$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa File: D26DDCB6F36C11E88E372D61C4F9AE02.roa (raw, json) Hash identifier: Tt8yEYi29sC59bMyxnHbI6OXbGsM5Np/JaarrFEEXkg= Subject key identifier: 45:72:BE:3E:7C:15:53:58:BC:D6:B1:06:75:D0:9A:FF:9E:1A:E0:4B Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Certificate serial: 134C Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa Signing time: Tue 16 May 2023 18:57:57 +0000 ROA not before: Tue 16 May 2023 18:57:56 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 395747 IP address blocks: 2400:cb00:131::/48 maxlen: 48 2400:cb00:133::/48 maxlen: 48 2400:cb00:164::/48 maxlen: 48 2400:cb00:171::/48 maxlen: 48 2400:cb00:302::/48 maxlen: 48 2400:cb00:517::/48 maxlen: 48 2400:cb00:518::/48 maxlen: 48 2400:cb00:531::/48 maxlen: 48 2400:cb00:539::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 17:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4940 (0x134c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444 Validity Not Before: May 16 18:57:56 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6463d234-6aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:14:c5:f0:e3:6b:1f:c3:3b:e2:3f:38:74:4c: 02:47:22:57:3e:4c:d4:f9:a9:13:8e:8f:0f:59:0a: d8:f6:0f:23:73:6e:d9:3f:d0:84:9b:90:01:98:6d: b2:52:47:10:10:ab:29:c2:fb:62:96:a2:2d:aa:20: c6:a2:96:ca:be:4e:e9:f5:e2:9d:f2:a3:c4:89:cf: 23:43:f5:9b:6d:04:3b:57:47:67:b4:00:94:ae:43: 82:20:53:02:f5:82:e5:6f:0e:ac:6b:a5:c2:11:76: 6b:81:eb:78:be:b6:34:1b:df:70:2c:fc:4a:1a:d4: a4:fe:94:87:94:67:12:46:d4:f0:1a:64:0d:fa:71: fe:4e:43:38:4b:c0:eb:09:28:d5:61:c8:08:20:33: 9c:0b:eb:0d:5f:2a:87:93:b8:a5:07:35:34:9d:3b: ea:e2:5c:51:e1:2d:24:a1:dc:1e:24:91:b1:49:f4: c1:99:28:06:c5:25:4c:62:54:cd:b6:9b:09:4a:62: e5:c8:2c:3c:d0:87:29:a1:b9:69:78:e9:a9:f4:46: b0:00:f8:2f:77:cf:f0:dc:df:2e:f6:67:25:55:67: 32:69:5a:89:3e:d4:06:50:30:1c:b1:21:3b:de:1d: 95:dc:3a:42:6b:d0:c8:4b:26:19:44:67:f3:48:c2: 12:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:72:BE:3E:7C:15:53:58:BC:D6:B1:06:75:D0:9A:FF:9E:1A:E0:4B X509v3 Authority Key Identifier: keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/D26DDCB6F36C11E88E372D61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cb00:131::/48 2400:cb00:133::/48 2400:cb00:164::/48 2400:cb00:171::/48 2400:cb00:302::/48 2400:cb00:517::-2400:cb00:518:ffff:ffff:ffff:ffff:ffff 2400:cb00:531::/48 2400:cb00:539::/48 Signature Algorithm: sha256WithRSAEncryption 7b:a6:56:10:d7:fe:6b:e8:25:9f:b1:95:d7:19:f8:8f:37:59: 47:e3:5b:dc:8e:06:bd:8d:e1:bf:bc:0b:d0:5c:8f:4c:9c:3d: a7:89:ea:92:4a:42:eb:d2:60:06:f4:4f:ac:99:22:d5:5d:0b: ae:59:0b:d0:ae:25:8b:79:1a:79:ec:e7:a6:fb:9a:97:2a:a1: 5e:65:96:6e:28:83:b2:72:dd:9d:dc:42:2c:1a:e9:b2:55:3e: 1e:c5:d8:61:7c:5b:46:64:43:02:e9:30:7c:b9:a0:26:3e:29: c4:78:4a:07:bb:4b:c4:13:92:40:9b:95:31:6c:da:f0:9b:cc: 6e:95:1a:6b:40:1d:3a:07:f0:4d:a2:fc:f0:6e:91:6e:09:0c: 8c:2c:c8:61:5d:f0:bd:3c:d6:fa:c4:8a:f1:80:cd:d2:8f:2c: 2b:96:7a:35:c7:90:db:54:6e:67:e4:26:c3:b0:78:64:4a:a0: dc:03:a0:bd:cf:09:a8:08:d5:1d:cf:d8:36:db:9f:31:99:bd: 8f:50:8e:10:95:ac:2d:cd:27:95:b7:20:01:8a:eb:7c:f7:ff: f1:42:5c:98:6d:e7:9b:cf:3f:cd:b8:3f:30:32:a2:18:e5:f3: b0:fd:90:02:98:45:e4:94:aa:99:99:5f:76:19:2f:97:73:fb: c0:4a:3d:9f -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICE0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJEQTQxMTAvBgNVBAUTKDA0RTZDOTI0OUVFMzQ4RENGNzY0REYwQjlBNDBEM0U4 NTQwNjY0NDQwHhcNMjMwNTE2MTg1NzU2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDYzZDIzNC02YWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RTF8ONrH8M74j84dEwCRyJXPkzU+akTjo8PWQrY9g8jc27ZP9CEm5ABmG2y UkcQEKspwvtilqItqiDGopbKvk7p9eKd8qPEic8jQ/WbbQQ7V0dntACUrkOCIFMC 9YLlbw6sa6XCEXZrget4vrY0G99wLPxKGtSk/pSHlGcSRtTwGmQN+nH+TkM4S8Dr CSjVYcgIIDOcC+sNXyqHk7ilBzU0nTvq4lxR4S0kodweJJGxSfTBmSgGxSVMYlTN tpsJSmLlyCw80IcpoblpeOmp9EawAPgvd8/w3N8u9mclVWcyaVqJPtQGUDAcsSE7 3h2V3DpCa9DISyYZRGfzSMISKQIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFEVyvj58 FVNYvNaxBnXQmv+eGuBLMB8GA1UdIwQYMBaAFATmySSe40jc92TfC5pA0+hUBmRE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkRBNC8xRUM3MDJCQ0Yx QTcxMUU4OTBGMDY2NTBDNEY5QUUwMi9CT2JKSko3alNOejNaTjhMbWtEVDZGUUda RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JPYkpKSjdqU056M1pOOExta0RUNkZRR1pFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJEQTQvMUVDNzAyQkNGMUE3MTFFODkwRjA2NjUwQzRGOUFFMDIvRDI2RERDQjZG MzZDMTFFODhFMzcyRDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMFkEAgACMFMDBwAkAMsAATEDBwAkAMsAATMDBwAkAMsAAWQDBwAkAMsAAXED BwAkAMsAAwIwEgMHACQAywAFFwMHACQAywAFGAMHACQAywAFMQMHACQAywAFOTAN BgkqhkiG9w0BAQsFAAOCAQEAe6ZWENf+a+gln7GV1xn4jzdZR+Nb3I4GvY3hv7wL 0FyPTJw9p4nqkkpC69JgBvRPrJki1V0LrlkL0K4li3kaeeznpvualyqhXmWWbiiD snLdndxCLBrpslU+HsXYYXxbRmRDAukwfLmgJj4pxHhKB7tLxBOSQJuVMWza8JvM bpUaa0AdOgfwTaL88G6RbgkMjCzIYV3wvTzW+sSK8YDN0o8sK5Z6NceQ21RuZ+Qm w7B4ZEqg3AOgvc8JqAjVHc/YNtufMZm9j1COEJWsLc0nlbcgAYrrfPf/8UJcmG3n m88/zbg/MDKiGOXzsP2QAphF5JSqmZlfdhkvl3P7wEo9nw== -----END CERTIFICATE-----Generated at Thu Apr 18 20:10:42 2024 by rpki-client on console-fra.rpki-client.org