$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa File: 8FC5D53C03A911EF96F99219C4F9AE02.roa (raw, json) Hash identifier: YcUHq6EKUabQ1zLYu7QCB3dU1KhN0OOAKSrtlMe2rHs= Subject key identifier: 10:39:52:0B:EE:78:F9:9D:E9:B5:AC:F5:DD:46:32:6F:DD:DB:1F:4C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 86BE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa Signing time: Fri 26 Apr 2024 08:47:07 +0000 ROA not before: Fri 26 Apr 2024 08:47:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152582 IP address blocks: 2401:8960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 12:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34494 (0x86be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 26 08:47:07 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=662b6a0b-dd07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:da:c0:ea:68:a9:20:96:22:57:93:83:ae: 2c:48:88:99:1f:15:e0:c4:30:60:fd:69:83:e5:63: dd:1e:68:5e:0c:23:af:5b:42:a5:d8:d5:46:de:0a: 6f:7e:72:da:02:7a:6c:34:0f:38:03:ca:e2:b0:7f: e5:c7:59:e7:c5:71:b7:bf:e9:64:ef:88:1e:0c:4e: 16:59:33:03:a9:1e:5d:64:d7:11:83:d4:56:b1:1b: 0d:8f:ca:eb:d8:18:6d:ef:83:4b:e3:c7:7e:b9:6f: 71:81:06:e7:5c:bd:04:2f:63:29:9c:a3:51:7f:ea: 0e:a5:d2:71:ad:e8:d0:7e:4d:6d:de:f0:36:8c:cc: 37:75:ed:63:c4:d7:98:f9:27:4d:c3:2f:cd:6c:a9: fc:9e:d1:20:4e:d5:44:e9:2a:f7:3e:33:9b:ed:12: 47:6e:62:93:1e:6a:30:6d:90:19:15:c0:42:7c:7d: 09:0a:49:f4:6c:cf:a6:d4:b3:76:63:93:5e:bd:ba: 69:3f:a3:08:76:88:20:3c:2c:6a:c4:fc:9c:87:a5: a8:2b:b6:33:ff:36:2d:0a:d7:9a:c4:7b:65:a2:6b: 04:fb:90:5a:55:02:f5:a5:bc:67:57:75:0b:a5:14: 56:2d:a3:31:69:a5:8f:65:7f:e5:4e:67:55:56:c4: 2d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:39:52:0B:EE:78:F9:9D:E9:B5:AC:F5:DD:46:32:6F:DD:DB:1F:4C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8FC5D53C03A911EF96F99219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:8960::/32 Signature Algorithm: sha256WithRSAEncryption 8f:e7:7f:b2:fc:c0:0b:1a:55:c3:b0:a8:ad:13:ea:3a:fd:5f: d9:03:44:41:8f:d4:3a:6f:db:5f:85:fa:e4:92:fe:28:53:c3: 67:6a:49:4e:d4:c7:23:dd:37:90:3b:41:d1:a9:e5:05:73:a2: 5c:3f:cb:00:9e:d9:ac:a5:71:21:e3:ea:98:53:81:c7:d4:6c: f4:99:ef:65:2d:40:13:90:59:63:28:c0:6d:8f:e8:72:49:d4: 94:01:e3:46:21:0f:57:44:b1:8a:74:6a:40:7e:0a:54:3f:42: c8:bd:ae:e5:cd:43:65:aa:6f:b0:bc:4e:13:6c:9b:bd:0f:d3: b2:f4:d4:70:16:28:4e:c1:a7:ad:9b:b3:1f:0f:9c:89:22:78: a8:35:54:86:db:7c:6d:b5:97:a2:b3:a7:ec:5b:ba:65:e5:65: fe:ee:46:1c:e1:3e:21:93:bc:57:77:28:e0:68:c3:62:50:0c: 20:12:e9:07:1f:77:7f:b5:aa:b8:2a:42:84:f6:56:99:49:a0: 77:e4:f9:7b:55:2a:6c:8b:ba:07:9f:39:eb:1e:07:86:4d:14: 47:1e:24:fa:49:3e:9c:42:a5:a0:72:0d:aa:76:3a:d5:f0:16: 82:ee:82:18:53:d8:57:0b:2d:1f:bb:dc:ab:25:1f:ae:c7:37: 2d:8f:f7:6a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAIa+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDQyNjA4NDcwN1oXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjYyYjZhMGItZGQwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKu+2sDqaKkgliJXk4OuLEiImR8V4MQwYP1pg+Vj3R5oXgwjr1tCpdjVRt4K b35y2gJ6bDQPOAPK4rB/5cdZ58Vxt7/pZO+IHgxOFlkzA6keXWTXEYPUVrEbDY/K 69gYbe+DS+PHfrlvcYEG51y9BC9jKZyjUX/qDqXSca3o0H5Nbd7wNozMN3XtY8TX mPknTcMvzWyp/J7RIE7VROkq9z4zm+0SR25ikx5qMG2QGRXAQnx9CQpJ9GzPptSz dmOTXr26aT+jCHaIIDwsasT8nIelqCu2M/82LQrXmsR7ZaJrBPuQWlUC9aW8Z1d1 C6UUVi2jMWmlj2V/5U5nVVbELWECAwEAAaOCApYwggKSMB0GA1UdDgQWBBQQOVIL 7nj5nem1rPXdRjJv3dsfTDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzhGQzVENTND MDNBOTExRUY5NkY5OTIxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAGJYDANBgkqhkiG9w0BAQsFAAOCAQEAj+d/svzACxpV w7CorRPqOv1f2QNEQY/UOm/bX4X65JL+KFPDZ2pJTtTHI903kDtB0anlBXOiXD/L AJ7ZrKVxIePqmFOBx9Rs9JnvZS1AE5BZYyjAbY/ocknUlAHjRiEPV0SxinRqQH4K VD9CyL2u5c1DZapvsLxOE2ybvQ/TsvTUcBYoTsGnrZuzHw+ciSJ4qDVUhtt8bbWX orOn7Fu6ZeVl/u5GHOE+IZO8V3co4GjDYlAMIBLpBx93f7WquCpChPZWmUmgd+T5 e1UqbIu6B5856x4Hhk0URx4k+kk+nEKloHINqnY61fAWgu6CGFPYVwstH7vcqyUf rsc3LY/3ag== -----END CERTIFICATE-----Generated at Fri May 17 15:23:02 2024 by rpki-client on console-ams.rpki-client.org