$ rpki-client -vvf rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/7283E2F6C4CB11EEBEB1AE82C4F9AE02.roa File: 7283E2F6C4CB11EEBEB1AE82C4F9AE02.roa (raw, json) Hash identifier: SFK4LkswKgJKpjLsUlOU6N9BFaXKfbDMklrr+fOsUEY= Subject key identifier: D9:A0:8D:DE:86:36:33:31:51:3B:C8:51:8D:2B:9A:51:92:61:F1:3B Certificate issuer: /CN=A912250C/serialNumber=63DE6F71F18D9A935A9BE1CCBAF5BFEEC0A876F8 Certificate serial: 30 Authority key identifier: 63:DE:6F:71:F1:8D:9A:93:5A:9B:E1:CC:BA:F5:BF:EE:C0:A8:76:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/7283E2F6C4CB11EEBEB1AE82C4F9AE02.roa Signing time: Tue 06 Feb 2024 08:40:58 +0000 ROA not before: Tue 06 Feb 2024 08:40:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18013 IP address blocks: 2001:df3:7240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.crl rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912250C/serialNumber=63DE6F71F18D9A935A9BE1CCBAF5BFEEC0A876F8 Validity Not Before: Feb 6 08:40:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c1f099-4810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:75:75:a2:58:c6:a7:a6:22:99:43:b5:3d: 55:ad:02:76:5a:76:eb:b5:af:3d:64:93:12:f7:14: ed:5f:7d:a6:58:8e:cb:4f:d5:5c:99:41:b9:ad:81: ee:0f:51:e0:72:b8:08:eb:7a:07:cb:9a:b4:c0:03: ab:20:d4:36:5d:ee:b4:5a:4d:3c:c4:02:89:c8:53: 9c:9b:87:b9:44:3b:2b:ae:71:58:e2:a3:a2:cf:01: ce:52:e6:35:b5:15:ea:90:b3:f5:96:b0:f5:f8:40: 9b:f6:1b:88:66:71:4a:6b:d2:11:a9:41:9b:38:01: 2a:96:65:76:14:fc:9d:ee:9a:42:53:3e:ec:b6:d7: eb:67:15:1f:9c:eb:71:c3:a0:6b:97:27:00:ba:0e: db:63:c9:3e:dd:bb:06:f4:fc:c3:a1:1d:c7:9b:04: 44:d3:f6:15:ee:1a:96:32:de:3c:72:2a:64:ad:ab: c9:6a:f6:92:3c:cf:08:7c:fe:34:d9:78:6b:7b:80: 3a:2e:64:d5:00:3b:02:e9:4d:51:74:a3:3c:0f:9f: 9d:79:cc:5f:8d:4a:da:ee:dc:bd:a0:fd:18:7f:67: 6e:cf:20:ba:d2:45:6d:d6:06:3a:6d:3d:4a:52:a4: 65:c6:87:92:d5:45:2a:ee:60:98:6a:8f:fa:4e:3b: 70:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A0:8D:DE:86:36:33:31:51:3B:C8:51:8D:2B:9A:51:92:61:F1:3B X509v3 Authority Key Identifier: keyid:63:DE:6F:71:F1:8D:9A:93:5A:9B:E1:CC:BA:F5:BF:EE:C0:A8:76:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/7283E2F6C4CB11EEBEB1AE82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7240::/48 Signature Algorithm: sha256WithRSAEncryption 57:15:4a:2b:5e:f0:42:5a:3c:de:20:ef:98:9c:43:cc:0f:fd: 26:46:00:29:98:39:91:3e:d8:08:0a:46:96:9b:4c:6c:d6:b6: e4:60:89:45:3c:14:0e:f6:5a:dc:b9:31:f3:3a:f1:60:69:c7: ed:82:2a:ea:de:22:60:ee:af:56:37:ef:9a:d5:69:96:2e:8d: bf:01:81:a3:68:8e:30:ce:46:79:3f:41:04:06:75:30:7c:67: 97:df:15:d1:88:a1:7b:7c:dc:55:45:62:31:2d:e4:5e:bd:ee: e5:48:2d:9b:2e:78:4e:f3:7b:74:13:af:d9:09:96:cc:59:94: 8f:c4:85:4f:88:17:83:2e:6f:8b:df:c4:98:67:bb:39:7a:6a: a7:92:db:26:57:3a:84:21:f0:06:f1:a0:ac:df:42:71:c6:5b: 07:7a:63:a2:f5:26:f1:f8:0f:cf:12:03:79:80:ff:9e:4a:c1: 29:c2:13:c7:51:50:dd:84:60:53:42:9b:60:a9:18:af:55:79: e1:2a:c8:17:8f:4e:44:c5:81:2a:37:cf:3e:ef:27:cb:88:23: 85:b6:79:f0:89:52:b2:dd:da:c8:d8:48:57:bd:17:da:71:e5: 1f:c7:06:f8:28:33:b9:a0:e8:a5:42:4a:7e:ae:e8:51:f8:62: b2:18:6f:b2 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjUwQzExMC8GA1UEBRMoNjNERTZGNzFGMThEOUE5MzVBOUJFMUNDQkFGNUJGRUVD MEE4NzZGODAeFw0yNDAyMDYwODQwNThaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzFmMDk5LTQ4MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx83V1oljGp6YimUO1PVWtAnZaduu1rz1kkxL3FO1ffaZYjstP1VyZQbmtge4P UeByuAjregfLmrTAA6sg1DZd7rRaTTzEAonIU5ybh7lEOyuucVjio6LPAc5S5jW1 FeqQs/WWsPX4QJv2G4hmcUpr0hGpQZs4ASqWZXYU/J3umkJTPuy21+tnFR+c63HD oGuXJwC6DttjyT7duwb0/MOhHcebBETT9hXuGpYy3jxyKmStq8lq9pI8zwh8/jTZ eGt7gDouZNUAOwLpTVF0ozwPn515zF+NStru3L2g/Rh/Z27PILrSRW3WBjptPUpS pGXGh5LVRSruYJhqj/pOO3BfAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU2aCN3oY2 MzFRO8hRjSuaUZJh8TswHwYDVR0jBBgwFoAUY95vcfGNmpNam+HMuvW/7sCodvgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyNTBDLzgzRUVDQzRBODM3 QjExRUU4NUM0RjEwRkM0RjlBRTAyL1k5NXZjZkdObXBOYW0tSE11dldfN3NDb2R2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTk1dmNmR05tcE5hbS1ITXV2V183c0NvZHZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjUwQy84M0VFQ0M0QTgzN0IxMUVFODVDNEYxMEZDNEY5QUUwMi83MjgzRTJGNkM0 Q0IxMUVFQkVCMUFFODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNyQDANBgkqhkiG9w0BAQsFAAOCAQEAVxVKK17wQlo8 3iDvmJxDzA/9JkYAKZg5kT7YCApGlptMbNa25GCJRTwUDvZa3Lkx8zrxYGnH7YIq 6t4iYO6vVjfvmtVpli6NvwGBo2iOMM5GeT9BBAZ1MHxnl98V0Yihe3zcVUViMS3k Xr3u5Ugtmy54TvN7dBOv2QmWzFmUj8SFT4gXgy5vi9/EmGe7OXpqp5LbJlc6hCHw BvGgrN9CccZbB3pjovUm8fgPzxIDeYD/nkrBKcITx1FQ3YRgU0KbYKkYr1V54SrI F49ORMWBKjfPPu8ny4gjhbZ58IlSst3ayNhIV70X2nHlH8cG+CgzuaDopUJKfq7o Ufhishhvsg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org