$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa File: 8663E8B6658A11E9930DC678C4F9AE02.roa (raw, json) Hash identifier: kfBYSdXVDNoiIg5IMlTmLe+hJgwzf1uU7v01KyKBquc= Subject key identifier: 3F:70:D8:5C:A4:DC:3E:63:04:5A:F1:40:43:8B:16:6E:3D:A2:D0:FA Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0E24 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa Signing time: Wed 10 May 2023 19:28:51 +0000 ROA not before: Wed 10 May 2023 19:28:51 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138966 IP address blocks: 2402:b940:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 10 19:28:51 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645bf073-047a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:28:4c:bb:d8:d4:dd:d1:9d:04:cb:77:3e:bf: b5:70:2b:11:7c:e9:5c:8f:f4:a0:e7:d4:16:54:49: 1c:70:0f:7e:f7:da:9a:d7:05:e8:a9:e4:b3:c2:52: 9c:aa:50:49:8a:98:9b:0b:f6:8c:1d:2a:21:14:01: 0a:c1:9e:a9:b1:80:50:65:96:52:13:9b:e3:01:a0: 2d:be:27:b0:ee:f5:c3:78:fb:30:d0:49:b1:a2:f0: 1d:a0:d4:22:43:cc:7b:bc:de:75:84:42:9b:a2:f9: 96:45:45:75:e4:73:7f:b7:aa:a6:dd:74:5c:43:3f: ef:ce:5b:35:12:bd:f6:b4:df:73:a2:a7:1f:40:99: 97:60:8d:b7:08:b4:85:9a:ef:90:0b:3c:a9:ea:8f: 95:11:54:5a:eb:e6:99:0b:b4:1c:80:98:99:54:3c: 90:ea:ea:e5:16:93:91:19:c1:8f:2a:b5:4f:33:73: 0e:d3:b3:c2:46:99:53:02:16:85:ef:cb:8d:8f:3f: c3:56:ce:11:ff:7f:87:bb:1a:01:8f:71:8e:64:4e: 31:c0:ff:2a:62:a5:2d:cf:a2:e5:59:0f:14:67:25: 25:d5:79:05:9b:8c:4b:20:2f:82:32:db:2c:9c:f0: b0:fc:2e:4d:53:cd:38:d7:c2:2e:f6:f7:ea:f5:b1: e9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:70:D8:5C:A4:DC:3E:63:04:5A:F1:40:43:8B:16:6E:3D:A2:D0:FA X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:b940:100::/40 Signature Algorithm: sha256WithRSAEncryption 18:6e:dd:61:31:83:77:fb:bd:1c:dc:46:8f:14:f0:da:15:e2: 18:5b:c3:b0:5f:3b:b9:db:1e:5a:18:6c:c6:65:13:3d:54:dc: 39:d4:f8:66:38:01:d4:3d:bc:81:ab:4a:47:a8:d6:08:3c:dc: de:54:0d:da:10:6b:b3:d6:2e:65:96:4d:cf:1c:35:fb:42:a4: f8:a0:2f:e1:b9:25:59:81:a7:a1:e2:8e:42:4a:84:96:ba:d8: 1f:06:ad:ea:8d:6f:ba:1d:d1:37:b7:74:1a:7d:8f:d0:6b:99: 11:83:10:0f:95:c3:30:b3:4c:61:85:c8:cd:8c:9d:ca:4a:2d: e5:f0:28:a5:90:26:9f:cd:b3:41:99:55:cd:39:24:4b:ba:13: 2e:04:1d:41:c8:c2:6f:0b:87:3e:90:19:84:e7:29:8e:ba:59: 33:92:85:7b:b5:05:8f:73:8f:af:6a:99:a3:e1:41:54:9b:5c: d4:7b:a8:27:b1:bf:79:d6:1f:95:f9:88:f3:7a:bb:09:70:26: 60:34:5e:5d:8e:88:45:6c:f3:ec:50:1f:78:22:e6:28:20:bd: f6:50:94:15:3b:a8:dd:dd:f5:46:26:80:d8:e5:4a:34:0b:18: be:0a:f2:df:fa:fb:b4:0d:14:ba:09:d7:d6:b3:6d:1d:16:dc: 10:87:9d:5b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjMwNTEwMTkyODUxWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViZjA3My0wNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtShMu9jU3dGdBMt3Pr+1cCsRfOlcj/Sg59QWVEkccA9+99qa1wXoqeSzwlKc qlBJipibC/aMHSohFAEKwZ6psYBQZZZSE5vjAaAtview7vXDePsw0EmxovAdoNQi Q8x7vN51hEKbovmWRUV15HN/t6qm3XRcQz/vzls1Er32tN9zoqcfQJmXYI23CLSF mu+QCzyp6o+VEVRa6+aZC7QcgJiZVDyQ6urlFpORGcGPKrVPM3MO07PCRplTAhaF 78uNjz/DVs4R/3+HuxoBj3GOZE4xwP8qYqUtz6LlWQ8UZyUl1XkFm4xLIC+CMtss nPCw/C5NU80418Iu9vfq9bHpAQIDAQABo4IClzCCApMwHQYDVR0OBBYEFD9w2Fyk 3D5jBFrxQEOLFm49otD6MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvODY2M0U4QjY2 NThBMTFFOTkzMERDNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkArlAATANBgkqhkiG9w0BAQsFAAOCAQEAGG7dYTGDd/u9 HNxGjxTw2hXiGFvDsF87udseWhhsxmUTPVTcOdT4ZjgB1D28gatKR6jWCDzc3lQN 2hBrs9YuZZZNzxw1+0Kk+KAv4bklWYGnoeKOQkqElrrYHwat6o1vuh3RN7d0Gn2P 0GuZEYMQD5XDMLNMYYXIzYydykot5fAopZAmn82zQZlVzTkkS7oTLgQdQcjCbwuH PpAZhOcpjrpZM5KFe7UFj3OPr2qZo+FBVJtc1HuoJ7G/edYflfmI83q7CXAmYDRe XY6IRWzz7FAfeCLmKCC99lCUFTuo3d31RiaA2OVKNAsYvgry3/r7tA0UugnX1rNt HRbcEIedWw== -----END CERTIFICATE-----Generated at Thu May 16 20:25:57 2024 by rpki-client on console-ams.rpki-client.org