$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A30DC17880FE11E985D53F55C4F9AE02.roa File: A30DC17880FE11E985D53F55C4F9AE02.roa (raw, json) Hash identifier: qgk+fzy5+bJ/P0TG94jLIDzU/wj1mkJDF7MO6OIp0JE= Subject key identifier: FD:28:F7:0E:C8:6D:C0:0C:8D:F9:85:DC:7A:7C:05:A2:71:A4:2D:0A Certificate issuer: /CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Certificate serial: 32BB Authority key identifier: D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A30DC17880FE11E985D53F55C4F9AE02.roa Signing time: Wed 20 Dec 2023 15:41:04 +0000 ROA not before: Wed 20 Dec 2023 15:41:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 24514 IP address blocks: 2001:df0:427::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12987 (0x32bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Validity Not Before: Dec 20 15:41:04 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65830b10-aa45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:43:00:85:23:e5:35:30:98:86:1e:a3:0b:52: 9e:93:fc:a5:06:b9:1a:c7:a5:3c:96:b2:d4:bc:c1: bd:9a:6c:c1:6c:2a:e5:36:d0:79:34:f0:95:cd:4b: 2b:73:d2:8c:c9:73:a4:bf:bf:d9:c1:8c:0a:bf:3a: f8:14:ae:c9:e6:d6:cd:a3:44:bb:ca:1b:b1:18:c4: f0:44:bb:1d:f3:4b:1a:a8:f7:cf:08:7c:a0:ed:bd: b6:28:53:85:20:4e:8c:6a:05:84:04:16:b0:96:7d: 32:78:0f:de:07:e0:53:39:ff:88:8b:c5:fe:2a:89: 97:7c:a8:ac:b3:d0:37:8f:97:29:c8:50:29:f1:fb: af:73:30:fb:31:5c:12:bb:ea:4b:ef:6d:e1:e8:9c: f3:c6:20:29:62:54:45:b1:5d:01:4b:f4:ea:ed:01: 7f:3c:05:0c:9f:75:df:18:cd:28:42:3b:a1:18:03: a5:7a:39:c5:c1:3f:d9:28:43:fb:b8:37:88:e6:51: f0:dc:8e:7d:0f:94:e8:dc:4d:42:f2:c5:34:4b:17: df:bd:c5:83:28:57:0f:4a:80:97:50:c8:e5:ff:72: 96:f1:3d:20:e0:5c:56:ca:85:12:82:3b:3f:3c:3a: 97:59:9f:ca:98:8f:59:ea:46:4e:97:a4:f9:45:64: ed:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:28:F7:0E:C8:6D:C0:0C:8D:F9:85:DC:7A:7C:05:A2:71:A4:2D:0A X509v3 Authority Key Identifier: keyid:D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A30DC17880FE11E985D53F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:427::/48 Signature Algorithm: sha256WithRSAEncryption b7:bb:ae:64:e8:c1:c2:ed:d3:0e:d9:41:d5:05:99:1e:4f:d2: ae:b5:2c:6a:79:09:c0:ef:7b:7d:3e:23:45:fc:74:4f:87:08: d4:e1:7c:81:08:a4:b0:b9:05:7b:b2:c0:81:91:40:4b:51:34: 3e:52:6c:fd:9e:1b:4b:70:06:b0:1a:d7:ae:99:cf:1e:57:80: b8:d0:1f:41:a5:d2:0f:8d:dc:ef:58:92:f4:3d:08:5e:86:8a: ac:07:96:e6:d5:67:ac:e0:41:d9:e2:7e:d7:a7:ed:0f:a5:42: 9e:b2:17:a9:f1:69:eb:0d:e7:01:ec:f3:b1:46:64:d5:f7:ae: 42:46:9e:3d:e9:49:5b:36:50:20:77:e7:f1:26:2c:12:f7:96: 4d:2b:69:c1:db:a8:d0:f8:91:7a:9c:4e:e2:86:0d:80:26:49: b7:36:5a:fc:9b:d1:67:78:b6:e5:24:14:6a:db:a8:15:3c:e3: b0:18:8a:5e:19:f1:9f:6f:10:58:3b:9c:06:2d:a5:4e:73:32: d4:22:a5:4e:d7:0c:79:fb:43:19:3a:33:e7:4a:45:01:23:8a: f6:75:0e:f0:23:dc:ac:7a:b2:d3:ac:8a:c7:ea:dd:80:6e:4a: be:bc:c8:3a:2b:f0:00:f9:48:07:b1:ad:14:b6:f3:d0:90:0d: 1a:2a:c8:97 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICMrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFRjkxMTAvBgNVBAUTKEQzMkRBMzZFODgyMTgyMkU2QkQzQzgyQ0ZGQTk4NEU3 QTkwOUMzRjYwHhcNMjMxMjIwMTU0MTA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzMGIxMC1hYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0MAhSPlNTCYhh6jC1Kek/ylBrkax6U8lrLUvMG9mmzBbCrlNtB5NPCVzUsr c9KMyXOkv7/ZwYwKvzr4FK7J5tbNo0S7yhuxGMTwRLsd80saqPfPCHyg7b22KFOF IE6MagWEBBawln0yeA/eB+BTOf+Ii8X+KomXfKiss9A3j5cpyFAp8fuvczD7MVwS u+pL723h6JzzxiApYlRFsV0BS/Tq7QF/PAUMn3XfGM0oQjuhGAOlejnFwT/ZKEP7 uDeI5lHw3I59D5To3E1C8sU0SxffvcWDKFcPSoCXUMjl/3KW8T0g4FxWyoUSgjs/ PDqXWZ/KmI9Z6kZOl6T5RWTt1QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP0o9w7I bcAMjfmF3Hp8BaJxpC0KMB8GA1UdIwQYMBaAFNMto26IIYIua9PILP+phOepCcP2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEVGOS80NEE4MDVFRTQ0 QzkxMUUyQjM1QUM0ODQyOTc5QkIyMC8weTJqYm9naGdpNXIwOGdzXzZtRTU2a0p3 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5Mmpib2doZ2k1cjA4Z3NfNm1FNTZrSndfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhFRjkvNDRBODA1RUU0NEM5MTFFMkIzNUFDNDg0Mjk3OUJCMjAvQTMwREMxNzg4 MEZFMTFFOTg1RDUzRjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wBCcwDQYJKoZIhvcNAQELBQADggEBALe7rmTowcLt 0w7ZQdUFmR5P0q61LGp5CcDve30+I0X8dE+HCNThfIEIpLC5BXuywIGRQEtRND5S bP2eG0twBrAa166Zzx5XgLjQH0Gl0g+N3O9YkvQ9CF6GiqwHlubVZ6zgQdniften 7Q+lQp6yF6nxaesN5wHs87FGZNX3rkJGnj3pSVs2UCB35/EmLBL3lk0racHbqND4 kXqcTuKGDYAmSbc2Wvyb0Wd4tuUkFGrbqBU847AYil4Z8Z9vEFg7nAYtpU5zMtQi pU7XDHn7Qxk6M+dKRQEjivZ1DvAj3Kx6stOsisfq3YBuSr68yDor8AD5SAexrRS2 89CQDRoqyJc= -----END CERTIFICATE-----Generated at Sat May 18 16:20:16 2024 by rpki-client on console-fra.rpki-client.org