$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FEFCE3EBDE011EAAEA46554C4F9AE02.roa File: 0FEFCE3EBDE011EAAEA46554C4F9AE02.roa (raw, json) Hash identifier: DrF9qreNDDCSAos8BGeuD7zFIuHj5J3C5TC4gs2NgKM= Subject key identifier: 64:BB:BD:99:E4:BD:79:F6:9F:12:F6:8F:B2:50:54:EA:74:5B:E3:27 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6C7A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FEFCE3EBDE011EAAEA46554C4F9AE02.roa Signing time: Wed 10 May 2023 16:24:43 +0000 ROA not before: Wed 10 May 2023 16:24:43 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136369 IP address blocks: 2001:df0:e680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27770 (0x6c7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:24:43 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc54a-a8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:00:5a:3f:ac:8f:9c:91:64:e9:7d:42:e8: dd:cc:3b:b5:bf:91:0a:a2:64:f6:66:fa:e0:b4:0f: 5e:5e:7b:22:90:a4:b7:24:5d:00:c6:67:3d:6d:c0: 63:0e:70:aa:16:b1:b2:36:59:f7:ba:a9:16:3e:1a: 0c:e0:58:ef:bb:15:37:36:a8:c1:4d:fd:b2:50:0c: 52:71:f1:8b:3c:1f:d3:2c:19:1f:dd:04:9c:49:dc: de:a7:2c:3e:5e:a6:c1:c0:49:0a:0f:f4:e6:18:f2: fb:cd:4d:97:ac:d4:1c:91:08:fd:cc:cb:5b:ef:55: 3d:d1:c3:28:5e:7a:e6:4b:f8:92:6d:0f:19:db:6f: 4d:52:f1:e8:a8:14:d5:e6:68:8a:82:5a:de:19:d2: 27:d6:54:09:6f:05:6e:ea:5d:5d:d7:8d:b3:ce:53: da:08:38:a4:1b:29:92:e0:2e:5b:65:27:3d:1c:3a: 44:ef:33:f5:f9:5e:c5:ec:96:36:fd:dd:ee:8c:53: 35:af:c6:3e:23:ec:b8:9b:f3:11:26:79:cd:14:9e: d0:83:a2:2d:5a:e3:fc:5e:39:23:f3:bf:7d:25:68: 31:c4:2b:d1:55:e2:80:7b:f2:c3:bf:1d:e5:ac:2a: c3:38:09:4b:57:d4:08:6d:56:14:e6:27:6f:cc:8a: 64:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:BB:BD:99:E4:BD:79:F6:9F:12:F6:8F:B2:50:54:EA:74:5B:E3:27 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0FEFCE3EBDE011EAAEA46554C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:e680::/48 Signature Algorithm: sha256WithRSAEncryption 03:c9:2f:75:ad:e8:4e:2d:67:b5:ea:e1:84:30:0d:00:b4:66: cc:29:06:2f:9f:40:11:75:b9:e3:68:b6:83:4f:65:40:05:b3: 51:f2:6d:c7:53:d8:d0:c9:8d:6c:a9:90:2e:fa:29:42:3c:09: ad:76:db:48:23:2e:d9:3c:e3:68:2d:56:2d:95:32:2d:64:53: d5:4e:64:02:ff:9e:87:65:cd:f3:b9:3a:26:bc:98:da:dd:3d: 16:64:b2:f9:6c:a8:7a:01:18:6f:53:14:fc:ed:19:cf:43:6b: 76:f9:6d:b8:1b:44:aa:4c:41:69:25:16:21:eb:b8:a0:d0:77: cd:4b:cc:e7:84:f0:0f:b3:51:c8:89:b2:6f:5d:dd:e4:12:72: fa:24:47:6d:98:08:f9:cb:fd:79:8d:9e:dd:ea:f6:91:27:17: 97:be:10:b5:5e:90:69:bb:bc:6f:22:9b:60:af:1c:a5:79:34: 89:19:cf:5f:b7:3a:bc:8e:b5:34:35:48:09:00:24:8f:ca:3a: 4f:91:c5:ac:dd:ac:c6:7a:bb:55:05:36:1f:ca:4c:dd:df:1e: a1:f4:5f:46:4e:5a:20:31:9e:e1:28:53:94:9c:6f:85:f1:77: 58:48:64:86:ec:bf:88:79:89:b7:50:35:3b:42:8c:a1:0e:b5: 07:b9:f5:02 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICbHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNDQzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzU0YS1hOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkkAWj+sj5yRZOl9QujdzDu1v5EKomT2ZvrgtA9eXnsikKS3JF0Axmc9bcBj DnCqFrGyNln3uqkWPhoM4FjvuxU3NqjBTf2yUAxScfGLPB/TLBkf3QScSdzepyw+ XqbBwEkKD/TmGPL7zU2XrNQckQj9zMtb71U90cMoXnrmS/iSbQ8Z229NUvHoqBTV 5miKglreGdIn1lQJbwVu6l1d142zzlPaCDikGymS4C5bZSc9HDpE7zP1+V7F7JY2 /d3ujFM1r8Y+I+y4m/MRJnnNFJ7Qg6ItWuP8Xjkj8799JWgxxCvRVeKAe/LDvx3l rCrDOAlLV9QIbVYU5idvzIpkvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGS7vZnk vXn2nxL2j7JQVOp0W+MnMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEZFRkNFM0VC REUwMTFFQUFFQTQ2NTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3w5oAwDQYJKoZIhvcNAQELBQADggEBAAPJL3Wt6E4t Z7Xq4YQwDQC0ZswpBi+fQBF1ueNotoNPZUAFs1HybcdT2NDJjWypkC76KUI8Ca12 20gjLtk842gtVi2VMi1kU9VOZAL/nodlzfO5Oia8mNrdPRZksvlsqHoBGG9TFPzt Gc9Da3b5bbgbRKpMQWklFiHruKDQd81LzOeE8A+zUciJsm9d3eQScvokR22YCPnL /XmNnt3q9pEnF5e+ELVekGm7vG8im2CvHKV5NIkZz1+3OryOtTQ1SAkAJI/KOk+R xazdrMZ6u1UFNh/KTN3fHqH0X0ZOWiAxnuEoU5Scb4Xxd1hIZIbsv4h5ibdQNTtC jKEOtQe59QI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:26 2024 by rpki-client on console-ams.rpki-client.org