$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa File: 32BF2AD8F36E11E883FFB865C4F9AE02.roa (raw, json) Hash identifier: Ix/BMBnPFP9d811BL68apCWN0PSAMe/pfFPlCH82naw= Subject key identifier: 0C:16:DA:55:88:13:38:5C:06:B1:48:C6:3C:11:FF:90:A8:B4:2D:20 Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 1348 Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa Signing time: Tue 16 May 2023 18:57:50 +0000 ROA not before: Tue 16 May 2023 18:57:49 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132892 IP address blocks: 2400:cb00:36::/48 maxlen: 48 2400:cb00:348::/48 maxlen: 48 2400:cb00:349::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 12:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4936 (0x1348) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 16 18:57:49 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6463d22d-cfcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:02:b3:8f:05:79:5a:fb:8c:5c:aa:a3:38: 57:14:b5:a9:9e:ca:52:99:99:c3:82:c8:99:70:5a: 90:7f:e4:49:1c:2b:3d:f9:97:fc:bc:2c:32:72:b9: 7a:a1:b7:16:a8:10:6c:d2:51:a9:8e:e8:d6:07:9b: c8:a0:73:34:a8:47:d0:b3:1d:db:bf:1f:e4:ba:cb: b5:f3:67:a5:ea:28:15:a2:1d:b4:51:0d:71:0b:69: 25:8c:84:05:6a:72:9b:ae:94:14:eb:75:ad:3e:8d: e4:11:7f:bf:22:15:a1:f1:18:aa:b9:08:ee:37:0a: 75:46:16:64:47:a7:e6:ef:cb:f4:c4:ab:6c:02:23: 81:4b:7f:5a:70:9f:4b:33:29:d0:75:d5:82:a3:43: ac:cc:9c:1b:ef:30:07:5f:a6:21:d9:05:f2:eb:f8: 2c:43:59:6f:97:13:4c:c9:a4:0d:40:4f:be:dd:51: b2:68:74:b5:f6:c6:81:81:70:3a:ff:52:71:2b:9f: 2a:73:69:d4:a9:11:b4:4b:88:73:04:0e:72:0f:4a: 33:81:0b:34:c8:99:ee:13:d3:94:19:aa:25:49:bd: 71:12:be:9f:be:38:a1:62:3e:59:cf:6b:ce:8f:92: 77:b3:e5:c9:8a:69:7c:42:2c:29:0c:51:fb:d0:5a: 84:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:16:DA:55:88:13:38:5C:06:B1:48:C6:3C:11:FF:90:A8:B4:2D:20 X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/32BF2AD8F36E11E883FFB865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:36::/48 2400:cb00:348::/47 Signature Algorithm: sha256WithRSAEncryption 26:ed:15:7a:1a:02:22:a3:63:98:e1:4b:2a:bc:fa:39:25:10: 53:9e:b1:2e:74:31:5e:f7:29:3b:cb:cf:0f:65:dc:36:90:1d: c0:5d:4d:ba:f7:71:a3:06:6c:e6:f2:00:57:e7:8a:e9:48:04: 9b:6e:c5:5b:96:dd:1b:22:57:a4:45:13:6d:52:09:89:00:2d: a9:f4:69:2a:43:87:b6:3c:19:e9:db:ed:8b:aa:48:6b:2e:5f: ba:2b:0c:bd:de:2e:27:e3:1c:fc:73:68:47:0f:9a:83:dc:fe: 80:51:77:5e:64:c9:5e:2f:9b:2f:d8:8b:4a:79:56:0b:92:97: 3f:a7:5a:bb:11:d3:a3:9f:47:c9:67:40:ef:5d:16:a3:2f:35: da:e0:8d:71:fe:41:f6:17:9a:eb:4c:c8:21:05:da:f3:fd:0c: dd:02:57:b4:ec:ae:81:da:0a:1f:d1:b2:2f:94:6d:e5:65:d3: d0:99:df:71:23:cc:aa:82:df:10:8f:34:6d:b2:8e:40:04:a9: f8:cf:17:3c:62:fe:ad:d9:92:3a:1d:ae:cc:92:9f:d7:38:89: a2:1d:d3:72:a6:c2:29:db:81:75:f1:63:79:ff:a8:50:c1:b4: 8a:e7:ba:02:2e:68:b9:00:5b:08:0a:9f:8d:99:27:2d:6f:6b: a1:df:18:f8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICE0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjMwNTE2MTg1NzQ5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYzZDIyZC1jZmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFsCs48FeVr7jFyqozhXFLWpnspSmZnDgsiZcFqQf+RJHCs9+Zf8vCwycrl6 obcWqBBs0lGpjujWB5vIoHM0qEfQsx3bvx/kusu182el6igVoh20UQ1xC2kljIQF anKbrpQU63WtPo3kEX+/IhWh8RiquQjuNwp1RhZkR6fm78v0xKtsAiOBS39acJ9L MynQddWCo0OszJwb7zAHX6Yh2QXy6/gsQ1lvlxNMyaQNQE++3VGyaHS19saBgXA6 /1JxK58qc2nUqRG0S4hzBA5yD0ozgQs0yJnuE9OUGaolSb1xEr6fvjihYj5Zz2vO j5J3s+XJiml8QiwpDFH70FqEwQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAwW2lWI EzhcBrFIxjwR/5CotC0gMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvMzJCRjJBRDhG MzZFMTFFODgzRkZCODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAMsAADYDBwEkAMsAA0gwDQYJKoZIhvcNAQELBQADggEB ACbtFXoaAiKjY5jhSyq8+jklEFOesS50MV73KTvLzw9l3DaQHcBdTbr3caMGbOby AFfniulIBJtuxVuW3RsiV6RFE21SCYkALan0aSpDh7Y8Genb7YuqSGsuX7orDL3e LifjHPxzaEcPmoPc/oBRd15kyV4vmy/Yi0p5VguSlz+nWrsR06OfR8lnQO9dFqMv NdrgjXH+QfYXmutMyCEF2vP9DN0CV7TsroHaCh/Rsi+UbeVl09CZ33EjzKqC3xCP NG2yjkAEqfjPFzxi/q3ZkjodrsySn9c4iaId03KmwinbgXXxY3n/qFDBtIrnugIu aLkAWwgKn42ZJy1va6HfGPg= -----END CERTIFICATE-----Generated at Fri May 17 15:22:48 2024 by rpki-client on console-ams.rpki-client.org