$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F025BAB69D5911EEAA9F0413C4F9AE02.roa File: F025BAB69D5911EEAA9F0413C4F9AE02.roa (raw, json) Hash identifier: jwuK5ePHrBaL7CXKlyKa94RXbU7x9vsd7Z/Ijd7Nwio= Subject key identifier: 6A:8D:4C:51:34:20:AD:F7:8C:DA:86:1D:D8:35:3D:F8:B7:3D:CB:B3 Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Certificate serial: 3E37 Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F025BAB69D5911EEAA9F0413C4F9AE02.roa Signing time: Mon 18 Dec 2023 04:00:10 +0000 ROA not before: Mon 18 Dec 2023 04:00:10 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 3970 IP address blocks: 2001:df7:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15927 (0x3e37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Validity Not Before: Dec 18 04:00:10 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=657fc3ca-f40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:05:7e:57:93:0e:6f:4f:ba:b0:20:44:f9: 16:65:37:b2:2f:10:ad:ec:ed:16:c8:29:fb:c7:34: 81:79:c5:f3:0b:d6:16:00:98:30:01:3c:bd:ec:57: a3:c5:05:57:a2:f1:bf:1c:bb:ca:dd:bd:95:aa:24: 22:9c:7a:fe:37:3e:64:a0:c0:7a:b8:54:de:49:48: c6:ab:ab:a9:ea:6a:97:10:5d:1d:dd:75:88:bc:c5: 3c:6d:d9:01:12:ba:27:23:a9:67:ca:3b:d6:b8:9e: 62:c6:1e:70:9e:30:58:35:c0:4a:fc:4b:69:13:a1: 80:be:3b:42:60:ec:34:38:ae:b5:fe:f1:00:d1:5f: 9c:66:7c:d6:86:9e:79:d4:53:19:f9:05:30:9d:93: a4:44:e9:07:da:46:29:1b:e1:5d:92:ec:38:8f:52: 93:f9:81:fa:bf:7d:03:a2:a9:d0:d2:42:fc:00:92: f7:5c:52:24:1f:86:22:42:50:c9:fd:24:1b:c8:6b: de:57:59:68:09:f0:4d:a3:76:97:49:ff:79:c5:74: e9:dc:d8:85:38:65:f0:04:e7:c2:a5:d8:c9:e9:8f: ed:94:2c:13:e4:a7:06:95:2d:27:39:5f:0a:33:ed: f3:6e:fd:f7:68:65:21:a0:c3:c3:10:b5:8b:ec:8c: b3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8D:4C:51:34:20:AD:F7:8C:DA:86:1D:D8:35:3D:F8:B7:3D:CB:B3 X509v3 Authority Key Identifier: keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F025BAB69D5911EEAA9F0413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:5380::/48 Signature Algorithm: sha256WithRSAEncryption b4:c4:6e:76:ef:d6:6b:cb:e2:18:be:2f:64:5e:ea:fb:1c:d5: c2:14:89:19:f6:ed:f2:2f:a4:8f:12:54:ce:08:07:da:22:be: bc:56:40:af:c3:88:8f:03:00:d9:40:77:b0:55:06:2c:5f:71: e2:c7:78:b7:93:14:cd:07:4c:a1:31:da:16:ef:c6:97:6e:d3: 87:7c:bc:2e:b0:27:b0:f4:47:45:fb:6c:9b:97:d2:06:4c:97: 00:c7:b9:6b:9c:26:85:1b:55:1c:63:8a:c3:11:f8:36:2e:2d: 3c:11:5f:0b:6b:0d:c9:3f:72:7b:a9:fc:77:39:9b:69:fb:8e: 97:91:17:52:d8:17:da:8d:39:3e:94:c4:a0:f9:ef:7d:f3:b2: 97:ca:85:a6:d2:f9:3e:d0:63:24:93:21:67:a0:be:1e:d2:b3: 5f:0d:6e:56:d0:7c:3d:1c:15:42:3f:42:67:0a:05:69:50:38: 53:bc:c3:e9:d9:65:2a:39:b6:cf:7e:4f:46:fb:5f:02:a2:1b: 66:f6:7b:e1:1f:de:1d:52:f2:ca:f5:d0:32:0b:d5:92:5c:c7: b7:5e:ab:8b:3b:46:2e:ae:ed:68:80:b1:f8:ea:11:93:0c:95: 5d:bc:ba:01:4a:56:91:7e:77:c3:40:6b:67:be:49:25:13:49: f3:64:5f:37 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICPjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwMUUxMTAvBgNVBAUTKDgyNzhGNDdERUM1QjdBREMyMDE4OTdGOTlCQ0M2RTJC RkE4OEQwMTUwHhcNMjMxMjE4MDQwMDEwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdmYzNjYS1mNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbEFfleTDm9PurAgRPkWZTeyLxCt7O0WyCn7xzSBecXzC9YWAJgwATy97Fej xQVXovG/HLvK3b2VqiQinHr+Nz5koMB6uFTeSUjGq6up6mqXEF0d3XWIvMU8bdkB EronI6lnyjvWuJ5ixh5wnjBYNcBK/EtpE6GAvjtCYOw0OK61/vEA0V+cZnzWhp55 1FMZ+QUwnZOkROkH2kYpG+Fdkuw4j1KT+YH6v30DoqnQ0kL8AJL3XFIkH4YiQlDJ /SQbyGveV1loCfBNo3aXSf95xXTp3NiFOGXwBOfCpdjJ6Y/tlCwT5KcGlS0nOV8K M+3zbv33aGUhoMPDELWL7IyzYwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGqNTFE0 IK33jNqGHdg1Pfi3PcuzMB8GA1UdIwQYMBaAFIJ49H3sW3rcIBiX+ZvMbiv6iNAV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDAxRS8zNUZBMEY1NjFE NzgxMUUyOTM3NzFGQzQwOEIwMkNEMi9nbmowZmV4YmV0d2dHSmY1bTh4dUtfcUkw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2duajBmZXhiZXR3Z0dKZjVtOHh1S19xSTBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAwMUUvMzVGQTBGNTYxRDc4MTFFMjkzNzcxRkM0MDhCMDJDRDIvRjAyNUJBQjY5 RDU5MTFFRUFBOUYwNDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33U4AwDQYJKoZIhvcNAQELBQADggEBALTEbnbv1mvL 4hi+L2Re6vsc1cIUiRn27fIvpI8SVM4IB9oivrxWQK/DiI8DANlAd7BVBixfceLH eLeTFM0HTKEx2hbvxpdu04d8vC6wJ7D0R0X7bJuX0gZMlwDHuWucJoUbVRxjisMR +DYuLTwRXwtrDck/cnup/Hc5m2n7jpeRF1LYF9qNOT6UxKD5733zspfKhabS+T7Q YySTIWegvh7Ss18NblbQfD0cFUI/QmcKBWlQOFO8w+nZZSo5ts9+T0b7XwKiG2b2 e+Ef3h1S8sr10DIL1ZJcx7deq4s7Ri6u7WiAsfjqEZMMlV28ugFKVpF+d8NAa2e+ SSUTSfNkXzc= -----END CERTIFICATE-----Generated at Tue Apr 30 15:52:32 2024 by rpki-client on console-fra.rpki-client.org