$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa File: ED8B1602A0D711EFB982AD62C4F9AE02.roa (raw, json) Hash identifier: ERqr4ZgITrZRkOwS3AN4CJTqd2fIDLE15f/P4/QlBUI= Subject key identifier: 3F:1E:62:CF:06:04:78:38:42:0E:9C:23:47:FB:83:AE:69:60:25:81 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 04B3 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa Signing time: Tue 12 Nov 2024 09:24:34 +0000 ROA not before: Tue 12 Nov 2024 09:24:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38001 IP address blocks: 2401:df40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1203 (0x4b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Nov 12 09:24:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67331ed1-13a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:34:93:81:d8:4d:59:90:ec:ba:08:8d:62:0a: db:8c:6d:bc:b9:d5:4a:bf:8f:2a:06:3e:14:3d:83: 97:fc:b1:d1:d6:34:7c:4b:62:13:ea:dd:2f:90:82: 6b:96:8a:38:26:ce:45:7f:72:60:15:6a:4d:f8:11: 42:62:8b:c3:b2:d1:86:83:8b:cf:86:1f:e1:3b:96: 58:ad:4e:6c:82:e2:b4:38:45:92:81:35:8a:3c:0d: 1a:54:5b:03:e0:09:91:2d:59:08:89:dc:2a:7c:ff: dc:53:d4:81:23:52:6f:a2:88:95:93:c2:de:76:ba: db:0c:53:e5:82:6e:72:b8:03:ae:ee:39:90:d3:09: 74:b3:5e:74:2f:4d:89:44:f2:19:dd:10:de:12:1d: b3:52:c9:f4:b2:1a:01:5e:b8:3f:7e:52:18:92:60: 7c:bd:0d:d0:ab:b9:aa:f0:a6:91:ea:f9:a4:fa:d9: 29:ce:0d:70:13:56:9a:15:cc:12:0b:4f:36:b2:06: 94:98:19:69:1d:92:9d:5a:e3:6d:f4:8e:f9:71:97: 5d:d0:6e:18:21:f1:7b:41:39:e7:2f:55:7c:d2:a1: f8:fa:d9:46:b2:77:63:cb:55:1f:62:46:93:93:86: fe:51:44:fa:2f:9d:0b:4d:5c:f4:54:f4:ef:c1:93: 95:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1E:62:CF:06:04:78:38:42:0E:9C:23:47:FB:83:AE:69:60:25:81 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/ED8B1602A0D711EFB982AD62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df40:2::/48 Signature Algorithm: sha256WithRSAEncryption 9a:50:71:e8:04:19:28:b5:56:d6:13:d7:65:7a:24:cc:e0:4c: 4a:e7:4e:0a:bb:8f:c4:62:2b:2d:4a:b8:68:25:48:6c:7d:7e: 9b:4f:67:d5:10:fa:5e:54:4d:58:bb:e7:21:5f:44:bb:cd:aa: 76:14:a5:f0:0b:98:4b:4f:4c:ae:a0:d5:e6:3e:8c:c2:96:e3: 7c:dd:23:b3:a0:fb:1a:e1:1c:9d:c0:ac:d2:da:ae:70:40:5c: da:31:30:82:bd:89:f0:59:69:90:fe:57:45:cf:77:ea:40:78: f0:12:0b:2c:c6:fb:4d:dd:38:94:8c:97:75:fd:33:a0:36:3c: 75:03:2d:bb:a9:01:69:a3:a8:e1:14:07:4d:9d:6a:66:bb:8f: d0:9d:de:df:71:14:39:30:13:0f:d6:6d:cc:cc:c2:5a:3a:db: 6b:d0:5d:59:65:b1:74:6b:4f:5d:5d:75:b4:08:52:b2:41:3b: f6:c2:b6:71:df:89:64:63:8e:22:53:9b:77:ac:35:30:e6:85: 83:c1:71:8a:eb:76:62:5f:a1:5a:40:a3:ef:ff:1d:1d:4d:c6: d6:0f:30:d1:93:c0:2b:52:bd:fa:25:7d:60:b2:1a:45:e6:79: 3d:d3:e4:e1:ac:62:14:88:64:86:83:e5:ed:7d:7b:62:3b:e9: eb:10:e1:0d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQxMTEyMDkyNDM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzMWVkMS0xM2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTSTgdhNWZDsugiNYgrbjG28udVKv48qBj4UPYOX/LHR1jR8S2IT6t0vkIJr loo4Js5Ff3JgFWpN+BFCYovDstGGg4vPhh/hO5ZYrU5sguK0OEWSgTWKPA0aVFsD 4AmRLVkIidwqfP/cU9SBI1JvooiVk8LedrrbDFPlgm5yuAOu7jmQ0wl0s150L02J RPIZ3RDeEh2zUsn0shoBXrg/flIYkmB8vQ3Qq7mq8KaR6vmk+tkpzg1wE1aaFcwS C082sgaUmBlpHZKdWuNt9I75cZdd0G4YIfF7QTnnL1V80qH4+tlGsndjy1UfYkaT k4b+UUT6L50LTVz0VPTvwZOVnwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD8eYs8G BHg4Qg6cI0f7g65pYCWBMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvRUQ4QjE2MDJB MEQ3MTFFRkI5ODJBRDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAd9AAAIwDQYJKoZIhvcNAQELBQADggEBAJpQcegEGSi1 VtYT12V6JMzgTErnTgq7j8RiKy1KuGglSGx9fptPZ9UQ+l5UTVi75yFfRLvNqnYU pfALmEtPTK6g1eY+jMKW43zdI7Og+xrhHJ3ArNLarnBAXNoxMIK9ifBZaZD+V0XP d+pAePASCyzG+03dOJSMl3X9M6A2PHUDLbupAWmjqOEUB02dama7j9Cd3t9xFDkw Ew/WbczMwlo622vQXVllsXRrT11ddbQIUrJBO/bCtnHfiWRjjiJTm3esNTDmhYPB cYrrdmJfoVpAo+//HR1NxtYPMNGTwCtSvfolfWCyGkXmeT3T5OGsYhSIZIaD5e19 e2I76esQ4Q0= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:02 2024 by rpki-client on console-ams.rpki-client.org