$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/01F6431CDD3711EC9EF48256C4F9AE02.roa File: 01F6431CDD3711EC9EF48256C4F9AE02.roa (raw, json) Hash identifier: FFbOtbUtzY70jFpEJx+aSnSulYpAqaZikKJwbxkQBOI= Subject key identifier: D5:BB:CF:22:01:A8:C5:EB:40:22:5A:37:EC:17:DD:DD:9A:B1:D9:A2 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 01F3 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/01F6431CDD3711EC9EF48256C4F9AE02.roa Signing time: Fri 13 Oct 2023 03:14:41 +0000 ROA not before: Fri 13 Oct 2023 03:14:41 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 213151 IP address blocks: 2407:30c0:100::/43 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Oct 13 03:14:41 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6528b621-f63b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:51:99:7c:07:bd:ce:14:d6:b2:a5:d9:3b:b8: e4:28:ee:ef:92:98:ce:48:97:f2:de:a1:15:7a:2c: bb:e7:cd:a5:d7:a7:c6:a3:93:7a:e1:d5:df:b8:52: f9:16:80:ab:13:c2:14:1e:71:e9:cb:87:fb:e6:d5: 32:0b:a9:02:ba:37:d2:53:66:1f:76:e7:55:df:fd: b3:b9:c4:86:57:78:16:61:7c:86:d1:e5:a6:26:68: c5:a5:d7:a0:22:d3:bf:e1:39:c9:48:e7:dc:b2:32: 09:64:96:d0:88:fb:3c:7d:8c:a3:9a:af:46:a7:07: 89:9a:4e:4a:09:c2:90:c8:be:6f:9b:a6:42:9b:15: d3:80:00:b4:5d:70:9c:ae:cf:4b:c3:38:8d:fe:f7: 29:77:11:ed:50:51:db:a1:dc:52:7d:0a:1d:cf:a3: 8f:3f:76:60:8d:62:32:f4:1e:f6:a6:12:3d:85:df: e4:e2:89:eb:16:da:af:e3:0b:9b:cd:e1:2d:ac:4a: 71:36:87:52:fb:b7:d1:f2:c6:01:10:a5:89:69:df: b9:03:27:09:3d:e1:0e:06:c3:e4:24:90:72:72:a7: f0:94:04:8e:8a:72:71:3c:0c:b3:06:1c:b4:e2:b9: 39:e5:09:f3:3a:9f:8f:27:50:61:8c:01:7f:03:ba: 89:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BB:CF:22:01:A8:C5:EB:40:22:5A:37:EC:17:DD:DD:9A:B1:D9:A2 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/01F6431CDD3711EC9EF48256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:100::/43 Signature Algorithm: sha256WithRSAEncryption cc:26:63:01:17:ba:8a:97:aa:34:53:23:c4:76:f1:7e:47:fc: fd:33:f6:8f:56:02:9e:d9:00:70:5d:19:16:4e:01:0d:27:58: c3:fc:c3:e9:2c:99:0d:5b:41:ca:44:3b:ae:ec:84:20:68:72: 04:72:b1:12:73:e0:4f:41:d6:70:38:62:50:d0:13:55:d1:b6: d5:8f:a5:f3:77:5c:1d:dd:25:d2:96:f0:ac:d7:30:79:da:1a: 40:29:d9:eb:93:d8:d2:49:69:92:af:eb:db:c2:12:62:67:d0: 93:9f:b0:6b:c9:00:ee:1b:a2:19:d3:07:c2:19:5b:ec:0a:7d: 70:20:e1:f9:cc:63:50:c9:50:c4:93:84:1a:e5:4a:de:7c:9c: 54:56:46:df:8c:31:51:dd:92:ca:ea:65:b6:0a:b4:3e:38:9f: 85:5c:10:90:cf:3a:b0:95:19:61:8a:a5:4c:cf:c1:6f:1b:24: fd:c7:e9:74:d6:65:48:65:56:c5:0b:58:80:9f:a1:13:94:4c: d1:e8:cd:aa:23:2d:bb:7d:07:1d:65:a0:a6:51:97:3e:a6:e5: dc:58:81:25:e3:71:be:15:dc:e9:b7:61:cf:84:e8:7e:f7:65: 5b:52:f4:87:de:33:66:92:8c:1c:08:f0:aa:72:f5:9c:05:ce: 78:e2:18:76 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjMxMDEzMDMxNDQxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4YjYyMS1mNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1GZfAe9zhTWsqXZO7jkKO7vkpjOSJfy3qEVeiy7582l16fGo5N64dXfuFL5 FoCrE8IUHnHpy4f75tUyC6kCujfSU2YfdudV3/2zucSGV3gWYXyG0eWmJmjFpdeg ItO/4TnJSOfcsjIJZJbQiPs8fYyjmq9GpweJmk5KCcKQyL5vm6ZCmxXTgAC0XXCc rs9LwziN/vcpdxHtUFHbodxSfQodz6OPP3ZgjWIy9B72phI9hd/k4onrFtqv4wub zeEtrEpxNodS+7fR8sYBEKWJad+5AycJPeEOBsPkJJBycqfwlASOinJxPAyzBhy0 4rk55QnzOp+PJ1BhjAF/A7qJwwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNW7zyIB qMXrQCJaN+wX3d2asdmiMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvMDFGNjQzMUNE RDM3MTFFQzlFRjQ4MjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwUkBzDAAQAwDQYJKoZIhvcNAQELBQADggEBAMwmYwEXuoqX qjRTI8R28X5H/P0z9o9WAp7ZAHBdGRZOAQ0nWMP8w+ksmQ1bQcpEO67shCBocgRy sRJz4E9B1nA4YlDQE1XRttWPpfN3XB3dJdKW8KzXMHnaGkAp2euT2NJJaZKv69vC EmJn0JOfsGvJAO4bohnTB8IZW+wKfXAg4fnMY1DJUMSThBrlSt58nFRWRt+MMVHd ksrqZbYKtD44n4VcEJDPOrCVGWGKpUzPwW8bJP3H6XTWZUhlVsULWICfoROUTNHo zaojLbt9Bx1loKZRlz6m5dxYgSXjcb4V3Om3Yc+E6H73ZVtS9IfeM2aSjBwI8Kpy 9ZwFznjiGHY= -----END CERTIFICATE-----Generated at Fri May 3 06:29:24 2024 by rpki-client on console-fra.rpki-client.org