$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa File: 164F6E2079BF11EAB3ADD60FC4F9AE02.roa (raw, json) Hash identifier: VdiqX+NESx2d1hHgoHylX6kY3mnKpOxVAOGYIPyUgSo= Subject key identifier: 3E:7A:03:68:5D:01:48:95:C8:5A:9B:D9:73:BB:EE:19:84:71:55:26 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 134A Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa Signing time: Tue 16 May 2023 18:57:54 +0000 ROA not before: Tue 16 May 2023 18:57:54 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 18809 IP address blocks: 2400:cb00:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4938 (0x134a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 16 18:57:54 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6463d232-fd06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:40:bb:67:cd:84:7c:67:6b:bb:91:65:ae: 88:f1:1f:09:c4:89:cd:8f:c0:d2:15:2a:e7:65:a7: c4:f6:4e:f1:d1:87:61:10:10:02:3c:94:94:b5:86: 9e:7c:7e:e1:a4:3f:47:b3:fb:4a:a2:08:f2:a8:c3: 93:83:81:b6:c6:c6:e3:c2:ee:c5:ab:0f:4a:a3:ab: 05:dc:78:d3:6a:f4:c9:e3:33:a4:00:20:88:a9:78: 8e:6b:9c:95:f4:73:3d:70:cc:0d:e6:5d:75:64:62: 89:7c:fc:d4:0c:47:e0:19:fe:1d:40:99:05:7b:0a: 7c:8c:c3:9a:3b:0f:c0:7f:8d:4d:1d:17:21:d0:3a: 12:0d:56:4f:06:bb:b8:f1:96:b5:83:fb:b6:c3:d7: f4:44:9e:47:95:20:9a:9c:24:d3:f8:c4:45:22:f3: 1f:5f:dd:34:08:d9:37:fa:c9:dc:24:26:10:46:3e: c6:48:48:53:7a:d8:69:4f:31:31:da:23:6b:54:95: d3:95:5e:5e:13:cf:49:0d:11:a0:92:2d:95:1a:b9: d1:39:1f:f1:ef:d6:56:16:fc:57:85:7c:4b:50:66: fd:7a:8a:c8:e4:74:1c:37:e7:20:67:e5:29:ea:46: 69:9c:37:5c:15:aa:c1:b9:47:5b:02:d8:0b:52:b7: 1a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7A:03:68:5D:01:48:95:C8:5A:9B:D9:73:BB:EE:19:84:71:55:26 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:90::/48 Signature Algorithm: sha256WithRSAEncryption 59:a5:b2:14:2b:11:19:e8:76:b7:08:79:ca:53:2b:7f:2a:67: f2:98:f8:d2:20:05:c8:78:1d:a9:4d:3d:4f:ca:b9:56:74:7a: 06:bb:1b:a0:57:c4:4d:ab:2e:c3:d2:cf:b3:fe:2f:d3:54:a6: 23:1a:3a:cf:18:c3:3c:7e:c5:a7:bd:d2:bc:de:2a:57:ae:c6: c3:51:74:35:3d:b5:f2:e5:90:d8:df:51:2c:62:74:b0:4a:2a: b3:be:39:ce:a2:67:99:87:01:be:fe:ec:94:1d:8d:b0:0d:5e: ab:69:26:2c:ee:9c:13:12:bb:c9:91:fa:04:62:b3:24:04:86: 71:31:46:de:54:af:72:10:30:90:77:b9:5a:f7:5f:25:39:b8: 3f:c5:84:b8:f1:e5:4c:4a:1e:e2:90:76:e8:93:8e:bb:80:b2: 38:51:7d:87:4c:27:a5:27:44:2f:6c:52:d6:dc:b8:ec:da:69: fd:c4:4d:14:25:7d:4d:30:b3:e0:a4:34:45:91:a5:f4:ee:2f: 6b:74:d4:2f:c6:ec:20:3b:67:de:01:96:9c:23:8c:ba:76:6b: fb:22:a1:fb:e2:32:e8:fd:6f:eb:26:0e:c9:7e:c9:2a:18:f1: f0:f6:e4:71:a9:ae:f1:0f:18:b7:5f:14:1e:fe:64:14:a6:e7: 5a:db:5a:6f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICE0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjMwNTE2MTg1NzU0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYzZDIzMi1mZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4tAu2fNhHxna7uRZa6I8R8JxInNj8DSFSrnZafE9k7x0YdhEBACPJSUtYae fH7hpD9Hs/tKogjyqMOTg4G2xsbjwu7Fqw9Ko6sF3HjTavTJ4zOkACCIqXiOa5yV 9HM9cMwN5l11ZGKJfPzUDEfgGf4dQJkFewp8jMOaOw/Af41NHRch0DoSDVZPBru4 8Za1g/u2w9f0RJ5HlSCanCTT+MRFIvMfX900CNk3+sncJCYQRj7GSEhTethpTzEx 2iNrVJXTlV5eE89JDRGgki2VGrnROR/x79ZWFvxXhXxLUGb9eorI5HQcN+cgZ+Up 6kZpnDdcFarBuUdbAtgLUrcaKQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD56A2hd AUiVyFqb2XO77hmEcVUmMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMTY0RjZFMjA3 OUJGMTFFQUIzQURENjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAMsAAJAwDQYJKoZIhvcNAQELBQADggEBAFmlshQrERno drcIecpTK38qZ/KY+NIgBch4HalNPU/KuVZ0ega7G6BXxE2rLsPSz7P+L9NUpiMa Os8Ywzx+xae90rzeKleuxsNRdDU9tfLlkNjfUSxidLBKKrO+Oc6iZ5mHAb7+7JQd jbANXqtpJizunBMSu8mR+gRisyQEhnExRt5Ur3IQMJB3uVr3XyU5uD/FhLjx5UxK HuKQduiTjruAsjhRfYdMJ6UnRC9sUtbcuOzaaf3ETRQlfU0ws+CkNEWRpfTuL2t0 1C/G7CA7Z94BlpwjjLp2a/siofviMuj9b+smDsl+ySoY8fD25HGprvEPGLdfFB7+ ZBSm51rbWm8= -----END CERTIFICATE-----Generated at Thu May 9 03:38:10 2024 by rpki-client on console-ams.rpki-client.org