$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa File: 57F6CEF6E90211EA90508273C4F9AE02.roa (raw, json) Hash identifier: 4MPn228qeCmaCUawXu73fAIrfe9xyRU0ytinuJC8HQ4= Subject key identifier: 17:05:9E:3A:58:16:69:48:B7:91:88:A7:8A:5B:CB:69:C9:DE:40:65 Certificate issuer: /CN=A91EEAF9/serialNumber=DEBD28537A92EB13DA80F79884AEFB7F5169A879 Certificate serial: 06E1 Authority key identifier: DE:BD:28:53:7A:92:EB:13:DA:80:F7:98:84:AE:FB:7F:51:69:A8:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3r0oU3qS6xPagPeYhK77f1FpqHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa Signing time: Wed 06 Dec 2023 22:29:54 +0000 ROA not before: Wed 06 Dec 2023 22:29:54 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 59216 IP address blocks: 2001:df7:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/3r0oU3qS6xPagPeYhK77f1FpqHk.crl rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/3r0oU3qS6xPagPeYhK77f1FpqHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3r0oU3qS6xPagPeYhK77f1FpqHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEAF9/serialNumber=DEBD28537A92EB13DA80F79884AEFB7F5169A879 Validity Not Before: Dec 6 22:29:54 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6570f5e2-ff38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:57:ec:99:df:1e:f8:18:0b:9d:ea:96:28:dd: 09:58:7c:76:08:27:a9:cd:fe:5d:2d:7f:51:54:cb: 74:58:4f:58:81:8a:af:4d:9e:4c:bb:2a:ce:22:97: 74:b0:91:9b:bf:7d:27:65:7a:f0:15:4e:a8:6a:6e: 5f:61:89:4d:73:e3:d5:df:de:fd:ce:8f:ee:e8:a2: e8:21:ff:cc:63:40:c4:a9:f3:59:c5:72:0e:53:5f: 6b:fd:8e:d2:d9:32:af:96:63:b4:68:d2:89:7a:b7: 7f:0b:1d:3f:fc:78:a5:49:aa:18:0e:c4:af:4e:87: 5b:28:76:bd:90:8b:36:cc:e3:bf:ee:16:71:09:5b: a6:03:5c:84:d2:eb:60:bc:a9:e2:cc:a2:9d:28:92: 48:71:be:eb:9c:33:ee:f3:a0:1f:8b:8e:ff:e6:ee: 4b:91:7f:ad:46:33:33:f4:a4:72:a2:61:8a:b2:2c: 3f:2f:6b:08:d8:31:d8:02:85:3d:56:64:09:8f:5a: 4a:04:4b:83:52:7f:ec:24:3b:8c:38:32:64:9d:30: a2:48:cf:6b:d0:f5:72:97:4c:fb:4f:d5:4d:86:fd: 25:20:d8:96:ec:03:4d:5a:be:40:b0:c1:9f:b7:2b: 0e:cc:32:93:87:41:31:1e:8e:04:0b:2d:b5:ba:4e: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:05:9E:3A:58:16:69:48:B7:91:88:A7:8A:5B:CB:69:C9:DE:40:65 X509v3 Authority Key Identifier: keyid:DE:BD:28:53:7A:92:EB:13:DA:80:F7:98:84:AE:FB:7F:51:69:A8:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/3r0oU3qS6xPagPeYhK77f1FpqHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3r0oU3qS6xPagPeYhK77f1FpqHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEAF9/E61E7D5CE90011EAB59F6971C4F9AE02/57F6CEF6E90211EA90508273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:1000::/48 Signature Algorithm: sha256WithRSAEncryption 2e:d3:d2:7d:af:08:53:a2:05:92:15:f0:27:e7:00:4e:e5:e6: 85:05:cf:2e:e2:66:10:cf:91:cc:84:be:c0:d9:e8:1c:ef:2f: d6:33:ff:92:92:28:11:0f:d3:ef:ae:c1:23:49:d1:6b:c8:81: fe:e5:6a:c9:d8:00:d0:4b:5b:c7:31:9b:d0:f4:b1:0d:22:5c: 23:cd:fb:e6:50:7c:1b:37:82:08:3a:7d:ae:2e:c9:d7:b1:da: b9:89:94:37:68:76:7d:f1:80:7f:6e:eb:85:83:3e:9d:e2:bb: 3f:6e:28:aa:18:64:ce:a6:89:8c:2b:c3:2c:f9:7a:fa:ac:74: 13:eb:e6:0b:bc:62:04:44:bb:4a:f3:52:8e:a8:50:c1:0f:41: e9:51:98:da:b1:61:99:8f:67:64:c3:7c:11:ee:e8:76:5a:47: 1e:3f:84:8e:4a:11:ff:61:4f:e9:76:39:ff:4d:06:40:d1:d6: be:90:ae:d7:23:5e:83:3f:5b:b6:65:12:3d:60:b8:63:bc:5d: f8:f0:fe:be:db:1e:73:ef:ae:bb:29:49:e7:9a:77:b2:ef:8a: 17:33:21:b1:aa:23:da:d1:11:66:15:18:bf:4b:51:6a:70:71: b8:8e:08:26:37:37:6b:c9:47:16:22:4f:57:a2:f7:a8:94:92: 5d:60:ef:d2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVBRjkxMTAvBgNVBAUTKERFQkQyODUzN0E5MkVCMTNEQTgwRjc5ODg0QUVGQjdG NTE2OUE4NzkwHhcNMjMxMjA2MjIyOTU0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwZjVlMi1mZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ffsmd8e+BgLneqWKN0JWHx2CCepzf5dLX9RVMt0WE9YgYqvTZ5MuyrOIpd0 sJGbv30nZXrwFU6oam5fYYlNc+PV3979zo/u6KLoIf/MY0DEqfNZxXIOU19r/Y7S 2TKvlmO0aNKJerd/Cx0//HilSaoYDsSvTodbKHa9kIs2zOO/7hZxCVumA1yE0utg vKnizKKdKJJIcb7rnDPu86Afi47/5u5LkX+tRjMz9KRyomGKsiw/L2sI2DHYAoU9 VmQJj1pKBEuDUn/sJDuMODJknTCiSM9r0PVyl0z7T9VNhv0lINiW7ANNWr5AsMGf tysOzDKTh0ExHo4ECy21uk53tQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBcFnjpY FmlIt5GIp4pby2nJ3kBlMB8GA1UdIwQYMBaAFN69KFN6kusT2oD3mISu+39Raah5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUFGOS9FNjFFN0Q1Q0U5 MDAxMUVBQjU5RjY5NzFDNEY5QUUwMi8zcjBvVTNxUzZ4UGFnUGVZaEs3N2YxRnBx SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyMG9VM3FTNnhQYWdQZVloSzc3ZjFGcHFIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBRjkvRTYxRTdENUNFOTAwMTFFQUI1OUY2OTcxQzRGOUFFMDIvNTdGNkNFRjZF OTAyMTFFQTkwNTA4MjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33EAAwDQYJKoZIhvcNAQELBQADggEBAC7T0n2vCFOi BZIV8CfnAE7l5oUFzy7iZhDPkcyEvsDZ6BzvL9Yz/5KSKBEP0++uwSNJ0WvIgf7l asnYANBLW8cxm9D0sQ0iXCPN++ZQfBs3ggg6fa4uydex2rmJlDdodn3xgH9u64WD Pp3iuz9uKKoYZM6miYwrwyz5evqsdBPr5gu8YgREu0rzUo6oUMEPQelRmNqxYZmP Z2TDfBHu6HZaRx4/hI5KEf9hT+l2Of9NBkDR1r6QrtcjXoM/W7ZlEj1guGO8Xfjw /r7bHnPvrrspSeead7LvihczIbGqI9rREWYVGL9LUWpwcbiOCCY3N2vJRxYiT1ei 96iUkl1g79I= -----END CERTIFICATE-----Generated at Sun May 19 00:30:23 2024 by rpki-client on console-ams.rpki-client.org