$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/16D76086A0A811EF88ED2026C4F9AE02.roa File: 16D76086A0A811EF88ED2026C4F9AE02.roa (raw, json) Hash identifier: 8Np2ddxX2fo4rhs148sR/PBqkKkRgOKwM4iRJDzvMNU= Subject key identifier: 60:35:77:14:78:D0:9F:69:96:0C:C0:82:92:C7:48:1E:3C:A4:14:75 Certificate issuer: /CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Certificate serial: 5F Authority key identifier: B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/16D76086A0A811EF88ED2026C4F9AE02.roa Signing time: Tue 12 Nov 2024 03:49:42 +0000 ROA not before: Tue 12 Nov 2024 03:49:42 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137496 IP address blocks: 2402:8dc0::/32 maxlen: 32 2402:8dc0::/48 maxlen: 48 2402:8dc0:1::/48 maxlen: 48 2402:8dc0:2::/48 maxlen: 48 2402:8dc0:3::/48 maxlen: 48 2402:8dc0:4::/48 maxlen: 48 2402:8dc0:10::/48 maxlen: 48 2402:8dc0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Validity Not Before: Nov 12 03:49:42 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6732d056-340b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:37:4d:37:78:4a:5f:21:7d:c8:7b:eb:7f: 0f:ac:9f:83:8e:cc:8f:9e:30:7a:89:40:e7:f1:c6: 11:b5:d5:1f:8b:80:05:aa:7b:51:b9:47:3a:45:08: 66:92:6b:2c:59:58:18:3f:e6:9b:10:b2:cf:2f:f4: 89:37:c2:36:7a:62:10:2f:b9:ee:cc:36:d2:22:c3: ee:ee:44:c1:40:de:ea:fd:96:41:eb:35:9a:3d:49: 35:af:12:9b:11:af:b7:28:90:f4:fa:39:ad:67:5a: bd:74:91:33:2f:71:b4:25:b7:96:ed:52:66:da:e0: 1a:59:19:da:c7:76:b0:cf:36:c9:3f:5e:b7:dd:39: a9:e6:87:42:7c:90:28:0d:74:3e:fa:6f:23:9d:8e: 2d:4d:d7:07:22:1f:b0:d8:9f:06:c9:f2:fe:9b:12: 44:f2:34:f5:1e:10:ca:74:59:f7:59:74:f5:e6:3a: 7a:17:bd:18:a4:84:c5:09:d4:d1:de:ff:5f:ce:e6: 46:44:de:dc:45:4f:27:d8:2c:cc:5a:39:38:4c:e6: 8a:e5:f5:01:5e:ff:3a:21:ff:fd:20:2c:35:38:72: 53:db:bf:c0:d6:6a:0a:97:e3:c8:f3:83:c0:fb:04: 8c:c4:be:ad:b9:cd:62:1c:c3:88:c7:7d:5d:56:7a: 0b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:35:77:14:78:D0:9F:69:96:0C:C0:82:92:C7:48:1E:3C:A4:14:75 X509v3 Authority Key Identifier: keyid:B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/16D76086A0A811EF88ED2026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:8dc0::/32 Signature Algorithm: sha256WithRSAEncryption 08:75:30:19:44:fc:c2:04:c8:3c:d0:f5:62:76:77:9c:65:47: 6e:fb:13:4c:03:62:68:86:16:23:1a:20:78:1f:ef:af:c0:af: d7:86:59:35:bc:fe:b2:31:27:4c:2b:81:e8:57:1b:11:21:67: db:12:fe:0a:a2:d9:9d:9e:dc:93:ee:7b:06:d2:58:90:49:f5: 65:1f:2a:91:99:d9:6c:3f:c3:6d:4b:6c:a4:cf:72:35:28:c9: 35:8e:bb:24:51:90:41:8e:eb:83:e0:ce:e7:fc:58:cd:4d:29: 79:2d:ec:5d:33:a4:27:51:ed:7c:bc:1e:9b:fd:78:ac:97:68: 83:69:d0:02:b5:1b:77:59:9a:80:d6:1f:09:99:5b:9d:a0:1e: 31:4d:8e:e2:51:b7:27:66:dc:19:cb:a5:5b:9a:78:33:c3:fa: 34:4f:c7:f2:78:c9:a4:bb:51:5c:5d:b6:91:27:c5:f7:fd:07: 48:1a:7c:65:2e:82:1d:c5:71:66:9e:c0:4f:a0:97:0d:86:22: 09:85:57:5e:d8:66:17:1d:97:bf:b6:7d:66:b5:ac:f3:f2:59: fc:95:0d:03:54:70:67:f7:79:a7:0b:1d:6f:f6:70:6e:20:47: 74:c8:19:14:7a:8b:1a:51:0f:4e:77:17:53:72:b3:5a:64:98: 76:80:e1:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RkEyNTExMC8GA1UEBRMoQjAwMTRBODMwNkM1MkU0MDRGNjdDQTJGOEU1ODZGOUI4 NjhFOENBQjAeFw0yNDExMTIwMzQ5NDJaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzJkMDU2LTM0MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC18zdNN3hKXyF9yHvrfw+sn4OOzI+eMHqJQOfxxhG11R+LgAWqe1G5RzpFCGaS ayxZWBg/5psQss8v9Ik3wjZ6YhAvue7MNtIiw+7uRMFA3ur9lkHrNZo9STWvEpsR r7cokPT6Oa1nWr10kTMvcbQlt5btUmba4BpZGdrHdrDPNsk/XrfdOanmh0J8kCgN dD76byOdji1N1wciH7DYnwbJ8v6bEkTyNPUeEMp0WfdZdPXmOnoXvRikhMUJ1NHe /1/O5kZE3txFTyfYLMxaOThM5orl9QFe/zoh//0gLDU4clPbv8DWagqX48jzg8D7 BIzEvq25zWIcw4jHfV1WegvzAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUYDV3FHjQ n2mWDMCCksdIHjykFHUwHwYDVR0jBBgwFoAUsAFKgwbFLkBPZ8ovjlhvm4aOjKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGQTI1LzJCQkNCQ0FBMURB QzExRUFBRjRBMzc2M0M0RjlBRTAyL3NBRktnd2JGTGtCUFo4b3ZqbGh2bTRhT2pL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0FGS2d3YkZMa0JQWjhvdmpsaHZtNGFPaktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkEyNS8yQkJDQkNBQTFEQUMxMUVBQUY0QTM3NjNDNEY5QUUwMi8xNkQ3NjA4NkEw QTgxMUVGODhFRDIwMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCjcAwDQYJKoZIhvcNAQELBQADggEBAAh1MBlE/MIEyDzQ 9WJ2d5xlR277E0wDYmiGFiMaIHgf76/Ar9eGWTW8/rIxJ0wrgehXGxEhZ9sS/gqi 2Z2e3JPuewbSWJBJ9WUfKpGZ2Ww/w21LbKTPcjUoyTWOuyRRkEGO64Pgzuf8WM1N KXkt7F0zpCdR7Xy8Hpv9eKyXaINp0AK1G3dZmoDWHwmZW52gHjFNjuJRtydm3BnL pVuaeDPD+jRPx/J4yaS7UVxdtpEnxff9B0gafGUugh3FcWaewE+glw2GIgmFV17Y Zhcdl7+2fWa1rPPyWfyVDQNUcGf3eacLHW/2cG4gR3TIGRR6ixpRD053F1Nys1pk mHaA4QI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org