$ rpki-client -vvf rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa File: FA7C5B6C996611EC8E565E60C4F9AE02.roa (raw, json) Hash identifier: +uerZ4p7F+Vm00t2ExwtEHci3gF68oIn9kIwMZzlj2E= Subject key identifier: EA:B1:64:73:8B:0F:54:01:C8:09:61:EE:07:99:32:22:8B:A7:E2:9E Certificate issuer: /CN=A915CD63/serialNumber=2B9D6D7DDABC52255F3CCD79CEEA76DBCF435B9D Certificate serial: 029F Authority key identifier: 2B:9D:6D:7D:DA:BC:52:25:5F:3C:CD:79:CE:EA:76:DB:CF:43:5B:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa Signing time: Wed 03 Jan 2024 03:04:39 +0000 ROA not before: Wed 03 Jan 2024 03:04:39 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 25222 IP address blocks: 180.94.48.0/21 maxlen: 21 2402:1500:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.crl rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 03:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CD63/serialNumber=2B9D6D7DDABC52255F3CCD79CEEA76DBCF435B9D Validity Not Before: Jan 3 03:04:39 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6594cec6-46b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:42:86:4c:65:1f:ba:6d:6a:a7:28:11:24:59: 5e:a4:1a:c7:7d:35:d6:fd:c8:d2:5e:6e:06:cc:c6: de:10:d6:1c:4e:76:a1:4e:c0:09:55:fc:fa:81:01: 49:af:f0:bd:7b:43:21:d6:5a:77:4d:19:81:e9:42: af:47:58:d3:e6:78:04:7a:22:c7:b7:d5:f5:96:a0: 5a:46:2d:0b:87:51:c7:99:22:13:a8:de:3b:0c:1d: 3c:53:39:63:65:1a:18:d0:92:a0:fa:bf:da:95:8c: 72:71:43:7f:38:af:80:af:8d:5e:9c:a3:5e:52:03: 2a:52:05:62:1c:d2:57:e8:e1:ef:8c:db:bc:3e:80: 8a:e7:f0:de:ab:8e:5e:0b:b8:3a:6a:15:72:90:23: e4:a3:a2:8f:d3:db:42:05:3f:71:2e:f2:a7:77:b0: 51:b9:fb:42:ca:5f:2b:4d:46:ab:7a:74:14:54:1a: cd:21:66:57:b6:a3:40:8a:70:aa:d0:c1:a9:a8:ed: f8:4d:98:37:17:9c:0c:3c:f5:c7:9f:54:38:8f:04: a9:21:f3:b0:5c:cb:69:62:41:0b:52:4c:8a:78:d0: ba:4c:8a:7a:35:9d:03:e2:11:cd:f9:ea:3c:c2:25: 33:f2:85:90:ed:ea:5e:46:89:b7:b2:43:47:e7:bb: 20:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B1:64:73:8B:0F:54:01:C8:09:61:EE:07:99:32:22:8B:A7:E2:9E X509v3 Authority Key Identifier: keyid:2B:9D:6D:7D:DA:BC:52:25:5F:3C:CD:79:CE:EA:76:DB:CF:43:5B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/K51tfdq8UiVfPM15zup2289DW50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K51tfdq8UiVfPM15zup2289DW50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CD63/8AF067C4996211ECBB661A57C4F9AE02/FA7C5B6C996611EC8E565E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.48.0/21 IPv6: 2402:1500:8000::/33 Signature Algorithm: sha256WithRSAEncryption 1a:26:10:68:50:aa:2d:cd:5f:7c:b6:ca:0e:6b:df:49:e8:bf: 0c:7f:1e:b2:08:3f:a3:8e:48:9a:6d:89:a6:aa:bf:30:a4:72: c6:63:5e:d5:a7:4a:d3:c4:70:06:47:cb:44:c7:01:63:7f:cb: e7:5b:bb:61:f0:1b:2f:19:93:4e:ea:1c:ef:79:e1:ab:7d:7a: 9a:22:0e:65:ad:1f:d7:9f:c9:25:fa:6f:63:2c:7a:69:40:03: 60:39:6a:1c:b6:74:06:3d:00:f4:34:c7:c8:24:a3:3b:10:0b: c7:8a:28:6f:25:d0:47:2d:d1:74:d2:69:6a:fd:dc:71:16:af: f9:bd:dc:ac:24:c1:03:60:25:63:c8:80:cd:6a:36:ff:61:bd: b1:3b:6a:1c:39:7e:e9:54:e9:bd:b2:f1:7a:2a:c0:14:62:60: 1f:43:e8:69:e3:de:65:41:51:bf:22:fa:3c:8c:9a:8a:86:ff: fc:d0:e0:5b:b6:81:9c:c6:2a:ca:db:62:56:8a:5d:d4:a2:30: f9:62:7d:c4:81:68:73:ec:4d:a2:16:48:8b:ad:f7:fb:2a:ec: 60:53:31:c1:29:cb:6b:0c:66:b2:14:85:99:f5:14:85:a4:68: e4:21:54:fa:70:b8:3c:90:d2:4d:40:d8:50:ea:5c:c7:40:0a: d6:09:fb:31 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNENjMxMTAvBgNVBAUTKDJCOUQ2RDdEREFCQzUyMjU1RjNDQ0Q3OUNFRUE3NkRC Q0Y0MzVCOUQwHhcNMjQwMTAzMDMwNDM5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0Y2VjNi00NmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUKGTGUfum1qpygRJFlepBrHfTXW/cjSXm4GzMbeENYcTnahTsAJVfz6gQFJ r/C9e0Mh1lp3TRmB6UKvR1jT5ngEeiLHt9X1lqBaRi0Lh1HHmSITqN47DB08Uzlj ZRoY0JKg+r/alYxycUN/OK+Ar41enKNeUgMqUgViHNJX6OHvjNu8PoCK5/Deq45e C7g6ahVykCPko6KP09tCBT9xLvKnd7BRuftCyl8rTUarenQUVBrNIWZXtqNAinCq 0MGpqO34TZg3F5wMPPXHn1Q4jwSpIfOwXMtpYkELUkyKeNC6TIp6NZ0D4hHN+eo8 wiUz8oWQ7epeRom3skNH57sgywIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOqxZHOL D1QByAlh7geZMiKLp+KeMB8GA1UdIwQYMBaAFCudbX3avFIlXzzNec7qdtvPQ1ud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0Q2My84QUYwNjdDNDk5 NjIxMUVDQkI2NjFBNTdDNEY5QUUwMi9LNTF0ZmRxOFVpVmZQTTE1enVwMjI4OURX NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1MXRmZHE4VWlWZlBNMTV6dXAyMjg5RFc1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNENjMvOEFGMDY3QzQ5OTYyMTFFQ0JCNjYxQTU3QzRGOUFFMDIvRkE3QzVCNkM5 OTY2MTFFQzhFNTY1RTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAO0XjAwDgQCAAIwCAMGByQCFQCAMA0GCSqGSIb3DQEBCwUA A4IBAQAaJhBoUKotzV98tsoOa99J6L8Mfx6yCD+jjkiabYmmqr8wpHLGY17Vp0rT xHAGR8tExwFjf8vnW7th8BsvGZNO6hzveeGrfXqaIg5lrR/Xn8kl+m9jLHppQANg OWoctnQGPQD0NMfIJKM7EAvHiihvJdBHLdF00mlq/dxxFq/5vdysJMEDYCVjyIDN ajb/Yb2xO2ocOX7pVOm9svF6KsAUYmAfQ+hp495lQVG/Ivo8jJqKhv/80OBbtoGc xirK22JWil3UojD5Yn3EgWhz7E2iFkiLrff7KuxgUzHBKctrDGayFIWZ9RSFpGjk IVT6cLg8kNJNQNhQ6lzHQArWCfsx -----END CERTIFICATE-----Generated at Fri Jun 7 04:48:34 2024 by rpki-client on console-fra.rpki-client.org