$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/6CFB0FFCF65711EB8988A924C4F9AE02.roa File: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (raw, json) Hash identifier: wMP9I/AdfA5A2Gu8f07TbNhehTZ7LymaxW1TkEKbA2o= Subject key identifier: 07:DB:67:BA:84:30:8D:70:21:09:9B:B9:CD:11:E4:B0:A9:C8:A8:D3 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 053E Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/6CFB0FFCF65711EB8988A924C4F9AE02.roa Signing time: Sun 17 Dec 2023 00:32:33 +0000 ROA not before: Sun 17 Dec 2023 00:32:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139787 IP address blocks: 2001:df1:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Dec 17 00:32:33 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657e41a1-90e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:5a:42:b1:39:15:dc:59:aa:a3:ce:8f:5a: 79:b5:0d:38:4c:34:46:8e:61:99:55:bd:e1:73:49: 8c:0a:8e:a3:6f:de:be:d6:41:de:90:d6:a5:23:30: 98:6a:d5:32:8c:75:58:4f:5b:b6:5a:ee:94:7a:d7: a5:83:af:52:cb:2e:fb:10:96:d9:02:34:e6:1e:b9: 38:fb:85:fb:8a:f3:fb:cc:d4:ea:9d:b8:7b:74:f7: 05:b1:b4:c9:74:61:cd:85:69:83:55:2a:73:e0:e5: 67:4f:d7:02:7c:05:1a:80:00:8d:5e:8d:59:7e:95: 83:a7:d7:46:cf:35:31:3d:4f:b7:75:fb:8a:e4:3f: 72:8e:23:b2:6d:93:f6:67:cf:47:a7:2f:27:ff:93: 3a:91:1b:ce:1c:75:4e:bf:b6:9a:e3:a1:c5:4f:47: 3c:45:55:8a:5c:07:be:87:45:74:c2:08:08:d5:2b: 70:36:2a:66:bd:cc:26:e7:31:cd:86:d9:09:6a:da: be:8b:b6:5a:a0:5b:bd:3a:16:37:cc:26:97:20:5e: 6a:e8:4c:54:53:38:1e:75:af:cc:35:fd:05:4e:7d: 67:c1:61:5c:c0:32:c8:c1:b2:7f:ec:53:05:a9:9a: 5b:91:f7:ec:ca:90:8d:3e:53:7d:ab:c8:b2:b7:e1: 31:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DB:67:BA:84:30:8D:70:21:09:9B:B9:CD:11:E4:B0:A9:C8:A8:D3 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/6CFB0FFCF65711EB8988A924C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 7b:35:d1:dc:a0:86:8b:ee:0e:ec:4d:59:e1:ef:82:32:64:9c: dd:f6:91:ec:71:7c:02:73:0c:cf:ba:58:8c:8b:2e:a7:e5:3d: 12:ed:79:04:3a:c2:21:88:63:40:6d:a2:d2:67:07:6b:4f:01: dd:1d:39:b3:53:0f:00:c0:8a:49:8c:46:10:57:6c:9f:14:54: e3:6d:61:0b:fc:b3:d8:88:5d:5d:63:a3:d6:2f:52:f8:58:a9: 9c:ad:4a:a1:f2:9c:10:88:cc:2b:be:c9:f6:80:4f:0d:e5:7d: 6a:d4:ca:bb:a2:66:3d:d1:50:e1:49:11:2d:ae:b1:b3:7b:7b: 93:f8:82:40:61:36:1d:d5:23:b7:f9:0b:1d:48:10:73:54:41: fd:68:00:43:55:5e:c7:b3:e9:85:a2:00:64:27:da:e0:32:2f: 6c:b1:21:57:9c:f3:7c:68:f3:5d:69:ed:ef:32:79:dc:8a:27: 44:05:89:41:12:33:95:38:97:4d:61:6e:b9:9a:eb:04:f3:6d: 8e:81:65:37:85:0e:4d:27:25:13:5b:1d:fe:b3:23:41:20:4f: 6f:fb:e3:98:74:78:ec:12:c2:f2:6f:03:3d:16:b8:ea:b1:06: df:5c:be:84:20:ae:af:04:f9:dc:eb:6a:42:19:05:04:04:9e: 5d:ad:e0:15 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjMxMjE3MDAzMjMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlNDFhMS05MGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6haQrE5FdxZqqPOj1p5tQ04TDRGjmGZVb3hc0mMCo6jb96+1kHekNalIzCY atUyjHVYT1u2Wu6Uetelg69Syy77EJbZAjTmHrk4+4X7ivP7zNTqnbh7dPcFsbTJ dGHNhWmDVSpz4OVnT9cCfAUagACNXo1ZfpWDp9dGzzUxPU+3dfuK5D9yjiOybZP2 Z89Hpy8n/5M6kRvOHHVOv7aa46HFT0c8RVWKXAe+h0V0wggI1StwNipmvcwm5zHN htkJatq+i7ZaoFu9OhY3zCaXIF5q6ExUUzgeda/MNf0FTn1nwWFcwDLIwbJ/7FMF qZpbkffsypCNPlN9q8iyt+ExhQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAfbZ7qE MI1wIQmbuc0R5LCpyKjTMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFBQTAvMjI4Mzk2QkE5NUY0MTFFQkIzMUI4RjY2QzRGOUFFMDIvNkNGQjBGRkNG NjU3MTFFQjg5ODhBOTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3x/YAwDQYJKoZIhvcNAQELBQADggEBAHs10dyghovu DuxNWeHvgjJknN32kexxfAJzDM+6WIyLLqflPRLteQQ6wiGIY0BtotJnB2tPAd0d ObNTDwDAikmMRhBXbJ8UVONtYQv8s9iIXV1jo9YvUvhYqZytSqHynBCIzCu+yfaA Tw3lfWrUyruiZj3RUOFJES2usbN7e5P4gkBhNh3VI7f5Cx1IEHNUQf1oAENVXsez 6YWiAGQn2uAyL2yxIVec83xo811p7e8yedyKJ0QFiUESM5U4l01hbrma6wTzbY6B ZTeFDk0nJRNbHf6zI0EgT2/745h0eOwSwvJvAz0WuOqxBt9cvoQgrq8E+dzrakIZ BQQEnl2t4BU= -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org