$ rpki-client -vvf rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa File: 1CA2FA08D37711EC9A8FF526C4F9AE02.roa (raw, json) Hash identifier: MnZ4Y5WD+4CLTW5o0KbI1Mk1wuBOKOQZhJI4q+2ilYs= Subject key identifier: 3D:86:CD:FB:63:D1:6F:7A:F0:31:84:59:43:1F:AE:7D:24:C3:92:AC Certificate issuer: /CN=A914B758/serialNumber=AF55581BA127E2090A0A5462FE7BCE70616F2CDC Certificate serial: 01AF Authority key identifier: AF:55:58:1B:A1:27:E2:09:0A:0A:54:62:FE:7B:CE:70:61:6F:2C:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa Signing time: Wed 05 Jul 2023 02:51:44 +0000 ROA not before: Wed 05 Jul 2023 02:51:44 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 149830 IP address blocks: 2001:df0:bac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.crl rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B758/serialNumber=AF55581BA127E2090A0A5462FE7BCE70616F2CDC Validity Not Before: Jul 5 02:51:44 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a4dac0-9d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:28:7c:a3:c8:3c:79:40:1d:7c:df:1e:dc: f3:a2:11:ec:0e:22:87:ad:85:2f:45:5c:86:9a:e6: 69:b9:19:9d:31:47:3b:74:06:14:6f:d9:dd:c0:2e: a2:66:3f:ee:6d:7f:9e:9a:04:c4:bb:a2:05:ff:4f: 99:6f:f6:9d:3b:39:3e:2e:c0:c0:35:69:fe:99:de: cb:48:42:b2:f2:7f:ab:7e:ea:f8:34:31:c2:1a:01: 96:36:bd:e8:78:49:5d:6e:aa:30:4a:0a:ae:00:d5: 4d:9a:46:2e:6f:46:b0:b8:16:f7:d9:f4:f0:26:3d: 3c:4a:00:bc:38:0d:c2:33:da:7d:ab:a1:b6:24:44: 04:1c:04:22:e7:56:94:c7:5b:2e:d0:d7:7e:a5:17: 02:98:c9:31:f7:8d:c0:67:54:95:83:0c:90:ce:2b: 83:fc:b4:e7:35:36:7c:6e:7d:e2:31:7b:31:66:31: e5:0f:f3:21:f1:85:96:20:49:3e:00:43:a6:ab:3b: 80:e2:15:a1:fa:5e:29:f8:e4:f9:a8:7b:05:4b:18: d7:d6:be:58:26:62:e8:4d:b1:33:1d:30:7f:c2:14: fd:f1:78:e1:2a:19:2e:4d:25:d6:51:3a:0a:3d:5d: e0:8e:08:79:d8:21:a3:66:b3:40:08:82:f2:2f:90: 8f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:86:CD:FB:63:D1:6F:7A:F0:31:84:59:43:1F:AE:7D:24:C3:92:AC X509v3 Authority Key Identifier: keyid:AF:55:58:1B:A1:27:E2:09:0A:0A:54:62:FE:7B:CE:70:61:6F:2C:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/r1VYG6En4gkKClRi_nvOcGFvLNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1VYG6En4gkKClRi_nvOcGFvLNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B758/4C7A2868D36E11ECB2614453C4F9AE02/1CA2FA08D37711EC9A8FF526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:bac0::/48 Signature Algorithm: sha256WithRSAEncryption 71:42:10:b3:e2:c5:16:69:a8:bf:7b:87:32:b1:41:b5:ab:cc: f6:61:98:da:c3:f6:1b:e6:00:17:62:54:ce:7c:2e:74:a7:ad: f7:c3:f3:74:38:97:32:3e:ea:8b:ba:32:2a:34:cd:cd:d9:89: 8a:37:8c:c0:a6:d9:ac:ca:6a:47:02:46:d9:ff:50:a6:a9:42: 50:44:ea:b0:3f:92:3e:4f:8f:d1:81:ae:f9:51:d5:0f:4d:47: 7d:db:ff:bc:dc:32:f0:7f:16:a0:a0:12:36:75:91:48:dd:48: f5:9a:e9:07:69:16:4d:24:68:58:4b:34:58:e0:81:0b:a8:e2: d4:7e:6c:f1:a6:81:5a:83:15:02:c1:35:de:8a:13:c0:01:c4: 27:3e:15:60:f2:40:25:ff:8b:eb:52:0f:79:2a:c0:2c:69:e3: 39:24:64:9e:e9:23:56:b4:84:92:e3:09:1b:86:86:28:7f:e2: 6a:90:34:e9:ff:2e:cb:6d:7a:b0:9e:8a:0c:23:d0:61:dd:7a: 53:1a:c2:5f:cc:d0:ee:07:28:17:4e:aa:a0:86:ea:ec:2b:e5: dc:2c:64:f8:77:ed:57:54:68:29:a2:3b:aa:bd:62:e1:4b:2e: 0c:c3:67:f6:b5:7d:dd:18:1d:69:e6:7c:15:47:ee:72:af:8c: ff:7a:dd:8c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI3NTgxMTAvBgNVBAUTKEFGNTU1ODFCQTEyN0UyMDkwQTBBNTQ2MkZFN0JDRTcw NjE2RjJDREMwHhcNMjMwNzA1MDI1MTQ0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0ZGFjMC05ZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2UofKPIPHlAHXzfHtzzohHsDiKHrYUvRVyGmuZpuRmdMUc7dAYUb9ndwC6i Zj/ubX+emgTEu6IF/0+Zb/adOzk+LsDANWn+md7LSEKy8n+rfur4NDHCGgGWNr3o eEldbqowSgquANVNmkYub0awuBb32fTwJj08SgC8OA3CM9p9q6G2JEQEHAQi51aU x1su0Nd+pRcCmMkx943AZ1SVgwyQziuD/LTnNTZ8bn3iMXsxZjHlD/Mh8YWWIEk+ AEOmqzuA4hWh+l4p+OT5qHsFSxjX1r5YJmLoTbEzHTB/whT98XjhKhkuTSXWUToK PV3gjgh52CGjZrNACILyL5CPrwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD2Gzftj 0W968DGEWUMfrn0kw5KsMB8GA1UdIwQYMBaAFK9VWBuhJ+IJCgpUYv57znBhbyzc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Qjc1OC80QzdBMjg2OEQz NkUxMUVDQjI2MTQ0NTNDNEY5QUUwMi9yMVZZRzZFbjRna0tDbFJpX252T2NHRnZM TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxVllHNkVuNGdrS0NsUmlfbnZPY0dGdkxOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI3NTgvNEM3QTI4NjhEMzZFMTFFQ0IyNjE0NDUzQzRGOUFFMDIvMUNBMkZBMDhE Mzc3MTFFQzlBOEZGNTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wusAwDQYJKoZIhvcNAQELBQADggEBAHFCELPixRZp qL97hzKxQbWrzPZhmNrD9hvmABdiVM58LnSnrffD83Q4lzI+6ou6Mio0zc3ZiYo3 jMCm2azKakcCRtn/UKapQlBE6rA/kj5Pj9GBrvlR1Q9NR33b/7zcMvB/FqCgEjZ1 kUjdSPWa6QdpFk0kaFhLNFjggQuo4tR+bPGmgVqDFQLBNd6KE8ABxCc+FWDyQCX/ i+tSD3kqwCxp4zkkZJ7pI1a0hJLjCRuGhih/4mqQNOn/LstterCeigwj0GHdelMa wl/M0O4HKBdOqqCG6uwr5dwsZPh37VdUaCmiO6q9YuFLLgzDZ/a1fd0YHWnmfBVH 7nKvjP963Yw= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:42 2024 by rpki-client on console-fra.rpki-client.org