$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa File: BC60BC2A63F711EA8CBEB029C4F9AE02.roa (raw, json) Hash identifier: wRvd5l9La3MSVA49dLn9S92nbQQvOi4LJr/5XnlTFpc= Subject key identifier: F3:48:03:68:CB:7E:D6:07:D3:E2:16:FB:82:2F:B5:0B:10:BF:75:D4 Certificate issuer: /CN=A919EF51/serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Certificate serial: 0AA3 Authority key identifier: 52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa Signing time: Sat 14 Sep 2024 20:38:26 +0000 ROA not before: Sat 14 Sep 2024 20:38:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 2001:7fa:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF51/serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Validity Not Before: Sep 14 20:38:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e5f441-738e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:e9:5b:69:b5:57:3f:99:ae:37:e8:ee:04: 6d:8c:c2:1f:a9:63:21:2d:cf:b9:60:c7:d4:83:29: 83:ac:3e:c9:03:82:a6:fc:52:5e:39:2d:f0:61:f4: db:38:c4:64:d9:b1:81:2c:76:07:be:ed:b7:f8:8b: c0:6e:1b:e4:d1:d0:62:b9:f6:32:53:41:61:01:4a: e4:28:ec:f6:8d:26:65:67:95:cc:17:59:5e:fe:a5: eb:e5:6c:17:a9:cd:56:9f:a2:04:11:10:1b:17:ba: 41:77:de:0b:53:08:60:5a:d0:55:08:11:06:34:78: 9e:7f:b9:9d:74:d5:0b:d0:19:08:4b:9b:6e:da:b1: 44:61:d7:9f:f5:f3:58:f2:43:c1:0a:8d:b8:0b:e4: 3a:cc:b2:ee:7e:0e:d3:d0:a7:65:58:1b:69:cf:5a: b7:9f:3e:cd:b2:51:4b:2e:0d:6f:da:5a:7e:c0:18: 54:8a:59:31:5b:ae:4e:d5:31:7b:5f:ed:34:61:3b: 61:a6:e4:4c:d9:14:94:73:6c:dc:25:9a:35:61:39: 48:3b:3e:96:14:26:7f:84:e7:b9:35:16:ea:48:c5: 96:60:92:71:86:5f:1a:28:f3:91:7a:ae:19:52:32: ba:71:fd:cb:3d:70:f7:a9:f2:d4:9f:c4:c1:05:6a: 7a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:48:03:68:CB:7E:D6:07:D3:E2:16:FB:82:2F:B5:0B:10:BF:75:D4 X509v3 Authority Key Identifier: keyid:52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/BC60BC2A63F711EA8CBEB029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:11::/48 Signature Algorithm: sha256WithRSAEncryption 4a:0f:6b:6a:fc:07:8c:97:fd:d9:77:da:86:d3:8f:12:54:3f: 8b:b8:43:70:cd:5b:63:fa:24:d1:1b:4c:cc:18:60:c0:4a:d2: ce:7e:20:57:a5:9d:61:26:47:1f:b7:ed:03:c0:50:a0:33:ca: cb:aa:00:8d:c0:59:b6:77:d8:36:ad:61:af:1a:06:e6:c5:84: 1d:cf:b1:4e:33:6f:3e:fe:83:13:64:32:9a:26:c5:6f:9c:48: a9:5d:78:b7:a4:3f:4c:4e:b6:68:97:aa:62:2c:5c:bc:4c:74: f3:1d:1b:3f:d5:d0:bf:b7:91:5b:5b:7a:e5:57:f2:08:9f:f8: 27:53:12:ea:3e:91:42:a9:90:a4:1b:b1:1a:ce:13:96:cc:09: d9:78:fd:e6:2a:65:48:ec:e4:8e:84:ed:77:71:1c:d8:d9:f6: e5:95:b6:64:b4:32:fb:9c:df:ba:52:78:c8:45:24:4a:77:42: 3a:e0:cb:7c:f4:54:bc:35:aa:24:45:49:05:bb:74:d5:66:12: e0:6e:56:83:c4:34:ee:4d:79:21:6d:8e:13:72:cf:50:fa:ef: 84:c1:92:2d:4b:19:96:4b:39:cf:ef:75:47:6c:0f:f4:18:f2: aa:a7:51:72:fd:58:5f:1b:d8:9e:91:4b:e1:c2:ff:87:18:b4: a6:bc:9d:89 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNTExMTAvBgNVBAUTKDUyRDY4MEUwNDVEQ0U5OTA3ODlFMEQ3NzcyNjE3QzYw QzM2RUQxOEUwHhcNMjQwOTE0MjAzODI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU1ZjQ0MS03MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhrpW2m1Vz+Zrjfo7gRtjMIfqWMhLc+5YMfUgymDrD7JA4Km/FJeOS3wYfTb OMRk2bGBLHYHvu23+IvAbhvk0dBiufYyU0FhAUrkKOz2jSZlZ5XMF1le/qXr5WwX qc1Wn6IEERAbF7pBd94LUwhgWtBVCBEGNHief7mddNUL0BkIS5tu2rFEYdef9fNY 8kPBCo24C+Q6zLLufg7T0KdlWBtpz1q3nz7NslFLLg1v2lp+wBhUilkxW65O1TF7 X+00YTthpuRM2RSUc2zcJZo1YTlIOz6WFCZ/hOe5NRbqSMWWYJJxhl8aKPOReq4Z UjK6cf3LPXD3qfLUn8TBBWp6mQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPNIA2jL ftYH0+IW+4IvtQsQv3XUMB8GA1UdIwQYMBaAFFLWgOBF3OmQeJ4Nd3JhfGDDbtGO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY1MS9CQTNDRDRBNjNE ODIxMUVBOUYyNjczNzBDNEY5QUUwMi9VdGFBNEVYYzZaQjRuZzEzY21GOFlNTnUw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V0YUE0RVhjNlpCNG5nMTNjbUY4WU1OdTBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGNTEvQkEzQ0Q0QTYzRDgyMTFFQTlGMjY3MzcwQzRGOUFFMDIvQkM2MEJDMkE2 M0Y3MTFFQThDQkVCMDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQf6ABEwDQYJKoZIhvcNAQELBQADggEBAEoPa2r8B4yX /dl32obTjxJUP4u4Q3DNW2P6JNEbTMwYYMBK0s5+IFelnWEmRx+37QPAUKAzysuq AI3AWbZ32DatYa8aBubFhB3PsU4zbz7+gxNkMpomxW+cSKldeLekP0xOtmiXqmIs XLxMdPMdGz/V0L+3kVtbeuVX8gif+CdTEuo+kUKpkKQbsRrOE5bMCdl4/eYqZUjs 5I6E7XdxHNjZ9uWVtmS0Mvuc37pSeMhFJEp3Qjrgy3z0VLw1qiRFSQW7dNVmEuBu VoPENO5NeSFtjhNyz1D674TBki1LGZZLOc/vdUdsD/QY8qqnUXL9WF8b2J6RS+HC /4cYtKa8nYk= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:56 2024 by rpki-client on console-ams.rpki-client.org