$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/F1B3D754A18211EFA2B7E923C4F9AE02.roa File: F1B3D754A18211EFA2B7E923C4F9AE02.roa (raw, json) Hash identifier: ZgB4/zOUlrbnr+66F7inM4U41pNR0yS6V1N2ZkRjXXY= Subject key identifier: 91:C5:28:36:F0:E6:BF:F4:39:9E:A0:83:ED:AD:E3:FB:A4:69:7F:55 Certificate issuer: /CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60 Certificate serial: 02 Authority key identifier: 09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/F1B3D754A18211EFA2B7E923C4F9AE02.roa Signing time: Wed 13 Nov 2024 05:48:45 +0000 ROA not before: Wed 13 Nov 2024 05:48:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153454 IP address blocks: 2001:df4:9ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164/serialNumber=094C8BC5DADCCD9C2FB3CF45D1464DEECF3A1C60 Validity Not Before: Nov 13 05:48:45 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67343dbc-ac3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:04:fb:83:6a:20:85:39:1a:51:9e:82:7c:7e: 75:eb:4d:0b:cf:e5:df:2e:e4:31:dd:44:76:44:e7: 5e:40:c0:78:95:05:ea:3d:c5:64:4c:0d:6b:74:d8: 78:42:09:03:a3:29:3f:b5:bf:b9:a8:b2:21:33:60: f1:d5:88:fd:83:a9:81:f0:a4:89:74:1e:a8:0e:5d: d4:68:83:c0:a4:e1:f5:93:fc:9c:46:e6:24:0d:b8: 6c:0a:c3:cd:0d:1a:6c:e5:75:b7:89:8e:df:37:26: 84:8b:7d:d9:0a:5e:46:3a:85:79:22:4d:79:f3:6e: ed:b5:b0:9f:98:3a:54:10:63:48:f4:13:f2:0e:a4: e3:75:6f:c3:67:e5:1d:99:ae:bd:c1:96:7a:36:dc: 89:a9:4a:9e:24:e0:2e:63:ea:b3:1f:54:13:86:1f: 70:f0:fd:ca:9f:ee:13:65:19:cd:35:8b:2b:f7:e7: 4e:ba:11:a4:58:5b:a2:c4:e8:ac:5d:1c:2b:03:1b: e7:8c:a2:bb:65:50:fc:6b:62:03:c8:61:74:5b:d7: d9:5c:91:e6:5b:41:76:34:8c:72:f9:67:bd:43:6f: 63:d4:08:35:8a:81:f5:67:6b:e6:ec:b5:76:e3:d2: 40:72:d9:01:fb:63:cc:85:0d:d5:70:74:34:66:ef: d1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C5:28:36:F0:E6:BF:F4:39:9E:A0:83:ED:AD:E3:FB:A4:69:7F:55 X509v3 Authority Key Identifier: keyid:09:4C:8B:C5:DA:DC:CD:9C:2F:B3:CF:45:D1:46:4D:EE:CF:3A:1C:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/CUyLxdrczZwvs89F0UZN7s86HGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUyLxdrczZwvs89F0UZN7s86HGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/AE72289CA18211EF8F4E1623C4F9AE02/F1B3D754A18211EFA2B7E923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:9ac0::/48 Signature Algorithm: sha256WithRSAEncryption 48:78:4d:3a:78:ad:9d:2f:9d:56:d3:e7:90:73:48:d3:a1:b4: 54:16:19:ef:9d:f8:73:b2:db:03:e6:5f:37:e5:45:8a:83:78: d6:50:12:65:2c:8a:f9:10:43:fc:99:2c:d0:6f:21:dc:6b:77: d7:f6:c4:4f:f6:e0:69:68:1f:02:6e:44:98:51:d9:ce:7c:87: ab:bd:10:78:3f:bc:30:ef:d5:24:e0:98:97:44:76:ef:4e:54: 0b:35:d9:b9:41:73:30:75:59:8b:f0:34:97:d7:e9:ed:b7:89: 0c:39:59:e4:77:70:5b:6f:29:d6:8b:fe:e3:94:b6:8a:cb:1f: 01:fd:5b:73:32:63:5b:98:60:49:be:fc:07:99:2e:26:56:3a: b3:cb:35:66:0d:5a:42:94:b1:7a:42:c5:0c:22:b3:b5:df:bb: 27:ec:44:9f:8c:bc:c5:41:37:e4:f9:81:32:3b:ad:ca:52:3e: e2:fc:00:cd:80:df:8c:57:43:2e:20:b2:df:95:da:df:47:03: cb:eb:d7:41:f8:47:7d:8b:79:b1:ab:03:fb:61:8a:9d:f5:b2: 93:0f:e7:1a:25:c7:75:cf:79:79:46:ab:82:bc:11:92:4a:7b: 4b:f4:67:f8:e7:fd:aa:e2:6a:ef:dd:0f:e1:41:b3:61:34:f5: 96:3a:38:01 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDE2NDExMC8GA1UEBRMoMDk0QzhCQzVEQURDQ0Q5QzJGQjNDRjQ1RDE0NjRERUVD RjNBMUM2MDAeFw0yNDExMTMwNTQ4NDVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzQzZGJjLWFjM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQBPuDaiCFORpRnoJ8fnXrTQvP5d8u5DHdRHZE515AwHiVBeo9xWRMDWt02HhC CQOjKT+1v7mosiEzYPHViP2DqYHwpIl0HqgOXdRog8Ck4fWT/JxG5iQNuGwKw80N GmzldbeJjt83JoSLfdkKXkY6hXkiTXnzbu21sJ+YOlQQY0j0E/IOpON1b8Nn5R2Z rr3Blno23ImpSp4k4C5j6rMfVBOGH3Dw/cqf7hNlGc01iyv35066EaRYW6LE6Kxd HCsDG+eMortlUPxrYgPIYXRb19lckeZbQXY0jHL5Z71Db2PUCDWKgfVna+bstXbj 0kBy2QH7Y8yFDdVwdDRm79FFAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUkcUoNvDm v/Q5nqCD7a3j+6Rpf1UwHwYDVR0jBBgwFoAUCUyLxdrczZwvs89F0UZN7s86HGAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0MTY0L0FFNzIyODlDQTE4 MjExRUY4RjRFMTYyM0M0RjlBRTAyL0NVeUx4ZHJjelp3dnM4OUYwVVpON3M4NkhH QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1V5THhkcmN6Wnd2czg5RjBVWk43czg2SEdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDE2NC9BRTcyMjg5Q0ExODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9GMUIzRDc1NEEx ODIxMUVGQTJCN0U5MjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSawDANBgkqhkiG9w0BAQsFAAOCAQEASHhNOnitnS+d VtPnkHNI06G0VBYZ7534c7LbA+ZfN+VFioN41lASZSyK+RBD/Jks0G8h3Gt31/bE T/bgaWgfAm5EmFHZznyHq70QeD+8MO/VJOCYl0R2705UCzXZuUFzMHVZi/A0l9fp 7beJDDlZ5HdwW28p1ov+45S2issfAf1bczJjW5hgSb78B5kuJlY6s8s1Zg1aQpSx ekLFDCKztd+7J+xEn4y8xUE35PmBMjutylI+4vwAzYDfjFdDLiCy35Xa30cDy+vX QfhHfYt5sasD+2GKnfWykw/nGiXHdc95eUargrwRkkp7S/Rn+Of9quJq790P4UGz YTT1ljo4AQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org