$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa File: 5F652B164A0311EC84EFD42FC4F9AE02.roa (raw, json) Hash identifier: 35+QxJm9RFYDqjRpIoivBHkqNPl0lh0c+3NXYE1k3q8= Subject key identifier: AC:63:1E:6D:67:DB:39:F3:BA:8F:75:B8:65:3A:7F:50:4B:E6:E8:5E Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 03FE Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa Signing time: Thu 31 Aug 2023 01:13:17 +0000 ROA not before: Thu 31 Aug 2023 01:13:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38323 IP address blocks: 2001:df7:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Aug 31 01:13:17 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64efe92d-a62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:46:01:f8:6d:95:f2:f7:9e:27:3f:78:51:a5: c9:f0:de:e2:24:a5:a4:a4:f6:68:bb:c0:2c:90:54: 31:09:a5:7a:4d:15:30:dc:1e:c1:53:a6:c1:34:2d: 84:af:2f:17:cf:53:cd:0d:bf:a7:af:f6:0b:3f:5b: 99:f8:aa:fd:04:b9:42:9f:59:7e:39:4c:11:d6:d1: 8c:d9:32:5e:a6:21:a8:65:c7:f5:f2:d5:7b:a3:f5: c1:15:80:6d:52:36:ac:85:40:13:48:7b:aa:ec:94: 68:2a:a3:84:d5:b5:3c:bc:76:be:dd:c8:83:76:25: 5e:59:94:d1:82:36:30:f0:b4:fd:3c:7c:53:ff:cf: 93:97:84:b6:73:6b:aa:69:07:44:16:cd:64:f7:d4: 68:b8:51:2f:1e:2e:35:4c:da:99:dd:03:fc:3c:f6: 74:c6:af:1a:af:3e:08:cc:67:1d:72:10:0f:78:7f: 8e:8a:61:04:22:80:82:f4:43:95:72:2d:32:b7:1e: 03:22:c6:91:f6:81:a4:23:69:16:71:40:7f:8e:aa: 9d:9a:c8:ee:91:2c:1c:0a:1a:29:08:73:4b:80:90: 30:09:5e:da:12:75:21:1e:db:63:01:4c:75:67:a0: 74:db:09:b5:87:9e:48:a6:54:9f:e2:8c:4a:98:b6: c9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:63:1E:6D:67:DB:39:F3:BA:8F:75:B8:65:3A:7F:50:4B:E6:E8:5E X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:1480::/48 Signature Algorithm: sha256WithRSAEncryption 29:53:04:0a:28:31:6b:5f:d4:b3:ac:b2:e1:cf:bd:31:37:c0: 4e:17:60:46:50:e2:7d:9b:cf:8e:c0:09:4e:f7:71:2b:19:2f: d1:80:9e:b5:72:df:ba:fe:ee:04:57:72:1c:b1:1a:16:a0:8b: 30:f4:b2:3e:ac:07:d8:78:5d:bd:c5:d9:1b:5e:56:aa:ee:ef: 6f:c3:33:a6:77:93:8e:8d:67:29:f4:a8:d5:0b:e6:4d:30:51: 44:71:56:60:49:3a:37:5a:4f:ac:95:11:25:6c:cb:e9:df:80: 75:ec:04:60:54:06:3b:5e:52:90:67:f7:29:5a:f4:10:eb:1b: 12:87:5e:c0:b0:1a:e1:58:3f:f2:c2:44:e1:f9:24:1b:90:db: 11:81:75:2d:0a:8a:3c:95:d3:cf:8f:ab:97:75:8b:ea:31:08: 1e:4e:4a:b0:d0:1e:02:4e:65:a8:2c:a5:9c:6b:1e:27:af:f8: 69:43:4f:2b:23:20:ba:29:2a:b9:e4:84:a8:8d:9c:bb:1d:29: 52:85:09:b1:9f:84:22:33:59:c2:ec:cf:dc:14:15:b5:81:61: 6b:db:3a:06:42:84:4c:d1:13:ff:32:ca:50:e2:d7:3f:8b:87: 48:e1:6e:05:8a:74:91:0c:95:0a:fd:8d:ea:3e:96:1b:25:5d: 14:f2:46:82 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjMwODMxMDExMzE3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmZTkyZC1hNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20YB+G2V8veeJz94UaXJ8N7iJKWkpPZou8AskFQxCaV6TRUw3B7BU6bBNC2E ry8Xz1PNDb+nr/YLP1uZ+Kr9BLlCn1l+OUwR1tGM2TJepiGoZcf18tV7o/XBFYBt UjashUATSHuq7JRoKqOE1bU8vHa+3ciDdiVeWZTRgjYw8LT9PHxT/8+Tl4S2c2uq aQdEFs1k99RouFEvHi41TNqZ3QP8PPZ0xq8arz4IzGcdchAPeH+OimEEIoCC9EOV ci0ytx4DIsaR9oGkI2kWcUB/jqqdmsjukSwcChopCHNLgJAwCV7aEnUhHttjAUx1 Z6B02wm1h55IplSf4oxKmLbJtwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKxjHm1n 2znzuo91uGU6f1BL5uheMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvNUY2NTJCMTY0 QTAzMTFFQzg0RUZENDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33FIAwDQYJKoZIhvcNAQELBQADggEBAClTBAooMWtf 1LOssuHPvTE3wE4XYEZQ4n2bz47ACU73cSsZL9GAnrVy37r+7gRXchyxGhagizD0 sj6sB9h4Xb3F2RteVqru72/DM6Z3k46NZyn0qNUL5k0wUURxVmBJOjdaT6yVESVs y+nfgHXsBGBUBjteUpBn9yla9BDrGxKHXsCwGuFYP/LCROH5JBuQ2xGBdS0KijyV 08+Pq5d1i+oxCB5OSrDQHgJOZagspZxrHiev+GlDTysjILopKrnkhKiNnLsdKVKF CbGfhCIzWcLsz9wUFbWBYWvbOgZChEzRE/8yylDi1z+Lh0jhbgWKdJEMlQr9jeo+ lhslXRTyRoI= -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:59 2024 by rpki-client on console-fra.rpki-client.org