgep8rt6eixD63DhK53M5Ko5x5zgNt5+l/wtaVvDbfJQ/UlVFi4r+eS7PN hJqFCLQ4yMYooLEXFubbuwSlbQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLcYuKeE xinSUZb0XOHUcHx/yHlUMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTQ4RDZDRUVF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkByRAABowDQYJKoZIhvcNAQELBQADggEBAGBcyTvDxEa4 bg75ZkgCIkWdEbqwl7KknZXFsSByxqVLzSdkrF2rFALAiW5bITPoX9NogCgsl0BB lDIt1EjXVxigWq24Pfmg7Wwpnj1AsroU++1i+nvRhVOk0zWCTpAfL7UFvhTh8j0H n0tAsWU3VhtGPEuBjuCpo2sS+XHB/5A/NHYYz9TsBsXWv+PPZ6PMPQtAdb6SaTze PJglEPH79pSGctIkV/FCmA1aQ7epL4oD/OV68TyklBADMlS0RGbH4z1A771v5liO U8DX6sjhiMMZiDJtO8o8CR730a7rTSrU+ckZEx/DArMwY8ecSpMnLlc7VlV2UahN S31F5tZcVhk= -----END CERTIFICATE-----Generated at Fri May 3 05:32:36 2024 by rpki-client on console-ams.rpki-client.org