$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46A40894FAA411EBBCCC9633C4F9AE02.roa File: 46A40894FAA411EBBCCC9633C4F9AE02.roa (raw, json) Hash identifier: L9oHCJ+tDzaevQajq7X/8oIw0io+YvwsrMleXRW1q1E= Subject key identifier: 38:77:0A:97:27:D5:B6:95:23:19:C2:1A:6D:2C:63:D2:BE:7B:5A:41 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F74 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46A40894FAA411EBBCCC9633C4F9AE02.roa Signing time: Wed 10 May 2023 16:38:54 +0000 ROA not before: Wed 10 May 2023 16:38:54 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 142500 IP address blocks: 1.10.10.0/24 maxlen: 24 2001:de2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28532 (0x6f74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:38:54 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc89e-1b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:4e:ad:2a:0c:b5:3f:e5:64:a2:00:78:74: 26:38:58:d4:d2:3f:6c:12:bd:2e:d3:6e:6d:18:68: 37:1a:aa:30:40:af:63:a7:f3:8f:18:6c:e5:15:cd: 19:6e:54:e6:9f:f8:59:31:6d:72:8e:30:96:f0:5f: b1:9f:2f:32:2c:41:c1:18:1f:f1:e2:a0:a8:25:3f: ea:29:05:51:70:43:98:38:12:b5:85:c1:5d:5e:d0: 8c:98:46:95:d8:5d:86:a6:5c:3a:8f:98:81:6c:0b: be:11:37:1f:27:d3:48:da:8f:34:f7:ea:23:ff:48: 39:ee:77:9a:c1:3e:00:77:b2:d1:b2:0e:de:5d:b4: ea:c2:c2:40:2d:81:c1:39:6f:1a:15:75:c9:9e:e8: 6d:58:f7:d6:3d:5a:4b:49:eb:f1:a2:28:46:7b:3c: 2f:b9:84:2c:10:aa:7f:9f:2b:a0:d3:de:ef:f3:99: 6c:f9:6c:f7:71:a6:59:23:20:02:85:cc:f9:be:c2: a1:5d:30:37:9b:57:5e:94:01:82:3d:f9:cc:87:2c: 78:65:9d:b3:2d:f4:a8:d1:2f:23:2e:e3:6f:1c:1f: af:48:56:59:a6:0d:40:7a:be:a9:c5:10:cf:cb:40: 4e:49:03:f0:73:e9:e8:4f:74:c7:5f:ce:98:de:8a: 63:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:77:0A:97:27:D5:B6:95:23:19:C2:1A:6D:2C:63:D2:BE:7B:5A:41 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/46A40894FAA411EBBCCC9633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.10.10.0/24 IPv6: 2001:de2::/48 Signature Algorithm: sha256WithRSAEncryption 32:e2:6c:0a:fe:6d:8c:17:32:6e:c7:ac:64:06:1b:01:4b:96: 6d:09:aa:d9:28:84:f9:bc:e9:0f:50:b0:c1:14:ed:7e:be:3f: 92:5f:1c:1e:e5:98:e4:6a:95:d8:61:85:67:4b:93:07:3d:ef: 24:1b:02:af:6c:65:36:67:dc:fc:7f:42:27:84:da:ec:52:b4: 16:da:93:2f:44:3e:49:e4:75:64:39:5c:8c:a3:d0:2e:04:ab: 68:8a:01:db:e7:74:93:bc:49:89:2a:50:85:b8:30:ff:e5:a6: 3c:65:d0:3b:fe:df:46:7f:0c:35:dc:cc:ea:31:87:f5:5a:5a: c4:e0:33:62:14:ec:11:65:7e:ca:22:8a:c0:22:0f:b5:d1:8d: 90:c7:15:3d:f7:c7:ff:3d:d8:6c:05:08:56:06:72:14:1d:db: e9:fb:3a:bc:67:50:51:67:53:7a:a5:53:f6:cf:35:cc:34:35: 83:13:bc:cd:3d:fb:e4:8f:91:be:ec:75:68:16:fb:2f:77:3c: b1:11:fb:94:bc:d3:8c:bf:0a:40:a9:d7:d2:69:af:22:45:55: e1:fb:01:9a:4f:f8:f0:4c:57:d8:3b:f7:f4:20:50:a3:0c:31: d1:55:77:42:51:66:31:88:4d:78:64:f8:5c:3c:27:26:02:3e: 4f:15:b9:29 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICb3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzODU0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzg5ZS0xYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEdOrSoMtT/lZKIAeHQmOFjU0j9sEr0u025tGGg3GqowQK9jp/OPGGzlFc0Z blTmn/hZMW1yjjCW8F+xny8yLEHBGB/x4qCoJT/qKQVRcEOYOBK1hcFdXtCMmEaV 2F2Gplw6j5iBbAu+ETcfJ9NI2o809+oj/0g57neawT4Ad7LRsg7eXbTqwsJALYHB OW8aFXXJnuhtWPfWPVpLSevxoihGezwvuYQsEKp/nyug097v85ls+Wz3caZZIyAC hcz5vsKhXTA3m1delAGCPfnMhyx4ZZ2zLfSo0S8jLuNvHB+vSFZZpg1Aer6pxRDP y0BOSQPwc+noT3THX86Y3opjXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDh3Cpcn 1baVIxnCGm0sY9K+e1pBMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDZBNDA4OTRG QUE0MTFFQkJDQ0M5NjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAABCgowDwQCAAIwCQMHACABDeIAADANBgkqhkiG9w0BAQsF AAOCAQEAMuJsCv5tjBcybsesZAYbAUuWbQmq2SiE+bzpD1CwwRTtfr4/kl8cHuWY 5GqV2GGFZ0uTBz3vJBsCr2xlNmfc/H9CJ4Ta7FK0FtqTL0Q+SeR1ZDlcjKPQLgSr aIoB2+d0k7xJiSpQhbgw/+WmPGXQO/7fRn8MNdzM6jGH9VpaxOAzYhTsEWV+yiKK wCIPtdGNkMcVPffH/z3YbAUIVgZyFB3b6fs6vGdQUWdTeqVT9s81zDQ1gxO8zT37 5I+Rvux1aBb7L3c8sRH7lLzTjL8KQKnX0mmvIkVV4fsBmk/48ExX2Dv39CBQowwx 0VV3QlFmMYhNeGT4XDwnJgI+TxW5KQ== -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:19 2024 by rpki-client on console-fra.rpki-client.org