$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa File: 4652D2C2DF3C11EBAC0C7536C4F9AE02.roa (raw, json) Hash identifier: 2VhFm5czESDTfhAUYWatLmPdk00qYJo8R/XxSPi4ECo= Subject key identifier: 33:D8:E5:86:BE:D4:24:7B:81:5C:AB:0A:55:2A:8B:B1:7A:45:93:03 Certificate issuer: /CN=A918B5FE/serialNumber=12109583023E185DE4A2B294231599D63640BC9A Certificate serial: 0599 Authority key identifier: 12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa Signing time: Mon 04 Dec 2023 23:50:51 +0000 ROA not before: Mon 04 Dec 2023 23:50:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136265 IP address blocks: 2405:8bc0:7003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=12109583023E185DE4A2B294231599D63640BC9A Validity Not Before: Dec 4 23:50:51 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656e65db-bcb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:b3:9a:9b:ad:e0:be:2e:e5:e8:c3:62:1d: 91:73:08:9a:91:3d:27:e4:8f:73:03:a9:e0:2f:79: c6:4e:95:e9:16:8c:ed:36:fd:e6:31:67:c4:cc:bd: 05:03:fd:11:d5:f2:44:d7:f4:e9:63:d7:81:86:36: 82:ef:c2:df:08:88:f2:39:53:4e:55:48:98:c5:07: 24:42:3b:22:77:15:d8:55:d3:52:de:41:2e:e4:4b: df:80:8e:2a:bc:ba:04:95:07:1b:4b:48:44:c2:f4: 38:de:7a:47:be:5d:d7:17:52:2a:ad:36:b7:88:eb: 65:d8:5c:ba:d5:58:b4:d8:5d:6c:eb:cc:75:4d:be: 2b:a9:39:b4:20:24:41:02:67:dc:2c:32:50:86:2a: fb:ea:be:a1:14:c4:1e:88:bc:ac:ef:58:e7:5b:ff: 91:89:ba:df:f8:c2:85:6d:d6:fb:47:4d:be:7b:06: 76:a0:a8:76:b4:dc:93:c6:0d:12:b6:58:ef:4f:a1: 61:ff:67:53:0e:68:44:79:c8:5c:7e:5e:a5:7b:9c: ac:56:9d:34:fe:52:10:02:0a:b2:a0:4f:6c:c5:67: d6:95:3d:bf:1e:c6:85:12:5e:6b:b7:5f:d2:55:bf: 2a:c1:0f:f5:75:d4:9e:8f:8a:5c:7d:a3:58:c5:80: be:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D8:E5:86:BE:D4:24:7B:81:5C:AB:0A:55:2A:8B:B1:7A:45:93:03 X509v3 Authority Key Identifier: keyid:12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8bc0:7003::/48 Signature Algorithm: sha256WithRSAEncryption b6:1d:27:66:38:50:63:9e:a3:08:62:d3:ce:e4:ae:84:1f:8e: f0:92:77:21:ce:c4:6e:e6:ab:eb:da:95:7b:68:a5:2a:fe:5e: 41:e5:af:56:2e:cb:98:0b:25:5f:df:67:88:35:07:85:de:5b: 16:75:ad:5d:7f:5a:4d:4e:a1:0e:01:a9:34:86:5b:f3:2b:9c: 6c:38:aa:10:f3:e6:27:94:70:64:bf:2b:54:8e:17:d4:4c:c9: 91:b5:2d:3b:78:d4:ca:4a:33:ac:4b:34:69:b7:65:b4:c3:d3: 8e:01:68:2a:ee:ba:4b:fa:c3:b4:ca:f9:04:c1:13:1b:e5:67: ea:4a:db:59:26:1e:4c:fe:7f:b1:20:bc:3a:92:44:15:b5:87: 09:c4:64:55:c6:f6:df:2d:de:49:96:b6:c9:39:ec:a5:9b:30: 31:76:88:32:b1:b6:61:10:99:55:2a:65:24:99:e2:b2:05:75: af:fa:4e:bd:c8:3f:86:9b:0e:80:6d:0e:1e:da:a6:e4:17:6b: 18:e0:a8:f4:19:94:2e:a4:ae:9e:81:f7:b3:c3:8f:26:2a:a7: 51:06:59:fa:d0:2f:20:69:8e:14:81:ee:20:ee:34:2b:de:e9: bb:6e:68:d3:d9:13:ea:b4:89:2f:24:44:04:c7:ef:3b:f9:bf: 45:1a:28:7f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKDEyMTA5NTgzMDIzRTE4NURFNEEyQjI5NDIzMTU5OUQ2 MzY0MEJDOUEwHhcNMjMxMjA0MjM1MDUxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlNjVkYi1iY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X2zmput4L4u5ejDYh2RcwiakT0n5I9zA6ngL3nGTpXpFoztNv3mMWfEzL0F A/0R1fJE1/TpY9eBhjaC78LfCIjyOVNOVUiYxQckQjsidxXYVdNS3kEu5EvfgI4q vLoElQcbS0hEwvQ43npHvl3XF1IqrTa3iOtl2Fy61Vi02F1s68x1Tb4rqTm0ICRB AmfcLDJQhir76r6hFMQeiLys71jnW/+Ribrf+MKFbdb7R02+ewZ2oKh2tNyTxg0S tljvT6Fh/2dTDmhEechcfl6le5ysVp00/lIQAgqyoE9sxWfWlT2/HsaFEl5rt1/S Vb8qwQ/1ddSej4pcfaNYxYC+6wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDPY5Ya+ 1CR7gVyrClUqi7F6RZMDMB8GA1UdIwQYMBaAFBIQlYMCPhhd5KKylCMVmdY2QLya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zQ0VFREY5MDZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9FaENWZ3dJLUdGM2tvcktVSXhXWjFqWkF2 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VoQ1Znd0ktR0Yza29yS1VJeFdaMWpaQXZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvM0NFRURGOTA2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvNDY1MkQyQzJE RjNDMTFFQkFDMEM3NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYvAcAMwDQYJKoZIhvcNAQELBQADggEBALYdJ2Y4UGOe owhi087kroQfjvCSdyHOxG7mq+valXtopSr+XkHlr1Yuy5gLJV/fZ4g1B4XeWxZ1 rV1/Wk1OoQ4BqTSGW/MrnGw4qhDz5ieUcGS/K1SOF9RMyZG1LTt41MpKM6xLNGm3 ZbTD044BaCruukv6w7TK+QTBExvlZ+pK21kmHkz+f7EgvDqSRBW1hwnEZFXG9t8t 3kmWtsk57KWbMDF2iDKxtmEQmVUqZSSZ4rIFda/6Tr3IP4abDoBtDh7apuQXaxjg qPQZlC6krp6B97PDjyYqp1EGWfrQLyBpjhSB7iDuNCve6btuaNPZE+q0iS8kRATH 7zv5v0UaKH8= -----END CERTIFICATE-----Generated at Sun May 5 01:22:22 2024 by rpki-client on console-fra.rpki-client.org