$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa File: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (raw, json) Hash identifier: idks1lefYLO6nPenvXoGS0zMdLXoYOwMfOiIKkDlkB8= Subject key identifier: B3:D7:48:B2:CC:37:2F:D8:F4:09:5F:89:75:42:77:9C:FC:8D:44:5E Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 121A Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa Signing time: Sat 20 Jul 2024 14:30:18 +0000 ROA not before: Sat 20 Jul 2024 14:30:18 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38272 IP address blocks: 2001:253::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4634 (0x121a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Jul 20 14:30:18 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669bc9f9-c614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ef:4a:9e:87:f5:48:7b:bc:56:df:75:9d:64: e4:8b:15:bb:d2:fb:0c:02:8a:fe:e9:2b:d1:e6:35: b0:f4:4a:50:8c:d8:ad:34:47:25:de:7a:89:3d:02: 88:de:ca:5f:22:a4:5c:16:c7:a5:f8:0f:29:b8:c4: 07:be:89:9d:96:6c:d4:30:6f:33:66:82:07:3e:35: 78:73:2b:ce:f5:d5:f9:e0:d3:00:43:a4:03:da:aa: 7a:e0:77:50:56:00:d6:f8:96:f4:53:58:c5:81:bd: 11:25:f3:b3:5c:7a:39:52:ec:5a:48:20:9e:7f:08: 7d:ef:7f:32:ed:ea:db:eb:ef:3a:85:68:2f:cd:e0: e1:3c:3c:e6:5b:a6:9b:d1:fc:ba:cb:77:37:7c:35: bf:06:b0:f4:f7:e5:1d:1d:dd:16:2c:6c:ef:d8:dc: 5f:62:02:4a:ee:8d:b5:33:f6:40:cb:06:93:6e:51: 83:d0:75:93:78:11:e2:38:2b:96:5b:bd:00:bf:3f: 9a:b3:e9:54:9b:75:92:99:10:e7:bb:53:9c:4f:d6: 21:96:9c:55:ac:b4:44:69:e9:28:e7:ba:e9:d7:fd: 9b:ee:24:3a:c8:93:84:a4:df:9f:70:c9:6b:b3:70: d8:12:7b:d5:6b:b7:dd:ea:2f:04:11:d2:a9:86:84: 2c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D7:48:B2:CC:37:2F:D8:F4:09:5F:89:75:42:77:9C:FC:8D:44:5E X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/12300E80ECD911EEB21F7B7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:253::/32 Signature Algorithm: sha256WithRSAEncryption 07:3e:71:dc:bc:e5:bd:ef:9e:95:dc:5b:eb:0d:e1:8d:68:94: 67:b7:51:24:4d:d9:5a:bf:ac:b4:42:b0:13:9b:14:b2:13:28: f9:98:02:e0:10:84:4a:ae:81:a2:f2:00:55:07:81:ae:de:ec: f1:37:a8:f1:06:cd:8a:3d:f8:80:f7:77:7f:d3:ca:63:9a:1c: 0e:ad:a4:ce:5a:1b:43:81:15:cc:bb:14:cb:3a:8a:d6:27:68: 93:3b:e5:46:bd:f0:e7:94:98:33:d0:ae:15:92:b2:42:79:12: cf:48:fa:a7:69:82:eb:91:84:18:73:8a:53:12:17:a9:33:90: 2e:df:ad:d2:b5:75:eb:9c:8a:62:5e:9a:66:d5:7d:bd:a4:10: 2a:d7:84:fe:a0:b9:98:20:81:51:81:e3:b1:5f:ed:95:b1:5f: 0b:3c:8f:f0:7f:90:01:75:fc:7b:94:1b:c3:36:53:3a:b7:63: f6:08:f6:51:d3:c8:66:a9:fd:60:c8:03:3c:f9:06:db:54:e6: a9:bd:ef:57:3f:e4:fd:a4:24:01:50:17:cc:fc:db:5b:97:a5: 90:07:95:25:1b:3d:1a:50:70:af:a6:7e:d5:38:06:39:29:eb: af:07:e7:69:40:3e:bc:20:78:d7:9b:5e:d6:b0:2b:22:b2:8d: 7d:7c:be:7d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICEhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQwNzIwMTQzMDE4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjliYzlmOS1jNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4u9Knof1SHu8Vt91nWTkixW70vsMAor+6SvR5jWw9EpQjNitNEcl3nqJPQKI 3spfIqRcFsel+A8puMQHvomdlmzUMG8zZoIHPjV4cyvO9dX54NMAQ6QD2qp64HdQ VgDW+Jb0U1jFgb0RJfOzXHo5UuxaSCCefwh9738y7erb6+86hWgvzeDhPDzmW6ab 0fy6y3c3fDW/BrD09+UdHd0WLGzv2NxfYgJK7o21M/ZAywaTblGD0HWTeBHiOCuW W70Avz+as+lUm3WSmRDnu1OcT9YhlpxVrLREaeko57rp1/2b7iQ6yJOEpN+fcMlr s3DYEnvVa7fd6i8EEdKphoQskQIDAQABo4ICljCCApIwHQYDVR0OBBYEFLPXSLLM Ny/Y9AlfiXVCd5z8jUReMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVENjEvMEM2QTBDOUUxRDc5MTFFMjg3OUUzOEM1MDhCMDJDRDIvMTIzMDBFODBF Q0Q5MTFFRUIyMUY3QjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAgAQJTMA0GCSqGSIb3DQEBCwUAA4IBAQAHPnHcvOW9756V 3FvrDeGNaJRnt1EkTdlav6y0QrATmxSyEyj5mALgEIRKroGi8gBVB4Gu3uzxN6jx Bs2KPfiA93d/08pjmhwOraTOWhtDgRXMuxTLOorWJ2iTO+VGvfDnlJgz0K4VkrJC eRLPSPqnaYLrkYQYc4pTEhepM5Au363StXXrnIpiXppm1X29pBAq14T+oLmYIIFR geOxX+2VsV8LPI/wf5ABdfx7lBvDNlM6t2P2CPZR08hmqf1gyAM8+QbbVOapve9X P+T9pCQBUBfM/Ntbl6WQB5UlGz0aUHCvpn7VOAY5KeuvB+dpQD68IHjXm17WsCsi so19fL59 -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org