$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6254C72366311EEB376DC3AC4F9AE02.roa File: A6254C72366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: cYsB/6EWxwhNu6FOxiMTPn3LlPlzKyKDqJojjzwl0zQ= Subject key identifier: C6:52:BC:7B:25:16:B5:D4:B6:24:36:59:72:31:61:45:1C:B7:49:E5 Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Certificate serial: 05 Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6254C72366311EEB376DC3AC4F9AE02.roa Signing time: Wed 09 Aug 2023 03:20:11 +0000 ROA not before: Wed 09 Aug 2023 03:20:11 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135381 IP address blocks: 2400:6280:11b::/48 maxlen: 48 2400:6280:145::/48 maxlen: 48 2400:6280:146::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Validity Not Before: Aug 9 03:20:11 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64d305eb-73d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:db:55:34:38:2e:01:d6:e0:6e:e9:dd:c9: 7f:f3:31:29:29:4f:7a:3d:a0:06:b4:21:08:9b:4a: 04:6b:cb:22:54:f3:8d:df:ee:b3:39:65:7c:c4:b4: d8:80:88:4e:35:57:1e:f6:75:c6:3d:ab:1a:49:ad: 1b:44:3b:5f:44:55:72:67:57:ff:b8:97:7d:0e:39: 4b:70:17:5e:e5:2f:17:f9:aa:f1:25:a4:90:5a:5c: b2:b7:cd:c9:5f:59:78:5d:d2:d2:b5:58:47:86:37: e3:e5:51:cd:00:ca:65:e8:ff:e4:dd:8d:1e:77:f6: 01:18:e1:ea:68:80:3a:e4:99:d8:6e:75:fd:99:39: b1:b1:de:eb:93:0e:d5:14:80:d3:9c:b2:3a:97:5a: 40:bb:88:dc:ea:a3:97:cd:2d:73:15:5c:cf:16:ba: 31:23:7b:ca:99:9d:83:88:4f:80:35:d6:b2:cf:73: 15:db:0c:fb:1e:ac:8f:62:b9:db:98:ab:f2:9a:38: b1:58:f8:42:39:26:b8:18:25:8a:c3:29:3c:28:5b: bb:eb:bc:4e:21:8b:0e:87:83:df:2b:2e:d4:ae:cb: 73:56:f8:cb:c6:1c:39:09:c8:c1:41:24:93:fa:c5: 70:2c:6d:d5:e1:c1:96:7d:2b:84:52:8e:cd:34:e2: ab:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:52:BC:7B:25:16:B5:D4:B6:24:36:59:72:31:61:45:1C:B7:49:E5 X509v3 Authority Key Identifier: keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6254C72366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6280:11b::/48 2400:6280:145::-2400:6280:146:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9e:48:1d:33:13:29:63:ae:33:7f:3e:9e:a8:63:d2:a8:1c:f6: d8:98:88:48:8f:c8:af:11:aa:d9:12:14:58:e2:c1:aa:78:a2: 27:6f:05:ba:8f:55:15:bf:06:2a:c1:94:35:8e:2b:1b:c1:92: c7:03:03:6e:9b:f7:ef:b5:f0:23:92:ad:a6:93:4e:3c:42:79: 4f:a6:b9:d7:0a:f5:46:2d:15:e9:55:94:40:ca:f8:ac:9c:da: c5:1e:1b:c4:e9:42:33:ce:3e:81:bf:bc:5e:b5:93:98:de:7c: 87:6a:4e:ea:44:99:fa:fb:6b:56:c5:0a:a5:df:d0:7a:47:8a: 27:df:28:61:6b:b3:13:f7:1e:5b:39:01:b2:e8:e0:8d:f8:67: c4:f9:c7:e1:7e:55:a3:42:c7:7b:ac:ea:34:57:14:99:46:04: 16:18:3e:19:08:99:cc:dc:d7:ba:26:86:85:d0:64:c5:1e:a3: b5:7c:29:d1:75:d3:a5:47:bc:ac:f8:f1:fe:43:33:45:86:c2: d7:20:fa:a6:13:9a:5c:1e:d0:f5:b2:02:6f:df:8d:d2:16:6b: 34:28:7e:c7:09:a4:d2:08:0e:09:15:95:6e:53:cb:a1:33:3b: 41:18:a9:42:fc:cd:fb:95:93:5d:65:f3:bc:ff:a2:89:0d:13: f3:6e:e7:26 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTM2QzExMC8GA1UEBRMoNDg4OTcwNTA2MjY0RUY5NkQ4MUVDMTJFNkFCRDI1NkRC MzBGRENGQTAeFw0yMzA4MDkwMzIwMTFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDMwNWViLTczZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtKNtVNDguAdbgbundyX/zMSkpT3o9oAa0IQibSgRryyJU843f7rM5ZXzEtNiA iE41Vx72dcY9qxpJrRtEO19EVXJnV/+4l30OOUtwF17lLxf5qvElpJBaXLK3zclf WXhd0tK1WEeGN+PlUc0AymXo/+TdjR539gEY4epogDrkmdhudf2ZObGx3uuTDtUU gNOcsjqXWkC7iNzqo5fNLXMVXM8WujEje8qZnYOIT4A11rLPcxXbDPserI9iuduY q/KaOLFY+EI5JrgYJYrDKTwoW7vrvE4hiw6Hg98rLtSuy3NW+MvGHDkJyMFBJJP6 xXAsbdXhwZZ9K4RSjs004qu1AgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUxlK8eyUW tdS2JDZZcjFhRRy3SeUwHwYDVR0jBBgwFoAUSIlwUGJk75bYHsEuar0lbbMP3Pow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MzZDLzdFNEQ4NDYwMzY2 MDExRUU4OEUwRjUzMEM0RjlBRTAyL1NJbHdVR0prNzViWUhzRXVhcjBsYmJNUDNQ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0lsd1VHSms3NWJZSHNFdWFyMGxiYk1QM1BvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83RTREODQ2MDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9BNjI1NEM3MjM2 NjMxMUVFQjM3NkRDM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwIwQCAAIwHQMHACQAYoABGzASAwcAJABigAFFAwcAJABigAFGMA0GCSqGSIb3 DQEBCwUAA4IBAQCeSB0zEyljrjN/Pp6oY9KoHPbYmIhIj8ivEarZEhRY4sGqeKIn bwW6j1UVvwYqwZQ1jisbwZLHAwNum/fvtfAjkq2mk048QnlPprnXCvVGLRXpVZRA yvisnNrFHhvE6UIzzj6Bv7xetZOY3nyHak7qRJn6+2tWxQql39B6R4on3yhha7MT 9x5bOQGy6OCN+GfE+cfhflWjQsd7rOo0VxSZRgQWGD4ZCJnM3Ne6JoaF0GTFHqO1 fCnRddOlR7ys+PH+QzNFhsLXIPqmE5pcHtD1sgJv343SFms0KH7HCaTSCA4JFZVu U8uhMztBGKlC/M37lZNdZfO8/6KJDRPzbucm -----END CERTIFICATE-----Generated at Fri Jun 7 09:41:02 2024 by rpki-client on console-ams.rpki-client.org