$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/1A5C7B24EDE411ED8259CE53C4F9AE02.roa File: 1A5C7B24EDE411ED8259CE53C4F9AE02.roa (raw, json) Hash identifier: uzBKeRoyiUgWHze/XD0xAE0hmaAtPanLsp+CIutI86g= Subject key identifier: 85:51:80:0F:9F:8F:30:E2:C4:4F:43:3A:E1:33:A6:D4:56:7D:6F:13 Certificate issuer: /CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Certificate serial: 0214 Authority key identifier: 25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/1A5C7B24EDE411ED8259CE53C4F9AE02.roa Signing time: Tue 28 Nov 2023 17:59:52 +0000 ROA not before: Tue 28 Nov 2023 17:59:52 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 396982 IP address blocks: 2407:30c0:280::/48 maxlen: 48 2407:30c0:281::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6304/serialNumber=2596AED0C0CB3BCFE31804B239CF4657712E276A Validity Not Before: Nov 28 17:59:52 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65662a97-1277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c8:e3:27:c3:7c:b0:a5:a5:16:8c:8a:d0:da: f6:e1:96:ee:b1:2e:45:20:0f:3c:14:e7:f0:04:bd: 54:3f:17:3c:5d:f2:57:ef:81:30:34:79:1c:d2:e2: 43:1a:24:83:36:26:24:d5:fe:00:50:bb:8b:3d:ec: 5a:3a:7c:00:dd:91:54:b5:a4:70:68:08:7f:88:93: c7:af:a6:0e:0d:49:50:57:b8:be:fe:e9:1a:ab:ac: 13:99:98:bb:bb:16:33:8e:50:fe:02:d4:0a:76:d0: 14:fa:ee:31:74:57:2c:d4:2a:86:ca:97:e3:47:15: 33:51:79:90:e1:c0:e1:4b:b2:bd:6a:1d:e1:3e:4e: 59:b8:6a:ec:81:64:c2:3e:73:ae:66:fb:cc:82:4e: b1:7d:c9:74:a2:09:69:91:9f:d7:8b:36:5a:4b:f2: f0:60:a8:8b:93:a4:99:1c:04:ce:77:90:ac:59:2c: 15:c0:3a:e2:57:d4:db:ce:c0:04:ec:5b:1e:40:74: 62:26:6e:f7:08:04:5f:8c:22:94:b4:5a:f9:36:9e: 82:d1:4c:49:7b:01:21:b7:fa:8c:cd:8f:82:6e:ab: 22:ea:e0:dd:9f:a4:fc:f3:e6:4e:c9:cf:11:a8:24: 0c:2a:92:2b:52:57:e2:cb:e8:00:18:86:b8:70:db: 6d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:51:80:0F:9F:8F:30:E2:C4:4F:43:3A:E1:33:A6:D4:56:7D:6F:13 X509v3 Authority Key Identifier: keyid:25:96:AE:D0:C0:CB:3B:CF:E3:18:04:B2:39:CF:46:57:71:2E:27:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/JZau0MDLO8_jGASyOc9GV3EuJ2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JZau0MDLO8_jGASyOc9GV3EuJ2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6304/19E4DF06DB0711EC9922D70FC4F9AE02/1A5C7B24EDE411ED8259CE53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:30c0:280::/47 Signature Algorithm: sha256WithRSAEncryption 32:ea:53:9c:2e:42:4d:a6:b2:d8:07:d9:a4:23:62:43:fe:f4: 59:f2:c9:79:6a:5e:7a:0f:c0:e8:a2:cf:fb:5c:78:7d:41:fe: e1:1f:f2:a5:2e:46:a5:af:a3:8f:ca:90:71:75:ec:b8:1c:2e: 5c:b9:e8:98:a9:a0:a4:92:5b:a3:96:74:b3:9b:78:18:a4:3f: 98:e1:8b:01:47:5e:e9:f6:8a:b1:f3:52:e5:50:67:8a:23:e1: 1f:db:7f:af:e9:c3:9c:32:d3:53:aa:e5:25:85:29:4d:72:e5: 76:82:a7:d5:34:34:86:b3:02:60:0c:87:47:a0:9e:44:a1:4e: e9:8d:17:fe:6e:6e:bc:07:71:27:a4:82:e3:63:97:13:27:93: ba:d6:82:6e:cb:78:38:f4:8a:b1:5f:41:fc:96:80:32:79:26: 46:52:3a:53:13:b9:a6:44:01:6c:f0:f5:95:f9:ef:ab:b8:ba: fa:38:87:ca:22:fa:30:78:84:24:69:b8:41:a7:eb:c1:5a:e5: a2:7d:32:72:42:ea:9d:6d:79:a5:4d:f3:61:37:07:dd:2b:6d: 4a:a6:4f:40:e3:bb:bb:98:42:f4:ae:ca:91:a2:ad:be:d4:15: 43:2a:74:9b:7f:b2:a5:22:24:e0:68:eb:9a:16:d0:a7:aa:e5: 30:c8:c1:bf -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzMDQxMTAvBgNVBAUTKDI1OTZBRUQwQzBDQjNCQ0ZFMzE4MDRCMjM5Q0Y0NjU3 NzEyRTI3NkEwHhcNMjMxMTI4MTc1OTUyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmE5Ny0xMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8jjJ8N8sKWlFoyK0Nr24ZbusS5FIA88FOfwBL1UPxc8XfJX74EwNHkc0uJD GiSDNiYk1f4AULuLPexaOnwA3ZFUtaRwaAh/iJPHr6YODUlQV7i+/ukaq6wTmZi7 uxYzjlD+AtQKdtAU+u4xdFcs1CqGypfjRxUzUXmQ4cDhS7K9ah3hPk5ZuGrsgWTC PnOuZvvMgk6xfcl0oglpkZ/XizZaS/LwYKiLk6SZHATOd5CsWSwVwDriV9TbzsAE 7FseQHRiJm73CARfjCKUtFr5Np6C0UxJewEht/qMzY+Cbqsi6uDdn6T88+ZOyc8R qCQMKpIrUlfiy+gAGIa4cNttKwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIVRgA+f jzDixE9DOuEzptRWfW8TMB8GA1UdIwQYMBaAFCWWrtDAyzvP4xgEsjnPRldxLidq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjMwNC8xOUU0REYwNkRC MDcxMUVDOTkyMkQ3MEZDNEY5QUUwMi9KWmF1ME1ETE84X2pHQVN5T2M5R1YzRXVK Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0paYXUwTURMTzhfakdBU3lPYzlHVjNFdUoyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYzMDQvMTlFNERGMDZEQjA3MTFFQzk5MjJENzBGQzRGOUFFMDIvMUE1QzdCMjRF REU0MTFFRDgyNTlDRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBzDAAoAwDQYJKoZIhvcNAQELBQADggEBADLqU5wuQk2m stgH2aQjYkP+9FnyyXlqXnoPwOiiz/tceH1B/uEf8qUuRqWvo4/KkHF17LgcLly5 6JipoKSSW6OWdLObeBikP5jhiwFHXun2irHzUuVQZ4oj4R/bf6/pw5wy01Oq5SWF KU1y5XaCp9U0NIazAmAMh0egnkShTumNF/5ubrwHcSekguNjlxMnk7rWgm7LeDj0 irFfQfyWgDJ5JkZSOlMTuaZEAWzw9ZX576u4uvo4h8oi+jB4hCRpuEGn68Fa5aJ9 MnJC6p1teaVN82E3B90rbUqmT0Dju7uYQvSuypGirb7UFUMqdJt/sqUiJOBo65oW 0Keq5TDIwb8= -----END CERTIFICATE-----Generated at Sun May 5 05:21:59 2024 by rpki-client on console-fra.rpki-client.org