$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa File: 16D4DB82A40E11EEAAB83671C4F9AE02.roa (raw, json) Hash identifier: 9aBOau/kR05/ZlK4Ctxtvv3XFrOvJ/VU5zNEft0SiRE= Subject key identifier: 74:27:8D:AC:82:76:17:1D:87:C2:12:7B:3C:83:74:74:0B:5D:B4:0D Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 047C Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:16:05 +0000 ROA not before: Tue 03 Sep 2024 01:16:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23734 IP address blocks: 2401:df40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 01:16:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d66354-9bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:ae:48:8b:72:b1:8e:d5:bf:c3:fc:72:fa: 5d:60:7a:2e:da:df:e7:de:0b:b1:b3:c0:fc:8b:54: 12:9d:96:5e:03:10:f0:9e:b2:ee:ea:7f:9e:80:c9: fa:ff:1f:64:b1:9e:32:78:76:a4:88:39:13:1d:04: 5c:be:92:0e:69:28:ee:e8:b2:87:95:49:19:32:ad: b9:18:62:6a:df:4c:e3:6f:60:2b:35:29:15:b3:05: 24:5c:29:e5:fc:0b:88:ec:39:08:af:cd:16:03:33: 71:18:d7:d6:cf:3e:35:1a:cd:ad:62:85:71:52:35: 86:f6:a1:e4:76:46:62:c4:37:63:64:d6:0f:bf:2b: 5d:c7:73:03:05:67:e6:30:64:36:47:1d:75:01:2d: be:a3:86:53:64:b4:45:33:02:5a:40:f4:a8:5f:10: 54:ee:65:93:2d:fb:ac:c3:5f:be:67:a8:9a:b6:f0: e1:ed:fa:f3:13:4d:72:74:fc:92:cc:63:8d:fe:6b: ef:e1:53:b8:2d:9d:bb:84:b2:ac:e2:77:b8:d0:6d: 23:83:f1:43:a1:f2:25:2f:2f:e8:4b:f2:67:5e:1f: 68:38:26:44:5b:01:02:a2:f9:d6:9c:3f:99:aa:ad: 39:49:07:f5:54:82:ce:87:d8:af:55:f1:2b:4f:b7: f7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:27:8D:AC:82:76:17:1D:87:C2:12:7B:3C:83:74:74:0B:5D:B4:0D X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/16D4DB82A40E11EEAAB83671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:1::/48 Signature Algorithm: sha256WithRSAEncryption 87:ed:37:e4:16:14:b1:77:1c:8f:5a:54:eb:74:91:e5:54:69: 69:7b:fd:69:35:aa:f5:fd:5f:63:39:7c:d3:aa:e3:47:34:39: e9:c1:19:36:ab:d5:3c:60:2c:9f:6e:eb:dd:a7:ba:dc:40:b4: c7:c3:31:32:73:b3:d4:26:ad:bd:f6:a8:d9:0e:6b:9c:dc:f5: 0e:9a:38:79:8b:9e:83:d7:7c:bb:9a:a3:82:f0:ec:44:f6:77: 44:e9:5f:3c:30:6e:86:83:48:d0:35:7e:55:05:51:58:c0:ee: ba:20:2a:b0:ab:e7:c1:0d:78:e1:f2:72:c4:19:5a:9f:59:d5: 8f:47:d1:9f:3f:a4:ba:70:e2:ec:65:35:0d:c8:0f:36:7b:86: 89:cf:e8:45:34:ba:2f:6b:b6:63:96:79:0d:f5:cf:11:86:55: f3:02:54:57:61:33:75:9f:ee:78:b9:29:d6:8b:57:a8:e3:94: e0:4a:2d:0d:a8:eb:da:b0:41:df:50:cb:73:51:08:ff:ff:59: e4:66:a6:af:62:ac:1d:f5:a9:e0:67:4e:fa:fd:4a:9b:0e:0c: 0e:62:45:6c:0f:e8:a7:97:a7:df:23:9a:28:8a:72:e4:3d:18: 19:25:73:9b:7b:01:e2:cd:57:11:e8:16:ad:d1:f5:95:c3:b2: 57:bf:da:9e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwOTAzMDExNjA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjM1NC05YmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteeuSItysY7Vv8P8cvpdYHou2t/n3guxs8D8i1QSnZZeAxDwnrLu6n+egMn6 /x9ksZ4yeHakiDkTHQRcvpIOaSju6LKHlUkZMq25GGJq30zjb2ArNSkVswUkXCnl /AuI7DkIr80WAzNxGNfWzz41Gs2tYoVxUjWG9qHkdkZixDdjZNYPvytdx3MDBWfm MGQ2Rx11AS2+o4ZTZLRFMwJaQPSoXxBU7mWTLfusw1++Z6iatvDh7frzE01ydPyS zGON/mvv4VO4LZ27hLKs4ne40G0jg/FDofIlLy/oS/JnXh9oOCZEWwECovnWnD+Z qq05SQf1VILOh9ivVfErT7f3mwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHQnjayC dhcdh8ISezyDdHQLXbQNMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMTZENERCODJB NDBFMTFFRUFBQjgzNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAEwDQYJKoZIhvcNAQELBQADggEBAIftN+QWFLF3 HI9aVOt0keVUaWl7/Wk1qvX9X2M5fNOq40c0OenBGTar1TxgLJ9u692nutxAtMfD MTJzs9Qmrb32qNkOa5zc9Q6aOHmLnoPXfLuao4Lw7ET2d0TpXzwwboaDSNA1flUF UVjA7rogKrCr58ENeOHycsQZWp9Z1Y9H0Z8/pLpw4uxlNQ3IDzZ7honP6EU0ui9r tmOWeQ31zxGGVfMCVFdhM3Wf7ni5KdaLV6jjlOBKLQ2o69qwQd9Qy3NRCP//WeRm pq9irB31qeBnTvr9SpsODA5iRWwP6KeXp98jmiiKcuQ9GBklc5t7AeLNVxHoFq3R 9ZXDsle/2p4= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:25 2024 by rpki-client on console-ams.rpki-client.org