$ rpki-client -vvf rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/F56322CCD09C11EE94431F80C4F9AE02.roa File: F56322CCD09C11EE94431F80C4F9AE02.roa (raw, json) Hash identifier: DVWQ8pjie4PgUnM+EU2BlSGqAJ0vFyGEnz0Xvb4kBgY= Subject key identifier: 68:2C:20:61:BA:05:97:8A:BA:6A:35:B0:7B:75:B5:28:09:FE:A3:5F Certificate issuer: /CN=A9159B6F/serialNumber=BD6BA45FF0276C2C604A033B07CDA4E4C0DF15D7 Certificate serial: 02 Authority key identifier: BD:6B:A4:5F:F0:27:6C:2C:60:4A:03:3B:07:CD:A4:E4:C0:DF:15:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWukX_AnbCxgSgM7B82k5MDfFdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/F56322CCD09C11EE94431F80C4F9AE02.roa Signing time: Wed 21 Feb 2024 09:38:24 +0000 ROA not before: Wed 21 Feb 2024 09:38:24 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138032 IP address blocks: 2001:df3:7c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/vWukX_AnbCxgSgM7B82k5MDfFdc.crl rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/vWukX_AnbCxgSgM7B82k5MDfFdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWukX_AnbCxgSgM7B82k5MDfFdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159B6F/serialNumber=BD6BA45FF0276C2C604A033B07CDA4E4C0DF15D7 Validity Not Before: Feb 21 09:38:24 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65d5c490-6f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b7:9c:cb:70:2c:d9:32:c5:af:45:71:90:87: 99:a5:e8:9c:1b:5b:f6:5e:73:ad:55:08:b7:72:9a: 1d:8e:06:98:6f:59:98:c7:7e:88:d4:5b:ba:24:48: d7:8e:bd:4e:2e:c2:1c:b9:17:07:a3:76:b9:f1:50: 61:de:98:30:4b:0d:e6:f8:ae:b0:e4:55:07:0b:d0: 36:d2:16:02:7b:db:8a:b0:6f:e8:5c:16:0f:7d:20: 72:8d:79:8b:5c:1c:63:1f:08:f0:1f:ce:8d:b3:2e: 30:08:af:a1:00:87:06:bc:d1:34:47:6b:1f:90:8e: bd:9e:02:e6:d6:1b:99:c9:1b:19:2a:fa:5e:ef:01: 08:fc:cb:4c:a3:09:88:aa:3b:38:d4:0a:5c:b3:03: c3:25:49:45:98:6d:a4:c1:7d:18:5f:03:6d:83:b0: bb:1c:73:99:10:38:49:5a:e1:31:f9:c3:ca:ef:a3: 55:df:19:da:1b:42:9a:57:5b:12:b3:02:cd:8f:29: 8f:39:16:bc:42:61:68:38:27:d2:8e:ca:82:d3:5e: 09:81:5a:96:fb:cd:9a:21:6a:0e:d7:ff:48:c3:e7: 35:05:b0:06:d9:71:a9:cf:65:64:44:0a:aa:53:3f: 8b:65:78:49:17:8b:94:74:62:cb:1e:48:dd:fb:7c: 3a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2C:20:61:BA:05:97:8A:BA:6A:35:B0:7B:75:B5:28:09:FE:A3:5F X509v3 Authority Key Identifier: keyid:BD:6B:A4:5F:F0:27:6C:2C:60:4A:03:3B:07:CD:A4:E4:C0:DF:15:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/vWukX_AnbCxgSgM7B82k5MDfFdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWukX_AnbCxgSgM7B82k5MDfFdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159B6F/348AA908D09C11EE80AB8D7EC4F9AE02/F56322CCD09C11EE94431F80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7c40::/48 Signature Algorithm: sha256WithRSAEncryption a7:36:b6:8d:90:bd:63:05:c4:95:ad:cd:3f:96:44:5e:e5:f6: e5:35:28:c5:ec:e2:bf:cc:6a:63:2e:e6:12:b3:0f:86:f1:4e: 3e:d6:ea:12:70:36:eb:36:af:23:cb:fa:59:e6:fc:ee:6a:53: 43:94:69:78:8e:0a:c1:c5:1f:e2:8c:08:51:b2:68:34:6c:d6: 1d:f6:1f:4a:f7:a2:6c:6a:35:10:f7:6e:5d:5c:8b:86:d6:d6: 1a:a6:fe:05:f4:49:97:e4:15:48:3a:97:7d:fd:33:e8:b8:9f: 7f:95:54:24:03:46:4d:5d:03:bc:8b:b4:8a:c3:c1:1b:6e:29: b8:77:fb:1e:40:bc:95:c2:f9:17:d4:98:38:e3:6d:51:b9:25: a6:d3:bb:18:d3:29:07:d7:22:b1:97:bf:2f:05:75:32:ed:ef: b0:f5:54:e7:75:cf:f3:8a:1a:10:95:d6:e0:16:8a:20:48:83: 81:a7:d4:50:4c:52:93:41:25:15:74:a1:ac:ea:cb:a8:c0:3a: 27:54:08:9c:a3:27:da:dd:6e:77:90:00:10:05:73:91:1e:27: 09:b6:88:33:1e:c9:d1:a0:45:75:b8:d0:1b:dd:38:e8:e5:bc: 83:d9:0c:8c:84:66:e5:30:6f:44:7e:33:6b:20:77:d9:96:d3: e9:5d:28:aa -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OUI2RjExMC8GA1UEBRMoQkQ2QkE0NUZGMDI3NkMyQzYwNEEwMzNCMDdDREE0RTRD MERGMTVENzAeFw0yNDAyMjEwOTM4MjRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDVjNDkwLTZmODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVt5zLcCzZMsWvRXGQh5ml6JwbW/Zec61VCLdymh2OBphvWZjHfojUW7okSNeO vU4uwhy5FwejdrnxUGHemDBLDeb4rrDkVQcL0DbSFgJ724qwb+hcFg99IHKNeYtc HGMfCPAfzo2zLjAIr6EAhwa80TRHax+Qjr2eAubWG5nJGxkq+l7vAQj8y0yjCYiq OzjUClyzA8MlSUWYbaTBfRhfA22DsLscc5kQOEla4TH5w8rvo1XfGdobQppXWxKz As2PKY85FrxCYWg4J9KOyoLTXgmBWpb7zZohag7X/0jD5zUFsAbZcanPZWRECqpT P4tleEkXi5R0YsseSN37fDpLAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUaCwgYboF l4q6ajWwe3W1KAn+o18wHwYDVR0jBBgwFoAUvWukX/AnbCxgSgM7B82k5MDfFdcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5QjZGLzM0OEFBOTA4RDA5 QzExRUU4MEFCOEQ3RUM0RjlBRTAyL3ZXdWtYX0FuYkN4Z1NnTTdCODJrNU1EZkZk Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdld1a1hfQW5iQ3hnU2dNN0I4Mms1TURmRmRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUI2Ri8zNDhBQTkwOEQwOUMxMUVFODBBQjhEN0VDNEY5QUUwMi9GNTYzMjJDQ0Qw OUMxMUVFOTQ0MzFGODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfN8QDANBgkqhkiG9w0BAQsFAAOCAQEApza2jZC9YwXE la3NP5ZEXuX25TUoxeziv8xqYy7mErMPhvFOPtbqEnA26zavI8v6Web87mpTQ5Rp eI4KwcUf4owIUbJoNGzWHfYfSveibGo1EPduXVyLhtbWGqb+BfRJl+QVSDqXff0z 6Liff5VUJANGTV0DvIu0isPBG24puHf7HkC8lcL5F9SYOONtUbklptO7GNMpB9ci sZe/LwV1Mu3vsPVU53XP84oaEJXW4BaKIEiDgafUUExSk0ElFXShrOrLqMA6J1QI nKMn2t1ud5AAEAVzkR4nCbaIMx7J0aBFdbjQG9046OW8g9kMjIRm5TBvRH4zayB3 2ZbT6V0oqg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:13 2024 by rpki-client on console-ams.rpki-client.org