$ rpki-client -vvf rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/455880A6ED6D11ED8A822917C4F9AE02.roa File: 455880A6ED6D11ED8A822917C4F9AE02.roa (raw, json) Hash identifier: aC4IYAyMGo6nLf4CT/cxfXqFFROm0vKPE8dyF8L1Czw= Subject key identifier: B5:74:CB:E4:F9:E3:F2:B4:68:D5:9B:77:64:A7:C6:1C:AB:2F:3A:4D Certificate issuer: /CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Certificate serial: 1133 Authority key identifier: B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/455880A6ED6D11ED8A822917C4F9AE02.roa Signing time: Thu 30 Nov 2023 18:05:28 +0000 ROA not before: Thu 30 Nov 2023 18:05:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138364 IP address blocks: 2403:cf40::/48 maxlen: 48 2403:cf40:1::/48 maxlen: 48 2403:cf40:2::/48 maxlen: 48 2403:cf40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4403 (0x1133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Validity Not Before: Nov 30 18:05:28 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6568cee7-d483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:e3:7a:80:a5:61:0a:07:d7:9d:a1:de:af: e1:49:4e:43:be:f9:47:83:7a:a6:1a:f6:2f:86:68: 5f:15:5c:bc:6d:38:04:f3:ce:a3:e8:c1:f4:3f:f6: 2b:09:c0:da:ae:19:76:81:58:5a:50:fe:8f:46:cc: 34:e2:d3:25:80:7f:07:1e:15:d8:27:4d:0d:d2:cf: 17:91:1b:d1:d6:ad:b2:a0:a8:c0:5a:6f:0e:e8:83: 46:97:76:8b:33:16:c3:08:10:ef:45:3a:e2:34:24: ad:41:a7:a1:fa:3e:22:ec:d0:13:8a:c2:0b:c7:db: 4b:72:db:67:cc:76:63:b1:4f:0f:41:6c:be:cd:3d: 68:16:b1:a0:dc:34:d5:d0:32:ad:95:ee:55:30:9c: e8:34:65:16:ce:54:ac:a5:22:98:00:ed:1f:a1:ba: 66:b3:2b:f7:35:b8:a0:a1:31:7c:e9:62:73:93:aa: 80:9b:3a:a8:be:d4:80:fe:07:c1:b8:52:e0:05:e5: 8a:e3:2a:97:50:09:91:c1:36:6d:fd:2a:33:78:53: 3a:89:91:6b:09:55:47:08:e5:aa:b5:cd:5d:62:fe: 51:df:67:e6:fd:e2:19:79:bf:49:fa:9f:a7:84:4a: fe:0f:55:76:c2:2a:0d:bc:4d:0c:25:41:e0:8a:c1: 5f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:74:CB:E4:F9:E3:F2:B4:68:D5:9B:77:64:A7:C6:1C:AB:2F:3A:4D X509v3 Authority Key Identifier: keyid:B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/455880A6ED6D11ED8A822917C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cf40::/46 Signature Algorithm: sha256WithRSAEncryption 9e:22:f8:30:ef:2e:ab:0c:19:22:1f:0e:c1:7f:eb:57:be:0b: 3b:35:bc:2b:cb:37:da:4d:d0:f1:dd:c7:32:45:d6:7a:aa:1f: b4:de:71:e1:8c:7b:e1:6b:86:16:85:e0:b3:52:55:db:80:18: 12:bd:c2:0c:66:c0:d6:69:dc:f1:72:21:18:63:f2:d1:f9:34: 57:a6:58:0e:ef:fd:a2:26:ac:0b:ff:4c:b2:8a:12:89:2a:f3: 16:28:10:c6:4e:73:2c:ed:9a:aa:de:14:1c:d8:5a:02:1a:a3: f9:3d:81:c7:b2:f3:87:c3:72:f2:a9:ad:e9:5e:aa:d3:2a:b9: da:e1:6f:fa:20:8e:6b:8c:ce:8b:7d:6b:78:84:43:49:80:fe: 7f:3b:15:1d:06:e0:85:f1:60:79:f0:e3:70:0c:d4:4d:00:6f: ab:97:bc:c9:fb:2c:e6:31:1f:e0:9d:c3:c6:65:a2:ec:34:60: b8:35:76:89:db:5b:d3:77:cc:4a:f2:d0:71:c8:f5:7f:e6:a0: 0f:52:27:a0:39:33:14:c3:ed:2b:81:e7:47:10:40:f0:7b:f1: d0:ee:c2:56:f1:ad:bd:f8:d8:31:fa:7d:c0:40:b3:40:53:71: b3:28:0f:5b:2a:e8:d9:73:bb:b5:84:ae:2c:fc:7e:82:f7:10: 0b:28:38:6e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICETMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwRjkxMTAvBgNVBAUTKEI5MkYzRTU4OEIyMTk0M0FDQkI4MDVCRkRGMEIxOTQ0 QkY3Q0FDM0IwHhcNMjMxMTMwMTgwNTI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4Y2VlNy1kNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumDjeoClYQoH152h3q/hSU5DvvlHg3qmGvYvhmhfFVy8bTgE886j6MH0P/Yr CcDarhl2gVhaUP6PRsw04tMlgH8HHhXYJ00N0s8XkRvR1q2yoKjAWm8O6INGl3aL MxbDCBDvRTriNCStQaeh+j4i7NATisILx9tLcttnzHZjsU8PQWy+zT1oFrGg3DTV 0DKtle5VMJzoNGUWzlSspSKYAO0fobpmsyv3NbigoTF86WJzk6qAmzqovtSA/gfB uFLgBeWK4yqXUAmRwTZt/SozeFM6iZFrCVVHCOWqtc1dYv5R32fm/eIZeb9J+p+n hEr+D1V2wioNvE0MJUHgisFfFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLV0y+T5 4/K0aNWbd2SnxhyrLzpNMB8GA1UdIwQYMBaAFLkvPliLIZQ6y7gFv98LGUS/fKw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjBGOS8xRDJCNUIyQUQ2 QkMxMUU4OTQ1NTBENDJDNEY5QUUwMi91UzgtV0lzaGxEckx1QVdfM3dzWlJMOThy RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTOC1XSXNobERyTHVBV18zd3NaUkw5OHJEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIwRjkvMUQyQjVCMkFENkJDMTFFODk0NTUwRDQyQzRGOUFFMDIvNDU1ODgwQTZF RDZEMTFFRDhBODIyOTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwIkA89AAAAwDQYJKoZIhvcNAQELBQADggEBAJ4i+DDvLqsM GSIfDsF/61e+Czs1vCvLN9pN0PHdxzJF1nqqH7TeceGMe+FrhhaF4LNSVduAGBK9 wgxmwNZp3PFyIRhj8tH5NFemWA7v/aImrAv/TLKKEokq8xYoEMZOcyztmqreFBzY WgIao/k9gcey84fDcvKpreleqtMqudrhb/ogjmuMzot9a3iEQ0mA/n87FR0G4IXx YHnw43AM1E0Ab6uXvMn7LOYxH+Cdw8Zlouw0YLg1donbW9N3zEry0HHI9X/moA9S J6A5MxTD7SuB50cQQPB78dDuwlbxrb342DH6fcBAs0BTcbMoD1sq6Nlzu7WEriz8 foL3EAsoOG4= -----END CERTIFICATE-----Generated at Fri May 24 21:43:20 2024 by rpki-client on console-ams.rpki-client.org