$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/55291FA016B511EFA244974BC4F9AE02.roa File: 55291FA016B511EFA244974BC4F9AE02.roa (raw, json) Hash identifier: TDKDyZJGBc50NghLiDCKkbN/Yz/sDd9sfYTRKt8gMcc= Subject key identifier: 3D:85:CE:2A:5B:E2:C8:0B:A9:F8:8F:DB:B9:AB:89:4A:6C:BC:C7:54 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: 03 Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/55291FA016B511EFA244974BC4F9AE02.roa Signing time: Mon 20 May 2024 14:29:15 +0000 ROA not before: Mon 20 May 2024 14:29:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 141172 IP address blocks: 2001:df3:d0c0::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 07:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: May 20 14:29:15 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=664b5e3a-d8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d8:99:f3:44:dd:a5:33:fd:be:95:41:be:b9: 4c:57:58:69:2b:6f:1a:89:d2:49:b8:1e:4a:27:96: c6:9f:2d:77:11:4a:8f:b3:aa:42:bb:62:5b:d1:69: 52:03:11:9a:a4:ce:04:82:90:cf:f8:2f:22:48:74: 1a:4d:c4:f0:2c:97:53:1f:c1:64:5e:00:1e:93:34: 0c:c8:f1:36:52:6d:85:6d:c6:09:2d:e0:91:97:e7: 26:bf:1c:94:54:b5:c1:a0:c6:ec:2c:14:8d:c0:32: 62:95:59:98:28:91:35:95:48:24:bb:58:7f:ff:44: 9e:74:e8:1c:74:c4:a8:2f:74:1b:37:23:d3:ec:bc: 3e:c5:71:66:00:fe:57:8e:df:92:0a:38:3c:d2:8d: 92:6a:0c:a1:ca:83:7c:3a:39:4c:7c:ce:33:b6:84: 5c:b9:e1:02:d6:fb:a1:bd:97:51:01:41:3a:65:d6: cf:55:27:f6:37:b9:77:a8:97:df:b7:b5:a9:97:36: 1c:16:a6:c1:1f:ef:53:0d:95:7d:e5:26:25:f4:f5: 0c:0e:9b:12:39:b1:c1:9b:bf:83:11:4a:56:65:3a: 13:f0:6c:83:86:4e:55:43:c9:70:6a:6f:7c:bc:cf: 6a:5f:f2:28:b9:3c:82:ab:f0:da:bb:e3:b4:1a:18: 9a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:85:CE:2A:5B:E2:C8:0B:A9:F8:8F:DB:B9:AB:89:4A:6C:BC:C7:54 X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/55291FA016B511EFA244974BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:d0c0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:a7:9c:90:00:40:a1:80:92:64:02:e6:e6:18:8e:8b:df:a9: ab:68:8f:97:e8:e9:e2:ad:90:62:b0:0a:c7:a1:a4:29:80:c3: 29:e3:cc:db:d8:11:de:1d:79:a1:e1:cf:40:ce:5b:e4:bf:82: 7d:e2:82:41:b9:1b:f3:19:0f:54:8f:d7:51:74:ca:88:c1:ba: f9:30:aa:c0:30:4a:9f:76:64:9a:18:38:1e:bf:c8:f2:f6:0f: d0:ab:e2:a1:0d:cd:6d:e6:40:97:31:75:1b:b2:12:ab:4f:e0: a7:39:fd:6a:f9:88:b7:21:06:03:82:0b:7d:9a:1d:16:3d:41: e9:cc:d7:07:a8:b2:b9:f7:3f:6a:10:44:0f:9b:39:53:68:34: a2:a2:15:15:9a:68:ef:5a:67:a6:5f:1d:9d:b1:f2:b3:ba:69: f3:ce:73:24:52:7f:5d:64:20:f0:aa:51:70:91:c0:81:e1:16: a9:8f:fc:1c:d7:b8:fa:de:dd:74:9d:f2:1e:96:d4:37:40:33: 5c:8f:bc:e1:18:52:eb:4c:c4:59:37:e7:d4:18:ca:15:5e:fd: c1:48:24:27:44:d8:d8:42:71:6c:65:71:b4:51:2f:43:78:fb: 03:70:ca:b5:03:99:61:42:86:9b:42:10:09:a4:36:9f:71:fa: 5d:a5:f7:a9 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTdDNzExMC8GA1UEBRMoQjJBRDUwRjM1NzFCREExRUVDMDdDQzQ4REEwMUQzRjM3 NTQ1OEQyNDAeFw0yNDA1MjAxNDI5MTVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGI1ZTNhLWQ4Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC72JnzRN2lM/2+lUG+uUxXWGkrbxqJ0km4HkonlsafLXcRSo+zqkK7YlvRaVID EZqkzgSCkM/4LyJIdBpNxPAsl1MfwWReAB6TNAzI8TZSbYVtxgkt4JGX5ya/HJRU tcGgxuwsFI3AMmKVWZgokTWVSCS7WH//RJ506Bx0xKgvdBs3I9PsvD7FcWYA/leO 35IKODzSjZJqDKHKg3w6OUx8zjO2hFy54QLW+6G9l1EBQTpl1s9VJ/Y3uXeol9+3 tamXNhwWpsEf71MNlX3lJiX09QwOmxI5scGbv4MRSlZlOhPwbIOGTlVDyXBqb3y8 z2pf8ii5PIKr8Nq747QaGJr/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUPYXOKlvi yAup+I/buauJSmy8x1QwHwYDVR0jBBgwFoAUsq1Q81cb2h7sB8xI2gHT83VFjSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFN0M3LzFBNTlGNzhFMTZC MzExRUY4OUNGRTMwRUM0RjlBRTAyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc3ExUTgxY2IyaDdzQjh4STJnSFQ4M1ZGalNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi81NTI5MUZBMDE2 QjUxMUVGQTI0NDk3NEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPQwDANBgkqhkiG9w0BAQsFAAOCAQEAS6eckABAoYCS ZALm5hiOi9+pq2iPl+jp4q2QYrAKx6GkKYDDKePM29gR3h15oeHPQM5b5L+CfeKC Qbkb8xkPVI/XUXTKiMG6+TCqwDBKn3Zkmhg4Hr/I8vYP0KvioQ3NbeZAlzF1G7IS q0/gpzn9avmItyEGA4ILfZodFj1B6czXB6iyufc/ahBED5s5U2g0oqIVFZpo71pn pl8dnbHys7pp885zJFJ/XWQg8KpRcJHAgeEWqY/8HNe4+t7ddJ3yHpbUN0AzXI+8 4RhS60zEWTfn1BjKFV79wUgkJ0TY2EJxbGVxtFEvQ3j7A3DKtQOZYUKGm0IQCaQ2 n3H6XaX3qQ== -----END CERTIFICATE-----Generated at Tue Jun 25 10:01:21 2024 by rpki-client on console-fra.rpki-client.org