$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa File: 16D4DB82A40E11EEAAB83671C4F9AE02.roa (raw, json) Hash identifier: 1CkVhESVaf/2B94HtCDrQpBzCC89MWxtXOgxIuY06j8= Subject key identifier: FC:25:8B:92:F9:52:5A:21:D1:8E:4E:4B:8B:A9:C5:35:25:23:EB:82 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 03E0 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa Signing time: Tue 26 Dec 2023 16:44:51 +0000 ROA not before: Tue 26 Dec 2023 16:44:51 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 23734 IP address blocks: 2401:df40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 992 (0x3e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Dec 26 16:44:51 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=658b0303-264f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:89:28:4f:c7:e1:b6:ed:94:26:95:70:46:62: c1:04:cd:df:10:1f:02:a8:4f:72:d3:2f:9e:1c:ad: 5d:46:92:14:e3:4f:db:9d:e7:be:bd:b6:a1:16:cd: c9:4b:34:ff:d9:d4:50:4c:fc:90:6e:97:ad:ab:f4: 25:a9:97:85:af:82:48:96:b4:2b:72:d8:ff:5f:b5: 59:9c:0a:e3:d0:99:be:97:f1:7d:7b:ce:94:b4:fa: eb:7d:bb:a4:20:e8:27:e1:bc:a9:b2:57:da:fb:f9: e4:f0:34:52:1f:b3:a4:33:fc:aa:48:d4:81:f0:b0: e9:0b:bf:6c:16:5a:8e:80:aa:0d:ac:49:a8:5c:a2: d3:37:52:33:e4:ea:27:50:0d:c9:b0:38:99:1c:20: 53:59:bc:1e:49:4c:4f:72:e3:c6:54:62:17:1f:61: 3d:58:c1:4c:b4:6b:41:09:97:0d:94:29:9a:00:f9: 91:e6:65:71:5e:e9:9e:7f:f8:99:cb:18:cc:2b:c5: 3a:97:40:68:4b:9a:cc:af:8b:28:ee:70:a5:3f:e0: 97:89:62:82:44:6b:da:d2:b2:91:d9:30:72:76:57: c9:d0:2c:33:28:3a:c6:11:90:f5:2c:ff:03:c8:39: 2e:8a:a2:fa:3d:96:9d:bb:69:a6:88:5a:c3:a9:44: 29:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:25:8B:92:F9:52:5A:21:D1:8E:4E:4B:8B:A9:C5:35:25:23:EB:82 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:1::/48 Signature Algorithm: sha256WithRSAEncryption 94:44:fe:ba:03:fc:9d:9f:cd:54:34:37:be:cc:58:4f:ec:63: f0:8b:db:8e:10:e5:69:3a:a4:d5:9e:ce:99:08:ed:26:c9:6b: 2b:bd:a3:15:e0:d0:3f:e4:76:84:16:29:11:fa:27:bf:b8:30: 57:48:60:77:ad:18:c9:ee:88:ac:9d:16:e7:39:60:d2:a1:06: 74:a3:f2:08:bf:b5:75:0f:3a:99:71:61:1d:bc:ff:5c:de:c7: 7c:84:5f:73:dc:85:fd:77:bd:7d:0a:d2:1c:83:ad:1b:6c:70: c4:26:b6:89:d6:70:0a:a3:e7:8a:bc:ff:05:5b:51:54:cc:4d: 77:a1:94:6b:2c:a9:31:77:44:6f:d3:88:f3:ae:02:ca:39:9a: 5b:59:4d:26:69:70:48:13:2f:3d:d9:30:83:fb:ba:36:45:45: 99:7c:a3:f4:a6:64:3d:f5:24:20:c7:75:1b:c6:31:50:51:78: 5a:99:dd:fd:43:de:13:e3:c0:e1:2a:ce:96:6c:11:58:9e:9f: 17:b5:80:bb:25:32:b8:93:bf:82:43:71:3e:ef:84:6c:9f:3b: 86:3a:78:63:5c:23:fa:86:ff:a5:b8:ca:a7:74:c3:a9:9a:12: 47:cf:39:a7:8a:f1:01:b7:cf:48:67:c8:c5:7e:af:17:ed:df: 37:ce:b0:a5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjMxMjI2MTY0NDUxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiMDMwMy0yNjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIkoT8fhtu2UJpVwRmLBBM3fEB8CqE9y0y+eHK1dRpIU40/bnee+vbahFs3J SzT/2dRQTPyQbpetq/QlqZeFr4JIlrQrctj/X7VZnArj0Jm+l/F9e86UtPrrfbuk IOgn4bypslfa+/nk8DRSH7OkM/yqSNSB8LDpC79sFlqOgKoNrEmoXKLTN1Iz5Oon UA3JsDiZHCBTWbweSUxPcuPGVGIXH2E9WMFMtGtBCZcNlCmaAPmR5mVxXumef/iZ yxjMK8U6l0BoS5rMr4so7nClP+CXiWKCRGva0rKR2TBydlfJ0CwzKDrGEZD1LP8D yDkuiqL6PZadu2mmiFrDqUQpywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPwli5L5 Uloh0Y5OS4upxTUlI+uCMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMTZENERCODJB NDBFMTFFRUFBQjgzNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAEwDQYJKoZIhvcNAQELBQADggEBAJRE/roD/J2f zVQ0N77MWE/sY/CL244Q5Wk6pNWezpkI7SbJayu9oxXg0D/kdoQWKRH6J7+4MFdI YHetGMnuiKydFuc5YNKhBnSj8gi/tXUPOplxYR28/1zex3yEX3Pchf13vX0K0hyD rRtscMQmtonWcAqj54q8/wVbUVTMTXehlGssqTF3RG/TiPOuAso5mltZTSZpcEgT Lz3ZMIP7ujZFRZl8o/SmZD31JCDHdRvGMVBReFqZ3f1D3hPjwOEqzpZsEVienxe1 gLslMriTv4JDcT7vhGyfO4Y6eGNcI/qG/6W4yqd0w6maEkfPOaeK8QG3z0hnyMV+ rxft3zfOsKU= -----END CERTIFICATE-----Generated at Sat May 11 03:51:29 2024 by rpki-client on console-ams.rpki-client.org