$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa File: 4A2D8A40E1D711EEA0F9737AC4F9AE02.roa (raw, json) Hash identifier: AlbJlyrvNpeoK3dRMjt/y6Eh868jpZgVl3UF63TW6N8= Subject key identifier: 56:EA:B5:E3:76:08:C1:F3:6C:E8:42:5E:A2:47:2F:4D:FD:0C:58:FA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 84C2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa Signing time: Thu 14 Mar 2024 07:48:47 +0000 ROA not before: Thu 14 Mar 2024 07:48:47 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 152581 IP address blocks: 2001:df3:8840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33986 (0x84c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 14 07:48:47 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65f2abdf-dbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:08:7d:3e:8f:35:22:5f:12:e5:72:6c:2b:cf: 57:c0:c9:f4:ef:b4:09:0f:9f:a1:22:3d:02:28:76: 83:cf:ee:9d:55:a8:58:67:52:e8:ee:47:2a:1c:c2: 1c:d1:e9:a1:2b:5e:1b:da:43:a4:69:f1:06:45:c6: 61:36:af:88:4a:77:83:c0:29:04:e9:fd:73:48:cb: d9:b9:3c:45:2c:79:45:d8:91:9e:00:bc:f7:0c:62: 37:91:bd:83:a8:9d:ae:36:d6:3a:2d:d8:99:c9:25: 62:6e:cb:3d:32:41:b0:4b:5e:05:8b:85:42:57:1e: 9f:15:ba:0d:42:98:38:b1:f9:06:66:a5:86:cf:3b: 27:7e:79:f8:16:7e:26:1d:9b:ab:79:39:ac:21:b8: 13:d2:5b:69:15:0e:a3:ed:3b:ff:50:9f:09:3f:06: f2:99:2a:d5:3c:e2:2a:0c:e2:38:a2:23:5e:2c:4c: eb:27:7b:e9:66:85:bc:12:d8:c5:df:3d:ec:52:a7: ad:d0:a2:3d:a9:70:aa:77:52:aa:6f:8b:35:e6:9d: b4:33:09:88:40:f5:b4:d0:b3:7d:3c:eb:3d:41:fc: a6:64:1d:e7:02:22:cf:e8:38:75:11:d8:8c:c6:b5: 46:01:5d:2c:78:dd:f9:7a:3f:8f:a4:b7:16:ee:77: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:EA:B5:E3:76:08:C1:F3:6C:E8:42:5E:A2:47:2F:4D:FD:0C:58:FA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A2D8A40E1D711EEA0F9737AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:8840::/48 Signature Algorithm: sha256WithRSAEncryption 8e:9a:67:fe:44:ea:38:35:f6:ec:d4:c9:57:de:31:96:95:c3: c8:29:60:06:88:00:f9:3b:20:b3:bf:da:e6:4a:52:56:72:83: d3:41:eb:ed:81:79:f2:e3:fe:f9:db:a4:99:81:af:31:a1:ba: 9b:a2:09:c9:78:dc:a3:98:7e:ed:64:6e:7d:a2:a5:3c:46:9f: 16:43:4d:d1:e7:e7:07:bc:9e:18:fa:0a:26:8e:28:a7:a9:e3: a4:c4:42:38:fb:a5:66:b8:4e:4e:13:39:bc:25:62:f5:7d:e1: 03:71:67:13:2b:14:c7:a6:42:13:49:7a:aa:7d:c5:d6:3f:cc: 13:a3:3f:80:68:be:c8:60:88:07:7e:1d:bd:ef:ac:14:38:46: 2b:18:07:a0:85:ad:76:f1:30:35:0f:02:be:c5:37:39:9f:46: 2e:a3:87:06:0a:58:11:1e:7f:01:63:c4:37:9c:76:c1:5e:c4: fc:74:92:0e:3e:e7:81:91:21:be:3c:26:b1:d2:b0:eb:77:07: 81:ae:15:c2:ee:27:5f:1c:f9:22:ad:33:23:9b:50:7c:a8:ac: 7f:38:ee:14:06:b5:4a:69:e5:d5:7d:58:c6:3c:1f:95:6b:12: 51:44:c5:b5:db:90:7f:33:d1:b4:0f:04:ed:c0:63:94:1c:c8: 92:dc:32:36 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAITCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDMxNDA3NDg0N1oXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVmMmFiZGYtZGJiZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYIfT6PNSJfEuVybCvPV8DJ9O+0CQ+foSI9Aih2g8/unVWoWGdS6O5HKhzC HNHpoSteG9pDpGnxBkXGYTaviEp3g8ApBOn9c0jL2bk8RSx5RdiRngC89wxiN5G9 g6idrjbWOi3YmcklYm7LPTJBsEteBYuFQlcenxW6DUKYOLH5Bmalhs87J355+BZ+ Jh2bq3k5rCG4E9JbaRUOo+07/1CfCT8G8pkq1TziKgziOKIjXixM6yd76WaFvBLY xd897FKnrdCiPalwqndSqm+LNeadtDMJiED1tNCzfTzrPUH8pmQd5wIiz+g4dRHY jMa1RgFdLHjd+Xo/j6S3Fu53WAUCAwEAAaOCApgwggKUMB0GA1UdDgQWBBRW6rXj dgjB82zoQl6iRy9N/QxY+jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBMkQ4QTQw RTFENzExRUVBMEY5NzM3QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN84hAMA0GCSqGSIb3DQEBCwUAA4IBAQCOmmf+ROo4 Nfbs1MlX3jGWlcPIKWAGiAD5OyCzv9rmSlJWcoPTQevtgXny4/7526SZga8xobqb ognJeNyjmH7tZG59oqU8Rp8WQ03R5+cHvJ4Y+gomjiinqeOkxEI4+6VmuE5OEzm8 JWL1feEDcWcTKxTHpkITSXqqfcXWP8wToz+AaL7IYIgHfh2976wUOEYrGAegha12 8TA1DwK+xTc5n0Yuo4cGClgRHn8BY8Q3nHbBXsT8dJIOPueBkSG+PCax0rDrdweB rhXC7idfHPkirTMjm1B8qKx/OO4UBrVKaeXVfVjGPB+VaxJRRMW125B/M9G0DwTt wGOUHMiS3DI2 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:31 2024 by rpki-client on console-ams.rpki-client.org