$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa File: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (raw, json) Hash identifier: QCrnvrIhopmMc/N16cpZxTCv1QNZeVWx1Qu/cG0grmY= Subject key identifier: 12:F9:8B:77:5B:86:3E:99:EA:57:02:3C:37:D4:B4:41:D9:A8:C9:DA Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3364 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa Signing time: Tue 12 Sep 2023 15:31:12 +0000 ROA not before: Tue 12 Sep 2023 15:31:12 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 148003 IP address blocks: 240a:eff6::/32 maxlen: 32 240a:eff7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13156 (0x3364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Sep 12 15:31:12 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65008440-dd85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f1:c4:f9:3c:5b:ea:9e:51:83:64:35:5d:0c: b9:f2:48:87:00:61:9c:d4:7a:2b:4b:11:9d:38:e2: 92:2f:67:b3:d2:c3:3d:7a:dc:fb:d6:2c:11:11:11: 8d:3b:64:08:15:2b:bc:28:5b:b7:bc:34:84:ac:1c: 4f:4f:98:35:cb:6b:c2:b4:e3:c4:7d:39:ea:d1:63: 2d:d3:ca:e8:b1:39:79:de:c7:92:4d:7f:f5:b5:50: e1:40:f1:b1:dd:9c:da:48:cf:5d:a8:28:3f:88:27: d3:37:64:56:21:53:c4:92:52:ab:d4:90:fa:d1:c2: 48:4c:02:c4:d9:b0:db:4f:3e:08:cb:f4:f8:ba:21: 56:fa:24:67:f8:b7:07:0f:ed:c1:e0:37:d2:01:06: d1:b8:fb:79:25:1f:91:d7:89:38:40:7d:c8:a8:2c: 98:08:4e:d7:1b:eb:3d:9d:5e:90:5d:69:97:9c:0a: 2f:6c:ec:6e:e3:36:3e:c8:a5:a0:39:aa:2f:14:29: 06:6c:ad:a4:79:6f:89:fe:f5:58:96:2c:fc:34:03: ec:66:d2:45:a6:1c:86:cd:09:80:35:1e:42:ba:d5: 90:4f:68:a7:52:72:ee:28:25:da:c6:ba:2e:ec:86: 58:df:bc:1d:da:18:ab:f1:10:2f:39:3f:e5:64:dc: 4b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F9:8B:77:5B:86:3E:99:EA:57:02:3C:37:D4:B4:41:D9:A8:C9:DA X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/95B5C59E2DCE11EEB652B16FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:eff6::/31 Signature Algorithm: sha256WithRSAEncryption 5e:11:1a:eb:76:03:86:58:0a:0b:ef:30:65:9f:e2:c6:63:71: 91:a8:00:a9:6d:68:9a:1c:47:7e:4d:6c:4f:f5:ed:fe:99:7d: de:b6:41:80:62:a6:97:35:52:7b:86:d1:1c:e5:ad:a7:8d:51: fb:98:ae:b5:c8:73:ec:ca:4c:ec:bc:96:41:a8:fe:63:4c:68: 07:4a:7d:0e:18:32:52:45:d1:1a:e9:45:15:d8:26:95:93:12: 80:65:6d:bb:70:c1:70:9e:11:85:4f:58:69:b0:41:14:b6:f8: 0d:2f:91:7a:e4:b6:c4:d9:ef:d4:0c:f9:c4:de:81:21:d6:f3: 13:a7:63:81:1f:2b:ed:26:c5:23:2f:3c:27:c3:7a:19:84:44: 71:d4:f7:e6:d3:b8:a7:a0:9f:11:ea:45:50:05:5a:91:25:66: fd:7f:68:79:94:f0:b4:71:1a:36:75:d5:a0:c8:c7:27:7b:de: e7:f6:1d:94:6c:4f:1f:e1:3d:3a:aa:34:80:1c:e6:dd:ae:04: a0:a3:a5:18:f4:cc:f7:7b:1a:be:4e:65:d8:87:1b:39:9b:d7: e1:d0:b3:f5:0d:86:f8:b5:b0:a2:19:2a:ab:7f:88:55:64:95: 0e:ae:a2:7d:2c:c4:ce:1b:40:d7:b4:25:0b:2e:e9:d8:c9:10: d6:58:93:80 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICM2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjMwOTEyMTUzMTEyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwODQ0MC1kZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/HE+Txb6p5Rg2Q1XQy58kiHAGGc1HorSxGdOOKSL2ez0sM9etz71iwRERGN O2QIFSu8KFu3vDSErBxPT5g1y2vCtOPEfTnq0WMt08rosTl53seSTX/1tVDhQPGx 3ZzaSM9dqCg/iCfTN2RWIVPEklKr1JD60cJITALE2bDbTz4Iy/T4uiFW+iRn+LcH D+3B4DfSAQbRuPt5JR+R14k4QH3IqCyYCE7XG+s9nV6QXWmXnAovbOxu4zY+yKWg OaovFCkGbK2keW+J/vVYliz8NAPsZtJFphyGzQmANR5CutWQT2inUnLuKCXaxrou 7IZY37wd2hir8RAvOT/lZNxL7QIDAQABo4ICljCCApIwHQYDVR0OBBYEFBL5i3db hj6Z6lcCPDfUtEHZqMnaMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvOTVCNUM1OUUy RENFMTFFRUI2NTJCMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQEkCu/2MA0GCSqGSIb3DQEBCwUAA4IBAQBeERrrdgOGWAoL 7zBln+LGY3GRqACpbWiaHEd+TWxP9e3+mX3etkGAYqaXNVJ7htEc5a2njVH7mK61 yHPsykzsvJZBqP5jTGgHSn0OGDJSRdEa6UUV2CaVkxKAZW27cMFwnhGFT1hpsEEU tvgNL5F65LbE2e/UDPnE3oEh1vMTp2OBHyvtJsUjLzwnw3oZhERx1Pfm07inoJ8R 6kVQBVqRJWb9f2h5lPC0cRo2ddWgyMcne97n9h2UbE8f4T06qjSAHObdrgSgo6UY 9Mz3exq+TmXYhxs5m9fh0LP1DYb4tbCiGSqrf4hVZJUOrqJ9LMTOG0DXtCULLunY yRDWWJOA -----END CERTIFICATE-----Generated at Sat May 18 16:19:52 2024 by rpki-client on console-fra.rpki-client.org