$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F82B866F62511EDB6E7422DC4F9AE02.roa File: 3F82B866F62511EDB6E7422DC4F9AE02.roa (raw, json) Hash identifier: ogv64PpWfy80Uef+hwu0thFa7OILacPDKdZ0vlItVa0= Subject key identifier: 1E:12:13:39:B2:8A:6E:3A:85:73:E9:F7:75:83:B6:1B:8D:06:89:EB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7265 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F82B866F62511EDB6E7422DC4F9AE02.roa Signing time: Fri 19 May 2023 09:12:16 +0000 ROA not before: Fri 19 May 2023 09:12:16 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135874 IP address blocks: 2001:df2:4ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29285 (0x7265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 19 09:12:16 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64673d70-5fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:b4:f5:f5:41:a0:f9:ba:34:59:da:ad:d8: e1:8f:63:e5:8f:00:82:de:3a:7d:e6:3e:6b:0c:ff: e4:34:8a:21:0b:34:9f:dd:47:d0:e6:0d:e0:59:dc: 12:8f:9e:72:c5:fe:78:31:1c:df:a1:9d:6a:41:26: d9:f2:4e:d6:e6:b4:c5:a0:ed:c3:8e:36:b3:99:f9: 39:ea:fd:c1:60:c2:fa:99:75:22:56:51:0f:16:37: 28:9b:01:37:06:08:e0:05:85:1d:3f:d6:d5:71:42: 9a:e4:e7:fd:8a:9e:6e:43:65:dd:f8:a0:f8:af:a6: 97:b9:3b:0b:d4:1e:23:0f:bb:96:17:8c:3b:32:5a: 24:61:f4:25:86:2c:de:75:0f:98:9d:d0:01:89:7b: 33:38:2f:20:d5:db:69:58:95:cc:4f:ee:ba:6f:32: a8:4f:17:13:4d:bb:e9:28:ac:66:03:a8:7b:db:ec: e8:26:bb:24:3d:3c:05:a2:fc:df:9d:e6:a9:e4:c7: f0:ab:67:c5:52:1b:85:74:3e:61:dc:b2:a3:b9:7f: 12:6f:e8:f3:7e:58:ac:4b:a7:98:6a:7c:13:ce:63: f1:e6:8a:a2:12:37:a5:55:4e:b0:a9:a2:b5:30:68: b9:32:95:b3:ce:d0:59:99:e5:33:f3:83:90:11:82: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:12:13:39:B2:8A:6E:3A:85:73:E9:F7:75:83:B6:1B:8D:06:89:EB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F82B866F62511EDB6E7422DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:4ac0::/48 Signature Algorithm: sha256WithRSAEncryption 0c:06:4b:a9:fb:82:61:df:fc:50:02:ff:9a:53:04:6c:86:bb: 2a:c1:00:d9:a6:3d:4a:c1:01:f3:00:70:45:8c:17:96:d3:c3: ae:5d:4c:31:8a:58:d5:d7:e4:95:f6:c2:57:78:79:3d:13:35: 1d:93:e5:ed:d1:46:86:99:5a:be:2f:cc:ee:21:8e:4f:f5:eb: 7e:32:55:51:9a:ea:6d:d0:74:96:5a:f1:11:7e:8d:59:94:e4: 3a:b3:a1:64:be:7e:91:31:70:50:d5:5e:b9:62:9b:41:79:03: b6:f1:7f:d9:83:bb:c3:65:54:62:62:2d:f9:fa:cf:2d:b0:56: 68:ad:a2:8b:3c:76:df:46:f9:07:d0:8e:fd:b6:ed:33:54:b7: de:ed:e7:5f:6f:01:b5:3b:40:05:b4:7a:e8:fe:25:c5:43:ae: 6c:b6:e2:c4:c5:48:52:89:7c:87:38:e3:27:84:85:a5:14:4e: 03:39:bc:16:3a:41:41:01:e4:7d:99:53:85:88:9d:b6:92:61: 07:0c:b0:59:5d:0e:ce:0e:a5:a5:96:ec:f2:bb:4b:81:86:45: 1c:a3:f9:e0:96:ee:11:9d:3a:cb:67:64:16:58:2f:9f:7e:d3: a7:5f:06:7b:6b:b8:50:02:ae:32:ea:83:78:03:0f:c4:e3:4b: eb:f5:53:52 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICcmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTE5MDkxMjE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY3M2Q3MC01ZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23G09fVBoPm6NFnardjhj2PljwCC3jp95j5rDP/kNIohCzSf3UfQ5g3gWdwS j55yxf54MRzfoZ1qQSbZ8k7W5rTFoO3Djjazmfk56v3BYML6mXUiVlEPFjcomwE3 BgjgBYUdP9bVcUKa5Of9ip5uQ2Xd+KD4r6aXuTsL1B4jD7uWF4w7MlokYfQlhize dQ+YndABiXszOC8g1dtpWJXMT+66bzKoTxcTTbvpKKxmA6h72+zoJrskPTwFovzf neap5Mfwq2fFUhuFdD5h3LKjuX8Sb+jzflisS6eYanwTzmPx5oqiEjelVU6wqaK1 MGi5MpWzztBZmeUz84OQEYK0fwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB4SEzmy im46hXPp93WDthuNBonrMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0Y4MkI4NjZG NjI1MTFFREI2RTc0MjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3ySsAwDQYJKoZIhvcNAQELBQADggEBAAwGS6n7gmHf /FAC/5pTBGyGuyrBANmmPUrBAfMAcEWMF5bTw65dTDGKWNXX5JX2wld4eT0TNR2T 5e3RRoaZWr4vzO4hjk/1634yVVGa6m3QdJZa8RF+jVmU5DqzoWS+fpExcFDVXrli m0F5A7bxf9mDu8NlVGJiLfn6zy2wVmitoos8dt9G+QfQjv227TNUt97t519vAbU7 QAW0euj+JcVDrmy24sTFSFKJfIc44yeEhaUUTgM5vBY6QUEB5H2ZU4WInbaSYQcM sFldDs4OpaWW7PK7S4GGRRyj+eCW7hGdOstnZBZYL59+06dfBntruFACrjLqg3gD D8TjS+v1U1I= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:30 2024 by rpki-client on console-ams.rpki-client.org