$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/9FC8CE38936E11EC92AF8421C4F9AE02.roa File: 9FC8CE38936E11EC92AF8421C4F9AE02.roa (raw, json) Hash identifier: oQqFB4mCK9lOMAaK8N1MQQ3r8ZV/5SIQAc2GEgxu44Q= Subject key identifier: 70:27:AD:F4:AE:E8:49:C9:D1:59:F7:DC:4E:8D:B1:80:18:CC:19:6C Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 02A3 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/9FC8CE38936E11EC92AF8421C4F9AE02.roa Signing time: Thu 07 Dec 2023 02:54:12 +0000 ROA not before: Thu 07 Dec 2023 02:54:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 149512 IP address blocks: 2400:16e0::/32 maxlen: 32 2400:16e0::/48 maxlen: 48 2400:16e0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Dec 7 02:54:12 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657133d4-abd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0a:77:cc:53:0f:70:87:bf:dd:0f:19:ea:94: f3:4e:bd:f1:3d:65:08:dc:79:a7:ad:cf:66:e3:af: d6:17:21:fb:37:2b:1a:2b:78:a7:f7:7d:ac:6d:ab: be:d7:08:2a:4f:8c:96:6a:91:e0:d5:e9:cc:36:d1: 5e:50:96:48:55:08:c3:c8:d1:9b:69:92:0e:12:7d: 87:ff:d1:e5:29:60:ac:1a:72:e3:ea:f0:35:07:71: 11:fe:4e:0e:71:8a:a6:a3:2f:fa:b3:f8:b0:b0:ac: 32:4c:87:a1:40:e7:16:cd:ce:48:3e:79:89:22:df: 6e:93:ee:d9:34:a3:01:a6:d4:1d:58:76:b4:47:b0: ca:e3:c2:a3:62:48:4e:28:e7:c3:ab:18:64:91:58: c4:f8:34:8d:1e:f9:80:ab:fb:18:66:3f:bc:2c:3a: 40:d0:a7:98:67:47:58:cb:70:f2:39:55:29:74:e1: 39:dd:a2:d8:69:45:0e:8f:d0:8b:d5:84:89:ab:84: 29:85:fe:84:af:e8:c0:d6:ef:e6:31:c1:4f:26:e2: c3:9b:d0:29:d9:ea:72:ad:4f:4f:ef:72:37:bd:81: 45:64:e4:6c:9d:9c:7f:09:d6:26:02:bf:08:8f:dc: 2f:55:fe:f1:82:64:95:ce:fb:f4:4a:94:ca:c0:69: 1e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:27:AD:F4:AE:E8:49:C9:D1:59:F7:DC:4E:8D:B1:80:18:CC:19:6C X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/9FC8CE38936E11EC92AF8421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:16e0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:40:b6:de:67:74:ba:a8:0c:32:a3:ed:e4:5a:27:de:17:00: c1:db:55:56:86:8e:a4:98:69:92:a0:da:8b:48:77:82:53:69: ee:4a:2c:e5:ce:80:33:53:25:44:51:3f:16:06:1f:06:66:fa: 97:c8:de:87:54:01:be:cb:95:fa:d9:e4:fa:f5:d3:71:02:88: 92:a1:eb:81:25:2a:27:8e:7a:66:9a:99:0e:67:e5:05:72:56: 4b:89:d3:cb:4f:21:f6:e6:49:62:65:a7:28:f8:68:24:5e:94: ad:b8:32:f4:7a:98:72:cb:9f:21:6c:93:b3:b4:70:10:af:a7: 9a:fd:7c:9c:5e:73:4c:a5:74:c2:29:38:11:7d:0a:e4:89:39: a2:bd:d6:c6:d1:c9:96:6c:5d:ef:cd:97:fd:72:8e:09:b9:c4: d8:85:d6:99:bc:f3:24:17:60:9c:23:88:40:f5:87:b8:43:c0: 48:4c:d6:b1:7c:a5:0a:ea:3e:03:8a:7b:a4:47:f0:8b:7f:cb: 1d:85:50:03:50:86:a0:25:8b:6c:1b:c3:31:86:f9:5b:e9:90: ec:13:31:aa:f7:8a:f0:40:b3:fb:6f:17:b6:f8:0f:d4:d1:b8: b1:d2:1b:1c:7a:00:8f:c0:38:a4:f6:63:25:96:f4:f1:54:79: 23:1f:8a:89 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjMxMjA3MDI1NDEyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMzNkNC1hYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wp3zFMPcIe/3Q8Z6pTzTr3xPWUI3Hmnrc9m46/WFyH7NysaK3in932sbau+ 1wgqT4yWapHg1enMNtFeUJZIVQjDyNGbaZIOEn2H/9HlKWCsGnLj6vA1B3ER/k4O cYqmoy/6s/iwsKwyTIehQOcWzc5IPnmJIt9uk+7ZNKMBptQdWHa0R7DK48KjYkhO KOfDqxhkkVjE+DSNHvmAq/sYZj+8LDpA0KeYZ0dYy3DyOVUpdOE53aLYaUUOj9CL 1YSJq4Qphf6Er+jA1u/mMcFPJuLDm9Ap2epyrU9P73I3vYFFZORsnZx/CdYmAr8I j9wvVf7xgmSVzvv0SpTKwGke2wIDAQABo4ICljCCApIwHQYDVR0OBBYEFHAnrfSu 6EnJ0Vn33E6NsYAYzBlsMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvOUZDOENFMzg5 MzZFMTFFQzkyQUY4NDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkABbgMA0GCSqGSIb3DQEBCwUAA4IBAQBaQLbeZ3S6qAwy o+3kWifeFwDB21VWho6kmGmSoNqLSHeCU2nuSizlzoAzUyVEUT8WBh8GZvqXyN6H VAG+y5X62eT69dNxAoiSoeuBJSonjnpmmpkOZ+UFclZLidPLTyH25kliZaco+Ggk XpStuDL0ephyy58hbJOztHAQr6ea/XycXnNMpXTCKTgRfQrkiTmivdbG0cmWbF3v zZf9co4JucTYhdaZvPMkF2CcI4hA9Ye4Q8BITNaxfKUK6j4DinukR/CLf8sdhVAD UIagJYtsG8Mxhvlb6ZDsEzGq94rwQLP7bxe2+A/U0bix0hscegCPwDik9mMllvTx VHkjH4qJ -----END CERTIFICATE-----Generated at Sun May 19 04:20:44 2024 by rpki-client on console-ams.rpki-client.org