$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1767CE4A93C711EDB3D8A867C4F9AE02.roa File: 1767CE4A93C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: NzoADCqDPlTWednDPfeCo0igeCW54AvLXooSXAyEwYM= Subject key identifier: 37:D8:65:81:99:67:B9:4E:01:39:C1:D5:8F:64:0B:63:5C:9A:61:3D Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 0468 Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1767CE4A93C711EDB3D8A867C4F9AE02.roa Signing time: Mon 07 Aug 2023 00:41:58 +0000 ROA not before: Mon 07 Aug 2023 00:41:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 29473 IP address blocks: 2001:df6:cd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1128 (0x468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Aug 7 00:41:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d03dd6-d916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:e8:ba:82:33:22:6e:06:6f:66:52:34:83: b6:85:52:b6:0d:c9:07:05:70:3a:fb:3f:af:13:e2: 15:aa:ad:ce:b5:bd:16:e8:f8:e9:76:31:a6:1e:9d: 4d:b4:13:9b:08:db:aa:ff:0d:df:85:50:87:9e:31: 99:34:9a:1f:af:8b:f4:2f:c6:5e:b5:70:f6:ee:6c: 0d:9c:a9:ae:5b:ff:ef:38:58:58:24:ef:98:ac:44: 48:e3:1a:b0:d8:61:bd:5b:b3:cf:ca:3c:19:d4:19: 78:d6:0b:70:7b:c7:d5:8f:35:72:36:8f:f5:c0:02: 02:33:8b:ac:4a:61:6f:98:50:88:d1:c3:46:85:9e: 36:c7:a2:d8:16:69:f7:bb:e7:c7:45:53:f9:2f:29: 2e:ae:cd:7a:2e:49:ec:39:3e:d8:9c:08:6e:ce:c6: 4a:2e:20:55:46:db:2a:40:3d:2f:61:24:84:15:37: b6:73:c7:37:69:09:b3:3b:38:51:0c:a4:f9:68:54: 55:a8:0a:40:35:af:36:ce:ae:45:8a:03:72:e2:22: 8c:0b:e2:f0:11:71:72:bc:79:de:38:b8:8c:f9:2f: 34:c1:ab:fc:d6:e7:a5:a7:2a:07:3a:a9:b8:a5:be: 1c:51:17:81:99:96:d3:7e:35:0a:3e:42:20:26:1f: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D8:65:81:99:67:B9:4E:01:39:C1:D5:8F:64:0B:63:5C:9A:61:3D X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1767CE4A93C711EDB3D8A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:cd80::/48 Signature Algorithm: sha256WithRSAEncryption 47:00:13:81:6d:93:dc:f0:c1:96:c2:0b:c7:22:b1:3d:59:7e: 04:9a:9f:8c:bd:c2:c8:bc:70:1f:a1:7d:9c:b1:b3:3e:b9:2c: bc:cc:cf:5e:d3:46:d4:90:f9:82:10:18:58:e1:f3:d7:fd:a4: c0:87:74:73:88:4d:5b:d6:50:89:a3:51:d4:4e:c4:a1:b0:2b: b9:ae:c5:e0:75:8f:dc:b4:8d:cb:de:0d:88:d4:b5:ff:1b:04: c7:01:72:4b:d0:4d:fe:6a:c9:ec:d9:18:4e:c4:db:73:f3:ed: 51:9d:0b:44:19:b4:43:07:24:03:b0:79:6a:8b:98:f3:1b:d0: 20:18:31:59:31:75:e5:16:0f:01:68:a6:4e:1c:2f:78:01:4b: fd:07:82:51:7f:1e:8a:77:14:1f:63:3d:48:27:90:54:85:0b: 21:26:4f:4b:d0:e7:53:c5:30:45:5e:1c:38:9a:ca:b9:06:68: 5f:13:22:1c:4f:01:bd:5c:df:b4:0f:b3:c1:8f:a1:d7:c4:01: 15:4c:4a:e7:11:d6:bf:58:40:df:d9:0c:d8:e3:8f:34:e8:aa: d4:31:08:80:2d:65:c6:f7:bf:f6:77:a2:9b:64:ab:af:4f:fa: a6:25:98:22:a0:77:99:05:2c:dc:24:2b:c0:3f:af:ac:aa:c7: 35:7d:c3:ec -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjMwODA3MDA0MTU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQwM2RkNi1kOTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+TouoIzIm4Gb2ZSNIO2hVK2DckHBXA6+z+vE+IVqq3Otb0W6PjpdjGmHp1N tBObCNuq/w3fhVCHnjGZNJofr4v0L8ZetXD27mwNnKmuW//vOFhYJO+YrERI4xqw 2GG9W7PPyjwZ1Bl41gtwe8fVjzVyNo/1wAICM4usSmFvmFCI0cNGhZ42x6LYFmn3 u+fHRVP5Lykurs16LknsOT7YnAhuzsZKLiBVRtsqQD0vYSSEFTe2c8c3aQmzOzhR DKT5aFRVqApANa82zq5FigNy4iKMC+LwEXFyvHneOLiM+S80wav81uelpyoHOqm4 pb4cUReBmZbTfjUKPkIgJh+cawIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDfYZYGZ Z7lOATnB1Y9kC2NcmmE9MB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTc2N0NFNEE5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ32zYAwDQYJKoZIhvcNAQELBQADggEBAEcAE4Ftk9zw wZbCC8cisT1ZfgSan4y9wsi8cB+hfZyxsz65LLzMz17TRtSQ+YIQGFjh89f9pMCH dHOITVvWUImjUdROxKGwK7muxeB1j9y0jcveDYjUtf8bBMcBckvQTf5qyezZGE7E 23Pz7VGdC0QZtEMHJAOweWqLmPMb0CAYMVkxdeUWDwFopk4cL3gBS/0HglF/Hop3 FB9jPUgnkFSFCyEmT0vQ51PFMEVeHDiayrkGaF8TIhxPAb1c37QPs8GPodfEARVM SucR1r9YQN/ZDNjjjzToqtQxCIAtZcb3v/Z3optkq69P+qYlmCKgd5kFLNwkK8A/ r6yqxzV9w+w= -----END CERTIFICATE-----Generated at Sun May 5 02:33:39 2024 by rpki-client on console-fra.rpki-client.org