$ rpki-client -vvf rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa File: 417DA2566D5E11EE831C802AC4F9AE02.roa (raw, json) Hash identifier: i7wRWkvg7vS6wr4a7kGEzT/c0WRahwhqZQnRfyjAoJ0= Subject key identifier: 97:40:A9:6C:DC:E8:21:1B:C6:02:50:55:79:AF:04:F4:35:0E:8E:2F Certificate issuer: /CN=A911BE38/serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Certificate serial: D8 Authority key identifier: B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa Signing time: Sun 03 Dec 2023 04:35:19 +0000 ROA not before: Sun 03 Dec 2023 04:35:19 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132857 IP address blocks: 2001:df3:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BE38/serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Validity Not Before: Dec 3 04:35:19 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656c0587-0d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:74:ed:69:f0:79:fd:75:2a:f2:5f:c9:f5:19: 3c:ed:f4:16:b2:da:a2:8b:41:25:9c:1c:87:ff:5a: 8e:c5:15:9d:90:ff:60:c0:b7:f5:01:a4:89:14:1c: 46:7b:ee:42:95:8f:3c:41:8f:a8:ec:47:a2:c9:d1: 11:cc:ca:0e:8b:6e:36:c0:2d:d2:38:65:37:86:32: d8:a7:91:ce:91:b6:38:d3:4c:df:3a:f0:0b:0b:b6: a3:95:1f:30:86:16:fe:6c:8d:fc:de:3f:15:82:25: 26:b7:b4:b9:f5:80:6e:fd:fc:e2:2c:94:3c:53:8b: e0:3f:c9:ae:37:d0:9f:a0:2b:ed:d4:e5:3b:01:19: d5:44:39:46:01:f1:9b:58:b5:81:db:0c:45:da:74: c8:37:67:e0:fe:d5:c1:ef:74:c0:25:24:26:dd:c0: f8:7b:03:e3:19:81:bb:18:91:b9:d1:ff:33:f8:32: fc:03:f0:f6:aa:e8:d7:f9:db:af:70:6c:be:41:54: a0:4d:c8:67:76:bf:dc:b9:63:86:b9:92:29:33:48: d0:46:1a:eb:f2:5c:d3:1c:5f:58:7d:f9:fd:1c:42: d3:53:49:f7:9c:f9:5f:20:ce:dd:b4:ca:3b:43:75: 12:ab:89:ea:27:aa:6e:82:bf:a2:8a:ed:01:30:ce: 04:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:40:A9:6C:DC:E8:21:1B:C6:02:50:55:79:AF:04:F4:35:0E:8E:2F X509v3 Authority Key Identifier: keyid:B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7c0::/48 Signature Algorithm: sha256WithRSAEncryption 11:e2:c5:12:76:2f:ee:6d:ed:f1:b5:bb:69:a7:08:30:d5:7e: 75:e9:60:3e:16:53:8e:66:91:0a:66:6f:56:20:df:cf:fa:1b: 62:fb:b6:c8:26:dc:f3:26:f1:f3:65:31:00:2c:f2:88:31:0a: a2:1c:0a:3b:0a:b5:45:28:c6:8b:44:58:b2:d9:59:55:86:10: 11:2a:94:2c:4d:c3:16:35:b2:5d:09:15:12:30:39:7c:67:ae: 11:4e:c5:7b:80:a6:e8:17:6b:e2:17:dc:8d:78:73:17:8a:c5: c2:46:fa:d9:6f:7c:f1:57:f9:8c:d9:80:10:b2:16:61:f0:1f: 3f:81:56:e0:ca:0e:00:d8:aa:a4:1d:3d:c1:e7:17:d2:cf:08: 76:a6:c2:d5:3f:2f:c5:4e:c3:61:51:83:6b:f8:cd:72:29:6a: 73:ae:dd:62:7f:8a:61:4b:12:1a:8a:f1:af:0a:f1:43:09:50: 3a:9c:d6:5a:a0:1b:36:06:98:d4:b4:93:6a:bd:d9:44:d8:0a: 63:dd:3f:10:c5:89:d6:11:42:00:c5:8b:fa:da:1b:61:a1:18: dc:00:0b:d7:21:97:5a:ca:2c:13:b2:da:bf:8e:4b:1b:d9:e0: 75:7a:bb:48:13:ae:0e:d7:5f:fc:91:a7:1c:93:cf:97:1a:6f: 90:77:70:35 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFMzgxMTAvBgNVBAUTKEIxOEM0Mzc0MzQ2NjkyMURCMDQyNUU3MzY3RDU1QzI4 RUU0QUYxQ0QwHhcNMjMxMjAzMDQzNTE5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMDU4Ny0wZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nTtafB5/XUq8l/J9Rk87fQWstqii0ElnByH/1qOxRWdkP9gwLf1AaSJFBxG e+5ClY88QY+o7EeiydERzMoOi242wC3SOGU3hjLYp5HOkbY400zfOvALC7ajlR8w hhb+bI383j8VgiUmt7S59YBu/fziLJQ8U4vgP8muN9CfoCvt1OU7ARnVRDlGAfGb WLWB2wxF2nTIN2fg/tXB73TAJSQm3cD4ewPjGYG7GJG50f8z+DL8A/D2qujX+duv cGy+QVSgTchndr/cuWOGuZIpM0jQRhrr8lzTHF9Yffn9HELTU0n3nPlfIM7dtMo7 Q3USq4nqJ6pugr+iiu0BMM4ETwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJdAqWzc 6CEbxgJQVXmvBPQ1Do4vMB8GA1UdIwQYMBaAFLGMQ3Q0ZpIdsEJec2fVXCjuSvHN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkUzOC82REEyRDlCMjU0 MUIxMUVEQkVCQTRBNTBDNEY5QUUwMi9zWXhEZERSbWtoMndRbDV6WjlWY0tPNUs4 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZeERkRFJta2gyd1FsNXpaOVZjS081SzhjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJFMzgvNkRBMkQ5QjI1NDFCMTFFREJFQkE0QTUwQzRGOUFFMDIvNDE3REEyNTY2 RDVFMTFFRTgzMUM4MDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zB8AwDQYJKoZIhvcNAQELBQADggEBABHixRJ2L+5t 7fG1u2mnCDDVfnXpYD4WU45mkQpmb1Yg38/6G2L7tsgm3PMm8fNlMQAs8ogxCqIc CjsKtUUoxotEWLLZWVWGEBEqlCxNwxY1sl0JFRIwOXxnrhFOxXuApugXa+IX3I14 cxeKxcJG+tlvfPFX+YzZgBCyFmHwHz+BVuDKDgDYqqQdPcHnF9LPCHamwtU/L8VO w2FRg2v4zXIpanOu3WJ/imFLEhqK8a8K8UMJUDqc1lqgGzYGmNS0k2q92UTYCmPd PxDFidYRQgDFi/raG2GhGNwAC9chl1rKLBOy2r+OSxvZ4HV6u0gTrg7XX/yRpxyT z5cab5B3cDU= -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org