$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa File: 280D2770EBB011EA8AF6012DC4F9AE02.roa (raw, json) Hash identifier: vl/LhboPbfhb4po2/R+21X77qlX9wqRDDqveokiyeao= Subject key identifier: 8C:D5:2D:40:D7:B8:FC:EA:64:B6:5C:B8:D3:29:0A:6A:AF:AD:BF:FC Certificate issuer: /CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Certificate serial: 0B0B Authority key identifier: 96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa Signing time: Tue 12 Nov 2024 18:57:37 +0000 ROA not before: Tue 12 Nov 2024 18:57:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 2001:def:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Validity Not Before: Nov 12 18:57:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733a521-562a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:57:f5:1b:49:2d:6f:9c:18:be:2e:d3:e2:73: eb:27:20:10:b7:33:4a:11:0b:7a:52:0b:b0:e4:cd: 4f:63:d8:97:92:21:2c:b7:91:82:36:49:f2:9d:95: 88:51:3b:03:ef:c4:84:5f:ed:f9:ba:0e:34:9f:ee: 1e:fe:64:75:1e:5f:24:ea:87:9a:bd:2d:2f:20:78: 73:55:dc:68:ea:ed:84:1a:e1:90:5e:29:68:ab:d5: 8e:e5:17:7a:82:bf:9b:89:1c:5b:ef:91:69:cc:3a: f9:61:32:53:b2:59:49:54:ec:96:1e:e6:5a:0a:42: d6:95:76:19:29:c0:01:b1:98:dd:f2:1b:63:75:df: d0:c9:55:1d:c3:34:6f:d9:4f:94:26:65:4b:f8:6d: eb:90:3c:aa:d9:10:61:47:df:7f:94:d1:03:ce:e1: 1e:87:08:fa:d9:6b:51:58:28:0b:29:40:9c:bf:7e: 24:31:2d:38:52:c5:2e:bd:f9:2b:8d:e8:5e:f8:ec: d2:82:46:41:97:fc:6d:d7:68:29:c8:38:17:0e:53: e1:2e:da:28:f4:f0:39:73:fa:da:8e:fc:c5:95:26: d5:73:8a:d0:2d:ef:6c:83:4d:00:b1:27:2e:b1:9e: 9a:cc:49:c7:28:97:c0:ff:82:37:e6:cc:41:4b:df: 35:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D5:2D:40:D7:B8:FC:EA:64:B6:5C:B8:D3:29:0A:6A:AF:AD:BF:FC X509v3 Authority Key Identifier: keyid:96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:def:8000::/48 Signature Algorithm: sha256WithRSAEncryption 60:c2:d8:d4:45:1b:76:82:04:21:f4:e3:68:5b:1d:8f:d2:7f: ae:3e:df:2f:13:4b:fb:f4:4a:5b:1b:2f:41:98:da:6a:54:ec: 80:30:7b:b1:4a:4c:4f:0b:20:dd:4b:fd:71:e9:f4:4f:6c:76: 63:d4:9d:a2:2b:cb:62:2b:b0:34:77:31:64:57:d1:01:a0:e8: da:b4:4d:27:fb:ce:28:e1:74:ee:a1:9a:9d:a1:0c:f6:de:7c: ea:b6:0c:e5:89:4a:9c:ae:7e:35:c9:7f:ca:d1:a2:27:be:d7: b6:dc:4e:da:ae:0b:20:be:11:b0:8f:90:26:38:22:65:1b:a5: 4d:6c:0b:d3:33:ac:1a:c2:08:2f:a3:7b:b4:8a:05:ca:eb:ce: 98:c2:49:d1:45:81:a9:2d:a3:1e:8c:73:dd:8c:c3:19:82:ad: d5:9d:42:c4:92:e1:e6:60:13:a5:40:8d:ab:52:57:00:6b:f0: 57:e5:45:ee:dc:1a:6c:c0:c1:56:cb:0b:56:1c:c2:80:cc:e3: ea:b1:4c:3b:ce:9e:44:1d:18:01:93:11:72:03:f7:58:23:16: ad:e4:c9:41:ba:34:76:30:1a:93:52:fd:d3:58:62:21:6a:87: fa:23:1c:c2:89:99:3f:ab:41:3c:30:f2:d6:f7:68:81:dc:57: 4b:01:9f:e9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDQTYxMTAvBgNVBAUTKDk2RjgxN0JENDA3MEI1Q0MxOUEwQjUzOTNENTVCRTc3 Mzk4MEE4MTAwHhcNMjQxMTEyMTg1NzM3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYTUyMS01NjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11f1G0ktb5wYvi7T4nPrJyAQtzNKEQt6Uguw5M1PY9iXkiEst5GCNknynZWI UTsD78SEX+35ug40n+4e/mR1Hl8k6oeavS0vIHhzVdxo6u2EGuGQXiloq9WO5Rd6 gr+biRxb75FpzDr5YTJTsllJVOyWHuZaCkLWlXYZKcABsZjd8htjdd/QyVUdwzRv 2U+UJmVL+G3rkDyq2RBhR99/lNEDzuEehwj62WtRWCgLKUCcv34kMS04UsUuvfkr jehe+OzSgkZBl/xt12gpyDgXDlPhLtoo9PA5c/rajvzFlSbVc4rQLe9sg00AsScu sZ6azEnHKJfA/4I35sxBS981iwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIzVLUDX uPzqZLZcuNMpCmqvrb/8MB8GA1UdIwQYMBaAFJb4F71AcLXMGaC1OT1Vvnc5gKgQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOENBNi85QkQ2NDA1NjMy MDYxMUVBQTJGNkIzMzJDNEY5QUUwMi9sdmdYdlVCd3Rjd1pvTFU1UFZXLWR6bUFx QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2Z1h2VUJ3dGN3Wm9MVTVQVlctZHptQXFCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhDQTYvOUJENjQwNTYzMjA2MTFFQUEyRjZCMzMyQzRGOUFFMDIvMjgwRDI3NzBF QkIwMTFFQThBRjYwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3vgAAwDQYJKoZIhvcNAQELBQADggEBAGDC2NRFG3aC BCH042hbHY/Sf64+3y8TS/v0SlsbL0GY2mpU7IAwe7FKTE8LIN1L/XHp9E9sdmPU naIry2IrsDR3MWRX0QGg6Nq0TSf7zijhdO6hmp2hDPbefOq2DOWJSpyufjXJf8rR oie+17bcTtquCyC+EbCPkCY4ImUbpU1sC9MzrBrCCC+je7SKBcrrzpjCSdFFgakt ox6Mc92MwxmCrdWdQsSS4eZgE6VAjatSVwBr8FflRe7cGmzAwVbLC1YcwoDM4+qx TDvOnkQdGAGTEXID91gjFq3kyUG6NHYwGpNS/dNYYiFqh/ojHMKJmT+rQTww8tb3 aIHcV0sBn+k= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:58 2024 by rpki-client on console-ams.rpki-client.org