$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa File: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (raw, json) Hash identifier: 0OHkdOYwWuHEae6hLLfEVYlgXJ3hl5nkCEg2iieXkpI= Subject key identifier: 20:43:3C:3E:CB:22:89:9A:36:77:2F:6C:0D:01:E7:C2:33:18:1F:9E Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0BDF Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa Signing time: Wed 08 May 2024 19:57:46 +0000 ROA not before: Wed 08 May 2024 19:57:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132458 IP address blocks: 2001:df1:b401::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: May 8 19:57:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663bd939-4fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:fc:00:41:21:ac:e0:04:52:f2:70:64:74: 2c:e7:01:f9:d6:8d:0d:e3:f9:29:c0:c5:44:d8:3a: bc:b1:fc:e9:96:a7:e9:f8:16:27:3c:6b:bc:8c:db: 8f:b0:e7:e9:32:42:f9:76:b1:dd:d0:4d:20:74:92: e5:d2:bf:a1:3a:87:5d:2b:80:64:48:0a:a3:ee:1d: 89:af:a5:d7:6d:5b:2e:07:4a:fd:b4:5e:5c:b0:b6: 43:de:2d:a9:84:18:e2:a9:b5:6f:0d:e0:db:18:63: 0d:04:84:8c:ee:8a:f0:f1:cb:15:a7:ea:14:61:15: 35:54:22:c0:8a:ec:9d:5e:ee:9c:99:2a:80:45:27: cd:b6:05:06:ee:59:13:10:bb:cf:64:86:f1:85:4a: 36:6e:03:5f:62:1b:95:0d:9c:cc:d1:b8:c2:a2:35: 9f:32:30:42:40:c1:87:81:42:5d:33:11:5c:e6:08: 88:9e:07:f9:ff:f9:9a:35:c3:29:22:d0:fc:e5:d2: fd:76:18:d8:0e:c4:cd:fc:0b:75:08:ad:f7:a9:82: 4f:92:62:4e:28:d9:c5:0b:65:87:93:e7:58:7d:9a: 78:30:e0:ca:bb:78:14:4d:5a:1c:fc:e8:26:87:80: a4:3e:d8:da:c9:04:3e:9e:97:8f:0b:54:53:5b:b8: 84:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:43:3C:3E:CB:22:89:9A:36:77:2F:6C:0D:01:E7:C2:33:18:1F:9E X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:b401::/48 Signature Algorithm: sha256WithRSAEncryption 3c:b3:e3:3f:80:86:5b:54:b7:3c:a5:a5:e2:b3:b5:04:d9:d5: 07:6f:33:fb:9f:bc:2a:1f:7d:00:33:c2:4e:ba:9c:61:f4:90: 42:51:bb:46:41:b4:45:94:fa:5f:23:71:f5:dd:32:c4:59:c1: ac:b4:3e:63:ae:24:39:2c:4e:da:1a:9a:9b:53:a5:9e:57:f4: 41:88:22:c2:2e:88:d1:17:0e:5b:a8:39:cd:08:ee:95:63:a9: fc:c1:eb:b6:8d:59:12:d2:0a:4f:ce:fe:a4:52:72:1a:da:4c: b0:d9:41:3e:d8:46:ec:ad:e1:21:c8:59:4b:d6:67:53:db:0a: 1b:b3:db:f1:c6:f7:93:0f:ef:b8:d9:e0:67:35:76:73:ef:64: b6:e0:50:05:44:ea:3b:41:d5:d5:4a:56:a2:21:ca:7e:3a:5b: e8:d1:a4:26:7a:95:fd:d6:3f:58:2f:80:b7:69:84:ec:4a:45: dc:15:16:9b:14:85:56:ee:73:dc:20:63:d9:44:f1:b4:8a:be: 7e:6a:4b:e3:6b:10:1f:2d:1b:a5:79:93:5f:27:c5:47:88:a4: f0:b2:26:c1:ba:42:a7:5c:53:7f:2e:e4:21:40:be:1f:e9:77: 9d:40:4c:de:a7:ae:96:56:31:11:df:2a:cd:fb:a3:6d:76:5e: b9:06:96:bf -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjQwNTA4MTk1NzQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiZDkzOS00ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs538AEEhrOAEUvJwZHQs5wH51o0N4/kpwMVE2Dq8sfzplqfp+BYnPGu8jNuP sOfpMkL5drHd0E0gdJLl0r+hOoddK4BkSAqj7h2Jr6XXbVsuB0r9tF5csLZD3i2p hBjiqbVvDeDbGGMNBISM7orw8csVp+oUYRU1VCLAiuydXu6cmSqARSfNtgUG7lkT ELvPZIbxhUo2bgNfYhuVDZzM0bjCojWfMjBCQMGHgUJdMxFc5giIngf5//maNcMp ItD85dL9dhjYDsTN/At1CK33qYJPkmJOKNnFC2WHk+dYfZp4MODKu3gUTVoc/Ogm h4CkPtjayQQ+npePC1RTW7iEjQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCBDPD7L IomaNncvbA0B58IzGB+eMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJBODAvQjk4RTgxRDYwNUI5MTFFQTgyMDg5OTZFQzRGOUFFMDIvMkZDM0RFODRC MTVCMTFFQjhDQ0NENjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xtAEwDQYJKoZIhvcNAQELBQADggEBADyz4z+AhltU tzylpeKztQTZ1QdvM/ufvCoffQAzwk66nGH0kEJRu0ZBtEWU+l8jcfXdMsRZway0 PmOuJDksTtoamptTpZ5X9EGIIsIuiNEXDluoOc0I7pVjqfzB67aNWRLSCk/O/qRS chraTLDZQT7YRuyt4SHIWUvWZ1PbChuz2/HG95MP77jZ4Gc1dnPvZLbgUAVE6jtB 1dVKVqIhyn46W+jRpCZ6lf3WP1gvgLdphOxKRdwVFpsUhVbuc9wgY9lE8bSKvn5q S+NrEB8tG6V5k18nxUeIpPCyJsG6QqdcU38u5CFAvh/pd51ATN6nrpZWMRHfKs37 o212XrkGlr8= -----END CERTIFICATE-----Generated at Thu May 16 20:25:55 2024 by rpki-client on console-ams.rpki-client.org