$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa File: AC8A59D689D311EE81F03018C4F9AE02.roa (raw, json) Hash identifier: +egsiZQuK0DvlIDs69wUvlKJ0oetMgci2jecNO2W5BY= Subject key identifier: FE:98:D0:D1:A7:E8:28:91:C3:D2:64:F9:33:26:20:52:A2:A7:38:05 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: CE Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa Signing time: Thu 23 Nov 2023 07:41:12 +0000 ROA not before: Thu 23 Nov 2023 07:41:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 149012 IP address blocks: 2401:43e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Nov 23 07:41:12 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655f0218-ef4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:d2:42:84:e9:14:35:b9:3e:8b:1b:70:1e: c0:e8:8f:70:71:18:34:6c:6f:a2:9b:3c:a2:cf:91: 9f:f7:0f:f1:39:8b:3d:3e:0e:14:d9:57:c7:15:a0: 0f:ba:61:58:2f:1e:cd:01:ce:f8:82:96:c8:8e:2a: a4:8c:8b:97:f5:6d:39:0c:aa:dc:1d:cc:63:dd:2f: 64:76:ed:63:68:31:d4:2a:f6:30:09:fe:ee:fa:c7: a4:e7:2a:fb:3d:41:cf:a8:bc:91:22:7d:8c:1a:10: 65:c3:7d:c5:65:87:3c:13:e2:5b:eb:06:9e:44:a2: 35:04:75:4f:8a:c7:10:be:12:d7:d1:5c:35:b9:26: ad:a6:91:2d:b3:d4:6e:8a:80:92:d4:b2:17:f7:ee: 1c:a9:4f:e9:b9:22:d6:bf:4d:2e:04:d0:da:a5:0a: 91:0d:6c:ae:11:ac:ff:e2:79:da:6a:1a:82:1d:83: 8e:0f:45:05:2e:b5:39:7d:71:c3:9d:64:f6:a9:be: 3e:1a:c6:8b:2c:58:8e:ed:77:93:fd:ae:75:40:d3: af:20:7c:31:4c:dd:4f:42:53:05:60:7c:9b:91:eb: 0b:88:81:06:70:3b:a1:a3:da:7a:e0:d5:5b:7e:67: c3:d4:a8:9b:d0:a4:2e:0f:e7:81:cc:17:77:ba:88: 81:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:98:D0:D1:A7:E8:28:91:C3:D2:64:F9:33:26:20:52:A2:A7:38:05 X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/AC8A59D689D311EE81F03018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:43e0::/32 Signature Algorithm: sha256WithRSAEncryption 57:c7:5c:a2:ee:e3:eb:84:55:b2:b8:36:f6:2f:2e:d0:db:ae: c1:97:2c:5f:e0:c7:8e:bc:22:0e:53:34:22:bd:56:59:cc:07: 96:15:ec:83:24:ab:dc:eb:6d:c8:1d:ad:d8:9d:96:5a:1c:79: 4f:94:64:2a:ed:6c:3a:33:38:a9:f8:2b:fb:08:9c:2b:ef:9a: a4:9d:4a:61:c7:b3:c6:85:ad:1d:2f:cf:67:76:fa:6d:1f:24: a1:12:1c:07:85:6d:83:60:4d:a5:ce:29:9f:f4:09:73:50:0b: 78:db:80:0e:74:9c:82:b2:77:dd:12:af:54:6e:a4:10:e7:14: f6:52:f0:bd:83:9c:46:b4:99:67:d1:a1:00:cd:29:9a:64:37: 2f:ad:7c:36:1d:c4:67:51:b2:03:c5:81:29:43:55:8f:24:e1: 62:73:54:61:2c:da:79:ec:d3:63:42:01:58:a1:b7:ce:f6:7d: d2:68:41:15:f4:2d:a0:49:06:23:34:6c:cd:75:c5:e2:e4:8a: cf:23:73:0f:ef:b2:38:bd:55:cc:de:3d:92:11:d8:72:9b:61: aa:1a:94:3c:cb:f6:f6:da:cd:f6:c3:ca:6b:f0:9e:50:3b:19: 11:4e:0c:1a:d9:9f:67:85:9c:f4:34:2d:17:4b:eb:9a:c0:53: cf:dd:21:e1 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjMxMTIzMDc0MTEyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVmMDIxOC1lZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXPSQoTpFDW5PosbcB7A6I9wcRg0bG+imzyiz5Gf9w/xOYs9Pg4U2VfHFaAP umFYLx7NAc74gpbIjiqkjIuX9W05DKrcHcxj3S9kdu1jaDHUKvYwCf7u+sek5yr7 PUHPqLyRIn2MGhBlw33FZYc8E+Jb6waeRKI1BHVPiscQvhLX0Vw1uSatppEts9Ru ioCS1LIX9+4cqU/puSLWv00uBNDapQqRDWyuEaz/4nnaahqCHYOOD0UFLrU5fXHD nWT2qb4+GsaLLFiO7XeT/a51QNOvIHwxTN1PQlMFYHybkesLiIEGcDuho9p64NVb fmfD1Kib0KQuD+eBzBd3uoiBXwIDAQABo4ICljCCApIwHQYDVR0OBBYEFP6Y0NGn 6CiRw9Jk+TMmIFKipzgFMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNDMjQvMTZDNjEzMTY2QUZBMTFFREI3MDZGRjNDQzRGOUFFMDIvQUM4QTU5RDY4 OUQzMTFFRTgxRjAzMDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAUPgMA0GCSqGSIb3DQEBCwUAA4IBAQBXx1yi7uPrhFWy uDb2Ly7Q267Blyxf4MeOvCIOUzQivVZZzAeWFeyDJKvc623IHa3YnZZaHHlPlGQq 7Ww6Mzip+Cv7CJwr75qknUphx7PGha0dL89ndvptHyShEhwHhW2DYE2lzimf9Alz UAt424AOdJyCsnfdEq9UbqQQ5xT2UvC9g5xGtJln0aEAzSmaZDcvrXw2HcRnUbID xYEpQ1WPJOFic1RhLNp57NNjQgFYobfO9n3SaEEV9C2gSQYjNGzNdcXi5IrPI3MP 77I4vVXM3j2SEdhym2GqGpQ8y/b22s32w8pr8J5QOxkRTgwa2Z9nhZz0NC0XS+ua wFPP3SHh -----END CERTIFICATE-----Generated at Wed May 15 05:59:56 2024 by rpki-client on console-fra.rpki-client.org