$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/F853742A5A9911EDA14F453FC4F9AE02.roa File: F853742A5A9911EDA14F453FC4F9AE02.roa (raw, json) Hash identifier: Ppu4V4sxE97CST+ha/G90tNQFksFJ/RFtH/H94X5UAU= Subject key identifier: 58:21:DD:9A:67:CF:D7:35:3B:94:91:38:A7:05:64:EE:41:60:E9:A0 Certificate issuer: /CN=A91B9C74/serialNumber=0013792078D11B2F94030D7C3BEEF50132A26D40 Certificate serial: DE Authority key identifier: 00:13:79:20:78:D1:1B:2F:94:03:0D:7C:3B:EE:F5:01:32:A2:6D:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABN5IHjRGy-UAw18O-71ATKibUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/F853742A5A9911EDA14F453FC4F9AE02.roa Signing time: Wed 29 Nov 2023 04:35:04 +0000 ROA not before: Wed 29 Nov 2023 04:35:04 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132608 IP address blocks: 2001:df1:5cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/ABN5IHjRGy-UAw18O-71ATKibUA.crl rsync://rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/ABN5IHjRGy-UAw18O-71ATKibUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABN5IHjRGy-UAw18O-71ATKibUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 05:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C74/serialNumber=0013792078D11B2F94030D7C3BEEF50132A26D40 Validity Not Before: Nov 29 04:35:04 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6566bf78-f147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:50:1c:6e:29:88:87:d1:41:3e:64:12:65: e0:a0:75:07:1a:33:9b:1a:6c:f3:bf:21:20:1e:ca: 64:da:48:7c:bf:ae:28:cc:2a:2f:3d:85:9d:1f:52: 0e:7f:06:95:ed:40:7f:68:2a:5e:53:15:36:24:4c: 59:50:8d:e8:af:3d:db:da:80:6c:ba:58:fe:0c:80: bf:58:7e:15:8c:04:99:2f:fa:c2:46:32:f5:8a:2c: 71:cd:b4:2a:a0:26:db:97:d4:97:0c:a2:98:3d:a9: 6d:27:e5:b9:09:b7:15:6f:c4:b6:6d:51:10:6b:41: 8c:5b:ef:3e:9e:85:05:d8:a0:af:f2:d9:c1:27:66: 76:9d:79:2b:26:68:84:06:d1:4f:30:d7:59:cb:d8: 6a:8a:8a:0c:50:cc:eb:d1:5f:a0:3f:85:0b:ca:e4: c4:75:bc:df:69:6b:e4:f6:dd:aa:0f:d3:c9:ff:34: 24:ef:8d:b2:66:43:58:e6:0a:e8:fe:00:0d:5a:ff: d9:4b:33:ee:2b:70:db:f8:ba:54:fe:cc:e3:92:4e: d0:98:a2:8f:ae:50:8e:ec:2d:e6:4f:56:1d:f1:3d: 3a:d2:48:0b:63:d5:4d:0d:93:a6:3d:14:d0:5c:85: ed:09:c0:12:65:a1:9c:fa:22:26:b2:37:94:87:16: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:21:DD:9A:67:CF:D7:35:3B:94:91:38:A7:05:64:EE:41:60:E9:A0 X509v3 Authority Key Identifier: keyid:00:13:79:20:78:D1:1B:2F:94:03:0D:7C:3B:EE:F5:01:32:A2:6D:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/ABN5IHjRGy-UAw18O-71ATKibUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABN5IHjRGy-UAw18O-71ATKibUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C74/44CC971E4E1F11EDB3E6CC2FC4F9AE02/F853742A5A9911EDA14F453FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:5cc0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:4f:85:e6:22:87:b0:14:a3:b7:ec:eb:3a:d4:d0:db:8d:31: d7:2c:ec:15:26:07:26:8d:b1:84:61:e0:af:a0:7c:94:4f:e7: ed:9e:c4:6d:fb:31:e9:ec:74:c8:6b:53:da:2a:f7:12:09:35: 32:35:0c:41:4b:9f:7f:e3:10:12:90:be:5a:84:a8:4b:62:af: 0f:2c:50:32:27:e5:43:55:2c:c7:2a:dd:97:53:3f:f3:49:05: fb:83:00:d5:9d:02:4b:b7:f9:40:b4:01:0f:f0:a8:5e:8f:28: d0:8d:2c:64:65:2e:26:94:09:a3:66:03:8a:1f:66:d9:7e:a4: d1:bd:a7:01:ee:bb:8a:25:76:57:96:79:50:36:23:7f:94:9b: 1e:a5:a9:51:03:a8:9a:06:79:62:76:34:2d:18:ec:66:ef:4d: e5:d2:22:9f:8b:ca:43:7f:0f:f5:8b:46:94:60:fc:c4:4c:4f: b2:a5:f0:d3:a4:7c:28:7e:71:ac:3b:0d:83:fd:69:9c:e9:f5: b9:aa:6a:e8:4f:e3:a8:38:27:cf:4b:c8:47:b5:f2:0b:15:91: 72:67:67:00:e2:33:12:c6:48:b2:77:f6:43:d7:95:68:b1:90: 8c:50:dd:7a:e0:99:69:c6:5e:37:c7:5d:01:16:32:66:7a:28: 64:ae:23:16 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlDNzQxMTAvBgNVBAUTKDAwMTM3OTIwNzhEMTFCMkY5NDAzMEQ3QzNCRUVGNTAx MzJBMjZENDAwHhcNMjMxMTI5MDQzNTA0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2YmY3OC1mMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcJQHG4piIfRQT5kEmXgoHUHGjObGmzzvyEgHspk2kh8v64ozCovPYWdH1IO fwaV7UB/aCpeUxU2JExZUI3orz3b2oBsulj+DIC/WH4VjASZL/rCRjL1iixxzbQq oCbbl9SXDKKYPaltJ+W5CbcVb8S2bVEQa0GMW+8+noUF2KCv8tnBJ2Z2nXkrJmiE BtFPMNdZy9hqiooMUMzr0V+gP4ULyuTEdbzfaWvk9t2qD9PJ/zQk742yZkNY5gro /gANWv/ZSzPuK3Db+LpU/szjkk7QmKKPrlCO7C3mT1Yd8T060kgLY9VNDZOmPRTQ XIXtCcASZaGc+iImsjeUhxbySwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFgh3Zpn z9c1O5SROKcFZO5BYOmgMB8GA1UdIwQYMBaAFAATeSB40RsvlAMNfDvu9QEyom1A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUM3NC80NENDOTcxRTRF MUYxMUVEQjNFNkNDMkZDNEY5QUUwMi9BQk41SUhqUkd5LVVBdzE4Ty03MUFUS2li VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCTjVJSGpSR3ktVUF3MThPLTcxQVRLaWJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlDNzQvNDRDQzk3MUU0RTFGMTFFREIzRTZDQzJGQzRGOUFFMDIvRjg1Mzc0MkE1 QTk5MTFFREExNEY0NTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xXMAwDQYJKoZIhvcNAQELBQADggEBACxPheYih7AU o7fs6zrU0NuNMdcs7BUmByaNsYRh4K+gfJRP5+2exG37MensdMhrU9oq9xIJNTI1 DEFLn3/jEBKQvlqEqEtirw8sUDIn5UNVLMcq3ZdTP/NJBfuDANWdAku3+UC0AQ/w qF6PKNCNLGRlLiaUCaNmA4ofZtl+pNG9pwHuu4oldleWeVA2I3+Umx6lqVEDqJoG eWJ2NC0Y7GbvTeXSIp+LykN/D/WLRpRg/MRMT7Kl8NOkfCh+caw7DYP9aZzp9bmq auhP46g4J89LyEe18gsVkXJnZwDiMxLGSLJ39kPXlWixkIxQ3XrgmWnGXjfHXQEW MmZ6KGSuIxY= -----END CERTIFICATE-----Generated at Fri Jun 7 06:52:44 2024 by rpki-client on console-ams.rpki-client.org