$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa File: D26DDCB6F36C11E88E372D61C4F9AE02.roa (raw, json) Hash identifier: QU6KWPObH4Vi6K9iM6drxVIIcAPEme2qOmJfD9SdW1w= Subject key identifier: C3:B1:F0:6F:99:7E:23:8D:99:B6:87:69:63:6D:C8:D9:63:53:DA:4D Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1519 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa Signing time: Thu 30 May 2024 18:50:21 +0000 ROA not before: Thu 30 May 2024 18:50:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 395747 IP address blocks: 2400:cb00:131::/48 maxlen: 48 2400:cb00:133::/48 maxlen: 48 2400:cb00:164::/48 maxlen: 48 2400:cb00:171::/48 maxlen: 48 2400:cb00:302::/48 maxlen: 48 2400:cb00:517::/48 maxlen: 48 2400:cb00:518::/48 maxlen: 48 2400:cb00:531::/48 maxlen: 48 2400:cb00:539::/48 maxlen: 48 2400:cb00:692::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5401 (0x1519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 18:50:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ca6d-5c59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4b:4b:db:34:e6:60:c4:2b:9c:8d:eb:e2:e5: a5:45:aa:61:30:58:78:8d:b9:1b:c9:b6:db:1d:2c: 02:b2:0e:51:84:35:93:71:62:2f:b2:95:05:73:df: 81:fb:6e:c4:92:2b:36:c1:41:57:10:f3:d9:ac:f7: b1:9c:29:15:5e:70:6f:5e:e6:00:b5:94:d7:db:86: 5c:a3:e8:56:a8:2d:9e:24:87:08:05:c7:cb:92:b2: ae:a3:f2:69:fb:99:dc:dc:c7:97:b7:24:11:1b:b7: 38:ac:3b:be:ce:13:ee:98:a8:a3:83:b7:29:a9:cd: 4c:c8:9c:91:8d:a5:ec:14:da:81:3b:68:e2:50:a6: 25:7e:38:13:ab:96:78:96:33:84:3c:2e:af:b3:3a: 1c:d5:31:56:fb:9a:7d:0f:af:8a:86:92:71:a9:6f: 6d:67:12:ab:27:e0:c1:4a:ba:ef:e9:bd:56:c7:70: bb:ce:9b:d2:b3:85:74:e8:db:be:e1:87:63:bc:33: 8e:e1:66:88:8e:61:a8:a6:57:f8:c4:84:35:d1:e6: 53:4d:37:2b:2a:62:e6:65:4c:c1:91:21:49:72:41: 9c:22:97:75:c9:85:0c:e7:73:16:88:f7:80:b0:6e: 8a:f3:36:46:fc:8b:68:63:30:3f:ec:8c:67:1c:65: 2c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B1:F0:6F:99:7E:23:8D:99:B6:87:69:63:6D:C8:D9:63:53:DA:4D X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:131::/48 2400:cb00:133::/48 2400:cb00:164::/48 2400:cb00:171::/48 2400:cb00:302::/48 2400:cb00:517::-2400:cb00:518:ffff:ffff:ffff:ffff:ffff 2400:cb00:531::/48 2400:cb00:539::/48 2400:cb00:692::/48 Signature Algorithm: sha256WithRSAEncryption 11:08:e3:67:3c:34:42:0a:ec:47:15:dc:77:b2:98:e1:b2:a4: ac:61:15:ea:74:83:cb:23:b5:e7:0a:b5:ea:d2:5e:0f:48:b6: 6b:d2:a2:cb:8b:2a:3a:ba:6c:96:7b:1b:24:f1:15:42:7c:38: 38:a0:bf:37:63:92:a0:2c:05:0e:b9:df:3d:fa:d5:4a:76:56: 85:2e:24:cf:1c:2b:7f:58:d2:0a:00:c4:4b:23:be:7a:c4:ff: 33:3a:97:75:c0:54:10:e5:4d:e1:4b:26:c4:5b:7e:44:16:80: dc:34:de:47:94:ce:5a:25:18:b8:f4:9b:9d:f3:02:8b:55:29: 17:fa:aa:c5:a9:62:fe:cd:64:85:50:0b:16:eb:5f:a4:7c:54: f6:a9:66:62:86:03:5a:67:a6:f1:92:e1:0c:59:a5:bc:81:9c: ff:f2:8b:c6:e8:e9:aa:9f:1c:f0:c8:ea:8c:fe:c4:32:35:91: 6a:20:05:95:db:bd:7a:87:18:db:82:0d:c6:be:f2:e1:f7:23: f5:98:cd:8e:de:ce:28:93:15:de:fc:08:87:88:09:13:56:f0: 36:4d:61:81:df:6a:98:8e:90:d2:b3:5c:d5:33:a0:9a:72:03: 4c:39:04:89:1c:2a:6b:f8:a3:68:9b:a9:b3:e6:74:cc:e0:e3: 4c:54:85:0d -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgICFRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjQwNTMwMTg1MDIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2E2ZC01YzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuktL2zTmYMQrnI3r4uWlRaphMFh4jbkbybbbHSwCsg5RhDWTcWIvspUFc9+B +27Ekis2wUFXEPPZrPexnCkVXnBvXuYAtZTX24Zco+hWqC2eJIcIBcfLkrKuo/Jp +5nc3MeXtyQRG7c4rDu+zhPumKijg7cpqc1MyJyRjaXsFNqBO2jiUKYlfjgTq5Z4 ljOEPC6vszoc1TFW+5p9D6+KhpJxqW9tZxKrJ+DBSrrv6b1Wx3C7zpvSs4V06Nu+ 4YdjvDOO4WaIjmGoplf4xIQ10eZTTTcrKmLmZUzBkSFJckGcIpd1yYUM53MWiPeA sG6K8zZG/ItoYzA/7IxnHGUs9QIDAQABo4IC6zCCAucwHQYDVR0OBBYEFMOx8G+Z fiONmbaHaWNtyNljU9pNMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvRDI2RERDQjZG MzZDMTFFODhFMzcyRDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwdQYIKwYBBQUHAQcBAf8E ZjBkMGIEAgACMFwDBwAkAMsAATEDBwAkAMsAATMDBwAkAMsAAWQDBwAkAMsAAXED BwAkAMsAAwIwEgMHACQAywAFFwMHACQAywAFGAMHACQAywAFMQMHACQAywAFOQMH ACQAywAGkjANBgkqhkiG9w0BAQsFAAOCAQEAEQjjZzw0QgrsRxXcd7KY4bKkrGEV 6nSDyyO15wq16tJeD0i2a9Kiy4sqOrpslnsbJPEVQnw4OKC/N2OSoCwFDrnfPfrV SnZWhS4kzxwrf1jSCgDESyO+esT/MzqXdcBUEOVN4UsmxFt+RBaA3DTeR5TOWiUY uPSbnfMCi1UpF/qqxali/s1khVALFutfpHxU9qlmYoYDWmem8ZLhDFmlvIGc//KL xujpqp8c8MjqjP7EMjWRaiAFldu9eocY24INxr7y4fcj9ZjNjt7OKJMV3vwIh4gJ E1bwNk1hgd9qmI6Q0rNc1TOgmnIDTDkEiRwqa/ijaJups+Z0zODjTFSFDQ== -----END CERTIFICATE-----Generated at Fri May 31 19:47:49 2024 by rpki-client on console-fra.rpki-client.org