$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07FC93D4A54911EE9A3EC84EC4F9AE02.roa File: 07FC93D4A54911EE9A3EC84EC4F9AE02.roa (raw, json) Hash identifier: enKKkJf1zfn+GzvaxiHicrKPm7KUJpC6BcPPuNzL10s= Subject key identifier: E2:96:20:F9:F1:F0:B7:70:D6:E2:D4:EE:AC:26:B6:0C:81:58:D6:5A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 80D9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07FC93D4A54911EE9A3EC84EC4F9AE02.roa Signing time: Thu 28 Dec 2023 06:19:18 +0000 ROA not before: Thu 28 Dec 2023 06:19:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 150659 IP address blocks: 2400:daa0::/32 maxlen: 32 2400:daa0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32985 (0x80d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 28 06:19:18 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=658d1366-1f7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f1:0e:25:83:4d:9d:d7:3e:54:27:d1:a6:08: f4:8a:be:32:57:c6:fe:8f:d9:f6:06:4a:17:97:b2: 06:1a:eb:f9:31:f5:94:c0:af:54:29:d9:67:04:16: 5e:5f:1c:c3:04:66:43:a1:77:ee:7d:1a:8e:ba:66: d8:0b:52:37:96:42:7b:c0:6d:cf:09:7a:38:05:3e: 06:a7:36:5c:3f:18:b1:cf:9a:94:ef:ff:57:f0:13: 46:58:80:63:cd:5c:59:c9:80:95:52:ff:aa:29:32: bf:e5:55:4e:d2:6b:f2:a1:a3:63:7a:d7:97:f5:9d: a8:2c:18:9b:87:b7:e4:b4:e0:75:32:ae:73:36:93: b3:04:0f:74:13:97:3f:7b:58:77:58:fc:11:34:ea: 88:ae:d9:cd:c8:b2:3f:c2:31:10:77:ff:ba:6f:59: 1d:84:30:1b:1d:83:b6:91:5e:f1:46:41:82:cc:54: 27:ff:af:76:4a:d5:28:bb:07:c8:77:81:7d:24:74: 92:8e:f4:6e:c3:2c:0c:27:89:c8:fb:ab:e4:b9:40: 28:80:2d:3b:bc:ac:31:84:00:5e:44:31:e0:c5:63: bf:99:b3:d9:b8:4a:8c:ad:ef:b1:d4:01:3a:94:cb: 7f:e4:c7:ea:c8:de:b0:82:9b:c9:b5:98:96:3f:dc: ad:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:96:20:F9:F1:F0:B7:70:D6:E2:D4:EE:AC:26:B6:0C:81:58:D6:5A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07FC93D4A54911EE9A3EC84EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:daa0::/32 Signature Algorithm: sha256WithRSAEncryption b6:b4:3d:d8:eb:09:57:da:85:b8:5a:f4:50:2a:89:6c:e9:96: a4:39:36:36:f9:5f:8a:42:b3:c5:3d:de:fa:15:86:a8:81:cd: 4f:74:e4:c8:83:77:63:c0:a8:01:d3:e1:64:05:b0:53:ed:a5: af:f0:76:6a:85:f5:fc:22:ba:fc:12:f9:56:3c:3a:b4:09:5a: 6b:92:5f:fc:18:fe:dc:7f:a4:5a:9e:e9:f7:96:ce:c1:64:fe: d8:79:f5:60:b5:60:3f:da:c1:1f:c3:87:2e:9f:8f:cf:52:91: bf:56:51:28:c5:60:4f:f8:e5:ae:19:18:bf:be:c6:42:61:35: 13:3d:8d:a7:b7:d6:e4:23:5c:b1:89:82:de:67:14:3e:c7:59: a4:6e:05:09:bf:16:99:9d:ba:ba:d2:4e:61:62:fb:1d:86:eb: d0:7e:3a:b7:6e:b0:49:69:67:06:4f:28:55:44:1a:32:f1:79: 89:7f:e7:39:29:7f:58:1b:8c:16:7a:95:d9:85:e6:97:c9:7d: 68:c6:31:6b:da:ea:e5:6a:ed:d6:c9:2f:58:2d:09:e4:96:d9: b7:e9:73:78:7d:cd:c5:73:fd:a1:96:5f:8c:b7:7f:24:d3:ff: 9a:6f:3c:84:01:5e:b3:4c:36:79:94:7d:7d:6a:21:12:93:a5: b5:9d:5c:44 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAIDZMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTIzMTIyODA2MTkxOFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU4ZDEzNjYtMWY3YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTxDiWDTZ3XPlQn0aYI9Iq+MlfG/o/Z9gZKF5eyBhrr+TH1lMCvVCnZZwQW Xl8cwwRmQ6F37n0ajrpm2AtSN5ZCe8Btzwl6OAU+Bqc2XD8Ysc+alO//V/ATRliA Y81cWcmAlVL/qikyv+VVTtJr8qGjY3rXl/WdqCwYm4e35LTgdTKuczaTswQPdBOX P3tYd1j8ETTqiK7ZzciyP8IxEHf/um9ZHYQwGx2DtpFe8UZBgsxUJ/+vdkrVKLsH yHeBfSR0ko70bsMsDCeJyPur5LlAKIAtO7ysMYQAXkQx4MVjv5mz2bhKjK3vsdQB OpTLf+TH6sjesIKbybWYlj/crd8CAwEAAaOCApYwggKSMB0GA1UdDgQWBBTiliD5 8fC3cNbi1O6sJrYMgVjWWjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA3RkM5M0Q0 QTU0OTExRUU5QTNFQzg0RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJADaoDANBgkqhkiG9w0BAQsFAAOCAQEAtrQ92OsJV9qF uFr0UCqJbOmWpDk2NvlfikKzxT3e+hWGqIHNT3TkyIN3Y8CoAdPhZAWwU+2lr/B2 aoX1/CK6/BL5Vjw6tAlaa5Jf/Bj+3H+kWp7p95bOwWT+2Hn1YLVgP9rBH8OHLp+P z1KRv1ZRKMVgT/jlrhkYv77GQmE1Ez2Np7fW5CNcsYmC3mcUPsdZpG4FCb8WmZ26 utJOYWL7HYbr0H46t26wSWlnBk8oVUQaMvF5iX/nOSl/WBuMFnqV2YXml8l9aMYx a9rq5Wrt1skvWC0J5JbZt+lzeH3NxXP9oZZfjLd/JNP/mm88hAFes0w2eZR9fWoh EpOltZ1cRA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org