$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/44B11A52CAEE11ECBC0B2B7EC4F9AE02.roa File: 44B11A52CAEE11ECBC0B2B7EC4F9AE02.roa (raw, json) Hash identifier: XYAlCpJ7mzvp/cofGi5NvPIKtbxLdre0l8+aO1T1+jg= Subject key identifier: 99:0A:AE:1A:D3:FE:0E:53:18:C5:97:30:46:BB:58:C6:76:3D:A6:56 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 032E Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/44B11A52CAEE11ECBC0B2B7EC4F9AE02.roa Signing time: Thu 21 Mar 2024 02:45:18 +0000 ROA not before: Thu 21 Mar 2024 02:45:18 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 204185 IP address blocks: 2400:58a0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Mar 21 02:45:18 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb9f3e-f01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:d2:07:79:03:22:7d:b5:15:00:c8:84:89: f1:77:f5:3a:03:40:ef:64:a5:2d:43:fb:0c:b4:64: 66:5e:f3:a0:c5:04:cc:59:55:74:53:85:b7:25:92: f7:a6:d6:c0:ea:cb:80:c2:6f:b9:f3:ec:90:d3:b4: 3c:98:60:55:81:ef:3b:25:44:07:f6:b7:be:63:bd: 62:ce:2a:71:b0:be:67:c5:18:c4:13:c6:b7:3e:33: 93:a3:7a:d4:16:b2:49:02:88:4c:db:e9:67:92:65: 37:67:8c:1a:8c:f0:3f:7e:bc:82:43:6b:0a:3c:6b: 41:85:df:69:31:09:29:37:7c:a3:37:8d:0e:54:9f: a6:30:ac:39:84:75:12:4b:47:e1:2c:fd:9d:3e:d2: 47:b2:83:ff:fb:9e:f1:a3:c8:be:af:9f:77:44:27: d6:6c:34:f7:5f:28:42:b8:b9:49:e6:87:2d:d1:c6: 35:c4:6c:10:ca:f5:4d:d3:d6:7d:a2:ee:93:41:2f: 3e:4a:7a:40:83:e9:6c:89:5a:52:f1:2c:11:4a:ca: 80:de:39:9c:3f:4e:29:85:9b:c7:9b:05:06:c3:da: 46:3f:3a:94:4f:27:df:98:b0:a3:38:5f:24:8d:05: 4a:76:f9:43:da:36:d5:a4:c6:c7:10:2c:49:eb:ad: d5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0A:AE:1A:D3:FE:0E:53:18:C5:97:30:46:BB:58:C6:76:3D:A6:56 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/44B11A52CAEE11ECBC0B2B7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:58a0:e000::/36 Signature Algorithm: sha256WithRSAEncryption c6:6f:37:f3:e0:30:ef:1c:06:9c:63:86:da:ea:58:4c:b4:85: dd:20:3b:18:32:55:6e:8a:64:55:91:af:3f:39:21:ab:8c:a6: 67:e5:30:c7:ec:73:db:00:c4:5e:f2:01:18:dc:77:bf:58:c2: 9d:68:c8:c4:15:9c:34:f2:e0:23:f4:8d:48:c3:2f:e2:db:db: a0:db:89:b4:a0:79:5a:21:b1:d4:9f:30:5b:20:43:77:48:4c: ec:50:91:43:8e:b3:d7:f3:64:76:cd:e7:74:0c:61:58:c0:07: 86:79:3c:1a:98:0d:14:d2:4e:c7:e4:3c:73:85:19:4b:f5:d2: 4e:86:07:ae:00:50:c5:08:91:5e:6a:ed:be:ef:3e:67:c7:c3: 82:33:c1:50:83:d4:57:b5:9f:33:97:b8:b6:c0:a5:b0:dc:37: 6a:b7:3b:72:60:7d:40:6b:fc:f7:f2:13:3c:36:4e:a8:17:30: 49:05:1e:d1:2b:7a:5d:de:82:08:10:f8:88:9f:d9:74:e6:9f: c1:b9:fd:52:fd:66:1f:7f:f8:e5:ce:da:62:9c:00:98:9c:e6: 25:4d:32:f5:12:0e:ab:22:fe:b5:6f:7c:4a:cc:d1:82:2a:7a: 01:ff:08:0c:0b:7d:ed:e1:7f:24:ec:79:a5:cb:28:de:09:96: 88:e1:e7:a6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjQwMzIxMDI0NTE4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiOWYzZS1mMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJnSB3kDIn21FQDIhInxd/U6A0DvZKUtQ/sMtGRmXvOgxQTMWVV0U4W3JZL3 ptbA6suAwm+58+yQ07Q8mGBVge87JUQH9re+Y71izipxsL5nxRjEE8a3PjOTo3rU FrJJAohM2+lnkmU3Z4wajPA/fryCQ2sKPGtBhd9pMQkpN3yjN40OVJ+mMKw5hHUS S0fhLP2dPtJHsoP/+57xo8i+r593RCfWbDT3XyhCuLlJ5oct0cY1xGwQyvVN09Z9 ou6TQS8+SnpAg+lsiVpS8SwRSsqA3jmcP04phZvHmwUGw9pGPzqUTyffmLCjOF8k jQVKdvlD2jbVpMbHECxJ663V0QIDAQABo4IClzCCApMwHQYDVR0OBBYEFJkKrhrT /g5TGMWXMEa7WMZ2PaZWMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvNDRCMTFBNTJD QUVFMTFFQ0JDMEIyQjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAFig4DANBgkqhkiG9w0BAQsFAAOCAQEAxm838+Aw7xwG nGOG2upYTLSF3SA7GDJVbopkVZGvPzkhq4ymZ+Uwx+xz2wDEXvIBGNx3v1jCnWjI xBWcNPLgI/SNSMMv4tvboNuJtKB5WiGx1J8wWyBDd0hM7FCRQ46z1/Nkds3ndAxh WMAHhnk8GpgNFNJOx+Q8c4UZS/XSToYHrgBQxQiRXmrtvu8+Z8fDgjPBUIPUV7Wf M5e4tsClsNw3arc7cmB9QGv89/ITPDZOqBcwSQUe0St6Xd6CCBD4iJ/ZdOafwbn9 Uv1mH3/45c7aYpwAmJzmJU0y9RIOqyL+tW98SszRgip6Af8IDAt97eF/JOx5pcso 3gmWiOHnpg== -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org