$ rpki-client -vvf rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa File: 8C3BBD78F0D611EDAF996E15C4F9AE02.roa (raw, json) Hash identifier: h1eT+S1dtzxYMEcKg6aFETEbKtJHlxqUnISlojx1/TE= Subject key identifier: 9E:53:F7:DA:9D:21:2E:4D:2F:56:7E:F5:1C:99:B4:CA:0B:9E:A6:B7 Certificate issuer: /CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Certificate serial: 1702 Authority key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa Signing time: Fri 04 Aug 2023 16:53:57 +0000 ROA not before: Fri 04 Aug 2023 16:53:57 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38910 IP address blocks: 2407:e500:40::/43 maxlen: 43 2407:e500:40::/47 maxlen: 47 2407:e500:50::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5890 (0x1702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Validity Not Before: Aug 4 16:53:57 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd2d25-bf23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:13:15:f8:13:a6:b0:1e:d1:5b:e9:55:fd:ec: 7c:97:0f:79:67:8e:ff:6a:67:84:d0:16:fb:ea:a6: d9:25:2b:a4:45:07:6b:84:01:40:13:8d:1c:79:e2: 1a:87:af:9a:8e:74:07:21:ab:73:e4:2b:aa:92:99: 5c:fc:c0:98:90:4a:af:cc:09:d9:88:3b:8c:f8:56: 48:81:ca:e0:e2:65:c2:78:f0:94:8a:0b:dc:b9:69: 7e:b0:8d:ef:1e:99:30:b3:e2:ce:43:f4:33:ba:df: 8e:eb:83:e2:74:e3:61:e0:e7:f9:d6:59:8b:f9:48: 23:5a:f7:df:2b:84:10:03:57:da:10:ab:1e:d2:5f: 3f:96:4e:74:1d:e7:98:f6:e5:03:31:af:1a:dc:a9: 3b:1a:18:37:92:f9:9f:d0:e1:75:0a:2b:82:c1:3a: 07:28:dc:fd:86:44:32:cf:d4:ae:b7:3d:f7:33:9f: 5b:64:f7:fc:10:4b:0b:7c:89:7f:da:88:2a:8c:dd: f7:16:fe:cb:0d:b1:82:fe:99:bd:9b:5c:33:c5:01: 90:b1:5c:7b:aa:f3:eb:e1:73:fd:f5:67:32:9d:41: e9:dd:43:cd:23:55:15:15:57:85:64:dc:f5:01:e2: 85:b2:2b:f5:4a:38:c6:91:01:42:3e:77:2c:c8:64: 4c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:53:F7:DA:9D:21:2E:4D:2F:56:7E:F5:1C:99:B4:CA:0B:9E:A6:B7 X509v3 Authority Key Identifier: keyid:FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/8C3BBD78F0D611EDAF996E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e500:40::/43 Signature Algorithm: sha256WithRSAEncryption a7:da:82:d3:c9:5f:69:28:88:9f:a4:5a:35:05:4b:4d:51:9b: 80:94:91:20:9e:6b:15:3a:3e:33:fd:82:fd:f1:86:22:4f:bd: c9:a1:7c:69:7a:18:d3:a2:31:63:fd:da:71:48:55:62:fe:f8: f8:37:12:14:d9:d8:be:2d:4d:11:f5:8f:44:42:59:e3:84:4f: 5a:2e:4e:5b:0c:ab:21:9b:3f:50:3f:b3:85:16:d2:34:63:75: 4b:be:ec:2f:8a:81:93:52:be:6e:58:bc:2e:24:85:66:49:36: 8b:f3:79:c5:b0:be:75:ab:d3:fc:e7:c4:31:bf:4e:da:24:3c: 4a:2f:25:ae:a4:62:43:8e:fd:6c:a3:b6:0c:5e:69:d0:c6:7c: 2a:7a:b5:5b:ca:c5:e0:2a:47:f7:71:e9:1a:b5:27:fd:ac:a9: 4e:8f:17:ff:6d:27:1a:47:c1:bb:1d:8f:a7:4f:54:b4:3b:a7: d0:ce:2b:08:76:cc:cc:42:7d:08:e6:c4:33:fa:7d:28:07:c7: 98:65:cb:79:07:94:0e:ed:31:b4:52:3f:3d:0d:43:27:67:0f: f5:7b:c0:a6:be:4a:ea:cf:c2:63:61:43:3a:88:16:97:99:8a: 9c:4a:1f:e6:60:bd:f3:bc:79:a2:ec:68:e6:f5:e7:27:3e:b6: dc:59:04:98 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICFwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQzNkExMTAvBgNVBAUTKEZFQTRCOTZGMzk4M0Y3NjlDNzMzOTc0NTZDMTJCOTBG NjQyNDZDN0MwHhcNMjMwODA0MTY1MzU3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkMmQyNS1iZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BMV+BOmsB7RW+lV/ex8lw95Z47/ameE0Bb76qbZJSukRQdrhAFAE40ceeIa h6+ajnQHIatz5Cuqkplc/MCYkEqvzAnZiDuM+FZIgcrg4mXCePCUigvcuWl+sI3v Hpkws+LOQ/Qzut+O64PidONh4Of51lmL+UgjWvffK4QQA1faEKse0l8/lk50HeeY 9uUDMa8a3Kk7Ghg3kvmf0OF1CiuCwToHKNz9hkQyz9Sutz33M59bZPf8EEsLfIl/ 2ogqjN33Fv7LDbGC/pm9m1wzxQGQsVx7qvPr4XP99WcynUHp3UPNI1UVFVeFZNz1 AeKFsiv1SjjGkQFCPncsyGRMiQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ5T99qd IS5NL1Z+9RyZtMoLnqa3MB8GA1UdIwQYMBaAFP6kuW85g/dpxzOXRWwSuQ9kJGx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDM2QS8zN0FCRDcwOEFB OUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDkybkhNNWRGYkJLNUQyUWti SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19xUzViem1EOTJuSE01ZEZiQks1RDJRa2JIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQzNkEvMzdBQkQ3MDhBQTlBMTFFN0JBQzQxMjUyQzRGOUFFMDIvOEMzQkJENzhG MEQ2MTFFREFGOTk2RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwUkB+UAAEAwDQYJKoZIhvcNAQELBQADggEBAKfagtPJX2ko iJ+kWjUFS01Rm4CUkSCeaxU6PjP9gv3xhiJPvcmhfGl6GNOiMWP92nFIVWL++Pg3 EhTZ2L4tTRH1j0RCWeOET1ouTlsMqyGbP1A/s4UW0jRjdUu+7C+KgZNSvm5YvC4k hWZJNovzecWwvnWr0/znxDG/TtokPEovJa6kYkOO/WyjtgxeadDGfCp6tVvKxeAq R/dx6Rq1J/2sqU6PF/9tJxpHwbsdj6dPVLQ7p9DOKwh2zMxCfQjmxDP6fSgHx5hl y3kHlA7tMbRSPz0NQydnD/V7wKa+SurPwmNhQzqIFpeZipxKH+ZgvfO8eaLsaOb1 5yc+ttxZBJg= -----END CERTIFICATE-----Generated at Fri May 31 20:34:05 2024 by rpki-client on console-ams.rpki-client.org