$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa File: 2EFBFF901C0611EF883D807CC4F9AE02.roa (raw, json) Hash identifier: sjEc8vuYVWssYtaZGwi/jcISsVjovvADNG9xvr+NDJM= Subject key identifier: AE:F7:7F:A5:5F:79:05:C1:50:29:9C:AA:F2:A1:EF:5A:30:B5:95:69 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: 37 Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa Signing time: Mon 27 May 2024 08:50:36 +0000 ROA not before: Mon 27 May 2024 08:50:36 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 14618 IP address blocks: 2400:3d20:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Validity Not Before: May 27 08:50:36 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6654495b-d855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:64:75:5a:87:c3:01:a4:af:f9:72:a2:04: 2e:01:03:d3:c9:d1:a0:f1:e8:e0:d0:11:62:15:62: 29:6d:e2:63:51:2e:c0:8e:43:9d:7e:45:8c:ba:eb: 3d:7c:8b:b8:62:51:0e:3f:45:5f:8f:ed:b1:0a:05: 7a:00:2d:3a:e4:68:b3:c9:54:6a:00:40:35:72:94: 47:42:f2:36:8a:08:d2:d4:ad:eb:ec:2e:95:57:6c: ce:89:3a:50:95:2d:e7:dc:db:b2:82:cb:af:dd:95: 31:fb:94:45:29:76:ed:5f:55:2d:f6:64:cb:03:ac: 1f:6d:6c:71:51:5d:bf:95:9d:9c:6b:25:56:d4:a4: 8a:34:83:11:55:d5:ca:12:25:9e:65:a6:6d:55:7c: 40:b3:c6:a7:c4:ad:86:95:11:90:ac:1b:fd:0b:cf: fc:d5:16:10:27:40:8d:16:9c:e0:c2:1c:40:4d:e3: f4:bc:2a:98:ee:7a:0d:0f:df:f4:1b:cd:15:4a:df: 3a:5a:1c:8f:98:09:d6:41:93:41:c7:a0:17:f4:68: c5:59:cf:21:05:36:45:8b:77:07:44:2e:97:c5:ac: 6e:0d:d5:1d:2e:0c:dd:e6:88:87:37:c2:86:fb:b2: 2c:01:1f:cf:f5:e0:e8:d7:4c:12:0f:85:b9:a3:52: 13:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F7:7F:A5:5F:79:05:C1:50:29:9C:AA:F2:A1:EF:5A:30:B5:95:69 X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3d20:1000::/40 Signature Algorithm: sha256WithRSAEncryption 83:db:59:4d:82:0e:9c:50:94:da:c6:6a:a5:8b:36:bb:cc:c7: 98:20:4e:9b:f5:83:ed:4a:4f:5e:9e:2b:f6:75:52:b0:14:9d: 24:6c:53:63:65:fc:8f:eb:19:95:1d:4d:61:3c:b3:24:bc:1b: 99:86:74:df:dc:24:a2:a9:58:fa:6e:ab:d4:89:52:97:a1:dc: a2:d0:16:d3:f9:2c:fc:48:3e:57:95:c5:90:a5:8c:3f:5e:f1: f1:c2:41:f4:af:3d:ed:4f:59:7d:00:16:a6:c4:95:46:93:1d: b3:ec:2e:16:92:03:5d:5a:51:f2:32:c7:9f:3b:f3:e7:89:5c: fa:73:58:69:8c:6f:24:4a:d8:3e:a1:5b:f6:31:09:4e:c4:18: ec:2a:11:9b:d1:07:0b:d7:36:ab:66:a8:d6:d8:c2:af:8a:32: ad:fd:14:fd:97:f5:3f:91:f7:de:14:90:60:76:02:ff:0f:48: 0f:31:54:c3:be:c3:2e:c1:74:97:38:78:08:cd:fc:82:30:3b: dc:bb:2d:7f:7b:ee:ca:89:27:83:4a:6d:d4:1f:0e:93:19:51: 01:7f:fa:7b:aa:25:50:3e:8c:e4:3b:f1:69:90:47:e8:8e:f0: 41:4d:d0:4c:c0:b7:71:88:9b:5b:51:76:f7:4a:b9:d2:e8:d9: 60:f2:09:d0 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NEZCMDExMC8GA1UEBRMoODc2RTY4MTNCRjJDMTgxMUNEMTFERTk5MjgxQUNENDRC RUMwREU3MzAeFw0yNDA1MjcwODUwMzZaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTQ0OTViLWQ4NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2f2R1WofDAaSv+XKiBC4BA9PJ0aDx6ODQEWIVYilt4mNRLsCOQ51+RYy66z18 i7hiUQ4/RV+P7bEKBXoALTrkaLPJVGoAQDVylEdC8jaKCNLUrevsLpVXbM6JOlCV Lefc27KCy6/dlTH7lEUpdu1fVS32ZMsDrB9tbHFRXb+VnZxrJVbUpIo0gxFV1coS JZ5lpm1VfECzxqfErYaVEZCsG/0Lz/zVFhAnQI0WnODCHEBN4/S8Kpjueg0P3/Qb zRVK3zpaHI+YCdZBk0HHoBf0aMVZzyEFNkWLdwdELpfFrG4N1R0uDN3miIc3wob7 siwBH8/14OjXTBIPhbmjUhODAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUrvd/pV95 BcFQKZyq8qHvWjC1lWkwHwYDVR0jBBgwFoAUh25oE78sGBHNEd6ZKBrNRL7A3nMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0RkIwLzA1OENFQzE0MTlC RDExRUZCRDMzRTA4MkM0RjlBRTAyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNu TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDI1b0U3OHNHQkhORWQ2WktCck5STDdBM25NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEZCMC8wNThDRUMxNDE5QkQxMUVGQkQzM0UwODJDNEY5QUUwMi8yRUZCRkY5MDFD MDYxMUVGODgzRDgwN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGACQAPSAQMA0GCSqGSIb3DQEBCwUAA4IBAQCD21lNgg6cUJTa xmqliza7zMeYIE6b9YPtSk9eniv2dVKwFJ0kbFNjZfyP6xmVHU1hPLMkvBuZhnTf 3CSiqVj6bqvUiVKXodyi0BbT+Sz8SD5XlcWQpYw/XvHxwkH0rz3tT1l9ABamxJVG kx2z7C4WkgNdWlHyMsefO/PniVz6c1hpjG8kStg+oVv2MQlOxBjsKhGb0QcL1zar ZqjW2MKvijKt/RT9l/U/kffeFJBgdgL/D0gPMVTDvsMuwXSXOHgIzfyCMDvcuy1/ e+7KiSeDSm3UHw6TGVEBf/p7qiVQPozkO/FpkEfojvBBTdBMwLdxiJtbUXb3SrnS 6Nlg8gnQ -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:30 2024 by rpki-client on console-ams.rpki-client.org