$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/019032D8873A11EBBB90457BC4F9AE02.roa File: 019032D8873A11EBBB90457BC4F9AE02.roa (raw, json) Hash identifier: hfuqe6hBIu5OoyfT/6ImPhv795TRhrwjnC6iJqQ71Pc= Subject key identifier: D4:32:5B:49:16:07:EA:D6:92:B0:81:65:FB:93:20:8A:24:76:94:F4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8904 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/019032D8873A11EBBB90457BC4F9AE02.roa Signing time: Thu 30 May 2024 15:57:05 +0000 ROA not before: Thu 30 May 2024 15:57:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133653 IP address blocks: 2407:39c0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35076 (0x8904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 15:57:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a1d0-6c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:2f:c9:0d:30:07:2c:2f:08:d2:da:55:78: fd:38:cc:d4:86:f9:f2:1f:72:20:75:af:fc:69:aa: 8c:cc:c8:37:88:c7:f6:16:eb:06:ce:5a:51:64:15: da:f9:bc:66:c9:ad:55:ea:19:e3:c1:c4:65:38:40: 43:be:1d:0d:92:29:ad:8b:2c:b2:e2:8d:63:b9:e0: 1f:ab:de:c6:20:5e:6d:7e:10:1f:ab:24:2a:91:2a: 9e:e9:3f:9a:f5:e0:dd:e5:35:54:4e:79:a5:63:19: 77:9a:f4:97:b9:9d:c3:59:fa:eb:3e:98:f0:00:08: c7:13:72:cc:13:e1:69:8b:31:da:9b:96:36:3d:a6: 1e:85:f4:70:d7:fb:76:78:01:e1:21:76:1b:ac:e3: 22:26:54:41:cf:38:22:80:5f:e5:47:80:4e:39:5c: ac:97:e4:9b:ba:f8:ee:18:14:96:b1:2e:a4:50:05: 1f:26:32:78:e5:69:37:34:2a:29:b7:64:d1:b6:57: 7e:01:e7:9d:7d:66:ab:99:a7:48:79:13:9a:f4:3f: 6a:26:7f:ac:df:46:4e:1d:5b:4f:ec:25:59:22:eb: f0:d8:f9:2e:f1:19:59:b7:55:8d:9d:af:25:e7:93: 63:de:d2:81:ea:e0:85:55:9d:17:89:15:92:7f:85: d7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:32:5B:49:16:07:EA:D6:92:B0:81:65:FB:93:20:8A:24:76:94:F4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/019032D8873A11EBBB90457BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:39c0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:98:79:6d:9f:f4:95:93:72:0f:64:76:71:78:c1:70:f9:9d: 80:b3:75:e2:e0:c6:c6:f7:6e:31:91:bf:f2:49:70:dc:8b:c3: 0c:38:14:db:ab:46:27:df:ee:81:87:f2:96:71:46:a3:55:d5: db:30:90:f1:f5:db:c9:f7:e7:22:fe:11:d8:c1:a2:cd:63:73: 99:07:9c:6e:fd:2b:3e:6c:f3:13:e9:72:2c:75:52:8c:88:82: 94:a1:a2:46:85:a5:5c:15:7e:9e:b5:84:f3:32:e7:77:27:ce: 21:4d:78:b3:a0:94:55:2e:f3:7f:fb:84:ba:0a:10:40:5f:34: b6:bd:7d:70:0c:49:a1:c9:23:35:95:fe:06:58:19:4e:d6:e4: d6:eb:8f:b7:b5:7a:ec:df:7e:b1:3e:6f:2e:c0:7a:e2:fd:57: 16:bb:f3:8f:ac:3f:16:2c:e6:72:91:ae:02:8d:75:6a:b9:58: 76:fa:4c:58:5a:11:b2:1d:71:19:de:80:4d:c9:4a:cb:38:e8: bd:33:68:fd:e3:ff:06:6b:29:98:44:bb:e8:60:55:6a:6f:93: 74:93:62:87:a3:f2:7c:5f:3c:ad:26:25:d2:f1:d8:de:27:4f: e2:89:6b:5c:86:9f:c9:61:a6:d7:48:fd:63:8d:a0:6d:b9:0f: 75:fc:9d:62 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAIkEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE1NTcwNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGExZDAtNmMwZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwbL8kNMAcsLwjS2lV4/TjM1Ib58h9yIHWv/GmqjMzIN4jH9hbrBs5aUWQV 2vm8ZsmtVeoZ48HEZThAQ74dDZIprYsssuKNY7ngH6vexiBebX4QH6skKpEqnuk/ mvXg3eU1VE55pWMZd5r0l7mdw1n66z6Y8AAIxxNyzBPhaYsx2puWNj2mHoX0cNf7 dngB4SF2G6zjIiZUQc84IoBf5UeATjlcrJfkm7r47hgUlrEupFAFHyYyeOVpNzQq Kbdk0bZXfgHnnX1mq5mnSHkTmvQ/aiZ/rN9GTh1bT+wlWSLr8Nj5LvEZWbdVjZ2v JeeTY97SgerghVWdF4kVkn+F12ECAwEAAaOCApYwggKSMB0GA1UdDgQWBBTUMltJ Fgfq1pKwgWX7kyCKJHaU9DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAxOTAzMkQ4 ODczQTExRUJCQjkwNDU3QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAc5wDANBgkqhkiG9w0BAQsFAAOCAQEAGph5bZ/0lZNy D2R2cXjBcPmdgLN14uDGxvduMZG/8klw3IvDDDgU26tGJ9/ugYfylnFGo1XV2zCQ 8fXbyffnIv4R2MGizWNzmQecbv0rPmzzE+lyLHVSjIiClKGiRoWlXBV+nrWE8zLn dyfOIU14s6CUVS7zf/uEugoQQF80tr19cAxJockjNZX+BlgZTtbk1uuPt7V67N9+ sT5vLsB64v1XFrvzj6w/FizmcpGuAo11arlYdvpMWFoRsh1xGd6ATclKyzjovTNo /eP/BmspmES76GBVam+TdJNih6PyfF88rSYl0vHY3idP4olrXIafyWGm10j9Y42g bbkPdfydYg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:01 2024 by rpki-client on console-ams.rpki-client.org