$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa File: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (raw, json) Hash identifier: 7Agv1/JySUrEu/AR9TTNeoR37zqqidCo+E0dFtw8QQ8= Subject key identifier: A2:7C:FB:28:8F:E7:D7:F0:20:09:41:7C:64:51:49:0B:DF:EA:42:5F Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0872 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa Signing time: Fri 02 Jun 2023 22:34:04 +0000 ROA not before: Fri 02 Jun 2023 22:34:04 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132586 IP address blocks: 2400:6100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Jun 2 22:34:04 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a6e5b-43b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:40:a5:32:d8:37:43:e8:05:8f:b4:52:73:17: 61:06:86:25:73:17:76:48:79:25:71:b9:ae:72:14: 25:75:d4:22:a0:f6:09:65:31:33:81:a3:fb:f2:9c: 1a:b8:27:df:c0:52:ca:be:4f:8c:c4:ff:13:72:85: 6c:48:0c:db:d3:4d:14:4b:14:2d:8d:c9:ea:8f:64: 20:69:3b:2b:2e:76:d3:bf:d1:5c:20:2a:8d:0b:b8: 1d:20:cf:c4:62:b9:1d:66:82:91:86:b2:81:af:7f: e6:7d:cd:19:d8:cb:25:3f:08:e3:d0:78:7e:cb:ca: ee:3b:8c:a1:37:89:3d:16:c4:0e:0c:3a:9c:2b:62: 25:61:6c:fb:4b:86:54:9e:1a:03:c5:ce:32:2c:bb: fb:fa:98:bb:d8:7f:9a:2e:4c:68:8d:63:c4:58:68: bd:72:d8:40:af:7f:cc:3f:81:ff:50:da:41:e3:e2: 4e:5e:03:30:bb:ec:94:c8:f6:be:5c:bc:8e:12:5c: ae:98:c6:f8:e0:3f:1a:24:55:df:e2:f5:a4:62:29: b7:2e:9a:61:a4:ad:37:cb:27:b7:80:7c:65:d1:62: 42:3b:2e:b0:97:f5:9c:7a:0d:3b:44:28:74:a8:5d: bd:a6:5b:00:6c:5d:b4:a4:5c:49:65:c7:11:4f:6d: 94:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7C:FB:28:8F:E7:D7:F0:20:09:41:7C:64:51:49:0B:DF:EA:42:5F X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/5A472FBA026F11EDBE22EF64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6100::/32 Signature Algorithm: sha256WithRSAEncryption 08:61:a1:68:d5:b0:c7:46:f9:1f:83:94:0e:62:91:06:c8:c2: 38:50:54:93:c3:b4:7f:70:53:c2:b6:74:91:48:47:bf:40:5f: 00:06:98:db:ed:c8:87:c0:b2:4b:68:dc:8e:de:41:8c:59:de: 1b:2f:2d:b7:36:66:d8:b6:a0:c5:f6:f7:75:f0:39:93:44:b7: 56:29:e4:05:25:bb:dd:cd:cf:01:ba:16:6a:d9:d5:4b:4e:43: 4c:d0:6a:0a:75:6b:26:6c:ab:37:58:ab:a4:ac:6b:5b:cb:92: ef:13:4d:4c:8a:11:d7:1b:e4:d4:18:5b:2a:3a:05:06:95:b9: 6b:07:7b:a1:52:f6:e3:dd:0a:32:57:a1:37:65:e0:0e:10:21: b4:de:b5:73:d9:6c:36:42:64:ca:85:5b:a9:71:6a:61:06:32: c1:05:87:33:f3:e7:49:ce:6f:02:eb:96:c4:9f:da:52:e6:68: 6a:99:44:ee:90:aa:5a:0c:dd:a6:f5:4b:d4:8c:f5:ee:b6:f4: eb:41:c9:d9:52:d9:45:c5:91:0b:e1:fe:fa:77:38:a2:42:1b: 5f:0d:8f:01:47:46:15:48:12:e8:b6:02:1b:59:96:77:c6:25: 73:3b:63:8b:e0:4f:16:7a:79:74:e5:c3:49:50:3f:71:85:f7: 8e:74:e1:31 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjMwNjAyMjIzNDA0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNmU1Yi00M2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEClMtg3Q+gFj7RScxdhBoYlcxd2SHklcbmuchQlddQioPYJZTEzgaP78pwa uCffwFLKvk+MxP8TcoVsSAzb000USxQtjcnqj2QgaTsrLnbTv9FcICqNC7gdIM/E YrkdZoKRhrKBr3/mfc0Z2MslPwjj0Hh+y8ruO4yhN4k9FsQODDqcK2IlYWz7S4ZU nhoDxc4yLLv7+pi72H+aLkxojWPEWGi9cthAr3/MP4H/UNpB4+JOXgMwu+yUyPa+ XLyOElyumMb44D8aJFXf4vWkYim3LpphpK03yye3gHxl0WJCOy6wl/Wceg07RCh0 qF29plsAbF20pFxJZccRT22UPwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKJ8+yiP 59fwIAlBfGRRSQvf6kJfMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAzNUEvM0M2MDlCNDQ3QzY2MTFFQTgwODlGMzUxQzRGOUFFMDIvNUE0NzJGQkEw MjZGMTFFREJFMjJFRjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAGEAMA0GCSqGSIb3DQEBCwUAA4IBAQAIYaFo1bDHRvkf g5QOYpEGyMI4UFSTw7R/cFPCtnSRSEe/QF8ABpjb7ciHwLJLaNyO3kGMWd4bLy23 NmbYtqDF9vd18DmTRLdWKeQFJbvdzc8BuhZq2dVLTkNM0GoKdWsmbKs3WKukrGtb y5LvE01MihHXG+TUGFsqOgUGlblrB3uhUvbj3QoyV6E3ZeAOECG03rVz2Ww2QmTK hVupcWphBjLBBYcz8+dJzm8C65bEn9pS5mhqmUTukKpaDN2m9UvUjPXutvTrQcnZ UtlFxZEL4f76dziiQhtfDY8BR0YVSBLotgIbWZZ3xiVzO2OL4E8Wenl05cNJUD9x hfeOdOEx -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org