$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/2837843AA3E811EAB397F675C4F9AE02.roa File: 2837843AA3E811EAB397F675C4F9AE02.roa (raw, json) Hash identifier: /tJVaaLCTzYClGpQvcdtUybXo1hn6XUyjqkTeY+7mos= Subject key identifier: 1B:7C:ED:64:65:06:FF:3A:C3:D6:C8:39:A6:34:EF:F6:30:6E:62:CC Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 102A Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/2837843AA3E811EAB397F675C4F9AE02.roa Signing time: Wed 28 Feb 2024 17:56:07 +0000 ROA not before: Wed 28 Feb 2024 17:56:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 0 IP address blocks: 2001:7fa:0:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4138 (0x102a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Feb 28 17:56:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65df73b7-7c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:29:89:e8:d9:84:cd:6d:ee:9b:77:2c:56:eb: ad:b5:b5:a0:ca:40:a8:10:26:f1:1a:bb:98:04:ca: eb:c1:f4:aa:d0:36:7b:48:fb:6e:e2:b3:85:44:98: e0:09:cb:6c:7d:24:31:a8:9e:bc:cf:fd:b1:da:b9: 7c:6c:69:6c:41:43:ab:15:c0:0d:dc:ae:08:b4:d6: 25:a7:d0:51:58:ee:cb:55:9f:60:4b:89:ae:fa:18: d8:6d:2e:fb:e6:d7:08:37:b9:0f:f6:22:97:41:0c: c0:c5:c4:c4:52:d6:e4:2d:65:f6:55:48:ec:80:39: 91:60:f7:ee:0e:38:a8:24:1e:97:ce:68:3f:90:09: e4:53:c3:61:12:42:b3:9f:fe:3c:0b:59:ad:a6:08: b5:b7:bb:87:7a:ba:40:85:0c:90:58:2b:db:83:82: 07:79:0f:d0:34:9d:b4:61:a3:91:21:8d:b7:64:6a: 59:42:59:9a:d3:9e:f6:d5:9f:d1:4b:b8:a6:35:94: bb:73:15:e7:de:1b:15:3f:9c:85:32:16:bc:40:10: e9:85:9f:3f:56:ea:03:6a:54:87:36:6c:14:20:0d: 8d:5e:1b:61:4b:27:7d:c3:b2:f4:c3:1c:64:ad:b4: 51:a2:bb:a2:d8:fb:50:94:e8:57:79:89:28:74:49: 62:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7C:ED:64:65:06:FF:3A:C3:D6:C8:39:A6:34:EF:F6:30:6E:62:CC X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/2837843AA3E811EAB397F675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:0:1::/64 Signature Algorithm: sha256WithRSAEncryption a2:09:87:2b:80:f5:34:37:ce:3e:ec:7e:d0:c1:a7:25:88:40: 71:de:c8:71:a1:f5:79:05:12:31:89:fc:ce:f1:a9:d4:c6:c1: c7:1c:1e:1a:21:08:a4:56:d7:7d:fa:8f:3d:c3:04:43:89:5d: a2:08:ea:70:fe:a1:21:d8:54:41:79:f0:c8:40:f5:80:a6:14: 75:4a:71:9d:8e:8d:0c:f4:1a:07:93:89:7c:0e:c6:2d:22:6d: 72:72:49:e2:a3:aa:e9:72:fb:fd:32:fa:e5:22:bb:3a:da:80: fd:3e:b6:60:6b:8f:1e:59:9f:0f:eb:3f:30:89:04:71:d5:50: 6b:2c:99:24:6e:52:36:2f:5d:3f:21:59:72:27:0f:92:6f:6e: 32:2f:f2:0d:12:0f:5f:32:62:04:cb:7b:52:d1:d5:b2:a7:4f: 74:9f:0b:62:b6:39:67:81:3f:ae:f7:6e:a2:70:6d:e5:37:1e: ed:ba:7f:82:54:38:84:0f:51:62:f4:53:14:fb:9b:9c:35:4d: 39:af:b2:f7:9c:c0:0f:c3:94:cc:5a:a0:3c:f1:bb:8b:96:db: fb:4a:ff:5c:c1:ad:17:a9:7e:c2:05:3d:1f:4e:75:86:6f:fe: be:f7:af:e4:c4:69:64:a1:bd:db:74:ce:6b:13:87:0a:be:a3: 89:ad:b5:13 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICECowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjQwMjI4MTc1NjA3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmNzNiNy03YzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySmJ6NmEzW3um3csVuuttbWgykCoECbxGruYBMrrwfSq0DZ7SPtu4rOFRJjg CctsfSQxqJ68z/2x2rl8bGlsQUOrFcAN3K4ItNYlp9BRWO7LVZ9gS4mu+hjYbS77 5tcIN7kP9iKXQQzAxcTEUtbkLWX2VUjsgDmRYPfuDjioJB6Xzmg/kAnkU8NhEkKz n/48C1mtpgi1t7uHerpAhQyQWCvbg4IHeQ/QNJ20YaORIY23ZGpZQlma05721Z/R S7imNZS7cxXn3hsVP5yFMha8QBDphZ8/VuoDalSHNmwUIA2NXhthSyd9w7L0wxxk rbRRorui2PtQlOhXeYkodElipQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFBt87WRl Bv86w9bIOaY07/YwbmLMMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyQjYvMDgyNDNDOEMxMzJCMTFFOUFFNzdBRDdCQzRGOUFFMDIvMjgzNzg0M0FB M0U4MTFFQUIzOTdGNjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQAgAQf6AAAAATANBgkqhkiG9w0BAQsFAAOCAQEAogmHK4D1 NDfOPux+0MGnJYhAcd7IcaH1eQUSMYn8zvGp1MbBxxweGiEIpFbXffqPPcMEQ4ld ogjqcP6hIdhUQXnwyED1gKYUdUpxnY6NDPQaB5OJfA7GLSJtcnJJ4qOq6XL7/TL6 5SK7OtqA/T62YGuPHlmfD+s/MIkEcdVQayyZJG5SNi9dPyFZcicPkm9uMi/yDRIP XzJiBMt7UtHVsqdPdJ8LYrY5Z4E/rvduonBt5Tce7bp/glQ4hA9RYvRTFPubnDVN Oa+y95zAD8OUzFqgPPG7i5bb+0r/XMGtF6l+wgU9H051hm/+vvev5MRpZKG923TO axOHCr6jia21Ew== -----END CERTIFICATE-----Generated at Thu Apr 18 20:34:38 2024 by rpki-client on console-ams.rpki-client.org