$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa File: E367308E8D8811EDB3C13D6CC4F9AE02.roa (raw, json) Hash identifier: Rw+xZrPE7JfKt33gxLSE4ynedqahF1i+l992xJrn3gE= Subject key identifier: 95:FE:7A:86:9A:A8:0B:86:5C:4D:49:E9:40:9D:50:DD:D0:37:5F:1C Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 3365 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa Signing time: Tue 12 Sep 2023 15:31:13 +0000 ROA not before: Tue 12 Sep 2023 15:31:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38620 IP address blocks: 2409::/40 maxlen: 40 240a:e000::/21 maxlen: 22 240a:e800::/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13157 (0x3365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Sep 12 15:31:13 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65008441-54de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:95:18:db:94:4e:d3:4b:88:92:fc:43:75: f8:cc:73:99:84:6d:4c:31:64:4d:37:50:1d:ed:57: b7:bc:64:44:67:97:20:8a:05:a8:99:60:43:d8:ba: a3:f4:69:df:bb:5e:08:ba:23:1b:b4:d3:e7:f4:0b: c6:05:05:35:1d:7c:5a:e0:d2:b7:18:8d:b0:a1:05: f0:b8:59:fb:af:26:53:ea:88:9c:03:5d:20:ba:49: ed:f9:3e:75:78:6b:29:1c:bf:01:39:fe:57:cc:10: e3:ae:9c:ff:89:3f:71:95:ad:f9:a8:15:b8:d2:df: 17:cc:30:49:da:cf:d8:bc:ce:0c:a5:cf:54:3d:e3: ec:01:ea:cb:df:1f:c9:1d:2a:7a:8a:2f:53:4e:83: 7a:a4:42:d8:37:de:5a:4e:91:4a:28:24:a8:7d:32: 5d:4a:72:42:46:4a:7e:f6:20:da:44:f9:e4:fa:4b: db:5e:ca:20:fb:cc:c1:1f:1d:d8:8c:57:65:3e:50: 95:3e:29:81:56:ec:92:3b:aa:47:8c:c9:b9:fd:20: 5c:0b:e3:c2:6b:18:fa:b6:c4:67:22:e4:63:ab:63: c1:33:59:3e:b5:a8:45:57:a7:cb:04:27:7e:fd:0a: 07:7c:2e:45:db:86:53:86:a0:95:ec:1f:9a:c7:8a: 57:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FE:7A:86:9A:A8:0B:86:5C:4D:49:E9:40:9D:50:DD:D0:37:5F:1C X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/E367308E8D8811EDB3C13D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2409::/40 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption 2a:38:bb:2f:c4:c0:3b:5b:f0:c0:75:a5:a1:36:62:ee:7f:7d: 1e:13:e0:69:1b:36:37:5d:2f:07:b1:db:53:ea:25:b3:7a:91: d5:95:1d:4e:ef:d9:ae:6c:f8:09:13:98:a6:0f:b1:f7:80:07: 12:b6:87:f2:4b:20:e2:17:b8:4a:3c:95:ef:1d:52:2f:f8:b4: 98:5d:ac:4d:7e:2e:9b:c5:b2:67:97:0a:d2:7e:ba:df:64:f6: 40:38:d0:31:02:25:57:37:c0:0e:30:7f:9e:90:0c:02:4b:ca: 41:62:43:d1:0b:87:ca:17:03:0d:7d:4b:ac:fc:9b:70:d2:39: 04:3f:72:16:20:68:56:6b:0f:ab:47:dd:50:5b:be:0e:da:3d: 62:df:32:76:6c:c6:98:ff:10:d7:e3:3b:35:0b:17:69:aa:e7: f8:1f:22:10:64:59:b5:0e:9c:b5:f1:f4:d6:4d:31:7a:81:08: f4:d6:83:e8:e5:96:ad:f2:d0:a4:93:05:36:1e:e2:e6:22:18: f1:40:7a:20:9f:73:5d:8a:bd:ed:d5:35:16:d8:58:42:70:17: dc:7b:b9:c5:34:75:ca:5c:ec:ac:61:1c:93:db:49:27:88:4d: 5f:ba:11:e8:69:4a:c8:5c:27:32:96:17:d8:d9:f3:ae:3e:b4: cd:ce:94:55 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICM2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjMwOTEyMTUzMTEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwODQ0MS01NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWqVGNuUTtNLiJL8Q3X4zHOZhG1MMWRNN1Ad7Ve3vGREZ5cgigWomWBD2Lqj 9Gnfu14IuiMbtNPn9AvGBQU1HXxa4NK3GI2woQXwuFn7ryZT6oicA10guknt+T51 eGspHL8BOf5XzBDjrpz/iT9xla35qBW40t8XzDBJ2s/YvM4Mpc9UPePsAerL3x/J HSp6ii9TToN6pELYN95aTpFKKCSofTJdSnJCRkp+9iDaRPnk+kvbXsog+8zBHx3Y jFdlPlCVPimBVuySO6pHjMm5/SBcC+PCaxj6tsRnIuRjq2PBM1k+tahFV6fLBCd+ /QoHfC5F24ZThqCV7B+ax4pXkQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJX+eoaa qAuGXE1J6UCdUN3QN18cMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvRTM2NzMwOEU4 RDg4MTFFREIzQzEzRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgACMA4DBgAkCQAAAAMEBCQK4DANBgkqhkiG9w0BAQsFAAOCAQEAKji7 L8TAO1vwwHWloTZi7n99HhPgaRs2N10vB7HbU+ols3qR1ZUdTu/Zrmz4CROYpg+x 94AHEraH8ksg4he4SjyV7x1SL/i0mF2sTX4um8WyZ5cK0n6632T2QDjQMQIlVzfA DjB/npAMAkvKQWJD0QuHyhcDDX1LrPybcNI5BD9yFiBoVmsPq0fdUFu+Dto9Yt8y dmzGmP8Q1+M7NQsXaarn+B8iEGRZtQ6ctfH01k0xeoEI9NaD6OWWrfLQpJMFNh7i 5iIY8UB6IJ9zXYq97dU1FthYQnAX3Hu5xTR1ylzsrGEck9tJJ4hNX7oR6GlKyFwn MpYX2Nnzrj60zc6UVQ== -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org