$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa File: 4652D2C2DF3C11EBAC0C7536C4F9AE02.roa (raw, json) Hash identifier: WSWSmKF2Dr04+H2IY6+uuwpQnhp2M2KysyXEj72OLxo= Subject key identifier: 7C:20:F0:31:83:08:0A:7D:D5:5E:BF:E2:F6:90:3E:CA:01:CF:D5:E4 Certificate issuer: /CN=A918B5FE/serialNumber=12109583023E185DE4A2B294231599D63640BC9A Certificate serial: 064D Authority key identifier: 12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa Signing time: Tue 12 Nov 2024 22:01:12 +0000 ROA not before: Tue 12 Nov 2024 22:01:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136265 IP address blocks: 2405:8bc0:7003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE/serialNumber=12109583023E185DE4A2B294231599D63640BC9A Validity Not Before: Nov 12 22:01:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6733d028-2957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:4c:5b:5b:77:b9:df:a7:59:f9:f3:3c:a2: 6d:94:18:b9:aa:a2:d8:7f:f7:e0:25:59:41:a0:63: 3a:f1:2d:9f:81:b1:ce:aa:7c:49:15:7c:a1:cc:71: ed:a4:71:2c:72:45:fc:f6:7f:f2:f5:f6:a0:38:61: ff:9d:ac:7a:80:88:88:7d:5f:8f:ea:3c:67:bb:ee: b7:72:c4:bd:a0:dc:d0:46:ab:5a:97:42:3f:97:70: 9c:97:e3:07:2b:fe:ec:77:84:b9:74:b6:6f:8c:ca: 1c:94:6e:29:db:dd:fd:15:c2:b5:a9:24:c1:b1:34: 19:08:fa:23:35:c4:b6:9f:b1:bd:b9:c3:b5:f0:72: 0d:4a:00:8e:63:bf:40:6e:66:fd:3a:c8:c3:4c:bd: b0:f1:01:2f:66:e1:99:b2:08:9f:55:9b:74:51:26: 44:0a:e6:68:66:e5:33:54:f7:89:30:95:e7:e9:91: 61:f1:b5:fa:80:7b:fa:56:83:3f:06:63:b1:52:05: 72:c1:82:8a:cf:54:77:67:ca:e0:a3:95:78:ec:32: 2b:76:08:c0:e0:17:b3:59:4d:31:a1:30:5b:88:eb: 5b:50:21:1b:d1:e8:5f:83:eb:81:33:9f:29:38:80: dc:86:c3:a0:9e:ff:70:c7:38:5a:80:5f:54:e8:cf: 00:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:20:F0:31:83:08:0A:7D:D5:5E:BF:E2:F6:90:3E:CA:01:CF:D5:E4 X509v3 Authority Key Identifier: keyid:12:10:95:83:02:3E:18:5D:E4:A2:B2:94:23:15:99:D6:36:40:BC:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/EhCVgwI-GF3korKUIxWZ1jZAvJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhCVgwI-GF3korKUIxWZ1jZAvJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/3CEEDF906A9E11EBB6762318C4F9AE02/4652D2C2DF3C11EBAC0C7536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8bc0:7003::/48 Signature Algorithm: sha256WithRSAEncryption 22:f4:9d:8b:a3:7a:e8:36:e0:3e:d7:f4:33:67:85:f3:62:54: f6:e3:5c:13:94:4c:85:39:ed:0e:73:d1:34:03:0c:64:12:74: a0:37:1d:03:32:8c:38:40:bf:fc:25:82:ee:10:6b:64:02:11: 70:75:a8:d0:4d:12:ef:82:15:fc:f5:56:9d:3c:df:3a:15:eb: 68:9f:a4:a1:7d:3a:cb:70:01:d3:7e:1b:f0:41:2e:8b:34:c7: 77:6a:76:24:9e:70:b9:16:89:54:5f:f6:6b:63:bb:06:46:9f: ea:0a:3b:c8:58:00:38:68:97:c8:f2:15:e2:c5:1e:99:3f:91: 57:1e:99:34:e7:0d:4b:66:41:b7:d8:83:f9:24:61:65:2f:b2: 21:58:5b:60:b5:54:be:a4:6f:3e:d8:03:00:d9:b8:1c:6b:dc: d8:6f:3b:55:33:d7:8f:a2:74:72:aa:40:01:dd:7a:73:13:af: be:d3:ab:76:9d:eb:ee:ae:ab:9f:1f:88:b1:0f:36:65:cd:42: 29:90:46:b1:de:9f:fc:98:2b:78:8f:57:c2:2d:e9:b0:0f:fb: 9f:8e:47:66:5a:cb:ad:21:16:c4:08:01:e4:e6:14:6f:a6:d7: 9d:a7:98:e4:bc:af:0a:f6:2f:63:ad:4c:71:dd:74:4e:a5:8c: 94:22:50:06 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKDEyMTA5NTgzMDIzRTE4NURFNEEyQjI5NDIzMTU5OUQ2 MzY0MEJDOUEwHhcNMjQxMTEyMjIwMTEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZDAyOC0yOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArChMW1t3ud+nWfnzPKJtlBi5qqLYf/fgJVlBoGM68S2fgbHOqnxJFXyhzHHt pHEsckX89n/y9fagOGH/nax6gIiIfV+P6jxnu+63csS9oNzQRqtal0I/l3Ccl+MH K/7sd4S5dLZvjMoclG4p2939FcK1qSTBsTQZCPojNcS2n7G9ucO18HINSgCOY79A bmb9OsjDTL2w8QEvZuGZsgifVZt0USZECuZoZuUzVPeJMJXn6ZFh8bX6gHv6VoM/ BmOxUgVywYKKz1R3Z8rgo5V47DIrdgjA4BezWU0xoTBbiOtbUCEb0ehfg+uBM58p OIDchsOgnv9wxzhagF9U6M8A2wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHwg8DGD CAp91V6/4vaQPsoBz9XkMB8GA1UdIwQYMBaAFBIQlYMCPhhd5KKylCMVmdY2QLya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zQ0VFREY5MDZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9FaENWZ3dJLUdGM2tvcktVSXhXWjFqWkF2 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VoQ1Znd0ktR0Yza29yS1VJeFdaMWpaQXZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvM0NFRURGOTA2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvNDY1MkQyQzJE RjNDMTFFQkFDMEM3NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYvAcAMwDQYJKoZIhvcNAQELBQADggEBACL0nYujeug2 4D7X9DNnhfNiVPbjXBOUTIU57Q5z0TQDDGQSdKA3HQMyjDhAv/wlgu4Qa2QCEXB1 qNBNEu+CFfz1Vp083zoV62ifpKF9OstwAdN+G/BBLos0x3dqdiSecLkWiVRf9mtj uwZGn+oKO8hYADhol8jyFeLFHpk/kVcemTTnDUtmQbfYg/kkYWUvsiFYW2C1VL6k bz7YAwDZuBxr3NhvO1Uz14+idHKqQAHdenMTr77Tq3ad6+6uq58fiLEPNmXNQimQ RrHen/yYK3iPV8It6bAP+5+OR2Zay60hFsQIAeTmFG+m152nmOS8rwr2L2OtTHHd dE6ljJQiUAY= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:55 2024 by rpki-client on console-ams.rpki-client.org