$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa File: 86516CF04BE911EE8640FE79C4F9AE02.roa (raw, json) Hash identifier: JVrW7wfeXBjB6PXcjMzC+SjNaEkZTfjyPBjZ9yQSfR4= Subject key identifier: A3:92:E9:BE:64:FB:C4:A1:93:7A:83:BF:A5:3F:61:25:96:7D:95:35 Certificate issuer: /CN=A9148D53/serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Certificate serial: DE Authority key identifier: FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa Signing time: Tue 27 Feb 2024 06:39:42 +0000 ROA not before: Tue 27 Feb 2024 06:39:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 139853 IP address blocks: 2401:fd80:ff00::/48 maxlen: 48 2401:fd80:ff01::/48 maxlen: 48 2401:fd80:ff02::/48 maxlen: 48 2401:fd80:ff03::/48 maxlen: 48 2401:fd80:ff04::/48 maxlen: 48 2401:fd80:ffb1::/48 maxlen: 48 2401:fd80:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D53/serialNumber=FDBD4C0D34492F5CEAE4879E4762796E527007EB Validity Not Before: Feb 27 06:39:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dd83ad-e9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:97:65:ed:e9:fb:02:69:3b:3f:17:8e:16:5b: ee:5c:e4:1f:d8:b4:18:68:a5:ba:32:40:b4:3d:65: dd:29:66:33:ba:52:34:90:54:60:0b:03:a0:1a:08: 59:e5:75:13:33:b2:eb:92:57:c9:6e:1b:12:b9:78: de:42:bc:28:a7:c4:c5:60:39:e4:24:66:77:be:6f: 44:04:00:75:37:94:6f:fc:61:76:90:af:76:c2:c5: b5:62:5f:ee:f7:fb:5b:3a:fc:e6:c9:02:39:17:87: da:d6:6f:2c:43:1c:e5:e6:54:7f:99:ac:a2:ef:5a: dc:8b:64:23:73:bb:f3:6a:94:f0:00:00:79:f7:cc: 18:a7:de:2a:3a:3f:9f:59:d1:4a:14:0a:9d:b1:c7: d3:6c:b8:e9:5a:9b:cc:13:34:49:d1:62:15:0f:44: 74:16:51:1d:ca:22:f0:1b:90:9a:c7:35:14:81:95: d4:68:30:01:ee:b4:61:96:24:2a:3a:b3:fd:e5:87: a4:8c:fc:fd:9a:2a:d0:a2:8d:f7:48:5d:d0:b8:02: 2f:59:2f:ee:0f:a9:35:00:15:28:a3:b2:51:f7:76: 15:6f:5c:d5:47:2b:d3:45:72:e7:e4:99:2a:a5:8c: 1f:e9:e2:d4:fb:dd:a8:74:da:fe:b0:1a:7d:9d:a0: e3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:92:E9:BE:64:FB:C4:A1:93:7A:83:BF:A5:3F:61:25:96:7D:95:35 X509v3 Authority Key Identifier: keyid:FD:BD:4C:0D:34:49:2F:5C:EA:E4:87:9E:47:62:79:6E:52:70:07:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/_b1MDTRJL1zq5IeeR2J5blJwB-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_b1MDTRJL1zq5IeeR2J5blJwB-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D53/D586F8F0307111EE8546A32FC4F9AE02/86516CF04BE911EE8640FE79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:fd80:ff00::-2401:fd80:ff04:ffff:ffff:ffff:ffff:ffff 2401:fd80:ffb1::/48 2401:fd80:ffff::/48 Signature Algorithm: sha256WithRSAEncryption a6:b4:ab:0d:56:82:be:03:b1:75:40:fc:81:52:ab:6e:85:93: 93:1f:48:b7:b1:83:f9:e1:10:d3:9a:79:e7:ff:71:b6:c3:d9: 57:60:e4:89:0c:61:2e:ae:8f:be:66:ae:ba:1c:c6:c8:c2:86: 35:34:f2:41:36:73:6f:48:17:a7:2b:9f:3e:ff:33:8e:56:a6: 0d:30:99:13:30:33:d7:2d:d1:fd:55:6a:77:23:30:93:1e:16: 1e:81:99:f9:15:d9:26:b4:0c:da:47:bf:cb:89:89:d6:85:5e: ac:d3:f6:d2:72:e3:c7:d5:39:58:4c:8d:63:24:62:fd:b0:09: db:7a:16:ba:dc:61:65:32:aa:71:ca:ff:3d:70:47:e5:3b:2d: 0e:c9:e3:e3:cd:61:8b:0b:4a:0c:a2:1c:89:5f:b3:8f:2c:7f: d5:87:5f:d6:59:49:a0:bf:eb:04:33:71:ef:74:02:67:78:86: 7a:6f:3f:f2:a7:1a:84:37:eb:0a:f4:b5:53:e7:33:93:fe:14: 8c:d3:24:f0:84:1a:ba:dc:70:60:ff:3b:d6:d5:e3:1a:c8:fe: 5d:17:16:65:67:6f:e4:c8:e8:d9:80:dc:1a:d6:1e:88:84:e3: de:77:6f:67:f1:a5:dc:8a:5e:75:a5:38:30:e1:d3:2b:46:6f: bd:48:57:ab -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTMxMTAvBgNVBAUTKEZEQkQ0QzBEMzQ0OTJGNUNFQUU0ODc5RTQ3NjI3OTZF NTI3MDA3RUIwHhcNMjQwMjI3MDYzOTQyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkODNhZC1lOWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5dl7en7Amk7PxeOFlvuXOQf2LQYaKW6MkC0PWXdKWYzulI0kFRgCwOgGghZ 5XUTM7LrklfJbhsSuXjeQrwop8TFYDnkJGZ3vm9EBAB1N5Rv/GF2kK92wsW1Yl/u 9/tbOvzmyQI5F4fa1m8sQxzl5lR/mayi71rci2Qjc7vzapTwAAB598wYp94qOj+f WdFKFAqdscfTbLjpWpvMEzRJ0WIVD0R0FlEdyiLwG5CaxzUUgZXUaDAB7rRhliQq OrP95YekjPz9mirQoo33SF3QuAIvWS/uD6k1ABUoo7JR93YVb1zVRyvTRXLn5Jkq pYwf6eLU+92odNr+sBp9naDjOQIDAQABo4ICtDCCArAwHQYDVR0OBBYEFKOS6b5k +8Shk3qDv6U/YSWWfZU1MB8GA1UdIwQYMBaAFP29TA00SS9c6uSHnkdieW5ScAfr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1My9ENTg2RjhGMDMw NzExMUVFODU0NkEzMkZDNEY5QUUwMi9fYjFNRFRSSkwxenE1SWVlUjJKNWJsSndC LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iMU1EVFJKTDF6cTVJZWVSMko1YmxKd0Itcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhENTMvRDU4NkY4RjAzMDcxMTFFRTg1NDZBMzJGQzRGOUFFMDIvODY1MTZDRjA0 QkU5MTFFRTg2NDBGRTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMCsEAgACMCUwEQMGACQB/YD/AwcAJAH9gP8EAwcAJAH9gP+xAwcAJAH9gP// MA0GCSqGSIb3DQEBCwUAA4IBAQCmtKsNVoK+A7F1QPyBUqtuhZOTH0i3sYP54RDT mnnn/3G2w9lXYOSJDGEuro++Zq66HMbIwoY1NPJBNnNvSBenK58+/zOOVqYNMJkT MDPXLdH9VWp3IzCTHhYegZn5FdkmtAzaR7/LiYnWhV6s0/bScuPH1TlYTI1jJGL9 sAnbeha63GFlMqpxyv89cEflOy0OyePjzWGLC0oMohyJX7OPLH/Vh1/WWUmgv+sE M3HvdAJneIZ6bz/ypxqEN+sK9LVT5zOT/hSM0yTwhBq63HBg/zvW1eMayP5dFxZl Z2/kyOjZgNwa1h6IhOPed29n8aXcil51pTgw4dMrRm+9SFer -----END CERTIFICATE-----Generated at Sun Jun 9 08:55:04 2024 by rpki-client on console-ams.rpki-client.org