$ rpki-client -vvf rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/6F89ECBE80D611E99C76DF63C4F9AE02.roa File: 6F89ECBE80D611E99C76DF63C4F9AE02.roa (raw, json) Hash identifier: 4nWtvEAf9d3E14HBFgTaH0QO/wlhVDZLBiHadsasEhY= Subject key identifier: 26:1A:CE:35:90:77:E3:B3:BD:B4:93:85:2F:7F:AC:D2:DB:2B:71:7F Certificate issuer: /CN=A91672F2/serialNumber=11D57A757ED56575D049E429C8EC737A56050B79 Certificate serial: 0E00 Authority key identifier: 11:D5:7A:75:7E:D5:65:75:D0:49:E4:29:C8:EC:73:7A:56:05:0B:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdV6dX7VZXXQSeQpyOxzelYFC3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/6F89ECBE80D611E99C76DF63C4F9AE02.roa Signing time: Fri 08 Mar 2024 18:26:53 +0000 ROA not before: Fri 08 Mar 2024 18:26:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56123 IP address blocks: 115.124.8.0/21 maxlen: 21 2407:a200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/EdV6dX7VZXXQSeQpyOxzelYFC3k.crl rsync://rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/EdV6dX7VZXXQSeQpyOxzelYFC3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdV6dX7VZXXQSeQpyOxzelYFC3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3584 (0xe00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91672F2/serialNumber=11D57A757ED56575D049E429C8EC737A56050B79 Validity Not Before: Mar 8 18:26:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65eb586d-3123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:14:11:18:c7:46:4f:92:68:4a:b9:0f:e5:c8: 50:02:3b:cb:fb:cb:73:5e:5a:fa:b7:72:bf:d5:3d: 10:12:cf:79:87:d2:79:31:c3:33:e9:41:6e:6e:d1: 28:98:79:5c:eb:2f:59:7f:a4:05:72:36:b9:0c:f5: 51:9a:fa:4c:96:c9:3d:c1:72:a6:16:77:65:3c:ad: 8b:ac:da:46:cb:28:f9:c6:ea:49:1a:04:b8:9b:3e: 35:8d:91:2c:e4:a2:07:25:7e:0b:7d:02:4d:de:43: 26:86:14:de:b7:d2:3f:ac:3e:9e:7a:ca:22:8e:08: 7c:25:c5:f7:c0:58:28:71:07:b6:a2:79:14:32:38: 9e:0f:2f:8a:cf:27:51:db:23:b5:9d:41:ec:28:fe: 99:ae:43:c8:44:8d:90:d6:08:89:56:55:fa:bb:31: 41:61:39:1e:29:ee:65:af:aa:6b:36:a5:67:b8:c4: fa:91:23:26:14:dc:9a:1a:4c:61:5e:b3:70:88:3f: 9e:15:77:a4:a6:66:dc:4b:e9:09:71:a6:ec:a5:00: c8:0b:70:db:00:d9:9f:20:79:0e:9f:a0:80:56:e6: 0c:eb:f5:38:58:13:a8:16:b6:42:a0:f2:84:e7:e9: 0f:ee:66:f9:75:40:95:ac:23:c8:c9:ee:d4:1f:70: b7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1A:CE:35:90:77:E3:B3:BD:B4:93:85:2F:7F:AC:D2:DB:2B:71:7F X509v3 Authority Key Identifier: keyid:11:D5:7A:75:7E:D5:65:75:D0:49:E4:29:C8:EC:73:7A:56:05:0B:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/EdV6dX7VZXXQSeQpyOxzelYFC3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdV6dX7VZXXQSeQpyOxzelYFC3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91672F2/DD8EC1C880D411E9A9C9C75EC4F9AE02/6F89ECBE80D611E99C76DF63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.124.8.0/21 IPv6: 2407:a200::/32 Signature Algorithm: sha256WithRSAEncryption 8a:39:1f:6a:2f:2b:57:fa:f1:75:e8:42:68:96:da:8f:6f:1f: 1d:f3:f6:59:42:58:42:f9:3e:3c:47:3b:21:60:66:1b:c7:28: cd:57:5f:4b:61:20:3b:30:16:eb:29:ec:13:da:e1:38:df:68: 5b:f1:4f:df:2a:0d:a3:3e:f6:c0:ae:6f:11:4c:b6:48:3f:5d: c6:b7:ca:98:e8:92:77:b4:c9:a7:16:f5:ce:89:39:8b:35:41: e3:1b:9b:f2:8f:8b:71:cf:f5:53:ef:ea:03:7e:b1:f5:34:28: 46:e7:9b:68:7d:82:76:84:27:3b:52:57:a5:b4:1a:f8:06:6a: 4e:11:42:87:95:1c:c4:d4:5c:c2:5b:84:98:18:70:8a:cf:b9: 6c:d5:42:56:11:8b:e5:6e:3d:5e:25:a7:f1:4b:c9:53:4d:55: 1c:6e:f3:e7:5c:79:ed:a3:f9:93:9b:3a:79:7b:a4:ac:c9:f8: 40:3b:f3:ed:1d:04:f9:19:19:59:0a:c4:9d:a6:ae:de:da:8e: 41:54:00:93:12:a8:d2:3e:5a:e6:e9:f7:6f:ec:ca:e2:6f:be: 9a:5f:fd:0d:64:c7:55:c4:00:38:25:fd:5d:96:26:c5:9a:d2: 88:da:ed:ec:60:c7:be:d6:68:f2:2f:ec:14:a9:31:40:ac:77: 6c:4c:51:c7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyRjIxMTAvBgNVBAUTKDExRDU3QTc1N0VENTY1NzVEMDQ5RTQyOUM4RUM3MzdB NTYwNTBCNzkwHhcNMjQwMzA4MTgyNjUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWViNTg2ZC0zMTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xQRGMdGT5JoSrkP5chQAjvL+8tzXlr6t3K/1T0QEs95h9J5McMz6UFubtEo mHlc6y9Zf6QFcja5DPVRmvpMlsk9wXKmFndlPK2LrNpGyyj5xupJGgS4mz41jZEs 5KIHJX4LfQJN3kMmhhTet9I/rD6eesoijgh8JcX3wFgocQe2onkUMjieDy+KzydR 2yO1nUHsKP6ZrkPIRI2Q1giJVlX6uzFBYTkeKe5lr6prNqVnuMT6kSMmFNyaGkxh XrNwiD+eFXekpmbcS+kJcabspQDIC3DbANmfIHkOn6CAVuYM6/U4WBOoFrZCoPKE 5+kP7mb5dUCVrCPIye7UH3C3DQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCYazjWQ d+OzvbSThS9/rNLbK3F/MB8GA1UdIwQYMBaAFBHVenV+1WV10EnkKcjsc3pWBQt5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzJGMi9ERDhFQzFDODgw RDQxMUU5QTlDOUM3NUVDNEY5QUUwMi9FZFY2ZFg3VlpYWFFTZVFweU94emVsWUZD M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVjZkWDdWWlhYUVNlUXB5T3h6ZWxZRkMzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcyRjIvREQ4RUMxQzg4MEQ0MTFFOUE5QzlDNzVFQzRGOUFFMDIvNkY4OUVDQkU4 MEQ2MTFFOTlDNzZERjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBANzfAgwDQQCAAIwBwMFACQHogAwDQYJKoZIhvcNAQELBQAD ggEBAIo5H2ovK1f68XXoQmiW2o9vHx3z9llCWEL5PjxHOyFgZhvHKM1XX0thIDsw Fusp7BPa4TjfaFvxT98qDaM+9sCubxFMtkg/Xca3ypjokne0yacW9c6JOYs1QeMb m/KPi3HP9VPv6gN+sfU0KEbnm2h9gnaEJztSV6W0GvgGak4RQoeVHMTUXMJbhJgY cIrPuWzVQlYRi+VuPV4lp/FLyVNNVRxu8+dcee2j+ZObOnl7pKzJ+EA78+0dBPkZ GVkKxJ2mrt7ajkFUAJMSqNI+Wubp92/syuJvvppf/Q1kx1XEADgl/V2WJsWa0oja 7exgx77WaPIv7BSpMUCsd2xMUcc= -----END CERTIFICATE-----Generated at Mon May 20 19:59:40 2024 by rpki-client on console-ams.rpki-client.org