$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa File: 4B58FDE05DDC11ECBEA38D83C4F9AE02.roa (raw, json) Hash identifier: jtocdGRJRWiWOYoYdBQiAVeiSxA4/HZ5M32N+Rhfh/o= Subject key identifier: 47:0A:6C:0F:AF:05:71:FD:52:2D:FB:11:1F:8C:D0:60:37:F3:FD:B9 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 03B1 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa Signing time: Wed 31 Jan 2024 03:05:26 +0000 ROA not before: Wed 31 Jan 2024 03:05:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 51044 IP address blocks: 2407:9240:2500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:21:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: Jan 31 03:05:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b9b8f6-6efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:48:fe:ad:49:ae:95:7d:2c:ab:4d:10:8b:df: 57:b6:b4:02:93:f5:01:eb:56:f9:8e:37:b9:0d:61: f8:a2:40:79:b9:85:21:f5:67:f3:36:43:12:2f:ef: e6:2b:6a:4b:ab:e5:50:67:ae:cf:17:60:97:5b:50: 99:f6:9b:8d:5b:40:97:e8:f7:ed:bc:c2:3d:2d:0c: 2d:62:6c:c7:b7:ee:7c:c3:1e:bd:fd:f4:da:61:09: e7:8c:e7:fe:90:69:d2:0c:74:28:83:c7:ec:dc:1c: 0f:79:ef:4b:41:75:10:df:3e:0c:7a:b3:a8:50:60: 79:4c:47:5a:22:c8:32:e8:1f:48:4a:1b:60:10:88: 80:87:27:70:36:b6:b2:e2:8a:c9:23:18:50:04:2e: 0e:0f:04:5b:27:cb:bd:57:e4:5b:e6:9a:b1:72:91: 44:e3:53:fc:3c:9b:8a:c6:a2:68:4e:bf:97:5b:fd: 3c:fe:3f:8f:6a:3d:d8:e8:54:33:dd:8d:b9:b0:f1: 7d:c0:5d:81:55:11:63:25:a7:25:43:0d:5e:eb:6a: 98:3f:e4:2a:e1:8c:6c:27:ea:83:00:bc:9e:90:53: 06:de:02:12:65:07:06:3f:c5:34:3b:8a:50:fc:52: 8a:b0:b7:3e:39:41:af:9b:2b:c1:a7:21:39:3b:b3: 80:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0A:6C:0F:AF:05:71:FD:52:2D:FB:11:1F:8C:D0:60:37:F3:FD:B9 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:2500::/40 Signature Algorithm: sha256WithRSAEncryption 3d:37:55:e9:a5:a4:20:06:d5:27:09:2a:44:63:1b:52:bd:c0: b2:32:85:40:83:b7:68:50:71:e1:b9:eb:be:ab:b5:46:cb:6b: 18:51:d3:23:cb:cd:dd:f7:4b:e6:99:88:1a:4d:73:62:cb:eb: 3f:14:9f:13:f7:68:b1:53:29:af:15:76:05:35:4f:04:5e:2a: 6e:2e:41:43:ec:a3:ec:bb:44:99:f2:2a:fc:14:b5:7e:7b:44: 0e:a7:a4:db:1e:ba:96:cf:e8:49:bf:b7:07:96:a3:32:25:4e: da:a5:98:b2:17:62:da:4d:78:5b:64:69:d3:48:7c:2c:af:74: 1e:56:fc:08:00:79:85:fa:f9:35:40:7c:aa:72:2e:39:2b:91: d2:fe:d1:9e:3b:b0:aa:d6:d9:dc:1e:d8:df:fc:f3:84:bc:d7: 68:cb:d2:c6:ac:08:a0:18:89:4f:b0:b8:02:ca:ca:96:87:dd: 1a:fb:b2:d5:0b:c4:d7:c7:9d:da:5e:6c:81:a5:47:94:6f:34: f4:f8:d3:e6:5d:4d:77:90:ff:df:a5:4f:b0:30:ef:96:35:12: 66:ee:a0:2b:c4:41:fd:74:8d:2d:ad:05:91:83:0b:06:12:6c: fb:4e:77:84:9b:26:c2:bb:7a:69:95:b0:60:ba:8e:f2:15:5b: 2e:b5:c7:a7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjQwMTMxMDMwNTI2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5YjhmNi02ZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Uj+rUmulX0sq00Qi99XtrQCk/UB61b5jje5DWH4okB5uYUh9WfzNkMSL+/m K2pLq+VQZ67PF2CXW1CZ9puNW0CX6PftvMI9LQwtYmzHt+58wx69/fTaYQnnjOf+ kGnSDHQog8fs3BwPee9LQXUQ3z4MerOoUGB5TEdaIsgy6B9IShtgEIiAhydwNray 4orJIxhQBC4ODwRbJ8u9V+Rb5pqxcpFE41P8PJuKxqJoTr+XW/08/j+Paj3Y6FQz 3Y25sPF9wF2BVRFjJaclQw1e62qYP+Qq4YxsJ+qDALyekFMG3gISZQcGP8U0O4pQ /FKKsLc+OUGvmyvBpyE5O7OAJQIDAQABo4IClzCCApMwHQYDVR0OBBYEFEcKbA+v BXH9Ui37ER+M0GA38/25MB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNEI1OEZERTA1 RERDMTFFQ0JFQTM4RDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAJTANBgkqhkiG9w0BAQsFAAOCAQEAPTdV6aWkIAbV JwkqRGMbUr3AsjKFQIO3aFBx4bnrvqu1RstrGFHTI8vN3fdL5pmIGk1zYsvrPxSf E/dosVMprxV2BTVPBF4qbi5BQ+yj7LtEmfIq/BS1fntEDqek2x66ls/oSb+3B5aj MiVO2qWYshdi2k14W2Rp00h8LK90Hlb8CAB5hfr5NUB8qnIuOSuR0v7RnjuwqtbZ 3B7Y3/zzhLzXaMvSxqwIoBiJT7C4AsrKlofdGvuy1QvE18ed2l5sgaVHlG809PjT 5l1Nd5D/36VPsDDvljUSZu6gK8RB/XSNLa0FkYMLBhJs+053hJsmwrt6aZWwYLqO 8hVbLrXHpw== -----END CERTIFICATE-----Generated at Fri May 31 06:49:13 2024 by rpki-client on console-ams.rpki-client.org