$ rpki-client -vvf rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa File: 3BE03ECC7D4D11EE93D62E30C4F9AE02.roa (raw, json) Hash identifier: XdxeMfWOgQlO5jLoNMyMUX1p4xelqTecAZkRcO8q704= Subject key identifier: C1:9E:39:26:60:18:98:46:FF:8C:AB:08:1D:12:8D:5B:4A:4E:90:08 Certificate issuer: /CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Certificate serial: 05 Authority key identifier: C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa Signing time: Tue 07 Nov 2023 09:08:37 +0000 ROA not before: Tue 07 Nov 2023 09:08:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 0 IP address blocks: 2001:dec:4000::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 06:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B0F6/serialNumber=C0AEF7077F52622567179ACE56AD5EE8CD64604E Validity Not Before: Nov 7 09:08:37 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6549fe94-d6b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1e:a4:a2:a7:b8:eb:84:7f:05:78:f6:f9:0b: 0b:38:af:dd:1e:92:f4:2d:db:94:25:f5:99:ed:d0: 31:0d:6a:10:23:ed:86:32:38:32:b8:2d:da:74:65: 49:52:19:d1:55:8f:03:fe:48:fc:bb:2d:cb:19:34: 96:1d:bc:93:38:64:c1:c8:c2:d7:81:a6:76:b1:47: 6f:57:63:3e:d6:03:cc:98:08:e8:0b:33:62:69:5c: b4:fd:2c:1a:03:58:cd:5f:4d:59:89:b7:82:24:df: ff:ce:ca:07:29:c7:fe:d6:e8:2a:6f:40:6a:a6:2c: 35:93:4d:1b:57:4c:ba:49:04:4c:13:5c:81:fe:12: df:95:7c:40:ce:46:41:9f:f7:c3:48:2f:6c:19:73: 04:00:1e:62:5a:53:e4:fa:fe:25:14:d2:f9:02:62: 73:cb:7e:47:23:29:cf:a5:06:96:9e:31:98:69:c5: b5:fa:c9:56:cf:0f:23:d5:6c:b5:36:cc:9d:64:0d: 72:f0:02:ef:d9:6c:03:42:07:95:c5:5d:cc:bf:48: 82:a5:84:d6:d2:8d:75:29:16:d3:c2:04:92:66:e6: 23:08:bd:5b:c0:a6:e3:2f:7e:d9:fa:72:cc:81:e0: 38:76:77:b0:70:a0:38:26:73:d6:5c:4a:01:f1:06: 2a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9E:39:26:60:18:98:46:FF:8C:AB:08:1D:12:8D:5B:4A:4E:90:08 X509v3 Authority Key Identifier: keyid:C0:AE:F7:07:7F:52:62:25:67:17:9A:CE:56:AD:5E:E8:CD:64:60:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/wK73B39SYiVnF5rOVq1e6M1kYE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK73B39SYiVnF5rOVq1e6M1kYE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B0F6/FEE05BEC7CAC11EE8A28846FC4F9AE02/3BE03ECC7D4D11EE93D62E30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dec:4000::/48 Signature Algorithm: sha256WithRSAEncryption 50:4d:77:c0:f3:63:5d:7a:68:51:49:be:fa:a8:0b:4b:2a:0f: 90:1f:5a:0d:9f:55:11:c9:e3:21:76:2e:fb:d3:ec:e5:98:4b: 35:e6:b0:3e:54:e6:f4:83:bd:42:7b:a2:7e:c9:d8:73:09:c6: eb:83:3c:27:fe:d4:91:39:76:77:2c:87:8b:aa:14:91:ff:af: fb:62:a5:79:9e:0a:d9:3c:e4:62:f0:0e:2c:e7:df:f5:25:9b: bd:ef:0b:eb:79:59:d5:f6:2c:94:15:57:2f:25:ec:95:68:d0: 85:d6:55:82:dd:10:3a:92:12:7b:5d:06:08:78:19:ab:68:ac: 0f:bc:eb:e7:84:f2:3b:56:f9:08:30:9b:61:41:3a:28:a7:94: 06:5b:59:90:bb:09:da:e9:ce:2d:cb:cd:e4:ba:c7:80:a4:26: 6b:82:53:23:2c:b2:3a:b2:37:50:27:cf:85:93:b8:41:87:b2: 81:c0:f7:89:d6:c6:c3:f2:c7:fe:0c:70:66:20:db:3f:4c:ba: 81:14:b0:b9:68:ac:14:ac:95:94:cc:fc:7b:cb:b6:a1:bb:45: 3f:8b:f5:43:3f:19:c7:9e:57:c6:23:3e:3b:e4:85:e5:a1:af: 57:d7:0c:95:22:81:5b:85:5e:a2:29:a7:0f:28:c6:03:cd:ef: e4:0c:c0:25 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjBGNjExMC8GA1UEBRMoQzBBRUY3MDc3RjUyNjIyNTY3MTc5QUNFNTZBRDVFRThD RDY0NjA0RTAeFw0yMzExMDcwOTA4MzdaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDlmZTk0LWQ2YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAHqSip7jrhH8FePb5Cws4r90ekvQt25Ql9Znt0DENahAj7YYyODK4Ldp0ZUlS GdFVjwP+SPy7LcsZNJYdvJM4ZMHIwteBpnaxR29XYz7WA8yYCOgLM2JpXLT9LBoD WM1fTVmJt4Ik3//Oygcpx/7W6CpvQGqmLDWTTRtXTLpJBEwTXIH+Et+VfEDORkGf 98NIL2wZcwQAHmJaU+T6/iUU0vkCYnPLfkcjKc+lBpaeMZhpxbX6yVbPDyPVbLU2 zJ1kDXLwAu/ZbANCB5XFXcy/SIKlhNbSjXUpFtPCBJJm5iMIvVvApuMvftn6csyB 4Dh2d7BwoDgmc9ZcSgHxBipjAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUwZ45JmAY mEb/jKsIHRKNW0pOkAgwHwYDVR0jBBgwFoAUwK73B39SYiVnF5rOVq1e6M1kYE4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCMEY2L0ZFRTA1QkVDN0NB QzExRUU4QTI4ODQ2RkM0RjlBRTAyL3dLNzNCMzlTWWlWbkY1ck9WcTFlNk0xa1lF NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd0s3M0IzOVNZaVZuRjVyT1ZxMWU2TTFrWUU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjBGNi9GRUUwNUJFQzdDQUMxMUVFOEEyODg0NkZDNEY5QUUwMi8zQkUwM0VDQzdE NEQxMUVFOTNENjJFMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDexAADANBgkqhkiG9w0BAQsFAAOCAQEAUE13wPNjXXpo UUm++qgLSyoPkB9aDZ9VEcnjIXYu+9Ps5ZhLNeawPlTm9IO9QnuifsnYcwnG64M8 J/7UkTl2dyyHi6oUkf+v+2KleZ4K2TzkYvAOLOff9SWbve8L63lZ1fYslBVXLyXs lWjQhdZVgt0QOpISe10GCHgZq2isD7zr54TyO1b5CDCbYUE6KKeUBltZkLsJ2unO LcvN5LrHgKQma4JTIyyyOrI3UCfPhZO4QYeygcD3idbGw/LH/gxwZiDbP0y6gRSw uWisFKyVlMz8e8u2obtFP4v1Qz8Zx55XxiM+O+SF5aGvV9cMlSKBW4VeoimnDyjG A83v5AzAJQ== -----END CERTIFICATE-----Generated at Thu Apr 25 08:13:18 2024 by rpki-client on console-ams.rpki-client.org