$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa File: E3E47D36B6B911EE8E72C641C4F9AE02.roa (raw, json) Hash identifier: 8NNDcn/CtNpBvMIFdldKUPUuvftRiLW48mBlQXNrmYs= Subject key identifier: 21:81:CA:4D:2C:14:D8:81:CC:F4:B8:F1:0C:43:3B:78:9C:74:9D:54 Certificate issuer: /CN=A91D63AF/serialNumber=EF30A24146DF66B1FA6FBA5D676769EB64B387AA Certificate serial: 09 Authority key identifier: EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa Signing time: Fri 19 Jan 2024 11:00:00 +0000 ROA not before: Fri 19 Jan 2024 11:00:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152339 IP address blocks: 2001:df3:6240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF/serialNumber=EF30A24146DF66B1FA6FBA5D676769EB64B387AA Validity Not Before: Jan 19 11:00:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65aa5630-4211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:03:d2:4a:d7:0c:97:10:80:43:16:d2:3e:cd: e1:11:f8:5b:46:a9:f8:48:42:94:15:4a:e8:a7:80: a6:f7:33:f8:5d:a0:ec:b6:fc:f3:03:f7:99:27:43: 21:03:d2:57:06:ef:da:23:10:37:73:2e:dc:62:df: 39:7f:81:c2:55:23:99:6b:f2:d3:4c:ae:df:d8:21: 0c:57:2d:50:92:0f:87:19:52:3e:c6:cf:da:cc:05: ba:81:c3:5c:19:f7:81:e1:09:6b:61:81:cf:a2:19: 97:4c:93:69:1a:4f:35:d2:73:6b:31:76:e8:e3:f4: b9:3f:94:c1:ac:14:64:d6:f6:1a:54:bc:05:ac:78: 1f:00:4f:65:16:b8:79:c1:ad:c7:f7:6c:64:14:d9: 6a:aa:e6:fa:3b:db:65:3c:c7:75:b1:d4:14:82:f3: b4:49:a7:60:aa:ed:26:de:92:62:9f:6c:1f:38:76: 9c:38:47:e5:75:b1:84:c4:df:5e:05:8b:86:2b:a8: 90:7a:2d:7d:53:f4:c3:5f:9e:e3:89:a3:f8:fd:e4: d1:f2:15:44:f3:70:33:01:a8:8d:c9:04:81:0e:81: d7:9e:5b:26:8e:11:87:54:88:b2:0c:65:ac:b4:ed: 9e:6b:26:68:cf:c0:f8:97:36:f7:ab:9c:ab:af:6e: 1e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:81:CA:4D:2C:14:D8:81:CC:F4:B8:F1:0C:43:3B:78:9C:74:9D:54 X509v3 Authority Key Identifier: keyid:EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6240::/48 Signature Algorithm: sha256WithRSAEncryption 51:6a:ac:25:a4:35:de:51:83:00:c1:ea:5a:6b:7f:46:f6:1c: ef:a1:b6:31:bf:3b:55:e3:1a:d1:05:37:88:bf:dc:17:16:70: d3:0d:a1:df:4b:4f:28:c1:ce:9e:df:03:b9:2a:bf:4f:8f:b8: da:a2:d7:57:d5:9a:ea:0a:76:c5:c2:25:c9:23:75:67:41:b0: 4d:1a:3f:73:2b:ba:82:e3:ef:50:36:5f:49:ce:8e:b9:3c:89: 5e:23:86:75:f7:35:c3:1b:a6:27:e6:4a:9d:39:dd:a8:f5:e8: 68:2a:28:f2:57:4f:3d:fa:42:2f:87:5d:1b:75:60:ff:eb:a1: 82:b6:a4:4b:7f:02:74:65:2c:bc:5b:09:2f:53:56:ff:e8:eb: c4:70:7d:40:31:53:a0:f2:ef:19:f3:98:39:83:9e:14:7f:3c: d1:bb:b5:55:9c:8a:a6:70:3f:3e:bc:f9:cb:d8:79:f0:22:40: 33:bb:aa:fd:3c:2c:09:86:ab:9b:00:96:8a:55:53:32:a4:d9: cc:1e:24:89:ac:f0:27:13:4e:2f:36:0c:bd:80:26:81:f1:04: 45:a5:53:68:93:95:0d:1f:73:83:0c:b3:ca:e2:ff:4a:97:20: c3:28:42:3d:42:c1:14:0e:0b:cd:74:a1:e9:46:ef:a0:11:ba: 99:e8:10:38 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NjNBRjExMC8GA1UEBRMoRUYzMEEyNDE0NkRGNjZCMUZBNkZCQTVENjc2NzY5RUI2 NEIzODdBQTAeFw0yNDAxMTkxMTAwMDBaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWE1NjMwLTQyMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoA9JK1wyXEIBDFtI+zeER+FtGqfhIQpQVSuingKb3M/hdoOy2/PMD95knQyED 0lcG79ojEDdzLtxi3zl/gcJVI5lr8tNMrt/YIQxXLVCSD4cZUj7Gz9rMBbqBw1wZ 94HhCWthgc+iGZdMk2kaTzXSc2sxdujj9Lk/lMGsFGTW9hpUvAWseB8AT2UWuHnB rcf3bGQU2Wqq5vo722U8x3Wx1BSC87RJp2Cq7SbekmKfbB84dpw4R+V1sYTE314F i4YrqJB6LX1T9MNfnuOJo/j95NHyFUTzcDMBqI3JBIEOgdeeWyaOEYdUiLIMZay0 7Z5rJmjPwPiXNvernKuvbh45AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUIYHKTSwU 2IHM9LjxDEM7eJx0nVQwHwYDVR0jBBgwFoAU7zCiQUbfZrH6b7pdZ2dp62Szh6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2M0FGL0UxNEQxQUI0QjZB NjExRUVBMDRBOEIyM0M0RjlBRTAyLzd6Q2lRVWJmWnJINmI3cGRaMmRwNjJTemg2 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN3pDaVFVYmZackg2YjdwZFoyZHA2MlN6aDZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi9FMTREMUFCNEI2QTYxMUVFQTA0QThCMjNDNEY5QUUwMi9FM0U0N0QzNkI2 QjkxMUVFOEU3MkM2NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNiQDANBgkqhkiG9w0BAQsFAAOCAQEAUWqsJaQ13lGD AMHqWmt/RvYc76G2Mb87VeMa0QU3iL/cFxZw0w2h30tPKMHOnt8DuSq/T4+42qLX V9Wa6gp2xcIlySN1Z0GwTRo/cyu6guPvUDZfSc6OuTyJXiOGdfc1wxumJ+ZKnTnd qPXoaCoo8ldPPfpCL4ddG3Vg/+uhgrakS38CdGUsvFsJL1NW/+jrxHB9QDFToPLv GfOYOYOeFH880bu1VZyKpnA/Prz5y9h58CJAM7uq/TwsCYarmwCWilVTMqTZzB4k iazwJxNOLzYMvYAmgfEERaVTaJOVDR9zgwyzyuL/SpcgwyhCPULBFA4LzXSh6Ubv oBG6megQOA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org