$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa File: 8FC5D53C03A911EF96F99219C4F9AE02.roa (raw, json) Hash identifier: SIf8aVx87u4udlKfZYXG5086wQ4jmQvg5jvIIxD+jLM= Subject key identifier: 47:F1:09:12:26:10:2F:6F:7B:4F:AC:14:BC:0F:BD:14:85:7A:30:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9092 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa Signing time: Thu 30 May 2024 16:28:31 +0000 ROA not before: Thu 30 May 2024 16:28:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152582 IP address blocks: 2401:8960::/32 maxlen: 32 2401:8960::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37010 (0x9092) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: May 30 16:28:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a92f-0c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:74:b7:20:2e:1f:e9:52:20:b5:e4:fb:9c:d8: 69:b7:50:29:1f:88:8a:f3:79:a6:09:89:70:f2:97: c1:37:d8:30:b8:37:55:30:b0:d0:f4:da:26:d1:76: ea:21:45:11:95:d1:ac:25:2e:17:ac:45:52:b5:c9: 1b:d2:a5:7c:4d:bb:fe:99:59:5c:41:70:aa:5e:bf: bc:e5:25:bc:04:f3:cc:e0:b1:7c:9d:81:3f:fe:60: 5b:6e:c2:19:c4:9b:9a:72:89:87:2c:49:e9:91:b8: c4:21:2b:2b:67:81:eb:8a:cf:9f:c5:7e:45:90:94: e5:4a:7c:34:8e:5a:02:86:04:aa:fa:2f:0d:b3:1a: 78:7e:55:ec:13:21:02:4e:1d:56:3d:e0:6d:62:d0: 61:0c:8b:00:5f:d5:2d:13:1e:06:92:85:35:e8:fe: eb:2e:28:05:e5:e7:78:62:42:cb:cb:b8:42:d5:1f: 67:eb:08:87:fe:c8:14:d8:1a:5b:71:db:63:dc:c5: 6b:13:a3:5a:60:0d:f3:22:43:c8:55:7f:15:7f:78: 83:fc:3f:5b:cf:4d:12:e4:17:1f:6c:b0:2f:1f:2d: ad:4e:25:13:df:ce:0a:db:67:9a:66:33:91:22:3e: cd:13:3c:5a:7b:17:b1:8b:9c:53:41:a1:48:5d:4c: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F1:09:12:26:10:2F:6F:7B:4F:AC:14:BC:0F:BD:14:85:7A:30:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8960::/32 Signature Algorithm: sha256WithRSAEncryption 27:8b:83:15:c0:6d:27:13:c1:b0:50:c3:f6:7f:b5:63:f6:72: a3:de:9a:10:63:d8:a2:e5:d9:99:c9:33:49:1e:f5:3b:77:7b: 3f:10:86:69:57:19:25:e1:4a:f4:a0:30:fc:0e:76:76:71:f3: 8b:85:0b:78:4d:02:7f:15:ba:08:f4:9c:84:99:70:5c:0e:77: cf:75:8d:da:42:55:da:12:7e:97:ff:7d:b3:fb:3c:c5:71:16: 6a:bc:e9:49:12:89:2a:41:3f:52:ee:4a:8b:09:d0:5e:46:73: 7f:5d:37:60:c0:d0:26:10:e6:26:ae:a8:78:7d:ea:f6:d7:07: 52:75:ef:05:c6:e9:ce:36:39:b4:ad:be:fc:8a:cb:ba:8d:55: 62:20:3d:9f:97:87:8e:18:75:98:fc:bd:30:42:a9:20:f8:bc: e8:ac:b8:69:a4:00:77:7b:32:04:46:24:43:c7:50:5b:94:7b: d6:ef:2b:22:3a:63:0e:b9:09:ce:3e:21:b6:18:01:9d:64:91: 02:ed:b9:4f:89:d2:1a:3c:77:95:ac:e4:0f:d8:da:08:5b:35: ba:6a:9e:e9:15:be:c6:cc:7d:47:26:eb:0b:df:e5:5a:93:36: 03:1d:19:51:91:0a:34:4a:63:05:7d:3c:1e:16:65:be:68:e1: 5c:8e:38:bb -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAJCSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjgzMVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5MmYtMGM0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOJ0tyAuH+lSILXk+5zYabdQKR+IivN5pgmJcPKXwTfYMLg3VTCw0PTaJtF2 6iFFEZXRrCUuF6xFUrXJG9KlfE27/plZXEFwql6/vOUlvATzzOCxfJ2BP/5gW27C GcSbmnKJhyxJ6ZG4xCErK2eB64rPn8V+RZCU5Up8NI5aAoYEqvovDbMaeH5V7BMh Ak4dVj3gbWLQYQyLAF/VLRMeBpKFNej+6y4oBeXneGJCy8u4QtUfZ+sIh/7IFNga W3HbY9zFaxOjWmAN8yJDyFV/FX94g/w/W89NEuQXH2ywLx8trU4lE9/OCttnmmYz kSI+zRM8WnsXsYucU0GhSF1M45kCAwEAAaOCApYwggKSMB0GA1UdDgQWBBRH8QkS JhAvb3tPrBS8D70UhXowuDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhGQzVENTND MDNBOTExRUY5NkY5OTIxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAGJYDANBgkqhkiG9w0BAQsFAAOCAQEAJ4uDFcBtJxPB sFDD9n+1Y/Zyo96aEGPYouXZmckzSR71O3d7PxCGaVcZJeFK9KAw/A52dnHzi4UL eE0CfxW6CPSchJlwXA53z3WN2kJV2hJ+l/99s/s8xXEWarzpSRKJKkE/Uu5KiwnQ XkZzf103YMDQJhDmJq6oeH3q9tcHUnXvBcbpzjY5tK2+/IrLuo1VYiA9n5eHjhh1 mPy9MEKpIPi86Ky4aaQAd3syBEYkQ8dQW5R71u8rIjpjDrkJzj4hthgBnWSRAu25 T4nSGjx3lazkD9jaCFs1umqe6RW+xsx9RybrC9/lWpM2Ax0ZUZEKNEpjBX08HhZl vmjhXI44uw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:31:34 2025 by rpki-client