$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa File: FE6C73289C9A11ED8123147BC4F9AE02.roa (raw, json) Hash identifier: Q35dPplckwcXibFwXwSrezG6FFNrbmD6fZLCuTrGB7U= Subject key identifier: F7:6A:9C:88:17:41:2C:8D:61:6F:03:36:02:BB:7A:11:63:22:04:31 Certificate issuer: /CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Certificate serial: 080C Authority key identifier: 21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa Signing time: Thu 08 Jun 2023 22:33:59 +0000 ROA not before: Thu 08 Jun 2023 22:33:59 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135098 IP address blocks: 2001:df3:a180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Validity Not Before: Jun 8 22:33:59 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64825757-df1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:f9:9f:8c:c5:47:8e:83:2a:fd:61:88:99: c7:cb:02:a6:d7:79:fb:ae:27:c9:fd:f6:69:27:3b: 3a:2e:bb:f0:84:9b:cc:92:18:ff:9c:e2:8f:6c:93: f6:5b:22:a3:1a:9f:ac:d0:96:19:cc:70:a8:79:2c: e0:49:bd:77:de:d8:1e:4d:f6:3b:05:c4:81:8d:0d: 92:a4:c5:62:89:fe:83:ce:04:60:82:35:ea:1f:17: 8e:6d:92:2b:ee:2c:31:b9:89:89:98:67:99:24:4d: a7:79:ce:1f:f0:36:47:e8:46:16:46:dd:25:2e:74: 3a:09:20:ab:bd:ee:89:db:5e:fe:1f:d7:ef:75:92: ea:08:75:5f:09:fd:1c:cb:1e:a8:fa:62:2a:0f:11: 20:e6:7b:79:4b:ef:97:9d:cb:b8:d0:a5:69:15:ef: 01:d4:8a:c6:c9:7e:e2:d3:dd:8b:2d:9e:f2:be:ec: 2f:ed:aa:7e:b2:28:67:b9:8d:7f:19:fc:96:a3:54: 17:88:4c:13:d6:01:28:c1:db:34:b5:9d:f1:cc:e7: e8:99:fd:46:a4:01:06:87:ac:b8:43:0c:0c:d7:c6: 53:f5:fe:9e:c4:9a:9a:70:22:e2:e8:e7:39:c0:33: 02:d5:86:c7:f4:54:1c:a2:05:5b:8a:52:47:fe:21: b6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6A:9C:88:17:41:2C:8D:61:6F:03:36:02:BB:7A:11:63:22:04:31 X509v3 Authority Key Identifier: keyid:21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:a180::/48 Signature Algorithm: sha256WithRSAEncryption 7c:7e:c0:e2:1d:a9:df:df:26:2a:d9:e0:2e:49:b3:07:dd:08: e7:5d:a8:0f:00:a4:1a:2a:bb:d4:2e:a2:e7:90:36:fc:fa:3e: ab:51:24:6d:6e:09:9c:5e:c9:84:c7:fb:28:d9:9f:92:81:dc: ff:ab:5d:95:02:1a:08:a2:15:d5:49:ac:f4:4b:94:dd:55:04: 5c:f9:7b:de:34:d1:c2:5d:27:bc:3f:39:de:16:cf:47:30:4c: 8c:fe:e5:ce:ff:5e:d3:4a:c0:45:2d:fd:52:bc:8a:81:38:af: a7:96:f8:de:45:2b:95:25:1a:5b:1a:67:0b:ab:12:3e:fb:6b: 90:82:92:a6:c2:ca:34:f0:f4:ae:3b:67:c2:f5:26:e2:c4:0a: d8:63:a0:e1:d3:63:8d:87:a0:8a:29:d9:9f:79:83:bc:12:61: 3b:c2:0d:c9:bb:e2:33:8f:cd:ea:93:06:d0:5a:68:8a:fc:f9: bf:e4:cf:2c:e9:8d:bb:00:34:6e:ee:c5:d5:5a:aa:b7:80:94: 22:f6:12:27:ac:cf:11:43:17:b9:1d:45:15:79:05:01:a2:12: 90:70:42:29:19:5d:5b:06:55:5a:a4:0d:a3:74:ba:1b:c5:9b: 4a:42:7a:b4:cf:eb:0d:d1:cb:23:f6:d5:e0:5f:1a:c8:54:7e: 5f:41:52:09 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxRDIxMTAvBgNVBAUTKDIxRkM4MTVGQ0IxQ0VBRDc3MEJENkM5MDM2OTQ3NDVG NzFDQTcxOTUwHhcNMjMwNjA4MjIzMzU5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyNTc1Ny1kZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOz5n4zFR46DKv1hiJnHywKm13n7rifJ/fZpJzs6LrvwhJvMkhj/nOKPbJP2 WyKjGp+s0JYZzHCoeSzgSb133tgeTfY7BcSBjQ2SpMViif6DzgRggjXqHxeObZIr 7iwxuYmJmGeZJE2nec4f8DZH6EYWRt0lLnQ6CSCrve6J217+H9fvdZLqCHVfCf0c yx6o+mIqDxEg5nt5S++Xncu40KVpFe8B1IrGyX7i092LLZ7yvuwv7ap+sihnuY1/ GfyWo1QXiEwT1gEowds0tZ3xzOfomf1GpAEGh6y4QwwM18ZT9f6exJqacCLi6Oc5 wDMC1YbH9FQcogVbilJH/iG2xwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPdqnIgX QSyNYW8DNgK7ehFjIgQxMB8GA1UdIwQYMBaAFCH8gV/LHOrXcL1skDaUdF9xynGV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFEMi84QzE0RTk0NDkx RDExMUVBQTUzM0E5NzhDNEY5QUUwMi9JZnlCWDhzYzZ0ZHd2V3lRTnBSMFgzSEtj WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmeUJYOHNjNnRkd3ZXeVFOcFIwWDNIS2NaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxRDIvOEMxNEU5NDQ5MUQxMTFFQUE1MzNBOTc4QzRGOUFFMDIvRkU2QzczMjg5 QzlBMTFFRDgxMjMxNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zoYAwDQYJKoZIhvcNAQELBQADggEBAHx+wOIdqd/f JirZ4C5JswfdCOddqA8ApBoqu9QuoueQNvz6PqtRJG1uCZxeyYTH+yjZn5KB3P+r XZUCGgiiFdVJrPRLlN1VBFz5e9400cJdJ7w/Od4Wz0cwTIz+5c7/XtNKwEUt/VK8 ioE4r6eW+N5FK5UlGlsaZwurEj77a5CCkqbCyjTw9K47Z8L1JuLECthjoOHTY42H oIop2Z95g7wSYTvCDcm74jOPzeqTBtBaaIr8+b/kzyzpjbsANG7uxdVaqreAlCL2 EieszxFDF7kdRRV5BQGiEpBwQikZXVsGVVqkDaN0uhvFm0pCerTP6w3RyyP21eBf GshUfl9BUgk= -----END CERTIFICATE-----Generated at Sat May 18 22:14:04 2024 by rpki-client on console-fra.rpki-client.org