$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa File: F548379631A011EE9F9D0D4DC4F9AE02.roa (raw, json) Hash identifier: /kDb/mIfiTzZaD+1LObZyFKqMvX6yIvzrc7zLgYmrVo= Subject key identifier: 09:CB:35:80:36:C2:73:AB:0A:25:50:12:57:3E:ED:1D:E3:47:3C:9B Certificate issuer: /CN=A91F0FC6/serialNumber=66E6F6F8FDCE3D954A77E5B0A3E250CC262E5D5D Certificate serial: B7 Authority key identifier: 66:E6:F6:F8:FD:CE:3D:95:4A:77:E5:B0:A3:E2:50:CC:26:2E:5D:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa Signing time: Wed 03 Jan 2024 05:46:36 +0000 ROA not before: Wed 03 Jan 2024 05:46:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150430 IP address blocks: 2001:df1:efc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.crl rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 06:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FC6/serialNumber=66E6F6F8FDCE3D954A77E5B0A3E250CC262E5D5D Validity Not Before: Jan 3 05:46:36 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594f4bb-21f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7b:20:1d:ed:a0:8f:cb:dc:10:b5:52:40:a7: 5c:a5:2a:1e:14:86:0b:d0:56:c8:a2:49:8f:5a:ff: 28:85:ae:aa:f1:2c:cd:6d:c7:96:69:2d:28:3d:da: a1:14:60:6a:d2:b9:8c:25:05:d7:0f:d7:84:7a:32: f3:bd:2d:6e:71:d8:92:45:fd:28:56:f6:11:f4:8f: 6e:f2:c4:5b:44:ee:af:65:de:8c:29:c9:60:7b:8b: 34:02:a0:82:3d:c8:c7:e8:0a:b6:ce:0e:be:fe:3e: 7e:d9:53:12:6e:f7:28:e4:2c:c3:f7:74:a9:68:51: 34:28:09:56:69:1e:7c:cb:b2:e9:dc:2b:11:3e:55: 0e:e0:85:d3:da:fd:00:3a:a9:95:6f:4c:0c:7b:49: 64:0c:67:45:96:26:e8:5f:b3:46:d7:95:a1:2d:fb: 44:4c:70:a5:a1:87:63:69:c8:ea:d9:40:a9:68:ab: fe:6f:be:77:07:a9:a5:54:fb:75:0e:b1:74:77:76: d1:81:51:ef:d3:41:0a:94:72:6d:07:04:68:1b:b8: c0:bd:d9:6a:cd:c3:14:a2:43:7e:5e:60:30:df:57: 08:5c:97:b4:ff:23:cf:1d:2d:72:1f:7b:ef:3b:67: d9:2c:fe:56:de:55:7c:76:5d:9f:60:8a:86:88:71: 13:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CB:35:80:36:C2:73:AB:0A:25:50:12:57:3E:ED:1D:E3:47:3C:9B X509v3 Authority Key Identifier: keyid:66:E6:F6:F8:FD:CE:3D:95:4A:77:E5:B0:A3:E2:50:CC:26:2E:5D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:efc0::/48 Signature Algorithm: sha256WithRSAEncryption 15:df:66:1b:4f:cb:c0:8b:0d:8f:fe:d8:ca:f3:ec:b7:32:4b: de:a8:87:27:13:34:52:c5:60:38:82:31:fb:ea:bb:29:fa:17: 9a:7d:2f:03:83:18:72:d6:e5:b3:c8:a5:2c:2f:c1:cb:55:10: 31:0c:ea:f6:6a:3c:67:cc:5f:e6:23:4c:f7:7c:7d:e3:0f:39: b2:fe:cb:8f:af:61:bf:f0:a4:1d:26:2a:a7:f2:28:ee:8f:56: 66:9d:28:9d:95:b7:63:f6:24:1f:19:ef:5f:ec:ad:fd:e2:79: a8:b1:d9:da:e7:25:08:b3:4f:48:cf:8e:83:b1:6e:74:f9:da: 75:aa:18:48:68:a6:43:32:1f:da:0c:9b:e0:cb:0c:34:8f:78: 05:44:ea:e6:5a:a4:43:41:cb:2d:cd:3f:d5:b8:11:f2:c1:c7: 2f:91:5c:35:0e:99:9f:0a:bf:94:29:4f:a7:e1:95:fd:6f:9e: 3b:21:62:b4:fc:9c:ac:5f:d7:ae:3e:c5:a7:64:5f:1d:6e:23: db:67:74:c4:43:31:44:0f:99:d7:84:6b:60:0d:bd:2f:ed:f7: 53:8b:70:49:0b:a6:2d:8f:7a:98:51:31:1e:19:4e:fc:2a:b3: 61:ff:fb:0d:08:94:4a:19:b4:dc:15:d6:cb:4f:86:02:4c:d8: 41:66:59:0b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQzYxMTAvBgNVBAUTKDY2RTZGNkY4RkRDRTNEOTU0QTc3RTVCMEEzRTI1MEND MjYyRTVENUQwHhcNMjQwMTAzMDU0NjM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ZjRiYi0yMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonsgHe2gj8vcELVSQKdcpSoeFIYL0FbIokmPWv8oha6q8SzNbceWaS0oPdqh FGBq0rmMJQXXD9eEejLzvS1ucdiSRf0oVvYR9I9u8sRbRO6vZd6MKclge4s0AqCC PcjH6Aq2zg6+/j5+2VMSbvco5CzD93SpaFE0KAlWaR58y7Lp3CsRPlUO4IXT2v0A OqmVb0wMe0lkDGdFliboX7NG15WhLftETHCloYdjacjq2UCpaKv+b753B6mlVPt1 DrF0d3bRgVHv00EKlHJtBwRoG7jAvdlqzcMUokN+XmAw31cIXJe0/yPPHS1yH3vv O2fZLP5W3lV8dl2fYIqGiHETIQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAnLNYA2 wnOrCiVQElc+7R3jRzybMB8GA1UdIwQYMBaAFGbm9vj9zj2VSnflsKPiUMwmLl1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZDNi8xRDlGM0UwOEE3 NjExMUVEOTgyNDIyNTJDNEY5QUUwMi9adWIyLVAzT1BaVktkLVd3by1KUXpDWXVY VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1YjItUDNPUFpWS2QtV3dvLUpRekNZdVhWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBGQzYvMUQ5RjNFMDhBNzYxMTFFRDk4MjQyMjUyQzRGOUFFMDIvRjU0ODM3OTYz MUEwMTFFRTlGOUQwRDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3x78AwDQYJKoZIhvcNAQELBQADggEBABXfZhtPy8CL DY/+2Mrz7LcyS96ohycTNFLFYDiCMfvquyn6F5p9LwODGHLW5bPIpSwvwctVEDEM 6vZqPGfMX+YjTPd8feMPObL+y4+vYb/wpB0mKqfyKO6PVmadKJ2Vt2P2JB8Z71/s rf3ieaix2drnJQizT0jPjoOxbnT52nWqGEhopkMyH9oMm+DLDDSPeAVE6uZapENB yy3NP9W4EfLBxy+RXDUOmZ8Kv5QpT6fhlf1vnjshYrT8nKxf164+xadkXx1uI9tn dMRDMUQPmdeEa2ANvS/t91OLcEkLpi2PephRMR4ZTvwqs2H/+w0IlEoZtNwV1stP hgJM2EFmWQs= -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:11 2024 by rpki-client on console-ams.rpki-client.org