$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa File: E188F6AEAE1F11EE9E818D16C4F9AE02.roa (raw, json) Hash identifier: FUQ7hkmGES0QN9UAf6f/LO11kYNy/Xsa2qRfJOg9mdo= Subject key identifier: 40:A0:0C:DC:77:D1:09:37:65:68:66:F1:D6:B0:AB:23:C8:39:E0:E0 Certificate issuer: /CN=A91CED30/serialNumber=0AA716EA81CCC5DB5E4BA72114C3429A19D6D95F Certificate serial: 02 Authority key identifier: 0A:A7:16:EA:81:CC:C5:DB:5E:4B:A7:21:14:C3:42:9A:19:D6:D9:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa Signing time: Mon 08 Jan 2024 12:17:25 +0000 ROA not before: Mon 08 Jan 2024 12:17:25 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 152306 IP address blocks: 2001:df3:55c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.crl rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30/serialNumber=0AA716EA81CCC5DB5E4BA72114C3429A19D6D95F Validity Not Before: Jan 8 12:17:25 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=659be7d4-820a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:17:82:9e:cb:c1:f9:51:33:e2:7e:ba:9b:f0: 12:91:f2:a3:77:00:d5:1d:f7:dd:03:e3:16:3c:39: b0:1e:cc:a1:e8:ac:40:1d:fa:43:1c:10:ec:80:82: 85:31:09:a8:bf:ad:7e:3f:ef:4d:bb:04:b3:81:54: 52:89:53:68:00:19:55:da:85:9b:17:c9:86:31:6b: 1a:72:72:37:77:13:fc:89:b6:7f:6a:b9:23:37:53: 14:ee:0b:20:43:76:04:7a:66:23:ad:52:d0:ba:9f: 02:c3:de:58:eb:f2:50:4a:75:d5:bc:8d:38:a9:c9: 6f:e7:5f:f2:8a:e9:ce:b0:d7:a1:2d:75:5d:bf:91: cb:0d:ac:fe:83:e1:6a:09:85:ec:83:4e:26:f0:05: ec:eb:cf:83:51:91:df:0e:ba:7b:eb:67:a2:3f:65: 75:d9:50:59:41:40:07:e4:f9:de:e5:17:d7:73:f3: 61:d6:11:ed:1d:d6:03:71:26:ff:09:0e:68:23:50: 62:77:57:64:0d:e2:e5:9d:42:db:97:8c:c3:34:d5: 45:5f:cc:6a:77:4a:ac:78:ed:b8:ba:15:69:d7:df: 00:30:d9:22:e4:a4:bb:06:6d:82:cf:e9:36:5b:cc: ae:a5:8d:46:d0:3a:81:13:8c:ff:e8:6e:0c:04:d3: 4a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A0:0C:DC:77:D1:09:37:65:68:66:F1:D6:B0:AB:23:C8:39:E0:E0 X509v3 Authority Key Identifier: keyid:0A:A7:16:EA:81:CC:C5:DB:5E:4B:A7:21:14:C3:42:9A:19:D6:D9:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:55c0::/48 Signature Algorithm: sha256WithRSAEncryption 53:ba:eb:cd:a5:db:0c:0e:81:7f:82:30:b6:9e:10:bc:4d:5b: 62:e7:0f:ae:7f:83:98:2a:fa:07:1f:e6:5e:b7:0c:96:23:85: 8e:c1:d7:2a:b2:27:6b:31:45:41:29:36:93:9a:90:53:f4:ce: cf:13:e1:15:17:1e:0e:5c:1d:9d:f9:55:7d:a3:7e:2b:f7:30: 21:ac:dd:e2:bb:bc:b5:b9:83:9d:94:26:46:ca:81:7b:92:5e: 46:0c:4d:97:19:c6:16:f8:de:c7:de:79:34:94:67:15:38:33: 6d:d1:d8:bf:19:14:a6:d5:bf:47:cb:9a:0d:d2:1b:ea:84:6c: 24:fb:e1:f1:c3:2d:e9:a7:b5:c5:0f:a4:ba:b1:34:b5:28:e2: fb:d6:6d:c9:b5:e2:6c:66:b3:5a:f7:a2:0f:55:85:85:78:4a: 31:1f:29:d6:81:a8:74:6b:53:8f:db:ae:93:b2:1e:4a:7a:27: 8a:44:70:98:f2:57:b3:34:e2:d3:fe:72:76:29:c3:a5:f7:ff: bf:ef:3f:1c:21:ca:ca:5f:f4:eb:76:8a:95:1f:ca:e1:ab:45: ca:8a:54:e4:4e:d2:49:8f:70:9b:3b:27:31:49:40:4f:5d:40: c1:92:c6:b1:73:0f:fd:57:60:98:80:31:59:e9:6a:b1:2d:2f: 0a:3d:4c:15 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUQzMDExMC8GA1UEBRMoMEFBNzE2RUE4MUNDQzVEQjVFNEJBNzIxMTRDMzQyOUEx OUQ2RDk1RjAeFw0yNDAxMDgxMjE3MjVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWJlN2Q0LTgyMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAF4Key8H5UTPifrqb8BKR8qN3ANUd990D4xY8ObAezKHorEAd+kMcEOyAgoUx Cai/rX4/7027BLOBVFKJU2gAGVXahZsXyYYxaxpycjd3E/yJtn9quSM3UxTuCyBD dgR6ZiOtUtC6nwLD3ljr8lBKddW8jTipyW/nX/KK6c6w16EtdV2/kcsNrP6D4WoJ heyDTibwBezrz4NRkd8OunvrZ6I/ZXXZUFlBQAfk+d7lF9dz82HWEe0d1gNxJv8J DmgjUGJ3V2QN4uWdQtuXjMM01UVfzGp3Sqx47bi6FWnX3wAw2SLkpLsGbYLP6TZb zK6ljUbQOoETjP/obgwE00rvAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUQKAM3HfR CTdlaGbx1rCrI8g54OAwHwYDVR0jBBgwFoAUCqcW6oHMxdteS6chFMNCmhnW2V8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRDMwL0M3NzQ1NUMwQUUx RTExRUVBN0VBMEE3N0M0RjlBRTAyL0NxY1c2b0hNeGR0ZVM2Y2hGTU5DbWhuVzJW OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3FjVzZvSE14ZHRlUzZjaEZNTkNtaG5XMlY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9DNzc0NTVDMEFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9FMTg4RjZBRUFF MUYxMUVFOUU4MThEMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfNVwDANBgkqhkiG9w0BAQsFAAOCAQEAU7rrzaXbDA6B f4Iwtp4QvE1bYucPrn+DmCr6Bx/mXrcMliOFjsHXKrInazFFQSk2k5qQU/TOzxPh FRceDlwdnflVfaN+K/cwIazd4ru8tbmDnZQmRsqBe5JeRgxNlxnGFvjex955NJRn FTgzbdHYvxkUptW/R8uaDdIb6oRsJPvh8cMt6ae1xQ+kurE0tSji+9ZtybXibGaz WveiD1WFhXhKMR8p1oGodGtTj9uuk7IeSnonikRwmPJXszTi0/5ydinDpff/v+8/ HCHKyl/063aKlR/K4atFyopU5E7SSY9wmzsnMUlAT11AwZLGsXMP/VdgmIAxWelq sS0vCj1MFQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:32 2024 by rpki-client on console-ams.rpki-client.org