$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/806B198CC68411EF8F273744C4F9AE02.roa File: 806B198CC68411EF8F273744C4F9AE02.roa (raw, json) Hash identifier: bMsDdb1UtCSu2iPZNDX8bU8Y/UPL98vHiJaxTxufXYI= Subject key identifier: AD:30:B8:E5:59:5E:4E:B9:BB:B1:96:9C:14:D2:EE:59:94:C6:91:72 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A0B6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/806B198CC68411EF8F273744C4F9AE02.roa Signing time: Mon 30 Dec 2024 08:03:07 +0000 ROA not before: Mon 30 Dec 2024 08:03:07 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153289 IP address blocks: 2001:df4:d440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41142 (0xa0b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 30 08:03:07 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=677253ba-373b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7c:96:93:74:c4:bd:b9:8d:ae:ac:35:ee:4c: 33:d3:2a:0c:2f:34:08:10:10:d8:f5:cb:0a:90:c2: 82:45:c2:16:ad:b0:0c:52:a4:55:9a:88:e0:00:cc: 6d:27:a1:6c:e2:3b:b1:69:5d:69:2b:da:a5:aa:4c: b3:33:b9:ea:2b:08:60:a1:4c:f8:38:55:e9:e4:88: ab:02:03:44:e8:01:ee:f3:2a:e0:0e:4a:4f:0f:60: 70:ae:3d:95:b4:af:1d:95:a3:d1:c2:83:91:58:90: 5e:40:84:2b:3b:6d:ec:c9:c7:fd:66:a1:e3:1d:5d: b5:1d:d3:e6:ff:f6:69:be:2e:d9:ad:c2:e3:01:a5: 33:73:b4:fc:56:49:06:81:d1:c7:63:fd:81:2f:f1: 59:d6:aa:2f:a5:32:02:6f:97:95:d2:b3:e7:b5:aa: 10:4b:e0:64:70:61:1e:57:5f:2f:ba:c4:d9:b2:6e: 16:14:fa:21:09:08:d4:4c:f1:56:88:a6:0a:09:71: dc:65:ca:31:65:9c:0c:ae:62:34:92:37:8b:7b:d2: 69:92:6f:c2:53:72:4d:f0:34:74:15:bc:83:14:3e: 5b:ca:e4:dc:f5:f8:61:82:e8:c6:8e:2d:e0:7d:1c: 90:5e:5e:26:64:ae:82:68:cd:bb:ea:6e:74:e7:07: 56:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:B8:E5:59:5E:4E:B9:BB:B1:96:9C:14:D2:EE:59:94:C6:91:72 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/806B198CC68411EF8F273744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d440::/48 Signature Algorithm: sha256WithRSAEncryption 32:4f:f3:03:10:ca:1f:34:1d:3e:3a:4f:55:51:4c:76:30:ad: eb:f5:7c:40:fe:8d:e0:e4:c3:c8:06:6a:52:49:fa:cd:97:d4: 1e:7f:4f:11:ec:d8:6d:b3:79:af:d7:b8:1f:53:8a:e7:c2:21: 9e:f0:b4:ca:cd:14:0f:a6:3c:70:49:91:47:47:62:ec:2e:9a: 5e:dd:8a:0b:70:87:bb:19:f6:1f:db:ff:45:f5:77:03:c0:55: 1c:30:da:ef:03:47:80:e6:68:58:00:26:55:9e:06:ba:04:5a: 0d:a0:df:ad:84:64:d7:ce:0e:16:d0:79:2d:dd:6f:82:a5:b5: dd:ff:0a:22:6d:8a:58:1a:f7:99:f5:0d:fa:8e:33:d9:24:76: 45:5f:4b:42:7d:6e:8a:30:1f:b7:70:b3:7b:74:c8:79:74:1e: e6:69:53:09:1f:25:13:58:95:86:ab:f9:e2:8c:40:be:22:de: 34:df:b4:d1:69:c1:4f:68:6c:d4:45:73:86:b2:c4:c1:ed:fd: ee:0d:e3:c3:3b:1c:a8:46:5b:41:87:e9:05:80:64:5b:e7:4f: 7b:04:42:9b:cf:ca:49:54:d5:aa:22:da:fd:ef:a4:22:3b:c9: cd:eb:ef:fa:61:13:27:95:a8:04:07:47:cf:22:08:ab:5c:36: c2:21:f1:92 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAKC2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIzMDA4MDMwN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc3MjUzYmEtMzczYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANh8lpN0xL25ja6sNe5MM9MqDC80CBAQ2PXLCpDCgkXCFq2wDFKkVZqI4ADM bSehbOI7sWldaSvapapMszO56isIYKFM+DhV6eSIqwIDROgB7vMq4A5KTw9gcK49 lbSvHZWj0cKDkViQXkCEKztt7MnH/Wah4x1dtR3T5v/2ab4u2a3C4wGlM3O0/FZJ BoHRx2P9gS/xWdaqL6UyAm+XldKz57WqEEvgZHBhHldfL7rE2bJuFhT6IQkI1Ezx VoimCglx3GXKMWWcDK5iNJI3i3vSaZJvwlNyTfA0dBW8gxQ+W8rk3PX4YYLoxo4t 4H0ckF5eJmSugmjNu+pudOcHVg0CAwEAAaOCApgwggKUMB0GA1UdDgQWBBStMLjl WV5OubuxlpwU0u5ZlMaRcjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzgwNkIxOThD QzY4NDExRUY4RjI3Mzc0NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9NRAMA0GCSqGSIb3DQEBCwUAA4IBAQAyT/MDEMof NB0+Ok9VUUx2MK3r9XxA/o3g5MPIBmpSSfrNl9Qef08R7Nhts3mv17gfU4rnwiGe 8LTKzRQPpjxwSZFHR2LsLppe3YoLcIe7GfYf2/9F9XcDwFUcMNrvA0eA5mhYACZV nga6BFoNoN+thGTXzg4W0Hkt3W+CpbXd/woibYpYGveZ9Q36jjPZJHZFX0tCfW6K MB+3cLN7dMh5dB7maVMJHyUTWJWGq/nijEC+It4037TRacFPaGzURXOGssTB7f3u DePDOxyoRltBh+kFgGRb5097BEKbz8pJVNWqItr976QiO8nN6+/6YRMnlagEB0fP IgirXDbCIfGS -----END CERTIFICATE-----Generated at Fri Apr 4 10:58:45 2025 by rpki-client