$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa File: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (raw, json) Hash identifier: FrIFGxVfxISPDp5twHCcyob4YmRoRTzks+oq4BVbGDE= Subject key identifier: 1F:99:00:EC:2D:7A:C2:3D:15:A8:30:BB:A5:A0:63:F6:58:5B:D8:74 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: D0 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa Signing time: Wed 01 Nov 2023 05:15:35 +0000 ROA not before: Wed 01 Nov 2023 05:15:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150314 IP address blocks: 2001:df1:48c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Nov 1 05:15:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541def6-9376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f3:37:2a:22:ff:71:6f:d4:46:e1:04:c3:79: c4:94:d5:df:3e:14:51:98:3b:8f:5c:4d:e6:67:6e: 56:23:d1:17:1b:28:f8:fe:f2:da:d5:27:f7:e7:1b: e6:1d:9d:ec:84:45:97:d2:d2:e7:bf:f5:5b:9d:49: 8b:10:df:ee:00:43:25:6e:ac:09:32:4d:7a:ea:60: dd:1b:36:d8:82:08:f7:03:fb:67:c9:9d:40:35:70: 48:73:ee:fc:43:8d:d9:74:ba:2b:6d:d7:52:3f:a7: fb:df:03:9f:e4:b9:3f:03:de:59:34:67:1a:41:b0: ab:c7:84:c3:b5:f6:eb:c3:df:19:70:1b:a7:7c:9c: c9:83:7a:a0:f6:23:91:f7:e7:cf:8c:8f:59:e7:d1: 91:dc:2f:b5:07:1b:f8:65:1f:de:90:76:3a:87:b6: 71:32:f5:98:80:2a:82:e5:87:08:a4:bc:9e:cc:df: d2:9e:df:28:2f:f6:0d:4e:5a:22:78:a3:d5:a6:f4: 12:e1:a8:a3:b3:52:26:b4:e3:d5:74:86:82:c1:11: db:1f:84:f1:93:c8:ba:d5:b1:8b:30:86:78:68:76: be:7d:72:04:14:5c:24:73:58:e3:4d:2d:00:83:80: 1d:b1:70:ce:3a:b7:ba:3d:3a:93:4f:c2:01:90:23: 39:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:99:00:EC:2D:7A:C2:3D:15:A8:30:BB:A5:A0:63:F6:58:5B:D8:74 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3F2E65045F0811EDB42DC97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:48c0::/48 Signature Algorithm: sha256WithRSAEncryption 27:3e:cc:23:02:ec:fb:2e:1a:c7:8a:95:4d:7d:c4:08:85:da: 4b:6a:f9:0e:fe:9a:61:37:e1:93:95:c0:65:7d:9f:93:0c:e0: 3c:68:e7:9e:6f:62:ab:c4:e6:0f:62:06:55:95:43:62:dc:b2: 8e:bc:2e:49:00:47:c6:28:98:ec:d0:b4:cf:94:28:7e:ad:5f: 30:19:97:3d:fc:94:10:e0:8a:dd:00:e6:2f:87:62:56:f3:25: 24:ba:14:3a:fa:8f:f9:59:35:33:b2:40:20:6d:a5:ac:47:ae: 59:c2:59:cd:8a:ee:37:a9:c8:7b:4a:d9:ed:f6:70:ac:21:43: 23:08:4a:e1:fe:51:72:77:fa:55:05:62:87:d1:07:a8:ab:8a: 8e:db:d3:93:a2:54:1e:e3:66:85:6b:49:86:9d:87:4d:b9:1c: d1:d3:af:f3:a6:22:73:93:53:5d:00:87:2c:b8:7d:bb:c9:83: 40:03:b3:ca:54:6a:e7:45:94:eb:15:f4:eb:d4:dd:8c:c9:2f: 37:f9:20:8e:bc:90:cb:5b:fd:66:82:3b:34:c6:b3:84:50:c8: e9:01:d5:54:5a:88:eb:23:e6:7d:35:5b:d4:d5:dd:d3:0b:7e: e1:20:db:28:7a:3c:8f:e7:8a:74:67:8b:55:45:0f:7e:8e:4d: cb:7e:4d:32 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjMxMTAxMDUxNTM1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxZGVmNi05Mzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPM3KiL/cW/URuEEw3nElNXfPhRRmDuPXE3mZ25WI9EXGyj4/vLa1Sf35xvm HZ3shEWX0tLnv/VbnUmLEN/uAEMlbqwJMk166mDdGzbYggj3A/tnyZ1ANXBIc+78 Q43ZdLorbddSP6f73wOf5Lk/A95ZNGcaQbCrx4TDtfbrw98ZcBunfJzJg3qg9iOR 9+fPjI9Z59GR3C+1Bxv4ZR/ekHY6h7ZxMvWYgCqC5YcIpLyezN/Snt8oL/YNTloi eKPVpvQS4aijs1ImtOPVdIaCwRHbH4Txk8i61bGLMIZ4aHa+fXIEFFwkc1jjTS0A g4AdsXDOOre6PTqTT8IBkCM5uwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB+ZAOwt esI9Fagwu6WgY/ZYW9h0MB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBMjcvNkE4QkQwOEM0NDZGMTFFRDkwOTVENTY1QzRGOUFFMDIvM0YyRTY1MDQ1 RjA4MTFFREI0MkRDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xSMAwDQYJKoZIhvcNAQELBQADggEBACc+zCMC7Psu GseKlU19xAiF2ktq+Q7+mmE34ZOVwGV9n5MM4Dxo555vYqvE5g9iBlWVQ2Lcso68 LkkAR8YomOzQtM+UKH6tXzAZlz38lBDgit0A5i+HYlbzJSS6FDr6j/lZNTOyQCBt paxHrlnCWc2K7jepyHtK2e32cKwhQyMISuH+UXJ3+lUFYofRB6irio7b05OiVB7j ZoVrSYadh025HNHTr/OmInOTU10Ahyy4fbvJg0ADs8pUaudFlOsV9OvU3YzJLzf5 II68kMtb/WaCOzTGs4RQyOkB1VRaiOsj5n01W9TV3dMLfuEg2yh6PI/ninRni1VF D36OTct+TTI= -----END CERTIFICATE-----Generated at Sun May 19 06:14:32 2024 by rpki-client on console-ams.rpki-client.org