$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C0D3132223211EDA18C6226C4F9AE02.roa File: 4C0D3132223211EDA18C6226C4F9AE02.roa (raw, json) Hash identifier: gPpyPxnPkfHRtLXtD5aY6ugPtL6AnpnbLoiQbG8FMyA= Subject key identifier: 46:DC:43:87:3E:5B:4E:C9:5B:44:04:49:D8:43:48:C5:FF:44:B4:2F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 89C3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C0D3132223211EDA18C6226C4F9AE02.roa Signing time: Thu 30 May 2024 16:00:12 +0000 ROA not before: Thu 30 May 2024 16:00:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134861 IP address blocks: 2400:a160::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 10:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35267 (0x89c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:00:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a28c-a4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:72:be:d0:73:9b:66:50:51:42:f6:55:a5:e8: 29:71:50:99:6c:78:22:f1:79:1d:0e:7b:48:72:2a: 46:44:e6:6a:c1:92:58:94:de:2a:4c:2f:8d:44:cb: 8f:9b:78:8c:9c:6b:c3:2a:0d:35:1a:03:a4:87:cd: 58:3d:a6:cb:86:3a:8f:42:89:31:5b:88:4c:b9:d8: 4f:4c:e2:eb:6c:9a:80:28:17:ba:d2:f1:ac:8e:26: e3:1a:1f:94:c3:78:56:f4:98:1a:9d:51:9a:ac:17: 8a:1a:3d:9c:3d:24:29:2f:5e:f4:d4:a4:34:83:63: 0a:2a:ac:ac:ab:67:ed:94:41:ed:26:d3:a2:51:5e: dd:1d:c6:31:24:2b:10:c8:a9:a9:1b:c6:fe:fb:44: 3a:4c:99:b8:14:f5:ce:81:0e:e8:f1:8f:23:28:3d: bc:2b:a2:95:e0:2a:ab:26:dd:99:e4:48:51:06:d4: db:fd:8a:4c:68:03:b8:0d:ab:c3:3d:54:81:13:40: 5e:94:2a:f0:52:20:1f:71:de:a8:3a:13:04:d0:a6: 87:c1:22:7a:52:09:7d:37:32:21:01:fd:aa:15:fb: 11:3d:81:f8:0d:13:61:fe:69:b4:46:1c:97:b1:85: 88:e8:de:6c:b4:53:22:d0:d5:6b:87:55:35:80:8f: 7c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DC:43:87:3E:5B:4E:C9:5B:44:04:49:D8:43:48:C5:FF:44:B4:2F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4C0D3132223211EDA18C6226C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:a160::/32 Signature Algorithm: sha256WithRSAEncryption 67:6b:25:de:70:13:20:3d:f0:69:35:ad:28:ac:6a:bc:70:ff: c8:d9:0b:0c:5b:aa:57:34:fa:3e:ee:b0:ce:40:2e:b8:ab:85: b9:6a:23:64:0e:5f:6c:db:91:8c:57:7c:8b:4f:e2:91:7b:79: 07:3e:94:fe:8f:92:6f:80:e5:b7:4f:85:c8:54:6e:1d:90:41: 60:b9:8a:51:ab:bb:7f:37:d6:80:69:4d:a6:b0:9f:d2:b1:fc: 5a:b1:a8:35:6e:96:4b:1b:6b:57:e9:3e:69:9d:c7:f8:38:6d: ce:b2:e7:49:f8:5b:99:70:ad:5b:fc:86:b1:6f:02:4f:ee:12: 15:90:d7:e4:f0:80:4a:d8:ff:0e:84:30:a5:dc:20:44:44:1f: 2d:c5:2d:79:94:70:40:a0:7c:b8:47:a4:94:b1:02:fc:07:91: 83:a5:78:a8:ba:30:09:49:e5:54:76:f4:45:f9:ca:92:7f:af: a4:e8:e7:35:b8:7b:4a:b5:13:a2:f5:c4:02:a7:9f:26:52:ec: ec:63:ff:41:72:f5:0a:99:46:8e:23:a3:f0:a7:a0:9f:f4:4b: a3:41:d8:c5:b1:8f:28:ce:65:25:00:d6:d8:db:19:ad:d6:de: 6f:37:08:f9:4e:81:aa:2b:8b:6c:52:7e:b4:3c:e6:9a:46:4e: 69:2a:d4:11 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAInDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MDAxMloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGEyOGMtYTRhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZyvtBzm2ZQUUL2VaXoKXFQmWx4IvF5HQ57SHIqRkTmasGSWJTeKkwvjUTL j5t4jJxrwyoNNRoDpIfNWD2my4Y6j0KJMVuITLnYT0zi62yagCgXutLxrI4m4xof lMN4VvSYGp1RmqwXiho9nD0kKS9e9NSkNINjCiqsrKtn7ZRB7SbTolFe3R3GMSQr EMipqRvG/vtEOkyZuBT1zoEO6PGPIyg9vCuileAqqybdmeRIUQbU2/2KTGgDuA2r wz1UgRNAXpQq8FIgH3HeqDoTBNCmh8EielIJfTcyIQH9qhX7ET2B+A0TYf5ptEYc l7GFiOjebLRTItDVa4dVNYCPfL0CAwEAAaOCApYwggKSMB0GA1UdDgQWBBRG3EOH PltOyVtEBEnYQ0jF/0S0LzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRDMEQzMTMy MjIzMjExRURBMThDNjIyNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAChYDANBgkqhkiG9w0BAQsFAAOCAQEAZ2sl3nATID3w aTWtKKxqvHD/yNkLDFuqVzT6Pu6wzkAuuKuFuWojZA5fbNuRjFd8i0/ikXt5Bz6U /o+Sb4Dlt0+FyFRuHZBBYLmKUau7fzfWgGlNprCf0rH8WrGoNW6WSxtrV+k+aZ3H +DhtzrLnSfhbmXCtW/yGsW8CT+4SFZDX5PCAStj/DoQwpdwgREQfLcUteZRwQKB8 uEeklLEC/AeRg6V4qLowCUnlVHb0RfnKkn+vpOjnNbh7SrUTovXEAqefJlLs7GP/ QXL1CplGjiOj8Kegn/RLo0HYxbGPKM5lJQDW2NsZrdbebzcI+U6BqiuLbFJ+tDzm mkZOaSrUEQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:13 2024 by rpki-client on console-ams.rpki-client.org