$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/72044AD6A89211EF825DD02EC4F9AE02.roa File: 72044AD6A89211EF825DD02EC4F9AE02.roa (raw, json) Hash identifier: 0OGkyLaFeb/56MbAGU9oU2IRoSvlVFWQWzpT2IRi++E= Subject key identifier: 7A:B0:D5:62:52:AC:5A:0A:BB:3C:90:46:EA:E9:32:0A:59:D3:87:4D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9D93 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/72044AD6A89211EF825DD02EC4F9AE02.roa Signing time: Fri 22 Nov 2024 05:27:20 +0000 ROA not before: Fri 22 Nov 2024 05:27:20 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153234 IP address blocks: 2001:df4:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40339 (0x9d93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Nov 22 05:27:20 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67401638-90a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:7d:ad:2d:c6:72:df:ea:ce:46:77:a5:68:08: e9:a1:2a:bf:dc:38:08:86:d0:b0:2c:6c:0c:69:8b: c2:7c:ec:d0:c2:e9:b4:12:a9:22:de:cf:c2:ec:48: f8:01:0e:e7:2d:3b:45:d3:ca:88:72:56:a9:a2:56: 82:b8:e3:06:92:e2:eb:5e:a9:61:ec:52:d2:44:80: 77:72:38:88:e9:96:2b:0b:df:18:2c:6c:32:bf:6d: d7:bc:d3:b2:b6:a3:d3:51:cc:c6:98:c8:37:86:03: e7:0c:2c:ad:dc:2d:2d:d2:ac:cb:41:4c:21:fe:d8: 37:9a:d3:ca:b8:cd:2b:96:b3:34:42:8c:de:21:7c: 92:ac:0e:65:4c:30:4d:f5:a2:02:cb:00:2d:2d:3d: cd:5a:bf:1f:6d:09:2d:b7:68:7b:f5:b4:be:69:43: 7e:3f:1c:6e:9e:e3:85:6d:a1:5e:4f:ac:45:d5:f9: 6e:d0:65:72:21:8b:29:6d:09:ce:72:9b:a2:d4:d6: bd:3b:78:a1:71:c2:5d:a2:57:cd:82:20:d8:2c:66: d0:1d:c9:66:11:82:3b:0f:8c:6b:6f:8d:f0:90:cf: 05:6e:6b:d2:54:f4:0d:c1:8b:df:0c:50:17:78:af: 66:38:4c:d2:f3:87:55:eb:a9:8d:a8:d9:28:22:73: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B0:D5:62:52:AC:5A:0A:BB:3C:90:46:EA:E9:32:0A:59:D3:87:4D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/72044AD6A89211EF825DD02EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a440::/48 Signature Algorithm: sha256WithRSAEncryption 79:e3:91:c0:d3:1e:b4:03:9a:6e:21:3d:90:26:3e:4d:f0:78: 3a:b8:a4:c0:c2:30:00:b3:25:5f:a1:ca:b4:64:9d:4b:d9:59: 01:71:c3:04:de:1d:b6:3c:b7:fd:28:dd:c6:01:0a:7d:3a:ea: d9:96:c1:03:d1:0a:6a:e7:29:59:c8:1d:84:45:cd:ef:27:f8: c3:3d:b1:8d:6a:27:0e:fb:82:b9:81:c9:33:a9:8d:84:c7:a8: 4f:09:54:a8:a6:b7:df:ef:7f:3f:91:02:02:cc:43:31:46:6a: bf:0f:a1:81:70:69:39:b9:43:54:3c:00:f9:22:f6:c5:e8:75: e4:91:e1:27:d2:b4:ba:c2:af:ad:9b:24:9a:89:da:16:e8:ea: 32:a3:69:cd:60:69:4a:7f:36:78:0c:97:cf:39:0e:64:7b:5a: 90:21:d6:95:3c:f0:1b:df:4b:4c:d7:93:64:42:cd:55:4d:6e: 04:25:d5:75:8e:7a:24:1f:44:19:ec:2f:ea:50:fe:98:7c:81: 80:b5:22:19:5e:23:05:a0:dd:16:78:66:0d:75:ef:9c:99:91: dc:00:32:8b:1a:88:ba:0c:15:97:46:c7:ee:5c:62:fa:15:99: e4:0b:19:9d:db:6a:0d:d3:85:13:a7:6e:6a:13:96:0e:f9:01: 96:0e:f6:87 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJ2TMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTEyMjA1MjcyMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc0MDE2MzgtOTBhMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPh9rS3Gct/qzkZ3pWgI6aEqv9w4CIbQsCxsDGmLwnzs0MLptBKpIt7PwuxI +AEO5y07RdPKiHJWqaJWgrjjBpLi616pYexS0kSAd3I4iOmWKwvfGCxsMr9t17zT sraj01HMxpjIN4YD5wwsrdwtLdKsy0FMIf7YN5rTyrjNK5azNEKM3iF8kqwOZUww TfWiAssALS09zVq/H20JLbdoe/W0vmlDfj8cbp7jhW2hXk+sRdX5btBlciGLKW0J znKbotTWvTt4oXHCXaJXzYIg2Cxm0B3JZhGCOw+Ma2+N8JDPBW5r0lT0DcGL3wxQ F3ivZjhM0vOHVeupjajZKCJzbAECAwEAAaOCApgwggKUMB0GA1UdDgQWBBR6sNVi UqxaCrs8kEbq6TIKWdOHTTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcyMDQ0QUQ2 QTg5MjExRUY4MjVERDAyRUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9KRAMA0GCSqGSIb3DQEBCwUAA4IBAQB545HA0x60 A5puIT2QJj5N8Hg6uKTAwjAAsyVfocq0ZJ1L2VkBccME3h22PLf9KN3GAQp9OurZ lsED0Qpq5ylZyB2ERc3vJ/jDPbGNaicO+4K5gckzqY2Ex6hPCVSoprff738/kQIC zEMxRmq/D6GBcGk5uUNUPAD5IvbF6HXkkeEn0rS6wq+tmySaidoW6Ooyo2nNYGlK fzZ4DJfPOQ5ke1qQIdaVPPAb30tM15NkQs1VTW4EJdV1jnokH0QZ7C/qUP6YfIGA tSIZXiMFoN0WeGYNde+cmZHcADKLGoi6DBWXRsfuXGL6FZnkCxmd22oN04UTp25q E5YO+QGWDvaH -----END CERTIFICATE-----Generated at Sun Feb 16 20:24:43 2025 by rpki-client