$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa File: 66287F98AE4711EE8C130419C4F9AE02.roa (raw, json) Hash identifier: PyHDxWHAQBRstEaBQGKJKU4xDLvrnmfCe4ocdyC+br0= Subject key identifier: 0F:97:D6:C3:7F:E8:72:04:AE:8B:B2:76:CD:D5:DB:41:C5:C7:C4:38 Certificate issuer: /CN=A913AF6A/serialNumber=B54CC4EF8688BAD60A935B52D4115637894E2337 Certificate serial: 02 Authority key identifier: B5:4C:C4:EF:86:88:BA:D6:0A:93:5B:52:D4:11:56:37:89:4E:23:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa Signing time: Mon 08 Jan 2024 17:00:17 +0000 ROA not before: Mon 08 Jan 2024 17:00:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 152305 IP address blocks: 2001:df3:5540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.crl rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A/serialNumber=B54CC4EF8688BAD60A935B52D4115637894E2337 Validity Not Before: Jan 8 17:00:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659c2a21-9096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:8b:bf:b9:cc:46:0b:8e:8f:30:db:21:37: b4:74:13:f3:d0:18:91:da:aa:6e:60:e0:98:f6:c4: f5:70:24:69:41:91:82:13:8e:3c:b3:56:be:3d:06: 4c:b8:a7:81:d5:75:21:25:f9:56:a1:0a:26:29:99: 41:9a:e9:b7:76:d1:1a:f2:f3:95:7b:2b:1e:04:fd: f6:6f:33:74:e0:6e:1f:dd:32:5a:77:f9:69:17:a8: f8:bc:36:7b:7c:56:de:5f:05:e3:83:93:8e:e8:4a: ec:ed:c8:22:53:1d:59:4d:fa:b1:c0:19:84:ec:16: 89:7a:9b:6d:d8:ac:a2:75:61:55:0c:a9:2c:51:74: af:28:db:da:5e:49:0b:7b:ef:57:40:c2:65:b2:b1: 85:48:2f:8f:e3:56:ba:0d:eb:28:80:21:77:7f:ff: fd:60:23:0e:83:56:e3:50:a8:9c:86:13:2d:a4:4c: 26:46:ab:9b:3c:c7:39:18:17:f5:67:3a:4f:84:91: cd:12:6c:d6:88:71:02:ac:96:d5:b0:fd:38:35:9d: e3:bf:53:ec:a6:02:eb:db:3c:25:54:e2:55:a9:8a: b1:d4:c9:8f:97:78:42:e8:8e:10:1b:ac:0c:43:b1: 4f:21:64:43:d2:e6:78:a3:ae:09:a9:2b:84:35:0f: 2e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:97:D6:C3:7F:E8:72:04:AE:8B:B2:76:CD:D5:DB:41:C5:C7:C4:38 X509v3 Authority Key Identifier: keyid:B5:4C:C4:EF:86:88:BA:D6:0A:93:5B:52:D4:11:56:37:89:4E:23:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5540::/48 Signature Algorithm: sha256WithRSAEncryption 8f:12:dc:2e:f0:16:6d:9c:75:c1:cf:03:1e:56:ff:30:90:d9: 84:2a:ef:f3:ec:c6:49:73:7e:e0:3b:e9:58:e5:e3:0f:aa:8a: 81:b0:8b:ae:c3:a0:c2:0e:f1:29:64:24:69:59:8d:bd:e2:7b: 16:8a:50:38:e4:85:cf:eb:8c:f5:c7:33:68:e6:e3:ad:9a:c8: ab:e5:1e:17:fb:76:4c:c9:a0:c8:7a:0b:06:de:9c:85:cf:41: f0:96:15:5e:81:03:8f:24:f5:55:54:a6:f9:d6:39:18:9a:e3: f4:7a:b2:60:ba:f0:95:4f:44:c3:d3:e2:72:8c:4e:23:62:9c: 13:c6:a2:a3:5d:b6:3f:ee:a2:f5:7c:0e:34:df:5b:a4:e9:40: 68:c7:00:ae:a2:c9:72:19:65:39:d8:3a:df:48:a9:ee:dd:18: 4c:7c:97:0b:2a:ec:0e:c2:1e:64:e1:00:94:6d:30:c0:3e:f2: 4f:f7:5c:e1:c7:60:0f:1b:d3:e6:5d:85:2f:2d:79:0b:73:df: 66:51:13:91:0c:02:74:74:e6:32:85:5e:e1:7c:a0:f6:4e:b7: c5:a4:fe:05:70:83:e5:68:10:d0:3e:40:89:e8:39:b4:21:60: 51:cc:56:ca:bd:66:b9:f4:19:c0:b7:fa:fc:33:50:2e:5b:0a: d5:d6:6a:d3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUY2QTExMC8GA1UEBRMoQjU0Q0M0RUY4Njg4QkFENjBBOTM1QjUyRDQxMTU2Mzc4 OTRFMjMzNzAeFw0yNDAxMDgxNzAwMTdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWMyYTIxLTkwOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC56Iu/ucxGC46PMNshN7R0E/PQGJHaqm5g4Jj2xPVwJGlBkYITjjyzVr49Bky4 p4HVdSEl+VahCiYpmUGa6bd20Rry85V7Kx4E/fZvM3Tgbh/dMlp3+WkXqPi8Nnt8 Vt5fBeODk47oSuztyCJTHVlN+rHAGYTsFol6m23YrKJ1YVUMqSxRdK8o29peSQt7 71dAwmWysYVIL4/jVroN6yiAIXd///1gIw6DVuNQqJyGEy2kTCZGq5s8xzkYF/Vn Ok+Ekc0SbNaIcQKsltWw/Tg1neO/U+ymAuvbPCVU4lWpirHUyY+XeELojhAbrAxD sU8hZEPS5nijrgmpK4Q1Dy71AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUD5fWw3/o cgSui7J2zdXbQcXHxDgwHwYDVR0jBBgwFoAUtUzE74aIutYKk1tS1BFWN4lOIzcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRjZBLzhDNkRBQzc4QUU0 MjExRUVCRjY0REE2OUM0RjlBRTAyL3RVekU3NGFJdXRZS2sxdFMxQkZXTjRsT0l6 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFV6RTc0YUl1dFlLazF0UzFCRldONGxPSXpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84QzZEQUM3OEFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi82NjI4N0Y5OEFF NDcxMUVFOEMxMzA0MTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNVQDANBgkqhkiG9w0BAQsFAAOCAQEAjxLcLvAWbZx1 wc8DHlb/MJDZhCrv8+zGSXN+4DvpWOXjD6qKgbCLrsOgwg7xKWQkaVmNveJ7FopQ OOSFz+uM9cczaObjrZrIq+UeF/t2TMmgyHoLBt6chc9B8JYVXoEDjyT1VVSm+dY5 GJrj9HqyYLrwlU9Ew9PicoxOI2KcE8aio122P+6i9XwONN9bpOlAaMcArqLJchll Odg630ip7t0YTHyXCyrsDsIeZOEAlG0wwD7yT/dc4cdgDxvT5l2FLy15C3PfZlET kQwCdHTmMoVe4Xyg9k63xaT+BXCD5WgQ0D5Aieg5tCFgUcxWyr1mufQZwLf6/DNQ LlsK1dZq0w== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org