$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa File: 280D2770EBB011EA8AF6012DC4F9AE02.roa (raw, json) Hash identifier: bWYFe1lIWS7zczRMlBoQyAr9XusOTIsZiwp6nxRS3eI= Subject key identifier: FF:05:B4:2D:AF:C9:54:52:69:16:C6:5D:BF:F1:A4:F4:8F:FB:E8:67 Certificate issuer: /CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Certificate serial: 0A52 Authority key identifier: 96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa Signing time: Wed 22 Nov 2023 20:08:12 +0000 ROA not before: Wed 22 Nov 2023 20:08:12 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 0 IP address blocks: 2001:def:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 20:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Validity Not Before: Nov 22 20:08:12 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655e5fac-bd70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2e:d5:37:e7:bc:31:bb:23:ea:5d:d0:bf:02: 66:e0:2d:55:c8:ba:79:b8:77:7e:5f:8e:a1:d1:29: c0:89:7a:08:66:c0:b5:20:c0:cd:27:3c:76:3c:aa: ee:3c:52:56:68:24:b7:78:76:05:aa:df:52:f5:27: ef:3e:69:55:e0:5d:e9:37:93:a9:c3:3b:7f:02:d6: bb:49:f5:6b:39:09:39:7a:29:7f:99:fc:a2:f0:5f: 01:da:5b:49:0e:97:e6:68:83:11:dc:88:60:4b:4c: 5d:87:62:a3:81:ff:0e:b3:81:f8:9f:e4:43:cd:58: 36:51:a2:0f:4d:2b:d6:a3:9a:7e:6c:14:f7:75:91: 2d:04:78:ec:ef:47:36:a0:28:c9:ef:8c:e1:94:26: b9:d1:9d:c0:c3:cd:cc:b4:f2:6b:de:cd:7d:09:23: 4f:a7:11:b0:c0:97:99:f2:29:51:4b:4d:5a:e3:7d: 6f:8b:24:4a:33:5b:31:fe:2e:3d:70:28:79:5a:bc: 61:08:59:0e:35:7f:08:0f:0a:41:95:3f:5e:0e:59: 05:e8:6f:b7:c5:78:8d:9b:88:72:e4:bf:31:bf:c3: 7f:24:bf:00:bd:c0:15:f3:ee:70:95:fb:b2:dc:34: 61:cf:58:ed:ad:23:d3:3a:6b:2a:ff:01:a9:ea:ed: f6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:05:B4:2D:AF:C9:54:52:69:16:C6:5D:BF:F1:A4:F4:8F:FB:E8:67 X509v3 Authority Key Identifier: keyid:96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:def:8000::/48 Signature Algorithm: sha256WithRSAEncryption 12:9a:8d:65:de:8f:b5:ef:8d:43:a8:61:32:1d:dd:ca:6b:c4: 9a:be:72:b0:81:fb:02:73:d2:54:12:5f:66:5e:f2:99:fa:5e: e4:1f:5e:11:5c:d7:e9:89:4e:24:a1:55:02:28:63:d3:cb:04: a1:31:3e:b4:26:95:0a:dc:be:7b:54:9f:85:a4:1a:62:be:72: 33:8c:d9:69:a8:19:7f:d8:72:ee:27:44:8a:a5:bf:5b:13:91: 5e:36:1a:ef:42:13:ba:ae:22:25:ec:12:2c:fd:17:85:2c:55: d7:e1:3e:4f:3a:96:91:8c:98:9a:62:a3:15:21:e4:48:ea:bf: 0c:61:3e:8f:e6:0f:ae:3b:f6:b4:76:29:44:a5:56:3b:ef:f0: 0e:ef:36:e9:ce:df:a9:10:48:27:99:4c:78:b7:dc:ad:80:9f: 4b:75:f2:6b:1e:5d:fb:06:12:95:e5:3b:da:91:c6:2e:b9:0f: 49:86:bb:5e:60:2a:02:01:97:d5:99:48:46:f6:dc:9d:6f:a2: ce:78:3f:b5:0a:11:ff:fd:2c:2b:90:6a:e0:fc:8c:ed:9c:46: 98:b3:d0:e3:75:cb:d4:74:33:18:f4:a8:f1:da:cc:7b:73:c6: 26:24:ab:c2:6d:ac:36:cc:a7:df:05:27:18:63:c5:87:f0:73: d3:b7:a4:63 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDQTYxMTAvBgNVBAUTKDk2RjgxN0JENDA3MEI1Q0MxOUEwQjUzOTNENTVCRTc3 Mzk4MEE4MTAwHhcNMjMxMTIyMjAwODEyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlNWZhYy1iZDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7i7VN+e8Mbsj6l3QvwJm4C1VyLp5uHd+X46h0SnAiXoIZsC1IMDNJzx2PKru PFJWaCS3eHYFqt9S9SfvPmlV4F3pN5Opwzt/Ata7SfVrOQk5eil/mfyi8F8B2ltJ DpfmaIMR3IhgS0xdh2Kjgf8Os4H4n+RDzVg2UaIPTSvWo5p+bBT3dZEtBHjs70c2 oCjJ74zhlCa50Z3Aw83MtPJr3s19CSNPpxGwwJeZ8ilRS01a431viyRKM1sx/i49 cCh5WrxhCFkONX8IDwpBlT9eDlkF6G+3xXiNm4hy5L8xv8N/JL8AvcAV8+5wlfuy 3DRhz1jtrSPTOmsq/wGp6u328wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP8FtC2v yVRSaRbGXb/xpPSP++hnMB8GA1UdIwQYMBaAFJb4F71AcLXMGaC1OT1Vvnc5gKgQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOENBNi85QkQ2NDA1NjMy MDYxMUVBQTJGNkIzMzJDNEY5QUUwMi9sdmdYdlVCd3Rjd1pvTFU1UFZXLWR6bUFx QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2Z1h2VUJ3dGN3Wm9MVTVQVlctZHptQXFCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhDQTYvOUJENjQwNTYzMjA2MTFFQUEyRjZCMzMyQzRGOUFFMDIvMjgwRDI3NzBF QkIwMTFFQThBRjYwMTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3vgAAwDQYJKoZIhvcNAQELBQADggEBABKajWXej7Xv jUOoYTId3cprxJq+crCB+wJz0lQSX2Ze8pn6XuQfXhFc1+mJTiShVQIoY9PLBKEx PrQmlQrcvntUn4WkGmK+cjOM2WmoGX/Ycu4nRIqlv1sTkV42Gu9CE7quIiXsEiz9 F4UsVdfhPk86lpGMmJpioxUh5EjqvwxhPo/mD6479rR2KUSlVjvv8A7vNunO36kQ SCeZTHi33K2An0t18mseXfsGEpXlO9qRxi65D0mGu15gKgIBl9WZSEb23J1vos54 P7UKEf/9LCuQauD8jO2cRpiz0ON1y9R0Mxj0qPHazHtzxiYkq8JtrDbMp98FJxhj xYfwc9O3pGM= -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:04 2024 by rpki-client on console-fra.rpki-client.org