$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B71F7E6B5EE11EABBA2E915C4F9AE02.roa File: 0B71F7E6B5EE11EABBA2E915C4F9AE02.roa (raw, json) Hash identifier: 6btGWxA8i0CCQIDconWqVyOZVBhZ/bwKH3rDjEDU9YI= Subject key identifier: C3:68:EB:90:93:E9:C4:95:0B:7E:AC:35:C9:46:65:06:93:72:B7:D5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 69F8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B71F7E6B5EE11EABBA2E915C4F9AE02.roa Signing time: Wed 10 May 2023 16:12:27 +0000 ROA not before: Wed 10 May 2023 16:12:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 132524 IP address blocks: 2406:f00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27128 (0x69f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:12:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc26b-1562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9a:6b:84:8a:80:b1:08:ce:e0:6c:0b:dc:34: d8:38:06:1d:c8:6c:65:52:44:1d:19:77:aa:bb:d9: cf:61:70:dc:fe:3b:49:02:86:31:65:0b:9f:71:4c: 91:cb:65:02:34:44:a5:76:79:2a:25:b1:fd:d2:d0: 8d:c0:58:18:e4:e7:33:09:22:f8:6a:ff:d2:89:0c: 4c:fe:89:bd:db:48:3e:51:c6:f9:90:fb:5c:57:0b: 4e:71:50:d0:60:63:48:76:f4:9a:39:95:05:67:c3: 2f:ad:97:35:e4:6a:71:44:f2:16:82:71:57:fe:53: 8e:ad:29:55:05:58:a6:5e:95:3c:eb:f2:12:c4:bd: af:47:bf:c1:27:1a:db:a9:5f:3c:70:42:6c:b0:b7: 86:10:62:f1:1d:68:bc:38:ee:82:19:cd:a8:2f:e3: d4:d0:a6:a0:f8:44:ba:d9:31:f0:84:95:12:46:42: c7:e9:32:61:82:09:e7:10:02:5a:14:57:5b:33:bf: b0:c5:49:62:3c:82:c3:7a:53:0f:c2:7b:4c:d5:ef: ea:fe:25:8e:c6:f8:78:e9:2b:7a:ec:6d:d9:07:e3: 93:c0:d6:73:7a:91:f0:09:64:03:f2:0e:fa:13:77: c2:0d:75:3a:15:17:51:df:b5:3e:dc:8e:cf:e1:51: 01:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:68:EB:90:93:E9:C4:95:0B:7E:AC:35:C9:46:65:06:93:72:B7:D5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0B71F7E6B5EE11EABBA2E915C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:f00:1::/48 Signature Algorithm: sha256WithRSAEncryption 1a:3d:ac:72:4f:01:74:de:7f:64:7c:8e:bd:8a:6d:89:19:6b: 3e:75:0a:21:fc:85:55:03:5e:dd:c5:e1:15:13:cd:66:b0:60: f0:bd:58:49:c7:64:49:8c:62:7d:9f:42:a4:a2:23:76:21:14: 74:19:26:bf:2f:63:46:f2:09:1d:b5:27:bd:c5:76:3d:b8:28: c3:cb:a3:c4:aa:bc:3f:c1:79:db:2e:32:42:ae:02:e1:81:eb: 72:e0:9a:25:fb:24:45:ba:57:1b:94:54:6d:a4:e6:a1:cc:e3: 28:3f:e0:56:1b:ae:47:af:55:63:97:4f:ec:91:dd:bd:0b:0c: 73:ff:d2:6c:62:cd:56:3d:56:50:5b:37:61:77:52:ee:32:91: a6:22:c4:44:eb:ec:b7:70:96:26:06:0a:8b:08:81:ab:da:ca: 1f:07:1b:18:c2:7b:23:7c:8e:40:70:75:17:2c:52:51:2b:df: 56:d6:10:ce:24:89:7d:07:ac:4f:c0:62:29:7c:3f:8e:e9:f9: 2c:cd:34:e9:d9:23:45:cd:22:28:58:fd:a3:ef:bf:24:0e:52: 46:7c:99:a9:4e:0f:b9:48:a3:68:ba:cf:d8:7c:43:8e:f5:09: 37:91:a5:47:57:78:a1:1a:b3:ab:3e:ce:eb:8c:b7:d4:44:2e: ca:65:09:d9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICafgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxMjI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzI2Yi0xNTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pprhIqAsQjO4GwL3DTYOAYdyGxlUkQdGXequ9nPYXDc/jtJAoYxZQufcUyR y2UCNESldnkqJbH90tCNwFgY5OczCSL4av/SiQxM/om920g+Ucb5kPtcVwtOcVDQ YGNIdvSaOZUFZ8MvrZc15GpxRPIWgnFX/lOOrSlVBVimXpU86/ISxL2vR7/BJxrb qV88cEJssLeGEGLxHWi8OO6CGc2oL+PU0Kag+ES62THwhJUSRkLH6TJhggnnEAJa FFdbM7+wxUliPILDelMPwntM1e/q/iWOxvh46St67G3ZB+OTwNZzepHwCWQD8g76 E3fCDXU6FRdR37U+3I7P4VEBEQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMNo65CT 6cSVC36sNclGZQaTcrfVMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEI3MUY3RTZC NUVFMTFFQUJCQTJFOTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBg8AAAEwDQYJKoZIhvcNAQELBQADggEBABo9rHJPAXTe f2R8jr2KbYkZaz51CiH8hVUDXt3F4RUTzWawYPC9WEnHZEmMYn2fQqSiI3YhFHQZ Jr8vY0byCR21J73Fdj24KMPLo8SqvD/BedsuMkKuAuGB63LgmiX7JEW6VxuUVG2k 5qHM4yg/4FYbrkevVWOXT+yR3b0LDHP/0mxizVY9VlBbN2F3Uu4ykaYixETr7Ldw liYGCosIgavayh8HGxjCeyN8jkBwdRcsUlEr31bWEM4kiX0HrE/AYil8P47p+SzN NOnZI0XNIihY/aPvvyQOUkZ8malOD7lIo2i6z9h8Q471CTeRpUdXeKEas6s+zuuM t9RELsplCdk= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org