$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa File: F255CD0A5EC411ED810B8584C4F9AE02.roa (raw, json) Hash identifier: 1/c265I61z81RbwUjN+/+ktuTISDdU6AGxRGRBwwFGQ= Subject key identifier: 64:9C:54:DD:39:83:AF:62:19:C1:A6:66:71:6B:8A:DE:D7:3B:7C:1F Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 0329 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa Signing time: Thu 21 Mar 2024 02:45:14 +0000 ROA not before: Thu 21 Mar 2024 02:45:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149500 IP address blocks: 2400:58a0:1000::/44 maxlen: 44 2400:58a0:1000::/48 maxlen: 48 2400:58a0:1001::/48 maxlen: 48 2400:58a0:1002::/48 maxlen: 48 2400:58a0:1003::/48 maxlen: 48 2400:58a0:1004::/48 maxlen: 48 2400:58a0:1005::/48 maxlen: 48 2400:58a0:1006::/48 maxlen: 48 2400:58a0:1007::/48 maxlen: 48 2400:58a0:1008::/48 maxlen: 48 2400:58a0:1009::/48 maxlen: 48 2400:58a0:100a::/48 maxlen: 48 2400:58a0:100b::/48 maxlen: 48 2400:58a0:100c::/48 maxlen: 48 2400:58a0:100d::/48 maxlen: 48 2400:58a0:100e::/48 maxlen: 48 2400:58a0:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Mar 21 02:45:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb9f39-3028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:f1:a1:9c:82:ce:24:79:53:9a:23:e6:7d: 96:d9:41:ac:83:0e:a4:83:e4:e9:f0:9a:3a:e5:60: 93:09:28:61:ce:39:d3:5a:04:d3:5f:0a:5c:a1:33: 48:b3:ff:59:0b:4a:03:b0:a1:39:a6:ca:2b:91:d6: c3:9e:61:b6:1d:3e:22:84:71:30:42:4c:be:80:d3: a8:5b:e7:cf:1b:41:6f:c6:a7:d4:e7:5e:5d:9a:79: a3:92:9b:31:a9:2d:2b:81:ff:66:f0:e1:d9:73:97: 56:d4:58:8b:b7:64:07:50:20:b9:66:7a:83:7e:ab: 7b:00:8f:20:80:f4:bb:32:65:37:dd:b3:06:4a:91: 74:32:df:e1:f3:90:8f:59:e2:1d:93:2c:6d:bc:da: fd:7a:ad:ea:86:8c:14:8e:d0:ce:a1:24:c2:df:cc: 86:e2:7c:a2:37:ae:7c:ee:49:3b:32:25:84:68:ab: f9:1f:71:4c:9f:c5:8c:af:c5:bc:d8:25:d3:98:4c: 15:e1:35:ad:27:78:d8:0b:19:f6:e5:a8:53:4d:e9: 88:cb:9c:b1:39:a4:01:4b:02:10:85:c5:6f:01:54: a8:68:18:41:f5:fd:fb:6b:07:2a:e9:9e:b7:6b:1a: 27:19:9a:aa:a5:74:6c:29:f5:6d:e8:00:81:ec:ca: d3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9C:54:DD:39:83:AF:62:19:C1:A6:66:71:6B:8A:DE:D7:3B:7C:1F X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/F255CD0A5EC411ED810B8584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:58a0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 4f:ec:ac:2e:ae:4f:89:16:d5:02:de:02:e8:0d:3f:0e:36:61: 79:75:7b:38:44:b6:b6:c9:7f:f8:6e:00:30:28:a3:a5:9e:4c: 4b:f8:33:63:3b:49:7b:87:91:3c:66:cc:f5:ae:c8:b2:0b:eb: 19:e3:13:6e:bf:b7:8b:f5:80:40:2b:34:69:c6:ce:f8:b4:62: 9d:e2:5e:e1:0c:70:bc:79:66:28:5e:5d:ea:ee:af:b4:22:e3: 68:0e:8a:98:2e:aa:c9:ed:77:51:24:c7:26:ed:88:a9:00:f6: 18:13:b6:b8:2a:d6:93:43:1c:82:16:f9:72:56:38:0a:a1:95: cb:5c:c3:63:59:b7:c9:47:81:ba:a6:39:2b:60:e4:a0:dd:6a: ca:1a:ca:f1:8b:2d:9d:ed:5d:a6:ee:ea:e5:28:8c:4f:6e:e1: f2:69:fe:b7:cd:f6:6b:22:4d:bc:f3:f6:a0:03:97:f1:2c:5a: 2d:df:26:4e:2f:7d:a0:9d:d9:89:3b:bc:1e:f5:36:17:22:91: f2:43:91:3a:21:0b:9c:a0:5b:8a:9f:5f:4d:f3:42:82:3c:90: 45:14:15:af:e9:0f:c4:e4:62:b3:34:bc:e4:57:3c:0c:db:93: 12:24:58:c7:89:e9:c9:d6:80:e7:10:38:63:77:be:b4:b9:34: 6f:09:4c:21 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjQwMzIxMDI0NTE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiOWYzOS0zMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM3xoZyCziR5U5oj5n2W2UGsgw6kg+Tp8Jo65WCTCShhzjnTWgTTXwpcoTNI s/9ZC0oDsKE5psorkdbDnmG2HT4ihHEwQky+gNOoW+fPG0FvxqfU515dmnmjkpsx qS0rgf9m8OHZc5dW1FiLt2QHUCC5ZnqDfqt7AI8ggPS7MmU33bMGSpF0Mt/h85CP WeIdkyxtvNr9eq3qhowUjtDOoSTC38yG4nyiN6587kk7MiWEaKv5H3FMn8WMr8W8 2CXTmEwV4TWtJ3jYCxn25ahTTemIy5yxOaQBSwIQhcVvAVSoaBhB9f37awcq6Z63 axonGZqqpXRsKfVt6ACB7MrTfwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGScVN05 g69iGcGmZnFrit7XO3wfMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvRjI1NUNEMEE1 RUM0MTFFRDgxMEI4NTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAFigEAAwDQYJKoZIhvcNAQELBQADggEBAE/srC6uT4kW 1QLeAugNPw42YXl1ezhEtrbJf/huADAoo6WeTEv4M2M7SXuHkTxmzPWuyLIL6xnj E26/t4v1gEArNGnGzvi0Yp3iXuEMcLx5ZiheXerur7Qi42gOipguqsntd1Ekxybt iKkA9hgTtrgq1pNDHIIW+XJWOAqhlctcw2NZt8lHgbqmOStg5KDdasoayvGLLZ3t Xabu6uUojE9u4fJp/rfN9msiTbzz9qADl/EsWi3fJk4vfaCd2Yk7vB71NhcikfJD kTohC5ygW4qfX03zQoI8kEUUFa/pD8TkYrM0vORXPAzbkxIkWMeJ6cnWgOcQOGN3 vrS5NG8JTCE= -----END CERTIFICATE-----Generated at Sat Jun 15 04:18:12 2024 by rpki-client on console-ams.rpki-client.org