$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/508D0CF27BD411EF8303F411C4F9AE02.roa File: 508D0CF27BD411EF8303F411C4F9AE02.roa (raw, json) Hash identifier: RY2ng/1cAfs55QxqzU5PlzAo9yQjwq+gQi1d2x/T54I= Subject key identifier: 0F:63:D2:52:05:D1:BA:BC:E2:32:CF:A0:30:21:2A:1E:23:6E:55:61 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9A34 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/508D0CF27BD411EF8303F411C4F9AE02.roa Signing time: Thu 26 Sep 2024 06:55:29 +0000 ROA not before: Thu 26 Sep 2024 06:55:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153243 IP address blocks: 2401:c3a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39476 (0x9a34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 26 06:55:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66f50560-3c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ad:22:21:78:4e:79:83:ba:f8:41:f7:ef:38: 9a:60:a0:8c:46:1f:fe:3e:1f:5e:48:ff:aa:73:1f: 28:de:d2:c0:d3:8c:57:ec:33:a6:db:e1:27:b7:3f: 5f:69:c3:d4:9b:d4:69:44:5a:c1:71:3c:99:20:8b: c2:91:4b:8c:4f:d3:d9:a5:ee:89:ec:fb:af:c4:15: 8b:9b:11:99:fa:b9:47:71:43:bd:31:91:8c:a9:4d: 95:8a:0b:26:4f:e9:48:e8:dd:03:78:1e:80:16:e3: 26:a0:e4:17:51:82:30:d7:8b:d4:c3:ed:dd:c4:95: f8:91:a3:f6:08:12:20:da:da:49:5d:12:58:29:2f: e1:07:d8:43:82:dc:5f:ee:7f:e4:c7:8f:4f:4d:14: 87:65:44:6e:61:0a:f0:00:3b:d2:06:7d:35:d3:61: 3e:8b:8b:7f:06:28:48:52:89:07:a0:6a:50:3a:c3: 1c:4f:3e:de:1a:80:21:fd:96:63:fa:af:ca:32:10: d0:30:22:d5:0c:08:11:31:92:1f:74:07:96:54:60: 95:08:f8:de:2e:20:0a:ba:40:d7:13:a9:ae:99:17: 38:b0:e6:cc:cc:86:d8:99:31:ef:77:76:c3:88:91: 22:ee:cc:7c:8d:0f:cb:36:cf:8d:d2:31:a9:ec:97: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:63:D2:52:05:D1:BA:BC:E2:32:CF:A0:30:21:2A:1E:23:6E:55:61 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/508D0CF27BD411EF8303F411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c3a0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:47:af:0c:b7:5e:4e:47:14:92:3c:95:20:cd:f7:1c:77:21: 1c:c6:fa:b8:6e:ea:d2:3f:a8:25:6d:ae:19:2a:96:8b:c5:90: 24:10:95:a7:9d:d4:c6:68:81:11:3d:70:6f:ed:4a:77:a4:71: be:e5:3f:9c:d1:ff:52:4a:70:78:05:87:90:ad:f6:77:f9:45: ec:d7:fb:93:5d:a6:63:e5:ab:b2:04:e6:d1:e6:f0:d5:4b:34: 89:02:61:91:32:67:4b:be:f7:12:a7:2a:61:20:6f:fb:1d:0f: 2f:d8:c5:91:48:f4:f4:94:19:d8:84:a9:b7:7f:d9:56:4a:ab: 40:52:da:e8:8d:7a:1e:da:a2:d7:ec:c8:eb:82:10:d9:3a:ed: 15:6a:82:01:81:fc:6d:23:0b:f4:6e:83:15:d0:92:61:fd:87: ed:81:7a:c9:7e:e7:3c:3b:c8:3f:a0:d9:e1:75:87:f1:37:9d: 02:3d:38:ac:92:17:0d:92:f3:08:08:f7:29:3e:0d:57:fd:14: 12:80:db:01:1d:54:e1:00:67:84:fe:bb:ee:92:f6:eb:b7:f1: 27:41:0a:37:47:89:df:8e:00:46:43:12:f6:08:1f:3c:30:1e: 2d:68:4d:50:cf:e0:7e:35:76:04:6b:f1:35:18:88:e3:ad:6b: 09:50:a5:68 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAJo0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDkyNjA2NTUyOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjZmNTA1NjAtM2M0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+tIiF4TnmDuvhB9+84mmCgjEYf/j4fXkj/qnMfKN7SwNOMV+wzptvhJ7c/ X2nD1JvUaURawXE8mSCLwpFLjE/T2aXuiez7r8QVi5sRmfq5R3FDvTGRjKlNlYoL Jk/pSOjdA3gegBbjJqDkF1GCMNeL1MPt3cSV+JGj9ggSINraSV0SWCkv4QfYQ4Lc X+5/5MePT00Uh2VEbmEK8AA70gZ9NdNhPouLfwYoSFKJB6BqUDrDHE8+3hqAIf2W Y/qvyjIQ0DAi1QwIETGSH3QHllRglQj43i4gCrpA1xOprpkXOLDmzMyG2Jkx73d2 w4iRIu7MfI0PyzbPjdIxqeyXunECAwEAAaOCApYwggKSMB0GA1UdDgQWBBQPY9JS BdG6vOIyz6AwISoeI25VYTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUwOEQwQ0Yy N0JENDExRUY4MzAzRjQxMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAHDoDANBgkqhkiG9w0BAQsFAAOCAQEAX0evDLdeTkcU kjyVIM33HHchHMb6uG7q0j+oJW2uGSqWi8WQJBCVp53UxmiBET1wb+1Kd6RxvuU/ nNH/UkpweAWHkK32d/lF7Nf7k12mY+WrsgTm0ebw1Us0iQJhkTJnS773EqcqYSBv +x0PL9jFkUj09JQZ2ISpt3/ZVkqrQFLa6I16Htqi1+zI64IQ2TrtFWqCAYH8bSML 9G6DFdCSYf2H7YF6yX7nPDvIP6DZ4XWH8TedAj04rJIXDZLzCAj3KT4NV/0UEoDb AR1U4QBnhP677pL267fxJ0EKN0eJ344ARkMS9ggfPDAeLWhNUM/gfjV2BGvxNRiI 461rCVClaA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:43 2024 by rpki-client on console-ams.rpki-client.org