$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa File: A55DE586ED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: l3b9wU/r8SoRJ9N6kZ9XoWxO0SkzlVcWGg2Lkspxg/M= Subject key identifier: C1:C5:94:ED:C4:32:0B:7B:9B:28:AD:60:EE:5D:4E:FE:39:FF:D6:89 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: D4 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa Signing time: Mon 03 Jul 2023 03:32:56 +0000 ROA not before: Mon 03 Jul 2023 03:32:56 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 18004 IP address blocks: 2407:2440:1b::/48 maxlen: 48 2407:2440:1c::/48 maxlen: 48 2407:2440:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jul 3 03:32:56 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a24168-0eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dd:52:9b:bc:c0:5a:87:4b:0a:38:7a:63:62: 48:28:2f:21:99:cb:ad:df:06:09:7b:72:5c:8e:86: 67:e9:dd:8f:19:0c:18:a5:00:1e:cb:a1:59:b5:3f: 10:0d:89:13:08:48:d2:86:9e:c5:be:3d:c9:14:78: 4a:a4:d5:61:b6:3c:0c:d7:32:b9:ad:b5:c5:c5:e9: 8d:a6:ab:4f:3a:1d:df:4b:32:da:37:37:42:35:4c: 6f:66:71:23:85:b6:eb:52:d7:84:27:eb:b9:b2:bf: a6:41:95:18:15:26:93:65:8f:c4:01:33:16:69:09: 60:1c:da:9a:22:21:3b:ee:06:17:f1:88:23:78:c2: 0a:95:8e:86:22:99:59:17:ad:37:91:b1:11:04:5e: ee:2d:1e:c7:16:ef:9b:5c:9d:4f:cf:55:91:d7:04: 39:9a:eb:f8:a5:e0:9e:9e:35:1d:2b:76:d4:14:6a: 93:a9:41:06:8a:bb:34:19:2d:75:49:1e:76:0f:19: c6:74:95:3d:95:31:31:79:26:19:73:35:1e:06:ff: ae:ae:bb:6a:c3:df:a0:b7:f1:49:81:aa:fd:df:e5: 85:24:e1:f4:6e:08:9e:81:3d:28:01:dc:b1:aa:e0: 8a:a2:51:3f:64:7d:98:fd:18:50:76:ef:71:36:8a: 00:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C5:94:ED:C4:32:0B:7B:9B:28:AD:60:EE:5D:4E:FE:39:FF:D6:89 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:1b::-2407:2440:1d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 4d:2d:8e:b7:44:a8:f0:e0:47:59:9e:6a:01:4f:f4:af:30:21: 16:fa:e2:ea:2c:5c:e2:e1:f8:fb:3b:80:8d:39:9b:9b:ee:45: 5f:12:d9:7a:b1:0f:6d:52:a6:29:9f:b7:c4:a8:1e:7a:47:61: f9:fc:73:ce:5a:8c:b5:f1:3c:73:e5:90:ad:56:42:ca:e2:40: b9:05:ef:6b:12:8b:e5:8d:7e:e7:3d:e2:0b:b0:37:4a:22:dc: e6:6f:16:44:7b:05:23:c0:3c:3a:6a:f2:38:98:02:1d:eb:05: d6:97:6a:f4:38:23:b4:1e:0d:2d:e1:60:d8:d6:d4:8d:67:1f: 7c:e2:72:4b:ac:10:68:71:88:d0:10:22:92:db:0d:61:df:62: bd:26:33:97:18:ca:7c:13:3f:1c:b1:cb:d4:84:aa:12:84:2f: 5c:b7:9e:fb:9a:b8:8b:08:43:71:f7:57:f1:df:d4:2b:c4:ff: ed:b5:80:07:b7:34:42:98:0c:39:07:c8:19:33:58:e4:7a:94: c2:83:bd:99:bf:ad:e7:a1:5d:31:ae:22:00:0b:cd:3d:47:45: c7:f9:d6:b1:29:92:dc:4c:30:77:22:7b:f4:a8:4a:c7:a7:75: 04:d4:22:a0:4f:95:f2:1e:3a:69:a6:3c:13:3b:ba:84:1f:a7: fa:78:b2:d1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjMwNzAzMDMzMjU2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGEyNDE2OC0wZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN1Sm7zAWodLCjh6Y2JIKC8hmcut3wYJe3JcjoZn6d2PGQwYpQAey6FZtT8Q DYkTCEjShp7Fvj3JFHhKpNVhtjwM1zK5rbXFxemNpqtPOh3fSzLaNzdCNUxvZnEj hbbrUteEJ+u5sr+mQZUYFSaTZY/EATMWaQlgHNqaIiE77gYX8YgjeMIKlY6GIplZ F603kbERBF7uLR7HFu+bXJ1Pz1WR1wQ5muv4peCenjUdK3bUFGqTqUEGirs0GS11 SR52DxnGdJU9lTExeSYZczUeBv+urrtqw9+gt/FJgar93+WFJOH0bgiegT0oAdyx quCKolE/ZH2Y/RhQdu9xNooAVQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMHFlO3E Mgt7myitYO5dTv45/9aJMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTU1REU1ODZF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQHJEAAGwMHASQHJEAAHDANBgkqhkiG9w0BAQsFAAOC AQEATS2Ot0So8OBHWZ5qAU/0rzAhFvri6ixc4uH4+zuAjTmbm+5FXxLZerEPbVKm KZ+3xKgeekdh+fxzzlqMtfE8c+WQrVZCyuJAuQXvaxKL5Y1+5z3iC7A3SiLc5m8W RHsFI8A8OmryOJgCHesF1pdq9DgjtB4NLeFg2NbUjWcffOJyS6wQaHGI0BAiktsN Yd9ivSYzlxjKfBM/HLHL1ISqEoQvXLee+5q4iwhDcfdX8d/UK8T/7bWAB7c0QpgM OQfIGTNY5HqUwoO9mb+t56FdMa4iAAvNPUdFx/nWsSmS3EwwdyJ79KhKx6d1BNQi oE+V8h46aaY8Ezu6hB+n+niy0Q== -----END CERTIFICATE-----Generated at Wed May 15 05:22:37 2024 by rpki-client on console-fra.rpki-client.org