$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa File: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (raw, json) Hash identifier: 0glwFJX1i+64ukwswEdh5zuYeLvunHaXx0SdaO9iu3k= Subject key identifier: 7A:1F:8F:F9:38:F0:3E:AD:71:DD:EF:9D:82:7E:96:07:B6:18:D2:72 Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 11D8 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa Signing time: Thu 28 Mar 2024 07:59:15 +0000 ROA not before: Thu 28 Mar 2024 07:59:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38272 IP address blocks: 2001:253::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4568 (0x11d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Mar 28 07:59:15 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=66052353-f258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:03:19:59:c6:7e:28:60:84:d9:ea:33:88:4d: d9:dc:6d:ed:49:3a:70:9a:60:40:5f:d9:7e:6c:78: 72:bd:03:17:8c:ea:0d:38:4f:c4:0e:75:bd:8d:d2: eb:e2:f1:f2:de:10:f1:f1:c5:6b:60:ac:ca:b9:31: dd:fe:a6:9a:bf:7d:a6:e3:99:79:55:76:f5:c4:40: 1a:b9:2b:54:53:9f:d9:52:43:66:36:c1:a8:71:f7: 70:d9:0e:f1:da:64:16:db:da:66:22:94:ed:dc:f7: 7d:6d:b5:bd:86:4b:61:7f:69:d9:bc:1d:c4:37:04: 7f:65:53:40:2e:f2:14:57:04:f1:92:fd:d9:4e:01: 32:b3:0a:b6:1a:9f:13:b8:50:8e:a6:a7:d2:cb:84: d9:3e:55:4c:61:cd:07:b9:4e:79:33:6a:29:92:cf: 93:59:ac:43:7f:95:2c:0c:07:d3:9e:41:01:47:1c: 69:9d:57:b2:03:fa:b3:50:79:59:7e:9f:f4:57:fe: 51:c9:51:da:6c:be:00:be:da:13:56:da:df:40:99: 27:45:ef:bd:60:5b:a8:a4:97:77:10:f0:47:54:35: 3e:77:19:b3:b8:2e:fb:1c:2c:db:07:a3:c6:49:30: d4:94:e7:86:fe:b4:16:07:8e:5a:2f:8f:29:aa:97: d8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1F:8F:F9:38:F0:3E:AD:71:DD:EF:9D:82:7E:96:07:B6:18:D2:72 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:253::/32 Signature Algorithm: sha256WithRSAEncryption 2a:97:a0:79:ae:93:96:98:e1:d3:d9:d3:fe:71:0a:74:90:fe: 76:83:d7:09:4b:11:72:53:43:54:99:d7:4a:e3:90:57:5d:20: 06:e0:89:36:cf:17:3f:f0:c8:11:dd:f0:5e:b4:1d:0c:9d:ab: 8b:e6:57:71:1b:2d:15:b4:5b:6f:0a:59:29:2e:7d:49:45:d4: b5:bd:31:f6:91:bb:d4:f5:40:e3:86:36:2d:4c:05:5b:9c:4a: ea:fd:49:f3:7e:ac:80:b7:43:a0:ee:3a:c9:92:0a:77:3f:b6: 2b:c8:a7:89:15:60:d2:12:fe:a6:41:58:81:0e:8e:1c:32:26: b4:c3:bb:30:22:57:05:25:72:8f:f8:fc:f2:8b:59:f9:f6:a8: 91:cd:ad:a2:f5:e9:f7:25:ef:48:31:c9:38:e1:ee:99:4e:88: 53:5f:3b:5c:d5:36:cb:b2:03:e7:65:43:f2:20:db:50:ef:21: f4:6b:58:c5:eb:64:03:7e:4e:51:ef:9b:70:b5:5f:c4:61:3a: 9f:25:1a:f6:ca:fa:94:8e:a6:2d:96:2f:6a:3c:e4:2a:c6:b7: 48:05:b4:1f:ea:fa:11:06:3a:82:80:05:a0:df:1f:87:2b:5b: 60:74:82:a6:1e:fe:d3:e0:30:a7:ea:be:be:f8:ea:4b:20:e1: 1d:13:c9:27 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICEdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwMzI4MDc1OTE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1MjM1My1mMjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQMZWcZ+KGCE2eoziE3Z3G3tSTpwmmBAX9l+bHhyvQMXjOoNOE/EDnW9jdLr 4vHy3hDx8cVrYKzKuTHd/qaav32m45l5VXb1xEAauStUU5/ZUkNmNsGocfdw2Q7x 2mQW29pmIpTt3Pd9bbW9hkthf2nZvB3ENwR/ZVNALvIUVwTxkv3ZTgEyswq2Gp8T uFCOpqfSy4TZPlVMYc0HuU55M2opks+TWaxDf5UsDAfTnkEBRxxpnVeyA/qzUHlZ fp/0V/5RyVHabL4AvtoTVtrfQJknRe+9YFuopJd3EPBHVDU+dxmzuC77HCzbB6PG STDUlOeG/rQWB45aL48pqpfYhwIDAQABo4ICljCCApIwHQYDVR0OBBYEFHofj/k4 8D6tcd3vnYJ+lge2GNJyMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVENjEvMEM2QTBDOUUxRDc5MTFFMjg3OUUzOEM1MDhCMDJDRDIvMTIzMDBFODBF Q0Q5MTFFRUIyMUY3QjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAQJTMA0GCSqGSIb3DQEBCwUAA4IBAQAql6B5rpOWmOHT 2dP+cQp0kP52g9cJSxFyU0NUmddK45BXXSAG4Ik2zxc/8MgR3fBetB0MnauL5ldx Gy0VtFtvClkpLn1JRdS1vTH2kbvU9UDjhjYtTAVbnErq/UnzfqyAt0Og7jrJkgp3 P7YryKeJFWDSEv6mQViBDo4cMia0w7swIlcFJXKP+Pzyi1n59qiRza2i9en3Je9I Mck44e6ZTohTXztc1TbLsgPnZUPyINtQ7yH0a1jF62QDfk5R75twtV/EYTqfJRr2 yvqUjqYtli9qPOQqxrdIBbQf6voRBjqCgAWg3x+HK1tgdIKmHv7T4DCn6r6++OpL IOEdE8kn -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org