$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa File: 9D003F28621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: +qzrDfAGqrBXPR4GW3URsuXk+ocd3F55wGBo2/SuR6s= Subject key identifier: 14:F7:7E:3D:96:DE:02:D1:46:B8:D2:46:A7:BA:15:39:4D:81:5C:7C Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 10A6 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa Signing time: Sat 28 Oct 2023 17:45:19 +0000 ROA not before: Sat 28 Oct 2023 17:45:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 13335 IP address blocks: 2405:8100:8001::/48 maxlen: 48 2405:8100:8002::/48 maxlen: 48 2405:8100:8003::/48 maxlen: 48 2405:8100:8004::/48 maxlen: 48 2405:8100:8005::/48 maxlen: 48 2405:8100:c000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4262 (0x10a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 28 17:45:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d48af-012d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:96:13:ba:ad:2a:b5:80:bc:46:cd:f8:81:4c: 30:a7:77:1a:15:6a:20:48:5a:8e:e2:89:6d:05:ff: 3e:5f:2a:ec:6e:11:2e:8f:d9:00:18:de:f8:8c:3f: 5e:11:64:b6:56:29:4e:4c:63:8b:86:52:e3:ed:f2: 76:8d:32:11:3f:c0:45:67:3a:a5:26:41:0f:d9:e1: 0a:36:45:d1:fd:00:13:b6:a4:9b:9c:7c:07:93:45: 37:09:88:5e:53:81:82:20:29:75:11:9d:bb:1b:4a: 85:ab:4a:64:79:b3:3e:1c:62:d6:5a:b1:f1:e3:f0: c6:6f:81:96:ac:c4:e5:59:69:5f:76:c9:4f:1c:f1: 59:56:53:72:97:6c:a2:ad:27:5a:fd:40:8d:1b:b1: 2f:08:1e:35:3b:48:c4:b4:b1:ac:32:b7:ec:f1:a4: 88:84:b6:8a:d4:86:f1:b6:11:b1:ec:2e:b6:09:e5: f1:eb:0d:c1:a7:9e:9a:bb:3c:b9:34:23:17:2e:18: 99:6e:f9:13:6f:35:94:17:c7:73:4a:37:83:f5:23: 0b:be:2a:ad:26:1f:0a:f7:79:f5:a2:a9:bd:58:d7: e3:c0:1d:34:af:73:cf:57:68:a0:d3:09:c2:69:85: a8:b0:bc:7b:2a:a2:24:7e:7f:5c:63:0c:55:70:bc: 87:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F7:7E:3D:96:DE:02:D1:46:B8:D2:46:A7:BA:15:39:4D:81:5C:7C X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8100:8001::-2405:8100:8005:ffff:ffff:ffff:ffff:ffff 2405:8100:c000::/38 Signature Algorithm: sha256WithRSAEncryption 4c:20:c8:b3:8d:96:12:4b:7c:bc:5a:58:38:39:09:4c:69:e5: ae:6c:e3:7e:5f:53:65:2f:65:14:5a:51:e9:7c:cb:41:a0:58: 68:22:07:61:7a:01:0f:00:36:a9:b5:5a:94:cc:bf:8d:41:ca: fd:f4:43:89:27:e9:51:8a:a9:f4:e5:8f:a6:26:df:87:07:4d: 90:a1:48:30:0d:81:ea:93:31:11:76:96:87:73:18:a9:da:ee: c8:22:91:f3:c1:63:ee:a8:39:a0:b8:77:21:7f:8d:d9:30:67: c0:db:1d:c4:95:69:bd:11:54:0a:fd:85:94:23:48:30:39:75: 40:0c:22:ca:4e:1f:c1:ce:75:18:cf:c5:cb:96:27:c8:69:3f: b1:61:08:9d:a4:78:cb:e0:b6:11:85:dc:7d:30:7d:a7:5d:47: 75:6b:ff:8a:75:da:08:15:06:9a:56:32:d9:bd:96:6f:db:20: 6b:6d:6e:74:9a:02:50:f8:eb:e0:2f:10:18:39:21:8f:ee:c8: b2:b7:06:ac:3d:95:c5:72:b6:c8:f1:eb:15:75:67:32:c1:f1: ee:33:33:12:da:e0:55:49:1a:1e:43:3e:ea:1a:21:4f:3b:7c: 3c:3c:5e:4d:e4:d5:d1:3e:c6:6e:94:1d:24:0b:45:7a:54:3f: aa:61:5a:22 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICEKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjMxMDI4MTc0NTE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkNDhhZi0wMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZYTuq0qtYC8Rs34gUwwp3caFWogSFqO4oltBf8+XyrsbhEuj9kAGN74jD9e EWS2VilOTGOLhlLj7fJ2jTIRP8BFZzqlJkEP2eEKNkXR/QATtqSbnHwHk0U3CYhe U4GCICl1EZ27G0qFq0pkebM+HGLWWrHx4/DGb4GWrMTlWWlfdslPHPFZVlNyl2yi rSda/UCNG7EvCB41O0jEtLGsMrfs8aSIhLaK1IbxthGx7C62CeXx6w3Bp56auzy5 NCMXLhiZbvkTbzWUF8dzSjeD9SMLviqtJh8K93n1oqm9WNfjwB00r3PPV2ig0wnC aYWosLx7KqIkfn9cYwxVcLyHQwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFBT3fj2W 3gLRRrjSRqe6FTlNgVx8MB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUQwMDNGMjg2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwwEgMHACQFgQCAAQMHASQFgQCABAMGAiQFgQDAMA0GCSqGSIb3 DQEBCwUAA4IBAQBMIMizjZYSS3y8Wlg4OQlMaeWubON+X1NlL2UUWlHpfMtBoFho IgdhegEPADaptVqUzL+NQcr99EOJJ+lRiqn05Y+mJt+HB02QoUgwDYHqkzERdpaH cxip2u7IIpHzwWPuqDmguHchf43ZMGfA2x3ElWm9EVQK/YWUI0gwOXVADCLKTh/B znUYz8XLlifIaT+xYQidpHjL4LYRhdx9MH2nXUd1a/+KddoIFQaaVjLZvZZv2yBr bW50mgJQ+OvgLxAYOSGP7siytwasPZXFcrbI8esVdWcywfHuMzMS2uBVSRoeQz7q GiFPO3w8PF5N5NXRPsZulB0kC0V6VD+qYVoi -----END CERTIFICATE-----Generated at Fri May 10 20:05:38 2024 by rpki-client on console-fra.rpki-client.org