$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/D16A1B5C225711EF975F6747C4F9AE02.roa File: D16A1B5C225711EF975F6747C4F9AE02.roa (raw, json) Hash identifier: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w= Subject key identifier: D5:46:A0:6C:08:66:7E:C1:99:3D:3B:8B:26:B8:63:E5:F0:1A:86:88 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 02 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/D16A1B5C225711EF975F6747C4F9AE02.roa Signing time: Tue 04 Jun 2024 09:50:05 +0000 ROA not before: Tue 04 Jun 2024 09:50:05 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152898 IP address blocks: 2001:df3:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Jun 4 09:50:05 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665ee34c-46f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:43:82:63:e6:36:bf:b6:9f:5a:47:f9:20: 19:e8:0c:f7:6d:67:de:95:fe:02:f8:b6:a7:cf:96: b4:65:a8:be:32:de:90:51:a8:91:6b:38:bc:7f:3f: d9:53:ea:a8:0c:dc:10:85:fc:33:5f:9d:4c:77:ed: fa:18:b1:73:e0:48:54:5e:e5:06:8f:17:70:fc:8d: 71:1d:7a:99:a5:63:12:c9:9e:ed:82:c8:59:55:26: 05:48:ca:f0:f1:ab:62:73:9f:ec:1e:d3:e6:a1:a3: 3f:76:13:18:16:a0:e8:68:7c:82:fa:c8:ba:46:83: ef:07:d2:1b:fc:92:5a:0a:5c:68:a2:55:d6:76:69: ad:21:36:e2:64:10:0b:91:da:f9:af:f3:03:21:ae: de:2a:37:af:4e:49:96:f7:5f:15:c9:83:40:8e:6f: 1f:46:60:df:de:29:4e:4d:a2:1b:22:ed:33:0e:f7: ea:63:59:d5:58:80:0a:37:3e:64:0e:d0:40:ac:db: 0a:f7:41:88:93:d8:f0:35:75:e4:5a:00:8e:29:4f: fa:c4:59:8a:8f:c2:09:03:cc:ed:4b:b1:b9:e3:06: 4a:a6:fd:51:62:c1:b4:7a:f8:3b:e0:cc:84:dc:db: 77:c6:51:5b:17:24:e6:90:e4:04:a6:1e:3f:0f:12: dc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:46:A0:6C:08:66:7E:C1:99:3D:3B:8B:26:B8:63:E5:F0:1A:86:88 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/D16A1B5C225711EF975F6747C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 76:cc:73:a4:cd:81:84:0d:08:c4:8e:d0:2b:4c:57:07:6d:93: 3a:40:9b:ef:bc:f0:2c:99:9c:66:52:93:e4:80:62:bb:bc:95: d7:b7:70:dc:a7:2c:b9:fa:0d:76:89:74:61:2b:e6:2b:3a:86: 98:b0:f2:49:d2:b2:24:9b:33:ec:50:e1:60:fa:9d:90:9a:24: 9f:dc:67:2f:ff:61:11:f5:e7:7f:85:be:54:cc:d2:3e:f5:fc: 53:97:66:d3:9f:0b:05:dc:f2:af:9b:a2:b8:f6:8c:c1:6d:c6: f0:d1:d4:c1:ec:05:07:ea:25:f5:de:6e:8e:a4:d5:ec:6f:01: cd:bc:f2:4e:02:8a:2b:58:62:cc:ed:72:5c:24:58:47:47:48: f2:0b:4c:a1:84:61:fa:48:18:64:b2:ff:62:46:1c:ae:b7:a4: eb:8e:6d:f9:31:43:21:db:9d:61:10:7b:cb:80:c3:d8:03:75: 10:6c:12:89:3c:a4:4d:2a:49:ff:b3:c5:b3:da:95:b3:b2:e4: ed:60:60:38:c9:5f:4c:de:42:2c:e9:64:cf:64:dc:9b:b5:2d: 1a:56:0f:fc:99:b7:e6:86:22:1a:11:2d:73:bd:c1:35:56:9f: eb:96:1e:71:73:22:1b:86:bf:a2:c1:30:9a:41:24:31:81:d3: 11:aa:5e:11 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0NCNTExMC8GA1UEBRMoRkE4MTFGNTJFNTE5NUE0MjlENzA2RDE5QzAwMzIzN0Mz MjA5QUEzNzAeFw0yNDA2MDQwOTUwMDVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWVlMzRjLTQ2ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLhEOCY+Y2v7afWkf5IBnoDPdtZ96V/gL4tqfPlrRlqL4y3pBRqJFrOLx/P9lT 6qgM3BCF/DNfnUx37foYsXPgSFRe5QaPF3D8jXEdepmlYxLJnu2CyFlVJgVIyvDx q2Jzn+we0+ahoz92ExgWoOhofIL6yLpGg+8H0hv8kloKXGiiVdZ2aa0hNuJkEAuR 2vmv8wMhrt4qN69OSZb3XxXJg0CObx9GYN/eKU5Nohsi7TMO9+pjWdVYgAo3PmQO 0ECs2wr3QYiT2PA1deRaAI4pT/rEWYqPwgkDzO1LsbnjBkqm/VFiwbR6+DvgzITc 23fGUVsXJOaQ5ASmHj8PEty7AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU1UagbAhm fsGZPTuLJrhj5fAahogwHwYDVR0jBBgwFoAU+oEfUuUZWkKdcG0ZwAMjfDIJqjcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Q0I1L0ZBMzdDNjNFMjI1 NjExRUZCNzU2MUY0NkM0RjlBRTAyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFq Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLW9FZlV1VVpXa0tkY0cwWndBTWpmRElKcWpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9EMTZBMUI1QzIy NTcxMUVGOTc1RjY3NDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPhwDANBgkqhkiG9w0BAQsFAAOCAQEAdsxzpM2BhA0I xI7QK0xXB22TOkCb77zwLJmcZlKT5IBiu7yV17dw3KcsufoNdol0YSvmKzqGmLDy SdKyJJsz7FDhYPqdkJokn9xnL/9hEfXnf4W+VMzSPvX8U5dm058LBdzyr5uiuPaM wW3G8NHUwewFB+ol9d5ujqTV7G8BzbzyTgKKK1hizO1yXCRYR0dI8gtMoYRh+kgY ZLL/YkYcrrek645t+TFDIdudYRB7y4DD2AN1EGwSiTykTSpJ/7PFs9qVs7Lk7WBg OMlfTN5CLOlkz2Tcm7UtGlYP/Jm35oYiGhEtc73BNVaf65YecXMiG4a/osEwmkEk MYHTEapeEQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:54 2024 by rpki-client on console-ams.rpki-client.org