$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa File: D09FF69C48AD11EBA15A3A26C4F9AE02.roa (raw, json) Hash identifier: FvlYc70hb+xS0sOoQLbKCLWABymzCJ/0dVnvGQM/gl8= Subject key identifier: 78:5E:A7:54:BB:0B:C6:82:BC:CE:7A:1A:79:09:5E:44:C4:A2:5A:03 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2830 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:18 +0000 ROA not before: Thu 28 Dec 2023 16:03:18 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38899 IP address blocks: 2405:9800:c91f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10288 (0x2830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:18 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c46-ef4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9a:41:6e:5d:68:82:2f:2c:85:0f:ad:2b:92: 90:cb:43:16:1e:05:db:6a:e7:54:c1:33:d8:6f:f2: 32:82:bd:1f:38:33:7a:a5:c5:c0:9f:a0:6e:f8:8b: 82:c7:bd:72:09:67:57:11:fe:f8:95:03:63:13:27: 0a:76:eb:13:7d:bd:dc:cc:05:38:07:fe:5f:d3:7b: 85:81:7d:25:74:a6:e3:ce:9d:a8:11:98:71:97:82: 68:18:96:dd:6c:d0:38:f1:28:b6:ee:77:7c:53:11: 7f:2a:1e:48:41:2b:34:c1:fb:01:9c:9b:b4:41:a2: b7:6e:a1:23:af:53:c8:d3:cd:bb:9d:76:2d:f0:d9: 0f:d3:fe:1a:55:a8:b5:c0:f2:22:91:e9:aa:33:03: 0b:00:b0:62:97:b1:d7:df:d6:d5:be:46:ff:de:49: e7:ab:0d:a2:08:9b:b1:6d:0b:49:23:8c:85:8e:65: c4:93:4a:29:de:f4:c5:50:76:22:b5:24:30:04:14: 5b:1a:37:20:28:be:2d:1e:f2:fb:8f:ad:c8:b1:42: 76:53:aa:9d:43:f9:63:c3:42:ef:eb:61:a9:dc:0b: 41:cd:be:a5:48:bf:c4:70:47:83:77:06:2c:9d:75: ca:67:0e:3e:ef:5e:46:84:72:dc:75:b9:a2:77:12: 82:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:5E:A7:54:BB:0B:C6:82:BC:CE:7A:1A:79:09:5E:44:C4:A2:5A:03 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9800:c91f::/48 Signature Algorithm: sha256WithRSAEncryption ba:0f:3c:12:cd:e0:a9:44:6f:d5:da:a5:f5:3f:84:de:3b:f3: e6:f3:76:89:19:ba:b5:a3:22:81:2d:c2:85:b0:d1:9f:82:1e: 15:62:a3:78:b6:e2:a8:66:54:f1:c0:f4:d0:f3:f4:15:91:f0: 38:1b:7a:cb:65:0e:cd:9e:85:50:16:34:6e:7d:13:70:36:36: 91:9a:96:df:04:68:9c:49:cd:22:32:07:f8:bb:39:04:e9:f5: 11:48:e9:28:de:4b:ce:ea:ee:b0:83:c3:30:77:2b:9a:d6:ad: d4:87:8e:04:d5:67:5a:d6:d0:49:d8:30:d0:e3:71:ef:46:31: 8a:87:70:a7:f0:65:df:b3:c0:42:53:3c:90:02:37:c8:b0:7e: 59:d8:78:39:67:14:cb:03:d1:05:fe:d7:c1:9b:f7:32:64:92: d0:79:c3:fb:1d:d4:11:9c:07:49:5a:e3:e1:e1:ab:95:f4:e0: 5c:f8:13:2f:cd:cf:f4:27:33:a1:84:26:fd:e0:95:ba:5d:54: ec:a4:1c:47:c2:a7:74:c6:f1:c7:24:f9:f3:02:b3:1d:55:74: be:d2:38:fe:e9:3f:bf:eb:3f:5f:f4:89:f6:32:64:d2:da:68: 9e:77:02:51:e7:8f:f8:14:b7:ba:c2:56:2c:a2:c6:48:cf:97: 83:f9:37:86 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzE4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWM0Ni1lZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyppBbl1ogi8shQ+tK5KQy0MWHgXbaudUwTPYb/Iygr0fODN6pcXAn6Bu+IuC x71yCWdXEf74lQNjEycKdusTfb3czAU4B/5f03uFgX0ldKbjzp2oEZhxl4JoGJbd bNA48Si27nd8UxF/Kh5IQSs0wfsBnJu0QaK3bqEjr1PI0827nXYt8NkP0/4aVai1 wPIikemqMwMLALBil7HX39bVvkb/3knnqw2iCJuxbQtJI4yFjmXEk0op3vTFUHYi tSQwBBRbGjcgKL4tHvL7j63IsUJ2U6qdQ/ljw0Lv62Gp3AtBzb6lSL/EcEeDdwYs nXXKZw4+715GhHLcdbmidxKCpQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHhep1S7 C8aCvM56GnkJXkTEoloDMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvRDA5RkY2OUM0 OEFEMTFFQkExNUEzQTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBZgAyR8wDQYJKoZIhvcNAQELBQADggEBALoPPBLN4KlE b9XapfU/hN478+bzdokZurWjIoEtwoWw0Z+CHhVio3i24qhmVPHA9NDz9BWR8Dgb estlDs2ehVAWNG59E3A2NpGalt8EaJxJzSIyB/i7OQTp9RFI6SjeS87q7rCDwzB3 K5rWrdSHjgTVZ1rW0EnYMNDjce9GMYqHcKfwZd+zwEJTPJACN8iwflnYeDlnFMsD 0QX+18Gb9zJkktB5w/sd1BGcB0la4+Hhq5X04Fz4Ey/Nz/QnM6GEJv3glbpdVOyk HEfCp3TG8cck+fMCsx1VdL7SOP7pP7/rP1/0ifYyZNLaaJ53AlHnj/gUt7rCViyi xkjPl4P5N4Y= -----END CERTIFICATE-----Generated at Fri May 31 17:44:22 2024 by rpki-client on console-fra.rpki-client.org