$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/523B8EE8B08611EFA0788161C4F9AE02.roa File: 523B8EE8B08611EFA0788161C4F9AE02.roa (raw, json) Hash identifier: gCETQGKw/X1xTzqJ88wAMixC0gfJfeoRX70HUETHSyc= Subject key identifier: 7B:CF:2C:23:54:E3:BF:73:37:31:FD:35:06:FF:7D:DB:13:03:6A:49 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9E48 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/523B8EE8B08611EFA0788161C4F9AE02.roa Signing time: Mon 02 Dec 2024 08:20:42 +0000 ROA not before: Mon 02 Dec 2024 08:20:42 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153272 IP address blocks: 2001:df4:aec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40520 (0x9e48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 2 08:20:42 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=674d6dda-7bff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5d:88:09:68:2c:7f:33:48:58:88:7b:f5:63: 46:31:fd:67:ba:36:ae:93:f0:71:6c:fc:29:42:ac: e6:cb:5f:62:7b:4e:42:12:a9:55:a6:1f:1f:5d:27: 62:8a:91:28:10:21:ac:fd:3d:1c:82:23:5b:c8:fd: 7e:50:43:d7:de:04:91:a3:17:0e:a0:be:71:26:24: 9b:a5:9a:a2:cd:00:39:fc:a9:dd:5b:48:dd:31:c4: 62:ce:f4:e3:54:65:6a:62:d7:29:cc:db:ae:9d:11: 04:8d:77:d2:53:20:19:1e:b7:c1:e2:12:f6:4b:f2: 1e:84:f5:ef:3f:3b:27:ef:2d:18:e7:52:f7:d9:37: f0:5c:07:d4:ca:7b:b9:b8:48:34:e5:d1:6a:47:b8: 1e:10:b7:80:f9:f7:33:8f:46:d4:f0:7c:04:6f:15: 31:9d:ce:ab:51:6b:02:97:98:39:e0:1e:6e:bf:21: 15:1f:d0:88:fb:5a:fd:c6:b6:ac:08:e4:a4:24:67: 74:75:50:c3:c2:8c:47:ba:45:a1:22:63:f3:b0:f8: c4:e3:e9:18:3f:0d:d6:c4:f7:26:c3:9a:71:94:b3: 91:2e:a1:38:c1:0c:55:e0:28:a9:f9:c3:ab:8f:02: f3:fb:53:77:58:2b:c3:3d:5b:fe:c2:ff:03:30:0d: fb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CF:2C:23:54:E3:BF:73:37:31:FD:35:06:FF:7D:DB:13:03:6A:49 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/523B8EE8B08611EFA0788161C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:aec0::/48 Signature Algorithm: sha256WithRSAEncryption 53:03:cc:ab:bb:c3:11:6b:62:58:e4:29:92:19:c2:43:64:3b: f6:5e:21:b8:c7:df:12:eb:84:be:01:b7:20:c7:18:61:81:23: 34:83:27:83:37:9f:45:d9:65:83:c0:21:19:4c:3f:b9:2c:e5: af:78:dd:b4:71:c7:69:7c:51:a7:65:c0:14:5f:87:58:51:61: 1b:a0:1e:da:56:42:69:a1:93:1f:20:22:81:0e:d5:a5:ff:39: 45:b9:50:99:49:f3:9b:92:89:59:9b:92:14:eb:b7:cd:ee:42: 50:2e:56:e2:2d:f4:19:7f:50:1b:96:7f:87:be:60:ab:3c:11: be:5c:6f:cb:cc:da:4d:cc:d0:d1:c9:c8:ab:f2:38:06:2a:c1: 5a:b2:38:f5:0e:59:b4:d6:ee:3b:1e:0c:7a:c5:da:72:e7:10: 39:92:2d:73:95:59:f5:7e:65:16:54:70:a0:df:68:6f:ac:a4: e4:9f:82:31:94:ba:8d:e2:81:0d:86:4a:92:1d:83:5b:92:46: 9c:0e:d0:03:0c:49:c7:dc:75:a8:d6:e4:74:72:55:db:87:50: 7a:92:b5:84:ca:13:a3:ee:c4:9f:ee:53:fb:15:74:fc:c4:1c: 14:9b:f7:11:68:18:81:c8:31:1a:33:a4:27:31:1c:25:2b:7b: b1:69:2c:37 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJ5IMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIwMjA4MjA0MloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc0ZDZkZGEtN2JmZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVdiAloLH8zSFiIe/VjRjH9Z7o2rpPwcWz8KUKs5stfYntOQhKpVaYfH10n YoqRKBAhrP09HIIjW8j9flBD194EkaMXDqC+cSYkm6Waos0AOfyp3VtI3THEYs70 41RlamLXKczbrp0RBI130lMgGR63weIS9kvyHoT17z87J+8tGOdS99k38FwH1Mp7 ubhINOXRake4HhC3gPn3M49G1PB8BG8VMZ3Oq1FrApeYOeAebr8hFR/QiPta/ca2 rAjkpCRndHVQw8KMR7pFoSJj87D4xOPpGD8N1sT3JsOacZSzkS6hOMEMVeAoqfnD q48C8/tTd1grwz1b/sL/AzAN+/ECAwEAAaOCApgwggKUMB0GA1UdDgQWBBR7zywj VOO/czcx/TUG/33bEwNqSTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUyM0I4RUU4 QjA4NjExRUZBMDc4ODE2MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9K7AMA0GCSqGSIb3DQEBCwUAA4IBAQBTA8yru8MR a2JY5CmSGcJDZDv2XiG4x98S64S+AbcgxxhhgSM0gyeDN59F2WWDwCEZTD+5LOWv eN20ccdpfFGnZcAUX4dYUWEboB7aVkJpoZMfICKBDtWl/zlFuVCZSfObkolZm5IU 67fN7kJQLlbiLfQZf1Abln+HvmCrPBG+XG/LzNpNzNDRycir8jgGKsFasjj1Dlm0 1u47Hgx6xdpy5xA5ki1zlVn1fmUWVHCg32hvrKTkn4IxlLqN4oENhkqSHYNbkkac DtADDEnH3HWo1uR0clXbh1B6krWEyhOj7sSf7lP7FXT8xBwUm/cRaBiByDEaM6Qn MRwlK3uxaSw3 -----END CERTIFICATE-----Generated at Fri Apr 4 10:58:37 2025 by rpki-client