$ rpki-client -vvf rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa File: 5A8744D8143411EEAB1A5D73C4F9AE02.roa (raw, json) Hash identifier: x8Y3lIEpnx3SAsHPEwwS/VLgFTVHt3ABZ23zAnhnfc0= Subject key identifier: E3:5D:80:97:34:A9:75:99:A2:6D:DB:4F:05:3A:D9:BD:55:12:52:E4 Certificate issuer: /CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Certificate serial: 17C4 Authority key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa Signing time: Tue 06 Aug 2024 16:54:20 +0000 ROA not before: Tue 06 Aug 2024 16:54:20 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38481 IP address blocks: 2407:e500:8::/47 maxlen: 47 2407:e500:a::/47 maxlen: 47 2407:e500:20::/47 maxlen: 47 2407:e500:30::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6084 (0x17c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Validity Not Before: Aug 6 16:54:20 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b2553b-4ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:d0:5e:2a:17:60:d1:b9:41:32:b3:29:4d: 8e:cf:2d:f8:c9:8d:82:34:bc:d4:aa:56:a6:4a:f7: fd:1e:97:d1:e2:3b:f1:c9:f4:32:97:43:7e:ef:7f: b3:17:fb:34:72:af:29:e5:17:a1:e4:96:0e:7d:36: 1c:56:75:ef:62:48:7f:72:09:62:d1:27:0f:3a:22: ea:9c:9c:60:02:c8:32:cc:6f:8a:7b:04:ad:e8:ad: a7:d1:39:d4:f3:ca:23:63:3c:f3:af:e3:8f:50:9e: f8:7b:46:c3:3a:54:05:87:fd:66:fc:14:14:9a:dd: f7:8c:36:e1:84:3a:96:61:cd:f3:92:6f:f5:6d:29: 27:31:ff:c8:58:66:40:34:36:1c:87:34:d3:80:99: f3:cc:4e:55:d8:15:89:19:81:5e:7e:f0:c9:f9:69: 4d:4a:e5:7f:72:73:c1:34:ca:73:9a:de:a6:fd:af: 6d:3d:f0:e3:85:49:ec:5c:43:60:1d:1b:ae:5f:42: b9:6f:85:03:f1:50:ed:f1:87:43:82:e4:65:27:96: c3:35:6a:c8:7a:c5:aa:0f:0b:d4:a5:c6:c3:56:03: 12:de:77:cd:55:53:f5:f6:43:f0:dd:c1:93:1d:a4: a7:c7:2a:64:58:47:83:dc:20:dd:10:6e:95:90:8d: 2e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5D:80:97:34:A9:75:99:A2:6D:DB:4F:05:3A:D9:BD:55:12:52:E4 X509v3 Authority Key Identifier: keyid:FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e500:8::/46 2407:e500:20::/47 2407:e500:30::/47 Signature Algorithm: sha256WithRSAEncryption 0e:5d:20:2b:06:ec:f3:6a:3c:37:58:70:2a:1e:02:47:60:01: d3:9a:98:47:28:13:b7:02:2d:75:d7:92:ca:0f:64:ff:3a:2e: d8:95:dc:c9:94:8d:08:cf:0e:60:4e:2f:fe:8a:a4:1e:6d:23: 3f:38:7c:ad:a7:31:b2:4f:24:02:19:5c:10:1b:51:26:94:f6: f6:d7:26:4d:4b:91:64:94:ba:48:08:4a:c2:6f:36:c5:f2:ce: b5:2c:49:5e:f1:63:52:df:5b:40:fd:ce:27:da:fe:e4:14:62: 9f:e7:ca:03:55:97:e4:c8:c5:34:cf:6f:3b:39:3e:a4:7f:14: ce:ff:6b:c0:42:04:0f:b1:37:9d:b7:22:b6:ca:29:da:b5:a9: e0:c5:56:0c:9c:c4:67:b2:0b:ef:bd:20:4a:a6:ef:c0:2d:a5: fa:14:3d:51:e2:1e:3f:66:da:cd:99:20:1e:ed:51:89:cd:28: a6:de:d7:52:4c:e6:43:e2:96:6a:f9:c9:3a:77:b1:cd:a3:a3: 8e:31:50:af:21:66:b4:bf:4a:45:0f:57:af:24:b4:66:b3:e7: f8:95:ab:3b:00:da:4d:9b:96:a0:e2:46:71:76:ab:63:e4:2a: a6:dd:61:7a:2c:d4:2f:91:99:e9:e9:b9:c0:70:3b:6c:d3:85: cc:69:e2:8a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICF8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQzNkExMTAvBgNVBAUTKEZFQTRCOTZGMzk4M0Y3NjlDNzMzOTc0NTZDMTJCOTBG NjQyNDZDN0MwHhcNMjQwODA2MTY1NDIwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyNTUzYi00Y2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0R/QXioXYNG5QTKzKU2Ozy34yY2CNLzUqlamSvf9HpfR4jvxyfQyl0N+73+z F/s0cq8p5Reh5JYOfTYcVnXvYkh/cgli0ScPOiLqnJxgAsgyzG+KewSt6K2n0TnU 88ojYzzzr+OPUJ74e0bDOlQFh/1m/BQUmt33jDbhhDqWYc3zkm/1bSknMf/IWGZA NDYchzTTgJnzzE5V2BWJGYFefvDJ+WlNSuV/cnPBNMpzmt6m/a9tPfDjhUnsXENg HRuuX0K5b4UD8VDt8YdDguRlJ5bDNWrIesWqDwvUpcbDVgMS3nfNVVP19kPw3cGT HaSnxypkWEeD3CDdEG6VkI0ugwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFONdgJc0 qXWZom3bTwU62b1VElLkMB8GA1UdIwQYMBaAFP6kuW85g/dpxzOXRWwSuQ9kJGx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDM2QS8zN0FCRDcwOEFB OUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDkybkhNNWRGYkJLNUQyUWti SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19xUzViem1EOTJuSE01ZEZiQks1RDJRa2JIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQzNkEvMzdBQkQ3MDhBQTlBMTFFN0JBQzQxMjUyQzRGOUFFMDIvNUE4NzQ0RDgx NDM0MTFFRUFCMUE1RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwIkB+UAAAgDBwEkB+UAACADBwEkB+UAADAwDQYJKoZIhvcN AQELBQADggEBAA5dICsG7PNqPDdYcCoeAkdgAdOamEcoE7cCLXXXksoPZP86LtiV 3MmUjQjPDmBOL/6KpB5tIz84fK2nMbJPJAIZXBAbUSaU9vbXJk1LkWSUukgISsJv NsXyzrUsSV7xY1LfW0D9zifa/uQUYp/nygNVl+TIxTTPbzs5PqR/FM7/a8BCBA+x N523IrbKKdq1qeDFVgycxGeyC++9IEqm78AtpfoUPVHiHj9m2s2ZIB7tUYnNKKbe 11JM5kPilmr5yTp3sc2jo44xUK8hZrS/SkUPV68ktGaz5/iVqzsA2k2blqDiRnF2 q2PkKqbdYXos1C+RmenpucBwO2zThcxp4oo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org