$ rpki-client -vvf rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/EABF54FA7BC111EFA1A45E4BC4F9AE02.roa File: EABF54FA7BC111EFA1A45E4BC4F9AE02.roa (raw, json) Hash identifier: fkSkf/lrYAP+GPqi/wzsXVOHAz3euOzdB17q/HqvVko= Subject key identifier: A5:63:C8:01:A8:A5:42:76:E0:F5:52:3F:36:7E:A6:C4:74:56:C8:C8 Certificate issuer: /CN=A915B50D/serialNumber=586F933176F6545435BB0697FE5F982A2093941B Certificate serial: 03 Authority key identifier: 58:6F:93:31:76:F6:54:54:35:BB:06:97:FE:5F:98:2A:20:93:94:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/EABF54FA7BC111EFA1A45E4BC4F9AE02.roa Signing time: Thu 26 Sep 2024 04:43:47 +0000 ROA not before: Thu 26 Sep 2024 04:43:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153042 IP address blocks: 2001:df3:fcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.crl rsync://rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B50D/serialNumber=586F933176F6545435BB0697FE5F982A2093941B Validity Not Before: Sep 26 04:43:47 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66f4e683-e89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1b:0f:21:b0:ce:33:39:77:b9:22:58:16:97: 87:53:ea:5a:d2:77:63:3a:09:bd:c3:39:d8:77:75: c9:b3:50:dc:c3:4e:a8:50:41:07:49:f2:36:97:54: e9:ab:0c:59:8c:c5:e2:d4:1a:13:ee:c4:b9:4d:e4: 6e:b4:01:42:20:e8:6e:94:e6:83:9c:74:45:60:d2: 10:be:ea:7d:f7:a1:3d:7c:bf:87:8b:65:e7:26:09: f0:8d:22:1b:5a:e8:45:aa:37:f2:28:9b:14:56:91: bc:85:28:21:00:ea:cd:43:2a:3e:44:91:e0:49:eb: 00:f5:41:97:a6:b6:7e:58:0e:02:4d:fa:4f:0f:45: 39:86:cc:ba:bb:f6:d4:3b:81:16:07:79:29:35:5d: c8:a9:2f:f9:74:89:25:76:92:f4:d8:31:31:ef:39: 9b:fb:60:6e:f5:ca:57:de:45:8f:4d:db:2b:ac:68: 4b:54:df:6c:fc:2d:56:8d:17:17:c1:74:26:71:02: 49:66:a5:f3:ef:24:5b:f5:42:1a:cf:d9:37:2e:06: 71:d2:60:ff:15:97:db:b8:72:b3:bb:77:6e:29:48: 78:f7:fb:70:53:a3:9d:68:b8:d2:49:e3:86:21:46: 2c:f5:65:6e:58:b6:3e:6d:75:ae:9c:6b:1c:bc:cd: 17:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:63:C8:01:A8:A5:42:76:E0:F5:52:3F:36:7E:A6:C4:74:56:C8:C8 X509v3 Authority Key Identifier: keyid:58:6F:93:31:76:F6:54:54:35:BB:06:97:FE:5F:98:2A:20:93:94:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WG-TMXb2VFQ1uwaX_l-YKiCTlBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B50D/EF8E3DAC7BBC11EF92EE1A66C4F9AE02/EABF54FA7BC111EFA1A45E4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:fcc0::/48 Signature Algorithm: sha256WithRSAEncryption 95:f2:7c:ac:1c:99:82:ae:c7:f4:b1:cb:df:e1:97:13:c9:33: 1f:66:c9:74:8e:6a:c8:c5:69:b1:fd:52:f3:e6:f4:b5:ad:36: e6:93:67:00:29:9f:e4:6b:68:31:54:8d:71:07:b2:dc:c4:cd: eb:cc:ec:c6:bc:a4:77:1f:66:99:8a:0b:36:68:8e:82:49:75: 7f:f1:9f:c7:e2:c5:38:f0:27:c7:1e:77:73:7a:96:5f:a4:a1: 50:9d:50:8a:ca:bb:42:03:ac:20:5d:63:73:59:d5:a7:35:10: 6f:d7:61:d0:8b:7a:18:ae:0b:90:f2:79:4c:6d:ab:e3:29:58: 60:bb:d8:2e:15:99:45:85:d3:7e:a7:24:6f:f8:21:3e:ad:e4: 27:b1:22:c1:87:30:20:c1:8b:d8:78:79:64:ba:19:19:3e:f6: 2b:4e:08:d1:21:54:fa:25:ac:e3:b1:08:39:93:11:4d:65:bb: b4:0b:f8:d8:79:fa:29:ed:13:61:0a:5a:72:87:b2:b6:60:80: 72:95:f8:3f:6d:59:a3:08:bc:6a:2e:50:f9:97:27:05:8a:a0: 30:79:3f:d1:50:8d:6e:dd:60:52:31:f9:bd:4c:dc:97:72:31: 39:61:38:0e:ac:46:d6:12:88:66:b1:21:05:84:84:cd:a3:75: 04:0f:7a:07 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjUwRDExMC8GA1UEBRMoNTg2RjkzMzE3NkY2NTQ1NDM1QkIwNjk3RkU1Rjk4MkEy MDkzOTQxQjAeFw0yNDA5MjYwNDQzNDdaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjRlNjgzLWU4OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdGw8hsM4zOXe5IlgWl4dT6lrSd2M6Cb3DOdh3dcmzUNzDTqhQQQdJ8jaXVOmr DFmMxeLUGhPuxLlN5G60AUIg6G6U5oOcdEVg0hC+6n33oT18v4eLZecmCfCNIhta 6EWqN/IomxRWkbyFKCEA6s1DKj5EkeBJ6wD1QZemtn5YDgJN+k8PRTmGzLq79tQ7 gRYHeSk1XcipL/l0iSV2kvTYMTHvOZv7YG71ylfeRY9N2yusaEtU32z8LVaNFxfB dCZxAklmpfPvJFv1QhrP2TcuBnHSYP8Vl9u4crO7d24pSHj3+3BTo51ouNJJ44Yh Riz1ZW5Ytj5tda6caxy8zReFAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUpWPIAail Qnbg9VI/Nn6mxHRWyMgwHwYDVR0jBBgwFoAUWG+TMXb2VFQ1uwaX/l+YKiCTlBsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTBEL0VGOEUzREFDN0JC QzExRUY5MkVFMUE2NkM0RjlBRTAyL1dHLVRNWGIyVkZRMXV3YVhfbC1ZS2lDVGxC cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV0ctVE1YYjJWRlExdXdhWF9sLVlLaUNUbEJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjUwRC9FRjhFM0RBQzdCQkMxMUVGOTJFRTFBNjZDNEY5QUUwMi9FQUJGNTRGQTdC QzExMUVGQTFBNDVFNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfP8wDANBgkqhkiG9w0BAQsFAAOCAQEAlfJ8rByZgq7H 9LHL3+GXE8kzH2bJdI5qyMVpsf1S8+b0ta025pNnACmf5GtoMVSNcQey3MTN68zs xrykdx9mmYoLNmiOgkl1f/Gfx+LFOPAnxx53c3qWX6ShUJ1Qisq7QgOsIF1jc1nV pzUQb9dh0It6GK4LkPJ5TG2r4ylYYLvYLhWZRYXTfqckb/ghPq3kJ7EiwYcwIMGL 2Hh5ZLoZGT72K04I0SFU+iWs47EIOZMRTWW7tAv42Hn6Ke0TYQpacoeytmCAcpX4 P21Zowi8ai5Q+ZcnBYqgMHk/0VCNbt1gUjH5vUzcl3IxOWE4DqxG1hKIZrEhBYSE zaN1BA96Bw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org