$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa File: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (raw, json) Hash identifier: K2ToGux1LmW9HMWWJmE8hrP/U43KU+VL5yeKLunBOlw= Subject key identifier: 70:E5:FE:10:0C:6D:31:F0:E8:59:8F:DB:CE:34:A9:9D:8C:EC:BE:45 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 063C Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa Signing time: Wed 26 Jul 2023 22:19:12 +0000 ROA not before: Wed 26 Jul 2023 22:19:12 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132825 IP address blocks: 2407:1100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Jul 26 22:19:12 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64c19be0-0048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:64:95:4f:72:3d:34:36:2f:86:44:98:75: 3c:c9:a5:3f:86:2f:90:c9:ef:1b:78:51:dc:e4:27: 05:15:19:41:90:6f:bb:f3:e3:c2:e6:7b:da:32:3b: ba:63:57:44:56:3f:39:20:43:bd:a5:09:17:15:71: 8f:7e:60:9c:30:79:e9:ab:2a:b3:82:93:b2:ef:6f: de:eb:b4:2e:9a:73:46:13:a5:0b:55:4d:f7:b0:17: e9:46:01:3b:48:5c:8b:98:88:ad:22:6d:79:65:08: 72:a5:f4:c7:74:59:06:16:69:97:7f:22:7f:c0:54: d7:3e:d1:de:e8:92:3d:ff:6b:ce:02:3c:a6:e4:22: a6:e4:f0:d6:21:0b:e4:e7:5a:a2:36:c6:cd:4a:84: 3a:7f:11:1e:5b:1b:6c:7c:0b:9f:70:95:78:e9:c5: c2:c4:f2:22:c4:41:79:ec:8a:3a:4a:65:77:32:a1: 19:1e:58:2d:b6:22:7f:14:37:39:95:bf:30:bc:7e: 83:b4:97:f5:88:34:00:b9:07:5b:4d:0a:47:7f:c5: 1c:6f:c7:61:76:f3:3f:6c:f7:c6:96:2d:d2:12:78: a7:4f:7e:36:e2:27:ee:95:3a:e1:4b:6d:13:a3:62: a5:6f:48:eb:bd:4a:53:f1:9f:a8:e9:50:eb:13:c3: a5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E5:FE:10:0C:6D:31:F0:E8:59:8F:DB:CE:34:A9:9D:8C:EC:BE:45 X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/18E7B6C80B5B11EB80C8B15FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1100::/32 Signature Algorithm: sha256WithRSAEncryption 12:84:9f:19:f4:9f:bb:02:ab:48:7e:72:91:12:47:06:fa:35: 5e:e8:15:7c:1d:93:aa:7e:53:8a:a7:35:7b:c3:27:dd:f7:1e: 71:aa:57:49:40:04:db:07:60:ee:5e:83:1e:c5:06:5b:a8:0f: 50:b6:72:82:3f:fc:8e:3b:69:37:43:0f:0c:e8:09:10:a5:c9: bd:21:52:45:1e:25:de:23:b4:ac:70:0e:5f:81:e4:2b:1c:f7: d0:75:41:4e:f9:f0:1a:bf:0a:9e:06:21:dd:f8:b6:16:91:77: c4:55:f7:b8:aa:9a:a8:20:70:98:00:73:ab:6e:60:b0:bd:14: a1:df:8f:c5:d1:4f:f6:cd:c9:89:62:9b:d4:ae:93:37:fc:b7: bd:5e:22:44:7c:6c:ff:85:6e:cf:60:19:61:f6:81:0a:5e:60: 9b:34:2b:90:79:e4:c9:46:46:25:48:64:ca:8e:11:f0:a5:14: a8:56:27:06:63:d2:eb:f2:e1:d4:43:6a:e6:e1:3a:dc:1d:d1: 35:f0:a4:16:73:4b:bc:dd:2a:34:b9:ad:22:15:fa:2f:4d:be: 2a:f1:90:42:c2:1f:00:46:ab:fa:6d:5e:ec:1c:86:73:e7:c5: 26:4b:06:9a:1d:f9:21:7c:e4:e2:73:0b:bb:a2:7b:ab:26:27: a3:1e:50:49 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjMwNzI2MjIxOTEyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxOWJlMC0wMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4ZklU9yPTQ2L4ZEmHU8yaU/hi+Qye8beFHc5CcFFRlBkG+78+PC5nvaMju6 Y1dEVj85IEO9pQkXFXGPfmCcMHnpqyqzgpOy72/e67QumnNGE6ULVU33sBfpRgE7 SFyLmIitIm15ZQhypfTHdFkGFmmXfyJ/wFTXPtHe6JI9/2vOAjym5CKm5PDWIQvk 51qiNsbNSoQ6fxEeWxtsfAufcJV46cXCxPIixEF57Io6SmV3MqEZHlgttiJ/FDc5 lb8wvH6DtJf1iDQAuQdbTQpHf8Ucb8dhdvM/bPfGli3SEninT3424ifulTrhS20T o2Klb0jrvUpT8Z+o6VDrE8OlcwIDAQABo4ICljCCApIwHQYDVR0OBBYEFHDl/hAM bTHw6FmP2840qZ2M7L5FMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VBN0YvRTk2NEFGNEMwQjU5MTFFQjkzNTkwQTVGQzRGOUFFMDIvMThFN0I2Qzgw QjVCMTFFQjgwQzhCMTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBxEAMA0GCSqGSIb3DQEBCwUAA4IBAQAShJ8Z9J+7AqtI fnKREkcG+jVe6BV8HZOqflOKpzV7wyfd9x5xqldJQATbB2DuXoMexQZbqA9QtnKC P/yOO2k3Qw8M6AkQpcm9IVJFHiXeI7SscA5fgeQrHPfQdUFO+fAavwqeBiHd+LYW kXfEVfe4qpqoIHCYAHOrbmCwvRSh34/F0U/2zcmJYpvUrpM3/Le9XiJEfGz/hW7P YBlh9oEKXmCbNCuQeeTJRkYlSGTKjhHwpRSoVicGY9Lr8uHUQ2rm4TrcHdE18KQW c0u83So0ua0iFfovTb4q8ZBCwh8ARqv6bV7sHIZz58UmSwaaHfkhfOTicwu7onur JiejHlBJ -----END CERTIFICATE-----Generated at Sun May 19 00:16:16 2024 by rpki-client on console-fra.rpki-client.org