$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/DCE70C6EF9B911ED8314C10EC4F9AE02.roa File: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (raw, json) Hash identifier: S6LN+TbL8opVfjFRlM1glK2Ag2e2qtVfe+DrN2wZFBI= Subject key identifier: C9:C7:89:E5:32:6D:27:1B:53:A1:3F:8A:FB:E2:08:FC:AC:E3:F2:49 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 0195 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/DCE70C6EF9B911ED8314C10EC4F9AE02.roa Signing time: Sat 01 Jul 2023 02:52:59 +0000 ROA not before: Sat 01 Jul 2023 02:52:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 3573 IP address blocks: 2404:3d00:41c2::/47 maxlen: 47 2404:3d00:41c2::/48 maxlen: 48 2404:3d00:41c3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 04:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Jul 1 02:52:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649f950b-3e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:aa:32:56:e0:aa:73:0f:4a:c5:7b:97:ab:ef: 6e:6b:60:0d:87:b6:b3:8e:b0:f0:d9:3a:05:a5:93: 95:11:0a:56:47:aa:3c:fe:bf:50:c0:2e:6b:2d:83: 9c:78:d7:16:6e:3a:98:5f:f2:b6:1b:58:c8:e8:46: 5c:f2:e7:d4:cd:3f:52:7b:2d:49:e4:42:ec:a7:00: f9:02:49:91:09:9e:56:1a:f6:60:94:fc:34:85:66: c3:03:c0:e9:dd:df:03:bd:c6:a2:f9:1d:22:12:cb: b6:52:43:44:4e:25:e2:ca:77:94:bb:63:13:f6:26: 8b:21:05:92:c7:2b:c0:d5:0c:91:e6:3b:50:6e:8a: 43:05:bd:8c:6c:23:12:59:5e:1f:93:55:7a:05:e4: 05:88:43:58:f9:b8:54:7e:b3:82:1e:0b:6c:b4:96: 52:49:c8:d7:58:fa:e3:47:eb:36:be:91:29:d1:18: 4a:d3:79:07:ee:ae:e8:ef:22:b9:a6:b7:45:d0:34: a8:21:6c:53:42:c2:fe:37:60:44:8c:08:ea:44:d2: fa:76:68:48:97:fd:d5:5d:e4:0d:96:03:41:11:27: 85:de:dc:4f:7c:ad:eb:83:20:55:e2:00:4a:0c:8e: d5:c1:e1:1b:b2:86:3a:ef:1b:77:e9:9c:66:79:a7: 37:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C7:89:E5:32:6D:27:1B:53:A1:3F:8A:FB:E2:08:FC:AC:E3:F2:49 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/DCE70C6EF9B911ED8314C10EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:3d00:41c2::/47 Signature Algorithm: sha256WithRSAEncryption 2e:6c:40:30:0d:fe:92:75:2a:d5:e7:13:70:a9:ad:83:9a:e1: 5e:77:07:f2:86:40:a8:2f:d2:30:52:45:4a:a8:cb:4d:f5:c7: 04:05:1a:ef:1a:e5:bc:7d:94:a0:a3:bb:20:6b:64:58:50:e7: 5d:aa:bb:ed:e0:f9:27:ba:70:a5:bf:a4:ef:89:c3:3b:dd:98: 67:9d:d7:75:43:d3:2b:80:77:25:7f:bc:bc:63:ff:5a:0d:ea: 18:8e:26:0e:4d:ce:94:9f:9c:30:ab:64:37:c7:06:af:c4:01: c5:6b:d0:f2:8a:90:b7:f2:d9:c0:f9:36:d7:ab:6c:3e:6e:83: b8:b4:9a:ee:b1:7e:b6:30:c6:18:88:37:4f:ca:eb:f6:19:b3: 79:fb:11:69:71:9d:aa:01:83:3a:89:46:5d:da:99:bd:57:51: e7:51:0b:02:25:b8:39:78:ef:1b:ff:7d:9b:0d:da:f1:91:93: 3d:3b:e9:2d:04:04:84:44:f8:94:95:25:cd:9a:28:8f:79:47: f0:63:5c:a2:c2:44:f1:ac:2b:26:38:85:47:d2:70:9b:e1:2d: 33:52:c8:34:82:ec:40:87:86:f4:db:87:e4:b6:77:1d:77:99: 19:a5:de:19:e0:8e:d1:41:55:ea:78:4b:fc:c0:13:84:fa:57: 08:e1:f8:b0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjMwNzAxMDI1MjU5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDlmOTUwYi0zZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmaoyVuCqcw9KxXuXq+9ua2ANh7azjrDw2ToFpZOVEQpWR6o8/r9QwC5rLYOc eNcWbjqYX/K2G1jI6EZc8ufUzT9Sey1J5ELspwD5AkmRCZ5WGvZglPw0hWbDA8Dp 3d8Dvcai+R0iEsu2UkNETiXiyneUu2MT9iaLIQWSxyvA1QyR5jtQbopDBb2MbCMS WV4fk1V6BeQFiENY+bhUfrOCHgtstJZSScjXWPrjR+s2vpEp0RhK03kH7q7o7yK5 prdF0DSoIWxTQsL+N2BEjAjqRNL6dmhIl/3VXeQNlgNBESeF3txPfK3rgyBV4gBK DI7VweEbsoY67xt36Zxmeac33wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMnHieUy bScbU6E/ivviCPys4/JJMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI0QUYvQ0M3QjI1NUFEQ0E5MTFFQzk0RTNFMDI5QzRGOUFFMDIvRENFNzBDNkVG OUI5MTFFRDgzMTRDMTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBD0AQcIwDQYJKoZIhvcNAQELBQADggEBAC5sQDAN/pJ1 KtXnE3CprYOa4V53B/KGQKgv0jBSRUqoy031xwQFGu8a5bx9lKCjuyBrZFhQ512q u+3g+Se6cKW/pO+JwzvdmGed13VD0yuAdyV/vLxj/1oN6hiOJg5NzpSfnDCrZDfH Bq/EAcVr0PKKkLfy2cD5NterbD5ug7i0mu6xfrYwxhiIN0/K6/YZs3n7EWlxnaoB gzqJRl3amb1XUedRCwIluDl47xv/fZsN2vGRkz076S0EBIRE+JSVJc2aKI95R/Bj XKLCRPGsKyY4hUfScJvhLTNSyDSC7ECHhvTbh+S2dx13mRml3hngjtFBVep4S/zA E4T6Vwjh+LA= -----END CERTIFICATE-----Generated at Mon May 13 04:50:31 2024 by rpki-client on console-fra.rpki-client.org