$ rpki-client -vvf rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa File: 5A8744D8143411EEAB1A5D73C4F9AE02.roa (raw, json) Hash identifier: K4KtDOAazWFWeHlbDC/+9NJtPGKpExdijE2yuYfT1Cc= Subject key identifier: 2F:E4:8A:19:B9:BB:6E:E8:1D:99:23:C9:93:03:FE:46:F7:BB:F0:95 Certificate issuer: /CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Certificate serial: 1700 Authority key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa Signing time: Fri 04 Aug 2023 16:53:55 +0000 ROA not before: Fri 04 Aug 2023 16:53:55 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38481 IP address blocks: 2407:e500:8::/47 maxlen: 47 2407:e500:a::/47 maxlen: 47 2407:e500:20::/47 maxlen: 47 2407:e500:30::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5888 (0x1700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C Validity Not Before: Aug 4 16:53:55 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd2d23-c14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:8b:a4:b7:d0:4c:89:e5:05:cb:26:a1:3c: 43:87:a4:aa:72:6f:70:dd:2d:cb:de:9c:6b:15:df: fe:0a:31:81:8b:fb:bc:0d:ed:79:b5:2b:ef:24:95: f4:22:d0:ff:3e:6e:f9:aa:6a:14:db:d5:6a:a5:5b: 4e:02:4c:c5:8b:39:c4:63:0c:e3:0e:3b:c4:97:86: d9:57:35:a7:07:b4:1d:95:d1:6b:71:84:44:cc:89: 81:82:04:e3:a8:f3:13:08:e2:5a:9c:37:76:65:d1: 5f:90:42:30:73:f9:a8:95:f9:5a:98:f3:52:81:bf: e1:84:0b:41:e1:8c:b2:a6:5e:20:15:60:f3:fa:8d: 57:75:64:c3:47:bb:c6:8a:aa:74:66:c3:ff:da:2c: 36:6a:ee:4a:db:19:06:f2:f1:5c:42:2a:61:c7:43: 8b:01:1a:84:bc:3f:55:dd:5d:73:30:ae:6c:3a:c4: 3d:2a:9e:3a:55:5a:8e:79:d5:0f:2d:fd:f4:54:6b: ad:0e:5f:53:46:99:c9:f0:d5:7c:b7:9e:92:d0:23: 4f:92:d9:66:eb:1d:7b:6c:e8:4d:cf:58:91:8c:9b: 28:22:bb:11:aa:aa:04:ad:5a:44:ec:24:b1:12:84: 0a:93:3a:15:1b:54:2e:19:53:dc:90:28:aa:c6:fe: 53:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E4:8A:19:B9:BB:6E:E8:1D:99:23:C9:93:03:FE:46:F7:BB:F0:95 X509v3 Authority Key Identifier: keyid:FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/5A8744D8143411EEAB1A5D73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e500:8::/46 2407:e500:20::/47 2407:e500:30::/47 Signature Algorithm: sha256WithRSAEncryption 58:59:af:f0:72:cf:cd:61:2e:4c:9e:70:0e:c9:b0:53:0d:a1: 50:4c:fd:a7:f6:17:c5:58:f4:91:60:71:68:27:bf:d6:7f:91: b6:ce:af:45:c2:f3:60:7e:ec:2d:2a:a6:a0:dd:20:53:41:4d: d7:e9:5f:c1:d3:53:97:2b:d9:6b:ca:ab:e2:24:22:74:2e:00: 13:fa:68:cc:ca:82:12:1a:9f:29:e5:a2:8d:45:7a:2f:4c:99: af:aa:2e:4d:88:78:62:e1:b7:69:7f:04:c1:fa:c4:ab:3b:3f: ac:85:87:a5:ce:a2:41:36:65:17:22:ea:fc:a4:cf:94:17:80: e7:3a:0c:22:bb:d5:3e:47:a5:b0:a1:a9:82:a3:36:02:d4:e3: 7c:81:2c:8a:fc:61:a3:01:50:86:e4:e1:ff:21:9c:19:4a:f4: f4:cc:ce:56:fe:01:bc:1e:da:ab:60:39:2f:bd:9f:db:38:54: f1:03:73:a6:66:e7:3a:00:56:5d:f0:84:7b:08:e6:b4:1b:cd: a9:e6:46:60:ed:bc:56:02:5e:42:87:63:8e:92:65:dc:43:5b: ff:95:8b:e2:55:53:8f:01:02:cd:bc:f6:d5:9b:d8:b1:40:e3: ed:50:8d:df:96:3b:a9:8d:ed:92:90:52:f5:01:ba:d3:0d:da: d8:d5:20:90 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQzNkExMTAvBgNVBAUTKEZFQTRCOTZGMzk4M0Y3NjlDNzMzOTc0NTZDMTJCOTBG NjQyNDZDN0MwHhcNMjMwODA0MTY1MzU1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkMmQyMy1jMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFyLpLfQTInlBcsmoTxDh6Sqcm9w3S3L3pxrFd/+CjGBi/u8De15tSvvJJX0 ItD/Pm75qmoU29VqpVtOAkzFiznEYwzjDjvEl4bZVzWnB7QdldFrcYREzImBggTj qPMTCOJanDd2ZdFfkEIwc/molflamPNSgb/hhAtB4Yyypl4gFWDz+o1XdWTDR7vG iqp0ZsP/2iw2au5K2xkG8vFcQiphx0OLARqEvD9V3V1zMK5sOsQ9Kp46VVqOedUP Lf30VGutDl9TRpnJ8NV8t56S0CNPktlm6x17bOhNz1iRjJsoIrsRqqoErVpE7CSx EoQKkzoVG1QuGVPckCiqxv5TmQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFC/kihm5 u27oHZkjyZMD/kb3u/CVMB8GA1UdIwQYMBaAFP6kuW85g/dpxzOXRWwSuQ9kJGx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDM2QS8zN0FCRDcwOEFB OUExMUU3QkFDNDEyNTJDNEY5QUUwMi9fcVM1YnptRDkybkhNNWRGYkJLNUQyUWti SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19xUzViem1EOTJuSE01ZEZiQks1RDJRa2JIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQzNkEvMzdBQkQ3MDhBQTlBMTFFN0JBQzQxMjUyQzRGOUFFMDIvNUE4NzQ0RDgx NDM0MTFFRUFCMUE1RDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwIkB+UAAAgDBwEkB+UAACADBwEkB+UAADAwDQYJKoZIhvcN AQELBQADggEBAFhZr/Byz81hLkyecA7JsFMNoVBM/af2F8VY9JFgcWgnv9Z/kbbO r0XC82B+7C0qpqDdIFNBTdfpX8HTU5cr2WvKq+IkInQuABP6aMzKghIanynloo1F ei9Mma+qLk2IeGLht2l/BMH6xKs7P6yFh6XOokE2ZRci6vykz5QXgOc6DCK71T5H pbChqYKjNgLU43yBLIr8YaMBUIbk4f8hnBlK9PTMzlb+Abwe2qtgOS+9n9s4VPED c6Zm5zoAVl3whHsI5rQbzanmRmDtvFYCXkKHY46SZdxDW/+Vi+JVU48BAs289tWb 2LFA4+1Qjd+WO6mN7ZKQUvUButMN2tjVIJA= -----END CERTIFICATE-----Generated at Thu May 16 18:26:05 2024 by rpki-client on console-fra.rpki-client.org