$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/2B04CC143D9F11EEACFF646FC4F9AE02.roa File: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (raw, json) Hash identifier: 7zvymsgGXJY5ymUoKW6Gj6uo9AlN5EXma2tXWDebJaM= Subject key identifier: D8:88:E5:2A:BC:84:46:16:C4:18:A0:7E:EC:02:0C:5C:75:DF:AC:0E Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 16E4 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/2B04CC143D9F11EEACFF646FC4F9AE02.roa Signing time: Mon 04 Dec 2023 17:04:26 +0000 ROA not before: Mon 04 Dec 2023 17:04:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 23738 IP address blocks: 2401:f9c0:fac0::/48 maxlen: 48 2401:f9c0:fac1::/48 maxlen: 48 2401:f9c0:fac2::/48 maxlen: 48 2401:f9c0:fac3::/48 maxlen: 48 2401:f9c0:fac4::/48 maxlen: 48 2401:f9c0:fac5::/48 maxlen: 48 2401:f9c0:fac6::/48 maxlen: 48 2401:f9c0:fac7::/48 maxlen: 48 2401:f9c0:fac8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5860 (0x16e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Dec 4 17:04:26 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e0699-73d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:85:56:82:33:0c:66:ba:f6:78:90:7b:4a: 30:f3:f6:18:32:a8:9b:a2:ec:ed:01:d3:0d:99:6d: 50:56:e4:1d:d8:af:e7:08:b5:8f:7b:05:96:6c:88: 33:68:57:60:27:56:66:dd:2d:90:be:57:83:ce:8f: e8:7c:ca:4a:aa:89:65:c6:4b:62:db:b8:82:90:82: 1a:2a:f1:46:97:bd:5c:b6:69:58:26:44:29:ff:bc: 29:8c:05:1f:46:b7:ad:27:b5:31:44:08:88:de:85: 50:3a:58:22:13:16:11:5c:a7:38:0b:fa:d9:96:33: 06:17:90:d0:b9:b8:6c:fe:59:f0:ca:6b:09:e1:46: 93:b5:6c:bc:ad:b7:f9:23:39:74:ba:f3:4c:95:a7: fb:a2:dd:d0:0b:cc:41:85:51:f8:56:41:4b:c4:23: a0:82:07:8c:96:63:92:84:4e:5f:0e:82:a9:33:62: 52:95:1f:80:49:7e:aa:77:c3:87:b6:76:c4:73:46: 19:8b:d9:43:80:9c:8a:ee:40:fc:72:ae:a8:5b:d5: e6:82:36:72:cd:44:bd:88:e0:32:ef:fd:79:b6:2a: 54:b7:3a:aa:40:f0:05:32:eb:59:70:27:05:4e:e6: 4d:70:a3:0d:e6:65:60:43:bf:df:4e:c8:ad:0c:50: 07:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:88:E5:2A:BC:84:46:16:C4:18:A0:7E:EC:02:0C:5C:75:DF:AC:0E X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/2B04CC143D9F11EEACFF646FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f9c0:fac0::-2401:f9c0:fac8:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 47:5c:d3:b4:c5:32:30:98:1a:3b:88:b7:a6:54:8c:40:10:d2: 95:a3:34:81:96:33:b0:ad:64:da:18:aa:14:78:0d:66:f1:86: b8:ed:5a:ed:ad:29:d7:cc:18:e6:45:4c:1e:ab:89:e1:81:d5: 81:4e:12:9f:92:a7:94:95:bf:b2:2f:d1:16:d5:e6:26:bf:4b: 46:25:27:a3:a0:fa:9c:d9:0f:a8:c1:5c:cd:8a:64:34:02:38: 9d:ec:cf:51:9d:f7:11:4e:02:e2:ec:3c:8b:a7:c9:8e:d8:8f: 73:ba:f7:85:42:8e:6a:2a:54:ed:e3:b5:a3:ef:75:03:cf:d4: 15:25:32:0b:92:70:d3:3d:ce:ef:74:35:7d:5f:69:e6:32:0e: 46:82:df:79:4c:bb:f0:d2:70:9f:f7:3e:a7:49:80:b3:ba:04: 1c:ef:3a:b3:12:c5:2a:12:67:1a:74:0c:1a:c0:79:8b:7f:33: a7:09:a0:6f:2b:e2:15:e2:bc:30:d3:3e:96:f1:ad:73:03:4c: 99:65:4a:8a:d5:c9:ed:d0:be:bb:9e:b4:b0:f2:44:95:7c:da: 52:45:cf:5c:99:17:6a:40:d0:c0:84:56:b4:2e:1a:d9:d9:3b: 38:75:1e:9f:8a:6a:82:8b:f8:66:05:f2:62:12:6f:d4:38:a8: 5f:73:4c:3e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjMxMjA0MTcwNDI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMDY5OS03M2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj+FVoIzDGa69niQe0ow8/YYMqibouztAdMNmW1QVuQd2K/nCLWPewWWbIgz aFdgJ1Zm3S2QvleDzo/ofMpKqollxkti27iCkIIaKvFGl71ctmlYJkQp/7wpjAUf RretJ7UxRAiI3oVQOlgiExYRXKc4C/rZljMGF5DQubhs/lnwymsJ4UaTtWy8rbf5 Izl0uvNMlaf7ot3QC8xBhVH4VkFLxCOgggeMlmOShE5fDoKpM2JSlR+ASX6qd8OH tnbEc0YZi9lDgJyK7kD8cq6oW9XmgjZyzUS9iOAy7/15tipUtzqqQPAFMutZcCcF TuZNcKMN5mVgQ7/fTsitDFAH3QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFNiI5Sq8 hEYWxBigfuwCDFx136wOMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMUUvQzFGQTA4MkNDOENCMTFFNzkwQTg4MTM4QzRGOUFFMDIvMkIwNENDMTQz RDlGMTFFRUFDRkY2NDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHBiQB+cD6wAMHACQB+cD6yDANBgkqhkiG9w0BAQsFAAOC AQEAR1zTtMUyMJgaO4i3plSMQBDSlaM0gZYzsK1k2hiqFHgNZvGGuO1a7a0p18wY 5kVMHquJ4YHVgU4Sn5KnlJW/si/RFtXmJr9LRiUno6D6nNkPqMFczYpkNAI4nezP UZ33EU4C4uw8i6fJjtiPc7r3hUKOaipU7eO1o+91A8/UFSUyC5Jw0z3O73Q1fV9p 5jIORoLfeUy78NJwn/c+p0mAs7oEHO86sxLFKhJnGnQMGsB5i38zpwmgbyviFeK8 MNM+lvGtcwNMmWVKitXJ7dC+u560sPJElXzaUkXPXJkXakDQwIRWtC4a2dk7OHUe n4pqgov4ZgXyYhJv1DioX3NMPg== -----END CERTIFICATE-----Generated at Thu May 16 17:51:21 2024 by rpki-client on console-ams.rpki-client.org