$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa File: 3E4FAED8669911EE997B8B77C4F9AE02.roa (raw, json) Hash identifier: 5N7brfRfoZzZoOpXAoIIdkLUeB/XPTWWf2yxRKT9wtk= Subject key identifier: A6:5B:4D:31:31:1C:55:3A:60:40:50:D7:39:23:0E:69:8B:A3:13:BF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7B88 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa Signing time: Mon 09 Oct 2023 11:44:45 +0000 ROA not before: Mon 09 Oct 2023 11:44:45 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134897 IP address blocks: 2001:df0:70c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31624 (0x7b88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 9 11:44:45 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6523e7ad-ac1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a0:50:d0:b7:4f:70:1f:8b:c0:6c:51:28:0d: 83:12:93:42:d0:58:81:be:41:67:63:80:a9:e0:4e: 2a:0c:6d:a3:9d:22:41:2f:4e:66:6f:00:29:4a:21: 38:3c:7b:58:95:b8:44:62:0b:36:12:ce:50:67:32: 8c:98:6d:f2:8e:c7:c5:78:73:cd:77:97:f8:c4:02: b7:60:eb:4f:4a:d2:0f:aa:8e:e8:9d:22:49:30:ea: 25:d5:3a:e3:8e:3a:d7:0f:6b:2a:1f:3a:c7:c7:7f: 2c:5e:78:5b:57:9f:c7:1e:f2:83:d3:e6:64:da:96: 7b:85:16:2c:b9:f2:93:b4:db:96:9a:43:03:6a:52: a0:bb:0c:bd:97:0f:55:11:16:41:e4:a0:44:b7:23: 01:8b:b8:6d:4c:0c:7f:59:7c:29:2a:10:d2:49:3e: bb:26:d2:cd:10:0a:de:b9:c5:b9:89:7a:79:a0:4c: 4f:38:7d:5c:e2:eb:ea:2f:14:87:17:8b:6b:25:99: 87:96:3e:3d:ed:84:68:39:01:50:df:26:0a:3a:a0: b0:35:38:3a:61:89:8a:55:07:92:99:c6:d4:06:b7: 2f:5c:b4:88:5d:95:a4:4e:dd:24:9e:6f:eb:b5:66: 87:0b:7a:92:dc:7a:61:fd:bb:11:80:ee:01:ce:9d: cd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5B:4D:31:31:1C:55:3A:60:40:50:D7:39:23:0E:69:8B:A3:13:BF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E4FAED8669911EE997B8B77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:70c0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:b9:d5:3d:57:d0:91:93:60:b4:2a:6d:c0:c2:16:56:af:3a: 2a:66:b4:6d:fc:a3:8e:50:d8:e0:37:4a:a7:76:9b:9c:42:85: bd:a0:c8:a1:56:6b:91:b8:b0:fc:bd:c2:3e:ba:fb:09:82:71: 0f:3c:50:36:bd:a5:77:4d:f5:df:18:7a:28:bb:d6:10:66:ef: 8d:4c:c7:da:bf:d1:6c:f2:95:88:0b:84:ad:66:9f:75:ed:ce: 28:b8:6a:c9:8e:25:fd:a4:0f:a5:9d:6f:00:dc:b8:f0:60:a4: 82:25:22:15:b3:9a:f1:4e:0e:da:85:bc:ef:40:dd:cb:8b:93: a5:89:c0:81:ca:23:79:6e:0b:92:6c:75:d3:75:fd:54:dc:97: f3:2b:c3:2e:ad:38:3a:6d:09:c6:84:30:75:8f:aa:56:d3:d5: 88:6f:52:d3:38:67:f5:7f:38:f4:78:b8:40:79:05:db:ef:af: 61:86:dd:9e:49:4d:1f:28:ae:e9:ff:f1:1a:81:f2:06:c8:fc: e0:5b:b0:e9:7d:11:b1:64:e5:f4:b1:05:94:a7:1c:f7:ad:47: 7b:d8:d5:07:be:87:84:75:7d:15:ef:00:3c:03:41:6b:1f:a3: 34:03:e1:f7:e1:1b:cc:e3:e0:6f:f1:63:eb:b1:1b:d6:8a:dd: fc:97:cb:05 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICe4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDA5MTE0NDQ1WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIzZTdhZC1hYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46BQ0LdPcB+LwGxRKA2DEpNC0FiBvkFnY4Cp4E4qDG2jnSJBL05mbwApSiE4 PHtYlbhEYgs2Es5QZzKMmG3yjsfFeHPNd5f4xAK3YOtPStIPqo7onSJJMOol1Trj jjrXD2sqHzrHx38sXnhbV5/HHvKD0+Zk2pZ7hRYsufKTtNuWmkMDalKguwy9lw9V ERZB5KBEtyMBi7htTAx/WXwpKhDSST67JtLNEAreucW5iXp5oExPOH1c4uvqLxSH F4trJZmHlj497YRoOQFQ3yYKOqCwNTg6YYmKVQeSmcbUBrcvXLSIXZWkTt0knm/r tWaHC3qS3Hph/bsRgO4Bzp3NhQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKZbTTEx HFU6YEBQ1zkjDmmLoxO/MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0U0RkFFRDg2 Njk5MTFFRTk5N0I4Qjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wcMAwDQYJKoZIhvcNAQELBQADggEBAF651T1X0JGT YLQqbcDCFlavOipmtG38o45Q2OA3Sqd2m5xChb2gyKFWa5G4sPy9wj66+wmCcQ88 UDa9pXdN9d8Yeii71hBm741Mx9q/0WzylYgLhK1mn3Xtzii4asmOJf2kD6WdbwDc uPBgpIIlIhWzmvFODtqFvO9A3cuLk6WJwIHKI3luC5JsddN1/VTcl/Mrwy6tODpt CcaEMHWPqlbT1YhvUtM4Z/V/OPR4uEB5Bdvvr2GG3Z5JTR8orun/8RqB8gbI/OBb sOl9EbFk5fSxBZSnHPetR3vY1Qe+h4R1fRXvADwDQWsfozQD4ffhG8zj4G/xY+ux G9aK3fyXywU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org