$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa File: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (raw, json) Hash identifier: OhqDhJNYyh/Ij4by8iVRRpEdPI8QIOFmgsaKvq1JzAE= Subject key identifier: C2:19:BA:4C:9A:D6:2A:17:BD:0F:71:37:9B:A6:20:76:3B:C6:79:D0 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0196 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa Signing time: Mon 09 Oct 2023 06:27:43 +0000 ROA not before: Mon 09 Oct 2023 06:27:43 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 150180 IP address blocks: 2001:df0:ddc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Oct 9 06:27:43 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65239d5e-7695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ed:06:ea:79:23:bc:42:fd:79:6d:fb:23:75: 2c:4d:a6:bc:73:41:ae:cc:ed:1a:20:67:22:0c:02: 95:6b:a3:5a:cc:f9:6b:18:42:f0:b0:46:75:96:fb: cc:4d:ff:bb:72:5b:bd:5a:95:15:31:39:13:7e:45: ed:77:e1:44:4c:e6:8b:46:d7:48:51:b1:a0:e0:85: 3d:67:66:dc:df:1e:36:ca:9e:0f:0a:d4:09:ec:5c: fc:b1:11:b8:c9:8d:be:c7:d4:0d:1e:fd:9c:e4:5f: 55:25:a0:04:bf:eb:c9:d1:63:ce:3f:af:3f:d9:74: 38:51:de:e5:2a:e7:d4:13:c6:59:fe:81:21:29:d0: 0b:45:dc:09:b5:88:ce:fa:05:73:ae:a0:c0:62:a7: 96:19:ec:16:3d:0f:c5:4c:81:90:e6:12:2c:28:ef: 09:a2:e6:70:36:39:04:37:29:37:94:53:16:1c:17: 69:bc:ba:5e:ab:db:fd:50:5e:ad:db:24:8d:76:0d: b9:aa:59:30:01:82:2d:7e:7b:36:de:04:d0:9b:9c: 76:d2:8e:14:05:4d:c0:3d:2b:53:ed:61:2e:47:fa: 01:db:cb:ea:43:71:ea:23:aa:a9:33:fe:ac:13:1f: 77:10:0e:56:85:ba:17:9c:df:35:b2:61:aa:b9:e4: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:19:BA:4C:9A:D6:2A:17:BD:0F:71:37:9B:A6:20:76:3B:C6:79:D0 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/F3B00CD2666C11EEB1B4711CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:ddc0::/48 Signature Algorithm: sha256WithRSAEncryption 0e:35:7c:0c:4f:ea:62:2f:56:5a:ab:52:30:cb:69:b3:7f:a9: 2a:a1:c5:a7:29:ad:58:ca:ae:3e:9a:93:06:f0:21:61:dc:f2: 56:8e:72:f4:c1:8e:cd:65:18:dc:e4:35:20:16:35:cd:f1:2b: 32:59:56:22:86:74:4c:e5:56:a2:b7:b7:b8:28:80:ab:6c:ed: 8a:23:83:87:b9:67:9c:92:4a:d6:d6:57:32:8a:4b:39:31:fd: ad:92:d8:eb:ee:4b:e2:4d:ab:a3:58:93:e5:bc:68:92:53:c5: fb:e0:30:54:71:94:e8:bc:25:0e:97:27:b2:1d:c5:f6:ce:1c: 35:13:0c:68:be:8f:bb:63:78:e3:02:69:a1:ae:48:d6:3b:49: e7:3e:0f:8e:3c:71:ed:55:e9:c5:bb:07:de:52:55:a0:c2:ed: 1a:fb:9c:0b:ba:26:51:cb:04:a0:cc:64:a0:a0:59:6b:cd:33: 42:17:c3:fb:77:11:67:52:9a:b0:15:ed:4f:db:4b:a8:62:e8: ad:cf:dd:25:b2:5d:81:39:f0:e4:a8:c1:1e:f8:e2:71:bd:bb: ed:ca:b4:90:a6:5c:93:87:4b:f8:31:ac:32:92:9f:ab:57:26: c0:f9:b5:c6:11:51:62:54:e3:a0:c4:e1:67:1b:aa:38:d0:ec: 71:9e:9e:4f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjMxMDA5MDYyNzQzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIzOWQ1ZS03Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye0G6nkjvEL9eW37I3UsTaa8c0GuzO0aIGciDAKVa6NazPlrGELwsEZ1lvvM Tf+7clu9WpUVMTkTfkXtd+FETOaLRtdIUbGg4IU9Z2bc3x42yp4PCtQJ7Fz8sRG4 yY2+x9QNHv2c5F9VJaAEv+vJ0WPOP68/2XQ4Ud7lKufUE8ZZ/oEhKdALRdwJtYjO +gVzrqDAYqeWGewWPQ/FTIGQ5hIsKO8JouZwNjkENyk3lFMWHBdpvLpeq9v9UF6t 2ySNdg25qlkwAYItfns23gTQm5x20o4UBU3APStT7WEuR/oB28vqQ3HqI6qpM/6s Ex93EA5WhboXnN81smGqueRfqwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMIZukya 1ioXvQ9xN5umIHY7xnnQMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCRTUvNjExQzUxMkNGMEYzMTFFQzg0QjI5QzgwQzRGOUFFMDIvRjNCMDBDRDI2 NjZDMTFFRUIxQjQ3MTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3w3cAwDQYJKoZIhvcNAQELBQADggEBAA41fAxP6mIv VlqrUjDLabN/qSqhxacprVjKrj6akwbwIWHc8laOcvTBjs1lGNzkNSAWNc3xKzJZ ViKGdEzlVqK3t7gogKts7Yojg4e5Z5ySStbWVzKKSzkx/a2S2OvuS+JNq6NYk+W8 aJJTxfvgMFRxlOi8JQ6XJ7IdxfbOHDUTDGi+j7tjeOMCaaGuSNY7Sec+D448ce1V 6cW7B95SVaDC7Rr7nAu6JlHLBKDMZKCgWWvNM0IXw/t3EWdSmrAV7U/bS6hi6K3P 3SWyXYE58OSowR744nG9u+3KtJCmXJOHS/gxrDKSn6tXJsD5tcYRUWJU46DE4Wcb qjjQ7HGenk8= -----END CERTIFICATE-----Generated at Fri May 17 06:18:03 2024 by rpki-client on console-fra.rpki-client.org