$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa File: 958CC8DA1C2611ECB416AA68C4F9AE02.roa (raw, json) Hash identifier: Qn8h9e3xBlNCJgJT5HRLQzveKu81gP0DGsTM6ZrDAn8= Subject key identifier: 32:F2:E5:2D:F5:39:6E:AA:C7:27:69:DC:63:23:A2:27:65:3B:21:B7 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0991 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa Signing time: Sat 22 Apr 2023 03:58:20 +0000 ROA not before: Sat 22 Apr 2023 03:58:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 394749 IP address blocks: 2407:b000:4015::/48 maxlen: 48 2407:b001:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2449 (0x991) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Apr 22 03:58:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64435b5b-fdaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:2d:ef:41:06:59:7b:66:ab:b4:4a:a3:c9: 05:f9:dd:e8:79:6c:ee:46:71:83:4c:51:13:6e:8b: 9e:50:68:bb:2a:39:b4:e9:ae:de:05:53:f7:a3:f7: de:81:52:ed:38:e7:a8:7d:a1:44:96:27:0f:b9:e0: e1:38:de:85:97:ee:dd:9c:15:f8:b2:5c:12:3f:b7: c3:c9:8a:a0:6e:94:83:a9:a8:2e:9e:47:c0:94:ec: cf:9f:0a:38:9d:29:c6:69:61:bb:15:a1:5a:26:2a: 33:ab:25:96:78:0a:f6:25:8d:64:de:3d:61:9a:ab: 20:4c:44:17:ea:12:ba:95:4f:c4:6b:76:cb:5c:b2: 59:6b:dc:bc:ae:b6:17:6b:bd:06:06:75:b5:c0:a0: af:d7:7c:57:17:49:89:96:bd:3b:7f:b2:bd:52:d5: 20:5d:41:b3:88:de:f2:f6:e2:0a:f5:ea:81:47:2f: e2:11:fe:40:fd:6a:1c:86:d0:a8:c2:10:4b:b2:29: 83:e3:2a:e1:c8:99:88:03:8b:dd:f5:6c:f9:c7:7f: 59:af:65:53:c7:94:69:fe:c1:ae:b8:48:03:92:17: f1:7f:05:ff:1c:78:a9:bd:22:b5:bd:a2:d0:fa:32: f8:3f:63:51:b3:54:0d:85:f4:14:fd:7f:93:f8:08: 83:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F2:E5:2D:F5:39:6E:AA:C7:27:69:DC:63:23:A2:27:65:3B:21:B7 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/958CC8DA1C2611ECB416AA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:b000:4015::/48 2407:b001:1010::/48 Signature Algorithm: sha256WithRSAEncryption 3a:66:5c:f8:7b:b9:ce:a4:27:81:95:78:9c:c4:9c:4a:63:5a: 42:55:18:f8:f4:97:02:fd:20:a8:09:1c:e3:2d:84:96:07:eb: 3c:1a:e0:96:30:99:55:9a:56:c7:1c:44:a6:4b:ed:b7:ed:e2: 6c:64:a4:55:5d:db:41:c4:2d:99:f1:56:69:84:95:8c:b9:d2: db:5c:87:b5:f7:7e:39:7b:81:a3:73:3f:6c:38:be:f8:cd:df: be:35:d9:23:6c:c4:ef:28:f7:90:55:3a:42:90:d8:0b:1a:20: 70:e9:77:70:38:e4:fa:fc:3e:0b:00:39:36:f0:ee:8d:e8:07: a9:f9:3b:a8:fd:d1:a4:a8:45:81:46:bb:c7:0f:44:65:28:79: 5e:64:b4:ee:a5:86:ce:4b:df:82:c0:e7:c7:6d:cb:f9:76:04: 52:46:75:f7:74:45:08:ab:e5:cd:83:68:b4:62:82:c3:31:f8: 81:fa:f3:d4:87:cd:ba:89:00:49:42:db:c6:de:b3:56:96:d4: f3:11:97:83:5f:80:2f:98:21:c6:4e:d9:e0:8c:51:ef:72:82: 74:67:b3:f2:7b:a2:fa:94:d6:b7:e0:d2:eb:af:4e:1c:bb:e2: 4b:cf:f0:d8:0a:ee:9d:4d:64:e2:a3:39:12:5e:f4:7f:c6:40: e5:b5:10:56 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjMwNDIyMDM1ODIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDQzNWI1Yi1mZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpUt70EGWXtmq7RKo8kF+d3oeWzuRnGDTFETboueUGi7Kjm06a7eBVP3o/fe gVLtOOeofaFElicPueDhON6Fl+7dnBX4slwSP7fDyYqgbpSDqagunkfAlOzPnwo4 nSnGaWG7FaFaJiozqyWWeAr2JY1k3j1hmqsgTEQX6hK6lU/Ea3bLXLJZa9y8rrYX a70GBnW1wKCv13xXF0mJlr07f7K9UtUgXUGziN7y9uIK9eqBRy/iEf5A/WochtCo whBLsimD4yrhyJmIA4vd9Wz5x39Zr2VTx5Rp/sGuuEgDkhfxfwX/HHipvSK1vaLQ +jL4P2NRs1QNhfQU/X+T+AiDgQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDLy5S31 OW6qxydp3GMjoidlOyG3MB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvOTU4Q0M4REEx QzI2MTFFQ0I0MTZBQTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkB7AAQBUDBwAkB7ABEBAwDQYJKoZIhvcNAQELBQADggEB ADpmXPh7uc6kJ4GVeJzEnEpjWkJVGPj0lwL9IKgJHOMthJYH6zwa4JYwmVWaVscc RKZL7bft4mxkpFVd20HELZnxVmmElYy50ttch7X3fjl7gaNzP2w4vvjN37412SNs xO8o95BVOkKQ2AsaIHDpd3A45Pr8PgsAOTbw7o3oB6n5O6j90aSoRYFGu8cPRGUo eV5ktO6lhs5L34LA58dty/l2BFJGdfd0RQir5c2DaLRigsMx+IH689SHzbqJAElC 28bes1aW1PMRl4NfgC+YIcZO2eCMUe9ygnRns/J7ovqU1rfg0uuvThy74kvP8NgK 7p1NZOKjORJe9H/GQOW1EFY= -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org