$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa File: B28CA9F85F3711EFA108CA0CC4F9AE02.roa (raw, json) Hash identifier: +Yr72OqynE/en2gYucrAB8EY/mIkM3RAadre1EWmYdg= Subject key identifier: A0:B2:0F:AB:78:6B:20:9C:4C:BC:83:42:E2:9A:7F:C7:35:A1:58:8A Certificate issuer: /CN=A91813ED/serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Certificate serial: 02 Authority key identifier: C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa Signing time: Tue 20 Aug 2024 21:03:50 +0000 ROA not before: Tue 20 Aug 2024 21:03:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135559 IP address blocks: 2001:df4:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED/serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Validity Not Before: Aug 20 21:03:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c504b5-4f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9b:28:ec:76:f1:69:74:fe:9d:f1:71:da:ce: 14:d5:4f:8b:a6:d9:45:fb:69:70:ee:ee:b4:df:fc: 1f:11:5c:22:0c:63:c1:ed:38:a5:2d:2a:4c:d7:49: 75:bc:99:32:71:57:ad:2a:68:01:cc:e7:83:9e:73: 3a:56:c8:c4:10:8a:7e:49:8a:9c:a5:15:73:15:ba: 38:ff:a9:45:62:dd:7c:eb:97:17:4c:ef:bc:c2:09: 2b:f4:13:9e:78:be:59:00:68:7f:5c:19:f9:13:51: 23:95:d8:f3:2d:52:eb:a6:b6:a2:a8:c1:73:54:2a: ff:6d:87:00:93:91:35:99:6b:f4:e5:df:1f:50:94: d4:95:b5:34:69:f4:73:c2:91:9e:45:78:16:b0:29: 0d:91:0e:ff:8d:59:59:cb:30:ac:bb:9a:bf:9e:d0: 2f:ee:9f:90:e0:10:13:41:d2:eb:f3:0a:3c:a0:7c: 36:fd:4f:75:18:93:6f:62:9c:e1:ce:2d:6b:93:ef: 70:9f:d8:d2:5e:74:ac:a8:1a:65:02:37:23:33:e6: 0a:39:75:51:49:87:af:d2:e9:1a:73:bb:b6:a6:5f: bc:1b:64:97:5f:12:35:11:b7:cc:09:a0:fd:39:98: 7d:33:fc:39:4b:26:2c:44:3c:b5:e5:21:91:28:2b: 03:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B2:0F:AB:78:6B:20:9C:4C:BC:83:42:E2:9A:7F:C7:35:A1:58:8A X509v3 Authority Key Identifier: keyid:C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:2040::/48 Signature Algorithm: sha256WithRSAEncryption c2:13:97:d0:bf:04:37:12:52:2c:90:2d:57:a8:61:e6:84:e6: f2:c5:4b:04:02:5b:0a:b3:38:47:9a:da:e9:23:81:7a:59:75: 65:e2:a4:8a:63:b4:79:2f:9b:ee:be:bb:2c:93:53:cb:f0:22: 69:95:a2:8a:7e:98:57:ca:22:24:7d:ed:b8:33:d3:e0:b9:5e: b1:d3:0b:ea:e6:67:1b:17:1c:76:1c:07:e4:da:a2:be:3d:c3: eb:5d:64:29:c8:d5:1e:14:27:a3:2e:b4:fd:57:e0:1d:67:5d: 0a:eb:96:fd:9b:a1:d8:2e:7f:04:d9:82:9e:21:f1:33:22:05: 8f:d0:b0:af:e5:a7:be:a2:6e:7c:50:53:8b:62:c6:2c:95:8e: a0:82:aa:72:d5:24:08:80:8a:3f:c5:14:61:27:2d:d3:e3:9c: 76:d5:d8:16:27:d5:02:b9:55:57:71:b9:a8:f5:1e:f9:e3:6e: 67:9e:59:0b:45:0e:b0:6b:b2:1d:6c:ff:3a:ce:6d:0a:fa:b9: 5c:ca:03:c0:32:3e:26:32:6c:88:85:8d:6e:3a:31:5a:92:43: 66:8e:09:e2:32:b8:8a:d5:7a:0a:12:c5:b2:c0:10:00:4c:79: a7:44:c6:bf:12:02:d7:ba:ef:bf:28:66:4a:00:0e:ea:e9:7a: f2:44:a5:5c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTNFRDExMC8GA1UEBRMoQzI5NTk3QjI1OEFENjYwQ0UwQkE3OTc1ODMwOUVCOEM1 Nzk1OTQzNTAeFw0yNDA4MjAyMTAzNTBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzUwNGI1LTRmNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnmyjsdvFpdP6d8XHazhTVT4um2UX7aXDu7rTf/B8RXCIMY8HtOKUtKkzXSXW8 mTJxV60qaAHM54OeczpWyMQQin5JipylFXMVujj/qUVi3XzrlxdM77zCCSv0E554 vlkAaH9cGfkTUSOV2PMtUuumtqKowXNUKv9thwCTkTWZa/Tl3x9QlNSVtTRp9HPC kZ5FeBawKQ2RDv+NWVnLMKy7mr+e0C/un5DgEBNB0uvzCjygfDb9T3UYk29inOHO LWuT73Cf2NJedKyoGmUCNyMz5go5dVFJh6/S6Rpzu7amX7wbZJdfEjURt8wJoP05 mH0z/DlLJixEPLXlIZEoKwMjAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUoLIPq3hr IJxMvINC4pp/xzWhWIowHwYDVR0jBBgwFoAUwpWXslitZgzgunl1gwnrjFeVlDUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxM0VELzcwMjhDNkM4NUYz NzExRUZCRjM2OUU1OEM0RjlBRTAyL3dwV1hzbGl0Wmd6Z3VubDFnd25yakZlVmxE VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd3BXWHNsaXRaZ3pndW5sMWd3bnJqRmVWbERVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTNFRC83MDI4QzZDODVGMzcxMUVGQkYzNjlFNThDNEY5QUUwMi9CMjhDQTlGODVG MzcxMUVGQTEwOENBMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQgQDANBgkqhkiG9w0BAQsFAAOCAQEAwhOX0L8ENxJS LJAtV6hh5oTm8sVLBAJbCrM4R5ra6SOBell1ZeKkimO0eS+b7r67LJNTy/AiaZWi in6YV8oiJH3tuDPT4LlesdML6uZnGxccdhwH5Nqivj3D611kKcjVHhQnoy60/Vfg HWddCuuW/Zuh2C5/BNmCniHxMyIFj9Cwr+WnvqJufFBTi2LGLJWOoIKqctUkCICK P8UUYSct0+OcdtXYFifVArlVV3G5qPUe+eNuZ55ZC0UOsGuyHWz/Os5tCvq5XMoD wDI+JjJsiIWNbjoxWpJDZo4J4jK4itV6ChLFssAQAEx5p0TGvxIC17rvvyhmSgAO 6ul68kSlXA== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:22 2024 by rpki-client on console-fra.rpki-client.org