$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa File: 3E4FAED8669911EE997B8B77C4F9AE02.roa (raw, json) Hash identifier: JNfz3vgPcpBcF4ORf+Lm63xw5ETvDinhafEXoRMgHFM= Subject key identifier: 0C:5E:42:C2:72:9F:67:06:B5:16:83:0E:15:F5:48:FB:07:35:29:4C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89DE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa Signing time: Thu 30 May 2024 16:00:38 +0000 ROA not before: Thu 30 May 2024 16:00:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134897 IP address blocks: 2001:df0:70c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35294 (0x89de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:00:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a2a5-35a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:57:54:b3:4e:5c:8b:26:d6:fc:b3:4a:c6:2d: b5:2f:33:37:7f:8d:80:cf:cc:cf:39:bc:86:d8:95: 19:36:1b:1c:38:e5:d4:b6:dc:c2:57:ad:a4:6b:f2: 1f:9c:9c:f2:77:1b:35:23:ea:bd:1c:49:8c:72:ec: d7:69:ec:96:14:37:69:6f:94:b4:cc:19:fc:17:44: 18:32:35:7b:1c:5c:72:67:41:eb:9e:84:84:69:3d: 50:14:b2:ce:3a:d9:b2:b8:c1:02:d8:f5:77:6c:87: 3a:58:e3:88:45:92:ef:cb:2f:b3:5e:8e:29:f8:f5: dd:16:68:fa:68:5c:05:f3:0e:0f:80:60:3a:db:df: b0:a9:ef:a4:20:a2:11:21:84:41:5b:e4:93:e4:4e: 18:87:66:62:c3:ef:40:93:b7:20:43:d1:c7:4a:74: 6f:ab:ab:7e:21:21:b4:3a:6f:ef:16:f6:33:86:37: f9:33:0c:96:55:0a:a2:fd:9c:df:3c:23:5b:ca:8e: d1:77:cd:e1:fa:bd:d1:e9:b5:30:29:93:c1:b4:4a: 2a:50:1e:5f:01:39:8b:ec:de:a7:86:57:0b:ea:55: ad:34:90:a4:71:c0:cf:d9:03:40:be:99:71:4c:a3: 6d:ff:f9:bd:ec:ec:fc:be:c1:be:0c:f7:d5:9c:fd: e6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5E:42:C2:72:9F:67:06:B5:16:83:0E:15:F5:48:FB:07:35:29:4C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:70c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:7c:71:9c:92:bb:05:d9:2b:35:1e:7c:21:ca:4a:bb:48:3d: 91:6b:b6:f8:bb:3b:f3:a0:a2:76:3c:26:76:ed:0c:f6:d2:8b: eb:6d:dc:69:9b:19:66:d1:72:5f:11:b9:9f:d3:9c:d8:e2:02: 9b:4b:b8:5b:67:4a:77:9e:8f:cb:58:a4:92:4c:c0:69:cb:a7: fd:f5:8f:7b:71:8c:c0:9b:f0:7c:45:4a:61:ec:4b:3a:0d:33: 77:5a:d8:76:62:8e:99:7c:80:87:44:65:01:4c:5d:57:1e:3a: 7d:a4:34:55:33:9d:a9:d4:1d:53:c9:3a:e5:37:ff:97:83:4b: 9b:e0:32:f1:06:b1:91:6b:9b:a5:70:0d:cd:07:a6:ec:ff:57: 42:60:ff:fd:e5:b7:a6:6e:c0:e4:6c:59:42:d8:31:23:08:78: 29:4a:27:cb:08:25:db:c6:e2:fb:f7:f4:de:20:ab:66:6c:f6: 3e:98:a5:16:34:63:c0:e8:69:d1:1f:3c:d3:2d:77:b0:e1:76: 3a:9a:b1:9e:0e:d3:7a:ce:49:86:9e:0f:01:a0:c0:38:6f:6d: be:3b:bb:1f:24:07:f2:96:08:7f:79:58:69:fd:71:63:70:4a: 8d:4c:c6:30:24:03:c1:ab:ca:01:80:9c:0e:e3:f7:f6:20:8a: 9e:73:9d:7a -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAIneMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDAzOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyYTUtMzVhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZXVLNOXIsm1vyzSsYttS8zN3+NgM/Mzzm8htiVGTYbHDjl1LbcwletpGvy H5yc8ncbNSPqvRxJjHLs12nslhQ3aW+UtMwZ/BdEGDI1exxccmdB656EhGk9UBSy zjrZsrjBAtj1d2yHOljjiEWS78svs16OKfj13RZo+mhcBfMOD4BgOtvfsKnvpCCi ESGEQVvkk+ROGIdmYsPvQJO3IEPRx0p0b6urfiEhtDpv7xb2M4Y3+TMMllUKov2c 3zwjW8qO0XfN4fq90em1MCmTwbRKKlAeXwE5i+zep4ZXC+pVrTSQpHHAz9kDQL6Z cUyjbf/5vezs/L7Bvgz31Zz95q8CAwEAAaOCApgwggKUMB0GA1UdDgQWBBQMXkLC cp9nBrUWgw4V9Uj7BzUpTDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNFNEZBRUQ4 NjY5OTExRUU5OTdCOEI3N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN8HDAMA0GCSqGSIb3DQEBCwUAA4IBAQA7fHGckrsF 2Ss1Hnwhykq7SD2Ra7b4uzvzoKJ2PCZ27Qz20ovrbdxpmxlm0XJfEbmf05zY4gKb S7hbZ0p3no/LWKSSTMBpy6f99Y97cYzAm/B8RUph7Es6DTN3Wth2Yo6ZfICHRGUB TF1XHjp9pDRVM52p1B1TyTrlN/+Xg0ub4DLxBrGRa5ulcA3NB6bs/1dCYP/95bem bsDkbFlC2DEjCHgpSifLCCXbxuL79/TeIKtmbPY+mKUWNGPA6GnRHzzTLXew4XY6 mrGeDtN6zkmGng8BoMA4b22+O7sfJAfylgh/eVhp/XFjcEqNTMYwJAPBq8oBgJwO 4/f2IIqec516 -----END CERTIFICATE-----Generated at Sun Feb 16 20:29:56 2025 by rpki-client