$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01524046997911EE846ECB2EC4F9AE02.roa File: 01524046997911EE846ECB2EC4F9AE02.roa (raw, json) Hash identifier: xpjebklbbwFq19wdzFb/WjL781a0c3Ma+yZKHWoXGKI= Subject key identifier: 30:81:54:F7:84:AD:2A:B1:5D:30:31:6F:E4:8B:2A:28:CE:76:86:F5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8AF5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01524046997911EE846ECB2EC4F9AE02.roa Signing time: Thu 30 May 2024 16:05:09 +0000 ROA not before: Thu 30 May 2024 16:05:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136339 IP address blocks: 2001:df2:bc40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35573 (0x8af5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:05:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a3b5-94bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7d:ec:f7:c7:8d:ba:74:71:c4:68:e6:36:4c: a9:c2:51:84:56:90:aa:97:fc:df:81:a1:91:00:d8: 4f:c0:d9:11:b9:5e:ed:c6:72:fe:de:4a:cc:2e:bd: 69:85:bd:db:f7:e9:93:6b:26:e3:1f:17:dd:82:7c: 77:60:7b:3d:13:d7:c3:55:cd:ee:19:27:64:b9:f1: ac:d4:13:c3:d0:be:f6:1a:7d:59:9e:f6:6d:c1:33: 81:c9:2f:78:d1:ef:f2:3e:49:a4:d9:80:e5:d3:4a: 21:f4:ec:6b:84:1a:ed:34:04:db:2a:24:0d:79:b7: 61:a4:0d:eb:87:80:9d:44:af:09:b2:4f:c1:1b:90: c5:1f:29:e0:9f:3d:fe:af:a4:73:39:88:5e:bf:b7: 7c:f3:2a:a5:4f:83:dc:aa:8e:30:73:c5:a8:c7:1c: 54:59:90:5d:50:45:df:ac:5f:db:4e:b8:ed:bd:70: 4c:a2:9d:78:15:1d:51:dd:42:aa:55:b6:d1:48:cb: e7:89:8b:60:6a:16:a1:12:02:7e:04:e4:53:d0:88: 88:ff:75:75:e7:c1:45:23:35:e3:9e:c9:4d:52:63: 4a:6e:27:b2:cb:b3:29:e7:6d:9e:6f:1f:31:a1:3e: d7:99:28:e2:54:55:fa:35:c8:42:17:ce:75:77:5f: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:81:54:F7:84:AD:2A:B1:5D:30:31:6F:E4:8B:2A:28:CE:76:86:F5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01524046997911EE846ECB2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:bc40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:5d:93:d8:fc:b5:54:36:9b:09:6c:fe:84:0c:84:29:1c:04: 5f:36:f2:5f:39:46:cf:f6:fb:13:5f:5e:60:67:b4:9b:bb:1f: 16:a3:96:ce:1c:c2:40:d6:b3:2c:2b:28:a9:14:4c:f6:c4:09: 04:42:13:d3:94:13:9a:95:3d:86:fa:5f:81:eb:97:c1:42:4a: 83:4c:08:72:18:03:37:75:f8:aa:4f:27:47:0e:e0:cd:26:68: f5:8b:6c:e8:63:41:a7:13:f4:39:09:b1:0e:20:60:5e:a0:07: 8c:53:17:ad:f9:81:3c:dd:75:11:9a:a2:50:38:23:9d:11:24: 14:2c:ee:7e:e9:62:3a:d8:9e:0c:d2:28:a5:df:77:cc:88:1c: 80:3b:ab:b4:b3:97:62:1f:f3:8b:39:20:de:d4:00:28:8f:70: ea:87:a7:ce:f3:fb:b9:77:4f:25:7b:50:e9:cc:79:3d:1c:9e: 60:d2:23:c6:f5:c0:4a:83:12:eb:0a:d4:2f:96:cb:13:ab:35: fa:39:a0:46:53:30:39:55:5f:e3:33:a9:e7:c7:c9:31:16:13: de:37:a7:67:55:b1:d1:7a:c8:52:4a:49:c0:2c:32:5f:28:ec: 58:ee:68:85:6e:d2:c0:b1:19:c3:f7:c7:81:08:c9:4c:64:b8: 21:17:cc:a1 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAIr1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDUwOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEzYjUtOTRiZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL997PfHjbp0ccRo5jZMqcJRhFaQqpf834GhkQDYT8DZEble7cZy/t5KzC69 aYW92/fpk2sm4x8X3YJ8d2B7PRPXw1XN7hknZLnxrNQTw9C+9hp9WZ72bcEzgckv eNHv8j5JpNmA5dNKIfTsa4Qa7TQE2yokDXm3YaQN64eAnUSvCbJPwRuQxR8p4J89 /q+kczmIXr+3fPMqpU+D3KqOMHPFqMccVFmQXVBF36xf20647b1wTKKdeBUdUd1C qlW20UjL54mLYGoWoRICfgTkU9CIiP91defBRSM1457JTVJjSm4nssuzKedtnm8f MaE+15ko4lRV+jXIQhfOdXdfxXcCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQwgVT3 hK0qsV0wMW/kiyooznaG9TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAxNTI0MDQ2 OTk3OTExRUU4NDZFQ0IyRUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN8rxAMA0GCSqGSIb3DQEBCwUAA4IBAQAaXZPY/LVU NpsJbP6EDIQpHARfNvJfOUbP9vsTX15gZ7Sbux8Wo5bOHMJA1rMsKyipFEz2xAkE QhPTlBOalT2G+l+B65fBQkqDTAhyGAM3dfiqTydHDuDNJmj1i2zoY0GnE/Q5CbEO IGBeoAeMUxet+YE83XURmqJQOCOdESQULO5+6WI62J4M0iil33fMiByAO6u0s5di H/OLOSDe1AAoj3Dqh6fO8/u5d08le1DpzHk9HJ5g0iPG9cBKgxLrCtQvlssTqzX6 OaBGUzA5VV/jM6nnx8kxFhPeN6dnVbHReshSSknALDJfKOxY7miFbtLAsRnD98eB CMlMZLghF8yh -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:29 2025 by rpki-client