$ rpki-client -vvf rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/845CB214C4CB11EEBCFEE782C4F9AE02.roa File: 845CB214C4CB11EEBCFEE782C4F9AE02.roa (raw, json) Hash identifier: DDDWCUvLLUaDHYW+Z+jfGD9hV7RB8mJKRDsZIAW3tkg= Subject key identifier: 79:48:22:14:FA:78:66:B2:6A:BA:E3:FF:4A:8B:30:95:1E:33:EC:F6 Certificate issuer: /CN=A912250C/serialNumber=63DE6F71F18D9A935A9BE1CCBAF5BFEEC0A876F8 Certificate serial: 32 Authority key identifier: 63:DE:6F:71:F1:8D:9A:93:5A:9B:E1:CC:BA:F5:BF:EE:C0:A8:76:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/845CB214C4CB11EEBCFEE782C4F9AE02.roa Signing time: Tue 06 Feb 2024 08:41:27 +0000 ROA not before: Tue 06 Feb 2024 08:41:27 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 151630 IP address blocks: 2001:df3:7240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.crl rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jul 2024 06:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912250C/serialNumber=63DE6F71F18D9A935A9BE1CCBAF5BFEEC0A876F8 Validity Not Before: Feb 6 08:41:27 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c1f0b7-c24e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8e:cc:cf:67:f8:95:cb:2a:02:9f:f5:b4:86: 90:e5:95:42:1f:c5:77:e4:56:ef:90:86:ed:12:a0: ef:d8:6d:71:4b:d7:68:91:ed:d9:4a:a9:8d:ab:23: 34:17:9c:0a:89:db:66:84:23:95:46:f9:b8:19:3d: 28:d2:66:59:a3:9b:15:0b:54:3d:56:1b:23:66:e7: 7f:7d:d8:75:83:7a:3e:2d:6a:b0:46:a9:da:5a:d6: dc:bb:5a:2f:8d:6c:63:97:18:fb:86:14:57:4f:6e: e2:60:bc:bc:80:b7:77:34:11:53:f5:a6:97:9b:8d: 7d:cd:7b:c6:2e:4b:68:a9:11:54:8c:9d:32:07:53: f3:8e:29:f1:c2:84:2d:cc:b4:0e:53:50:a3:ac:5d: 0c:0f:76:bc:4f:77:67:0d:3b:1c:ca:8c:b8:53:3d: d7:d6:c5:97:2d:6b:91:47:ae:3f:99:d3:01:72:c1: 63:08:c7:eb:32:13:a5:18:3c:fe:75:8f:76:ee:33: d6:64:51:e3:b7:6e:ae:a0:ac:44:e4:21:85:ec:dc: d6:b8:e0:b8:94:f3:3b:ce:cd:28:9b:17:3b:48:02: 95:60:f1:b2:ff:28:6c:d4:34:9a:dd:4d:d4:35:ad: 36:72:a0:f3:7d:8b:8f:a8:28:d6:ef:ab:c1:4a:56: 8c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:48:22:14:FA:78:66:B2:6A:BA:E3:FF:4A:8B:30:95:1E:33:EC:F6 X509v3 Authority Key Identifier: keyid:63:DE:6F:71:F1:8D:9A:93:5A:9B:E1:CC:BA:F5:BF:EE:C0:A8:76:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/Y95vcfGNmpNam-HMuvW_7sCodvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y95vcfGNmpNam-HMuvW_7sCodvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912250C/83EECC4A837B11EE85C4F10FC4F9AE02/845CB214C4CB11EEBCFEE782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7240::/48 Signature Algorithm: sha256WithRSAEncryption bc:94:49:8a:09:9e:ce:3d:44:d6:67:61:8d:b7:48:cd:ce:82: 03:a9:80:33:b7:e7:8e:72:cf:95:2f:1f:d1:c1:ed:c4:53:05: 86:dc:72:0f:6b:e6:40:9e:bc:c7:a1:fe:e2:d1:ac:31:2b:35: 42:72:10:23:1f:23:97:0b:d5:e5:e6:88:9e:14:ea:43:67:42: 13:50:8a:c9:c8:e0:03:7c:63:28:91:25:4e:71:de:c6:08:0d: b5:39:5e:a4:a5:fd:2a:58:6a:f2:1d:13:4b:26:7f:81:d0:90: ab:ae:b7:c9:e9:75:76:d9:72:5b:94:9c:d7:4e:9d:1f:d0:97: 50:0b:f0:25:df:8e:b0:8f:fa:6f:8c:1a:a3:2b:cb:00:96:05: 1c:bd:3e:f7:db:ce:75:e9:06:02:c3:0e:ea:37:c8:1b:3f:b8: 07:41:8e:f9:c7:e2:60:b2:ea:ee:c2:fe:e7:75:6a:82:52:ec: 2f:3c:93:db:66:80:54:df:97:15:b5:36:0b:75:a6:1e:64:15: 6e:63:92:56:33:ce:fe:01:af:25:22:55:ae:dd:79:7b:eb:b2: 8c:8b:bf:1f:c1:b0:48:6d:7d:28:f2:fb:02:84:4d:c6:e8:9d: 34:45:47:24:de:0f:8b:33:df:71:11:c5:ff:77:f8:41:e4:cc: 6e:c4:03:4e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjUwQzExMC8GA1UEBRMoNjNERTZGNzFGMThEOUE5MzVBOUJFMUNDQkFGNUJGRUVD MEE4NzZGODAeFw0yNDAyMDYwODQxMjdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzFmMGI3LWMyNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDujszPZ/iVyyoCn/W0hpDllUIfxXfkVu+Qhu0SoO/YbXFL12iR7dlKqY2rIzQX nAqJ22aEI5VG+bgZPSjSZlmjmxULVD1WGyNm53992HWDej4tarBGqdpa1ty7Wi+N bGOXGPuGFFdPbuJgvLyAt3c0EVP1ppebjX3Ne8YuS2ipEVSMnTIHU/OOKfHChC3M tA5TUKOsXQwPdrxPd2cNOxzKjLhTPdfWxZcta5FHrj+Z0wFywWMIx+syE6UYPP51 j3buM9ZkUeO3bq6grETkIYXs3Na44LiU8zvOzSibFztIApVg8bL/KGzUNJrdTdQ1 rTZyoPN9i4+oKNbvq8FKVozBAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUeUgiFPp4 ZrJquuP/SoswlR4z7PYwHwYDVR0jBBgwFoAUY95vcfGNmpNam+HMuvW/7sCodvgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyNTBDLzgzRUVDQzRBODM3 QjExRUU4NUM0RjEwRkM0RjlBRTAyL1k5NXZjZkdObXBOYW0tSE11dldfN3NDb2R2 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTk1dmNmR05tcE5hbS1ITXV2V183c0NvZHZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjUwQy84M0VFQ0M0QTgzN0IxMUVFODVDNEYxMEZDNEY5QUUwMi84NDVDQjIxNEM0 Q0IxMUVFQkNGRUU3ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNyQDANBgkqhkiG9w0BAQsFAAOCAQEAvJRJigmezj1E 1mdhjbdIzc6CA6mAM7fnjnLPlS8f0cHtxFMFhtxyD2vmQJ68x6H+4tGsMSs1QnIQ Ix8jlwvV5eaInhTqQ2dCE1CKycjgA3xjKJElTnHexggNtTlepKX9Klhq8h0TSyZ/ gdCQq663yel1dtlyW5Sc106dH9CXUAvwJd+OsI/6b4waoyvLAJYFHL0+99vOdekG AsMO6jfIGz+4B0GO+cfiYLLq7sL+53VqglLsLzyT22aAVN+XFbU2C3WmHmQVbmOS VjPO/gGvJSJVrt15e+uyjIu/H8GwSG19KPL7AoRNxuidNEVHJN4PizPfcRHF/3f4 QeTMbsQDTg== -----END CERTIFICATE-----Generated at Wed Jul 3 08:10:51 2024 by rpki-client on console-fra.rpki-client.org