$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa File: 32BF2AD8F36E11E883FFB865C4F9AE02.roa (raw, json) Hash identifier: 3K7qEYTTRPaMHZTJiAeJCFj5NoW5czqKHLINeQfDKgQ= Subject key identifier: 5B:FE:34:A0:E5:DD:B1:4B:B6:97:C6:DD:29:58:AD:0B:48:CA:F3:1F Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1515 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa Signing time: Thu 30 May 2024 18:50:13 +0000 ROA not before: Thu 30 May 2024 18:50:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132892 IP address blocks: 2400:cb00:36::/48 maxlen: 48 2400:cb00:348::/48 maxlen: 48 2400:cb00:349::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5397 (0x1515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 30 18:50:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ca65-77b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:13:ca:c1:37:41:87:db:6d:34:82:d1:55:df: 22:97:c7:e7:5e:c3:e9:e4:f1:a1:3d:81:d0:ff:11: d9:b1:bd:f3:5b:c2:68:e6:0f:22:93:fb:7f:91:c2: 05:4e:50:b2:26:a7:31:2a:72:22:78:d9:cb:eb:ef: b3:86:62:ef:7a:09:ed:f2:08:85:1b:76:a1:eb:60: b3:2a:82:1a:eb:e2:59:cb:c3:6e:09:5d:0b:50:ed: 8b:89:30:79:c4:f3:e0:09:61:d7:71:ce:24:7c:5f: 8f:d4:5f:3d:8c:aa:2a:19:65:94:05:1a:91:63:45: d2:3e:bc:c3:fe:8d:ae:34:21:97:04:85:f0:8c:1b: 48:f3:97:90:b1:5e:b0:2a:51:25:87:d4:38:f7:dd: d6:6b:bb:ed:36:72:30:c4:b0:72:c8:d7:0f:ff:3d: 55:ec:6d:2b:fe:88:92:aa:87:0e:3b:c4:69:b4:69: 99:08:d0:1b:58:40:f8:4d:c3:f8:e0:30:84:96:4d: e9:26:eb:95:0c:5e:04:49:ea:9c:cb:8d:5a:18:dd: 94:ce:26:f3:7d:3e:09:ef:57:dc:f7:a2:4e:c7:8b: d5:93:1d:47:1a:92:a8:ea:72:21:42:eb:2b:54:23: c2:91:66:71:49:0e:14:29:7c:15:a4:9a:f0:aa:92: 00:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FE:34:A0:E5:DD:B1:4B:B6:97:C6:DD:29:58:AD:0B:48:CA:F3:1F X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:36::/48 2400:cb00:348::/47 Signature Algorithm: sha256WithRSAEncryption 12:d0:8e:de:b8:2d:5d:62:f3:97:72:d8:8d:2f:09:0a:35:a5: 43:f8:ea:3c:dd:10:ff:19:fa:c4:80:f0:e6:e2:2b:8a:08:ad: 25:67:d1:be:51:87:47:30:67:5a:5c:97:0d:15:d4:bb:29:a8: c1:d6:01:65:00:d2:dd:a8:65:7a:ff:8b:de:09:eb:6c:92:8b: 3e:9f:6d:bc:11:6c:a2:66:3f:df:6b:43:64:76:bd:4a:33:c2: f6:f2:16:77:93:8a:f1:7c:21:0d:46:8e:16:44:6c:db:16:7e: 18:98:6b:f4:06:05:19:61:b3:98:fa:8c:0b:00:bd:64:91:d2: 00:25:a5:07:c7:66:de:4f:af:f0:3e:7e:a7:33:a9:bc:09:fe: 2c:9b:ad:f1:d6:af:ac:70:89:a9:2d:60:a5:f9:a1:2d:1c:92: 8d:49:94:0a:46:97:e5:8b:d4:54:1f:c4:84:25:01:8b:ff:58: 82:ce:28:a2:bd:d2:c0:5f:c6:7e:3e:af:47:d3:6d:c2:8c:d4: 14:37:4a:f0:4f:67:6c:21:e2:8f:7e:1f:66:5a:62:07:61:09: 4f:3a:00:c9:52:ce:f3:f8:c9:61:4e:3e:f4:d5:a4:65:25:26: 7f:f6:e4:29:b4:63:82:b5:f3:19:66:1d:9f:fc:97:3d:2a:f3: 39:51:c3:c1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICFRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjQwNTMwMTg1MDEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2E2NS03N2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxPKwTdBh9ttNILRVd8il8fnXsPp5PGhPYHQ/xHZsb3zW8Jo5g8ik/t/kcIF TlCyJqcxKnIieNnL6++zhmLvegnt8giFG3ah62CzKoIa6+JZy8NuCV0LUO2LiTB5 xPPgCWHXcc4kfF+P1F89jKoqGWWUBRqRY0XSPrzD/o2uNCGXBIXwjBtI85eQsV6w KlElh9Q4993Wa7vtNnIwxLByyNcP/z1V7G0r/oiSqocOO8RptGmZCNAbWED4TcP4 4DCElk3pJuuVDF4ESeqcy41aGN2UzibzfT4J71fc96JOx4vVkx1HGpKo6nIhQusr VCPCkWZxSQ4UKXwVpJrwqpIABQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFv+NKDl 3bFLtpfG3SlYrQtIyvMfMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMzJCRjJBRDhG MzZFMTFFODgzRkZCODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAMsAADYDBwEkAMsAA0gwDQYJKoZIhvcNAQELBQADggEB ABLQjt64LV1i85dy2I0vCQo1pUP46jzdEP8Z+sSA8ObiK4oIrSVn0b5Rh0cwZ1pc lw0V1LspqMHWAWUA0t2oZXr/i94J62ySiz6fbbwRbKJmP99rQ2R2vUozwvbyFneT ivF8IQ1GjhZEbNsWfhiYa/QGBRlhs5j6jAsAvWSR0gAlpQfHZt5Pr/A+fqczqbwJ /iybrfHWr6xwiaktYKX5oS0cko1JlApGl+WL1FQfxIQlAYv/WILOKKK90sBfxn4+ r0fTbcKM1BQ3SvBPZ2wh4o9+H2ZaYgdhCU86AMlSzvP4yWFOPvTVpGUlJn/25Cm0 Y4K18xlmHZ/8lz0q8zlRw8E= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:22 2024 by rpki-client on console-fra.rpki-client.org