$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa File: 164F6E2079BF11EAB3ADD60FC4F9AE02.roa (raw, json) Hash identifier: jFWx3yosTM6Ngdos0+GDHNaOyAPdPCLeZtZ1sRgMYug= Subject key identifier: 32:DC:4D:BB:53:81:56:D2:71:5B:85:56:EC:B9:AF:D8:CE:10:BE:FB Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1517 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa Signing time: Thu 30 May 2024 18:50:19 +0000 ROA not before: Thu 30 May 2024 18:50:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 18809 IP address blocks: 2400:cb00:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5399 (0x1517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 18:50:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ca6a-6f19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ae:ac:b3:47:f8:78:ed:07:72:31:e5:6f:b3: a6:cc:b7:f5:f3:10:0d:de:73:1e:fa:48:2f:91:80: 0d:81:9a:52:5f:64:18:c6:25:5d:65:26:ee:a6:96: 4f:85:cc:9b:9c:0d:99:e8:7b:0c:9f:a1:84:f8:27: 4d:c3:3f:60:db:9c:7c:0d:b9:6e:88:62:09:58:2c: 67:36:b3:f2:83:67:a5:0c:fb:85:2f:d2:d1:01:4c: fc:e3:a8:d6:19:cb:98:92:4d:fe:a1:b9:e5:49:08: 1c:aa:2a:fb:0b:4c:f1:6f:72:12:d2:93:0e:42:34: 17:40:4a:39:40:23:5e:4a:16:cb:26:48:eb:ec:44: 23:9f:12:a7:e6:89:83:17:a2:9d:c2:f6:1c:c5:02: 24:36:0e:37:86:31:7e:14:08:9f:3f:b4:41:1b:a9: 8c:3d:73:92:0e:4c:b1:fa:1b:b7:cf:d9:4d:cf:d7: ec:af:da:ac:46:ea:b4:ab:1e:55:fb:5c:e7:7a:14: 20:ee:46:0d:0b:9d:de:aa:95:fe:86:34:a7:07:49: 10:14:0d:ee:8f:34:54:4d:46:be:82:19:e0:51:19: 23:62:d8:2a:d0:73:45:99:dd:bd:4a:bf:44:7b:02: ce:06:9b:ce:ee:22:6c:80:3e:64:3a:34:2d:34:a2: 85:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DC:4D:BB:53:81:56:D2:71:5B:85:56:EC:B9:AF:D8:CE:10:BE:FB X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/164F6E2079BF11EAB3ADD60FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:90::/48 Signature Algorithm: sha256WithRSAEncryption dc:0a:fe:2d:85:5d:d4:3d:1e:06:6d:d8:bf:2f:4d:7e:6d:20: 8b:0a:5b:9d:a7:a3:b3:20:30:5b:28:37:07:a9:7f:ac:9f:20: f9:a0:eb:71:06:3a:06:66:74:b1:e9:d8:33:16:68:80:08:85: 69:92:11:ff:72:7b:89:58:1c:04:88:1d:e3:0d:6d:a9:2a:41: dc:c0:25:66:d8:a9:3f:9a:31:87:0d:73:92:e1:7f:0f:dc:b8: 33:7e:69:4c:73:4a:45:61:78:29:3b:56:49:83:a0:41:35:10: 1c:94:f2:54:27:07:23:a3:c4:8f:bc:99:f3:48:62:4e:8a:e9: ca:bb:31:fb:5e:c1:78:d6:b0:4f:cd:f1:79:59:ec:fc:dc:03: 50:0e:ad:48:46:10:a6:32:9e:69:15:54:d0:70:5c:2d:b4:1f: 50:b9:c5:6e:d0:d6:44:7f:ea:00:6a:57:6f:15:c8:b7:9a:50: 2e:5f:16:53:fb:0c:a0:dd:1b:bd:d2:c4:31:7a:ca:7c:29:13: a1:71:76:ac:6a:c5:19:34:3e:79:fc:1f:df:ce:76:6c:64:d0: ea:13:89:f0:cc:38:90:ee:4b:92:2e:21:c9:4b:98:f6:c3:74: 37:0e:c0:4c:d0:48:03:11:d1:ca:8d:d8:15:b0:14:28:7a:57: c4:54:37:60 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICFRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjQwNTMwMTg1MDE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2E2YS02ZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA266ss0f4eO0HcjHlb7OmzLf18xAN3nMe+kgvkYANgZpSX2QYxiVdZSbuppZP hcybnA2Z6HsMn6GE+CdNwz9g25x8DbluiGIJWCxnNrPyg2elDPuFL9LRAUz846jW GcuYkk3+obnlSQgcqir7C0zxb3IS0pMOQjQXQEo5QCNeShbLJkjr7EQjnxKn5omD F6KdwvYcxQIkNg43hjF+FAifP7RBG6mMPXOSDkyx+hu3z9lNz9fsr9qsRuq0qx5V +1znehQg7kYNC53eqpX+hjSnB0kQFA3ujzRUTUa+ghngURkjYtgq0HNFmd29Sr9E ewLOBpvO7iJsgD5kOjQtNKKF/wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDLcTbtT gVbScVuFVuy5r9jOEL77MB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMTY0RjZFMjA3 OUJGMTFFQUIzQURENjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAMsAAJAwDQYJKoZIhvcNAQELBQADggEBANwK/i2FXdQ9 HgZt2L8vTX5tIIsKW52no7MgMFsoNwepf6yfIPmg63EGOgZmdLHp2DMWaIAIhWmS Ef9ye4lYHASIHeMNbakqQdzAJWbYqT+aMYcNc5Lhfw/cuDN+aUxzSkVheCk7VkmD oEE1EByU8lQnByOjxI+8mfNIYk6K6cq7MftewXjWsE/N8XlZ7PzcA1AOrUhGEKYy nmkVVNBwXC20H1C5xW7Q1kR/6gBqV28VyLeaUC5fFlP7DKDdG73SxDF6ynwpE6Fx dqxqxRk0Pnn8H9/Odmxk0OoTifDMOJDuS5IuIclLmPbDdDcOwEzQSAMR0cqN2BWw FCh6V8RUN2A= -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:58 2024 by rpki-client on console-fra.rpki-client.org