$ rpki-client -vvf rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa File: 4FCB21E6E05211EE8AEC805CC4F9AE02.roa (raw, json) Hash identifier: 0MtwCciVuO81difEPZPl8SOQdXiTFdE21V7yrUDjvPs= Subject key identifier: 30:31:22:C2:89:C2:C9:DB:29:5C:AF:A3:DA:75:5B:EE:14:FF:44:E6 Certificate issuer: /CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Certificate serial: 02 Authority key identifier: 31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa Signing time: Tue 12 Mar 2024 09:24:23 +0000 ROA not before: Tue 12 Mar 2024 09:24:23 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9237 IP address blocks: 203.91.128.0/19 maxlen: 24 2406:af40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Validity Not Before: Mar 12 09:24:23 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65f01f46-133d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d9:e1:c3:91:fc:e7:7f:fb:36:2a:40:6a:d1: 30:64:07:cc:b6:e5:8f:48:2b:94:eb:ed:74:85:5d: 96:0b:55:77:e9:de:4f:64:eb:d5:38:22:4b:7f:0d: f3:11:01:b6:85:a9:95:72:cf:99:dc:62:81:8c:d2: 63:87:00:fb:72:a2:6b:cf:1b:f8:18:99:22:7c:16: 8f:bf:79:0c:c0:c7:82:17:11:95:40:93:df:b5:82: 9b:ff:c5:8a:dc:f7:ea:6a:73:e7:a0:f4:c4:9e:35: 12:59:26:93:5b:15:b8:4c:7c:03:19:28:8e:92:5e: 9b:63:af:05:d4:41:db:0f:ef:54:a8:8d:82:b8:84: a7:1d:10:f3:67:7c:df:fb:66:f6:7b:d6:0a:20:c2: 6d:00:cd:20:89:98:53:ea:79:86:9d:c3:33:5e:ce: 57:e9:f4:da:bf:fc:71:2e:f0:30:53:96:d8:d8:67: 01:55:77:7c:93:b9:86:18:bc:ff:53:83:b4:ff:a7: 04:68:82:be:5c:cf:34:1a:5f:7b:b9:31:0b:c5:62: 98:39:82:12:77:40:de:e9:1c:3e:5f:16:fa:c2:0a: 12:13:7b:aa:23:39:9c:fc:b6:fa:dc:b0:a4:93:32: 20:82:54:7f:98:c2:bf:b8:d6:fa:3d:58:c1:d8:08: 9c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:31:22:C2:89:C2:C9:DB:29:5C:AF:A3:DA:75:5B:EE:14:FF:44:E6 X509v3 Authority Key Identifier: keyid:31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.91.128.0/19 IPv6: 2406:af40::/32 Signature Algorithm: sha256WithRSAEncryption 43:8f:6e:78:e6:19:a8:86:69:ba:83:b5:63:e0:e4:91:3d:1a: 3e:58:52:33:1b:0e:50:a8:f4:25:ca:48:1c:9e:56:6e:d4:dd: 16:41:83:c3:88:c6:7f:ef:f4:95:d2:b3:1c:7f:c5:cc:da:fc: 0b:ae:39:da:bd:f7:ba:c5:4c:b9:46:e8:f8:07:f6:ba:35:ab: 60:50:d9:80:26:a4:2c:9c:32:b5:99:66:98:aa:90:dd:2d:6d: 13:12:aa:8d:f2:24:7d:fc:b3:81:b8:49:e5:9d:58:53:21:2b: 7f:02:5a:9d:95:f6:35:f6:fe:8f:6b:cb:92:97:99:de:ac:f9: a6:8b:72:36:5d:b2:ea:78:34:07:bb:f9:d9:5b:98:39:44:7f: 4f:40:d9:11:1c:1a:f4:d9:67:c2:8f:54:87:e9:2f:f8:ae:f4: 82:e3:8c:7d:db:45:3b:94:e9:31:b4:d3:ad:99:01:92:7e:f8: fb:92:ae:a6:b2:2d:94:de:bc:25:a0:31:43:78:38:03:58:e8: 77:6c:27:48:80:c0:2c:07:dc:35:90:dd:81:bf:a4:50:1a:e0: 07:48:84:4e:2c:c9:26:c1:8e:ec:d4:44:6c:36:6c:4d:e9:f3: 14:77:7a:2e:e3:44:1a:b6:6e:2e:9f:33:bb:f6:84:a9:9f:c5: a8:c6:60:ff -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Mzc4QjExMC8GA1UEBRMoMzE4NTUzRUQwOUMyMDA5NThDQjE1RENDRTI3N0NDNDhB QTQyQTM4ODAeFw0yNDAzMTIwOTI0MjNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjAxZjQ2LTEzM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC2eHDkfznf/s2KkBq0TBkB8y25Y9IK5Tr7XSFXZYLVXfp3k9k69U4Ikt/DfMR AbaFqZVyz5ncYoGM0mOHAPtyomvPG/gYmSJ8Fo+/eQzAx4IXEZVAk9+1gpv/xYrc 9+pqc+eg9MSeNRJZJpNbFbhMfAMZKI6SXptjrwXUQdsP71SojYK4hKcdEPNnfN/7 ZvZ71gogwm0AzSCJmFPqeYadwzNezlfp9Nq//HEu8DBTltjYZwFVd3yTuYYYvP9T g7T/pwRogr5czzQaX3u5MQvFYpg5ghJ3QN7pHD5fFvrCChITe6ojOZz8tvrcsKST MiCCVH+Ywr+41vo9WMHYCJzPAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUMDEiwonC ydspXK+j2nVb7hT/ROYwHwYDVR0jBBgwFoAUMYVT7QnCAJWMsV3M4nfMSKpCo4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzNzhCL0MxM0FBNzc2RTA1 MTExRUVCNUIwOTI1QkM0RjlBRTAyL01ZVlQ3UW5DQUpXTXNWM000bmZNU0twQ280 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVlWVDdRbkNBSldNc1YzTTRuZk1TS3BDbzRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzc4Qi9DMTNBQTc3NkUwNTExMUVFQjVCMDkyNUJDNEY5QUUwMi80RkNCMjFFNkUw NTIxMUVFOEFFQzgwNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEBctbgDANBAIAAjAHAwUAJAavQDANBgkqhkiG9w0BAQsFAAOC AQEAQ49ueOYZqIZpuoO1Y+DkkT0aPlhSMxsOUKj0JcpIHJ5WbtTdFkGDw4jGf+/0 ldKzHH/FzNr8C6452r33usVMuUbo+Af2ujWrYFDZgCakLJwytZlmmKqQ3S1tExKq jfIkffyzgbhJ5Z1YUyErfwJanZX2Nfb+j2vLkpeZ3qz5potyNl2y6ng0B7v52VuY OUR/T0DZERwa9Nlnwo9Uh+kv+K70guOMfdtFO5TpMbTTrZkBkn74+5KuprItlN68 JaAxQ3g4A1jod2wnSIDALAfcNZDdgb+kUBrgB0iETizJJsGO7NREbDZsTenzFHd6 LuNEGrZuLp8zu/aEqZ/FqMZg/w== -----END CERTIFICATE-----Generated at Thu Jun 13 10:45:32 2024 by rpki-client on console-fra.rpki-client.org