$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/501FA9EC5B9011EE82A2243AC4F9AE02.roa File: 501FA9EC5B9011EE82A2243AC4F9AE02.roa (raw, json) Hash identifier: B3HsI36tZbZ5RvNBXb4p5m7DddXE78MHNHel8UTqvZk= Subject key identifier: F7:98:71:81:16:4F:CE:FA:54:13:86:33:8C:13:A9:8A:CE:87:4B:11 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2827 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/501FA9EC5B9011EE82A2243AC4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:10 +0000 ROA not before: Thu 28 Dec 2023 16:03:10 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 151808 IP address blocks: 2405:9800:ca00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10279 (0x2827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:10 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c3e-29a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1b:b2:60:1b:61:51:ee:c2:bf:ed:41:6c:f4: 6c:d3:f0:4a:e4:91:4f:e7:da:23:e1:2f:54:41:f9: 2b:bb:8e:0f:7c:7d:b7:4a:e5:43:d9:d5:5f:7a:df: 30:15:96:fa:ad:e8:5d:81:1d:c7:78:10:f9:fd:86: 41:c6:5c:72:8f:f3:ee:74:a4:d7:3f:04:d2:15:42: b9:c0:e3:fc:ac:83:d0:42:88:7c:e8:6c:ef:04:76: b2:23:24:7f:9a:cb:f4:cf:a9:c7:ff:8f:21:e3:3f: 73:2b:b4:52:1e:a4:ec:0e:69:19:ce:f9:fe:86:19: f2:d8:35:96:96:1b:02:c9:8b:bb:43:c0:cd:90:c3: 3c:c8:2d:aa:29:a8:2d:57:e7:36:30:5f:7f:2e:3b: fb:da:16:f5:07:d6:7a:96:1b:97:3b:19:12:fa:aa: 0d:c2:4f:7c:b3:57:fe:89:e6:25:72:67:dc:2a:af: 91:80:6b:39:b9:54:43:ed:e4:de:fb:2d:31:25:42: 52:29:c3:08:da:ad:34:e6:35:6c:6b:7c:d7:ef:a0: e3:7c:83:07:74:9c:7c:6e:88:53:7b:64:47:63:80: 71:c8:0d:98:dc:82:79:40:43:97:67:6e:6c:c2:4a: c9:c7:10:29:9f:fc:28:a0:c6:14:8a:66:01:97:71: d7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:98:71:81:16:4F:CE:FA:54:13:86:33:8C:13:A9:8A:CE:87:4B:11 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/501FA9EC5B9011EE82A2243AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9800:ca00::/48 Signature Algorithm: sha256WithRSAEncryption 43:0d:20:fd:dd:d6:e7:45:4e:59:49:bb:fc:f5:87:17:e3:4c: 78:3b:74:5a:ac:a4:8d:e8:fa:40:c4:da:bd:4b:72:1b:01:6f: f6:e7:01:0d:17:b2:8f:69:0b:44:9f:8a:0a:c5:c3:b3:b9:fb: f7:6c:23:4f:cb:4d:76:c0:77:c1:f5:54:51:21:5f:a1:a7:85: 37:0a:ff:ea:c3:53:38:a9:8a:b9:1e:dd:1b:22:cd:92:3b:15: 0e:ae:4b:5b:68:9c:01:ca:b8:c6:38:d1:6e:c8:a0:83:3a:6a: d2:38:a6:7a:ef:35:30:30:46:81:b1:34:7e:c8:e4:88:6f:90: b3:cb:b2:15:94:b5:cf:d4:6a:72:81:45:6e:a6:9b:0e:94:bc: b9:99:36:76:d7:5a:f3:01:26:bb:bc:ee:e9:2f:d9:fc:03:83: 06:d8:0b:09:d1:62:be:5c:24:55:08:9c:05:4d:0c:e9:23:99: b8:ea:2b:55:26:14:51:84:6d:6c:97:39:2b:28:93:23:a1:3a: fa:7d:d9:8c:fc:67:e8:cd:80:ca:88:ed:a8:2f:0b:a2:ca:e9: 3a:48:d3:f0:ec:94:43:7f:1c:f5:48:03:69:d4:33:d3:42:d0: 73:a1:81:47:34:fe:2e:b8:45:68:fa:9e:a1:0e:38:a3:65:21: e3:4a:a4:bc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzEwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMzZS0yOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRuyYBthUe7Cv+1BbPRs0/BK5JFP59oj4S9UQfkru44PfH23SuVD2dVfet8w FZb6rehdgR3HeBD5/YZBxlxyj/PudKTXPwTSFUK5wOP8rIPQQoh86GzvBHayIyR/ msv0z6nH/48h4z9zK7RSHqTsDmkZzvn+hhny2DWWlhsCyYu7Q8DNkMM8yC2qKagt V+c2MF9/Ljv72hb1B9Z6lhuXOxkS+qoNwk98s1f+ieYlcmfcKq+RgGs5uVRD7eTe +y0xJUJSKcMI2q005jVsa3zX76DjfIMHdJx8bohTe2RHY4BxyA2Y3IJ5QEOXZ25s wkrJxxApn/wooMYUimYBl3HXbQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPeYcYEW T876VBOGM4wTqYrOh0sRMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvNTAxRkE5RUM1 QjkwMTFFRTgyQTIyNDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBZgAygAwDQYJKoZIhvcNAQELBQADggEBAEMNIP3d1udF TllJu/z1hxfjTHg7dFqspI3o+kDE2r1LchsBb/bnAQ0Xso9pC0SfigrFw7O5+/ds I0/LTXbAd8H1VFEhX6GnhTcK/+rDUzipirke3RsizZI7FQ6uS1tonAHKuMY40W7I oIM6atI4pnrvNTAwRoGxNH7I5IhvkLPLshWUtc/UanKBRW6mmw6UvLmZNnbXWvMB Jru87ukv2fwDgwbYCwnRYr5cJFUInAVNDOkjmbjqK1UmFFGEbWyXOSsokyOhOvp9 2Yz8Z+jNgMqI7agvC6LK6TpI0/DslEN/HPVIA2nUM9NC0HOhgUc0/i64RWj6nqEO OKNlIeNKpLw= -----END CERTIFICATE-----Generated at Fri May 31 20:33:57 2024 by rpki-client on console-ams.rpki-client.org