$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5098AF78667F11EE8E7E5B43C4F9AE02.roa File: 5098AF78667F11EE8E7E5B43C4F9AE02.roa (raw, json) Hash identifier: SabFrMQ1cQy+7eRCbQVONN5/98DRZW3pcPgK5ojeceM= Subject key identifier: E0:2D:12:EC:70:1D:1C:09:6F:69:F9:40:05:EC:65:BD:05:73:1F:E5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7B7B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5098AF78667F11EE8E7E5B43C4F9AE02.roa Signing time: Mon 09 Oct 2023 08:39:09 +0000 ROA not before: Mon 09 Oct 2023 08:39:09 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 136633 IP address blocks: 2001:df2:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 11:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31611 (0x7b7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 9 08:39:09 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6523bc2d-eb16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:22:3b:ee:85:6b:f8:c9:cb:0e:79:8b:62: cf:b5:51:0e:dc:df:e9:7e:7c:34:b6:0b:23:f0:8e: be:4b:c8:85:3d:7d:ad:4b:5f:14:6d:79:da:a9:53: 72:e7:95:78:f7:aa:4a:e0:fc:86:4d:f2:d5:aa:81: f0:96:e5:db:e7:84:cb:27:a1:77:b8:78:cf:b0:26: da:a2:5e:79:6f:42:19:74:d3:cb:52:7b:fd:fb:fd: fb:c2:f7:dc:f4:ac:3e:c7:55:31:f4:b4:5c:90:cb: 7f:a4:94:d2:d6:62:01:6e:5f:82:ab:f4:00:1b:98: 04:ee:02:2e:e1:e5:29:e3:7e:82:41:a0:2f:21:e0: 09:67:c6:d4:86:4d:94:14:58:91:0b:e1:e2:76:40: 32:ed:b3:47:cc:ea:e3:23:66:24:ca:27:09:a5:d5: 33:6f:f9:59:6d:0f:ad:74:57:57:f3:f5:38:61:38: 9e:bf:6a:b9:86:1d:f6:ce:a1:4e:d3:9d:f0:c3:29: c2:40:b3:8e:59:7c:0a:23:2c:a1:ed:db:9f:b6:50: dc:95:31:b8:00:71:dc:94:04:be:d9:06:4f:b5:69: 88:c1:cb:00:66:6e:7d:6a:6d:d8:77:48:2b:f1:96: 6e:dd:04:a3:09:a1:45:98:2a:97:bf:42:5e:36:60: 77:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2D:12:EC:70:1D:1C:09:6F:69:F9:40:05:EC:65:BD:05:73:1F:E5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5098AF78667F11EE8E7E5B43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:e040::/48 Signature Algorithm: sha256WithRSAEncryption 80:9d:09:ac:1b:f8:ac:11:6b:c3:9b:48:a5:9f:d5:4e:72:12: c9:f4:1d:97:17:4d:5c:b1:32:19:f2:ec:7c:d6:b2:f1:d4:3e: d7:98:5c:ef:b4:4d:e4:4b:99:94:e7:82:93:41:db:83:2b:18: 33:ae:1d:d3:7f:78:ad:ff:7e:fa:65:f4:6f:a8:10:c2:1e:86: f6:f1:b2:72:33:13:fb:d5:a0:07:4f:d4:15:82:c9:e6:57:48: ca:3d:19:81:9f:70:4a:de:92:e6:4a:96:4f:f4:e6:87:9a:64: 00:60:35:a6:89:5f:83:fe:8c:4f:82:ac:8b:84:12:68:af:d1: a6:a4:45:e6:e7:b9:a0:61:b3:0c:00:d1:78:c7:63:2e:04:5f: 87:6b:be:f9:7c:b0:7b:56:62:ea:66:af:57:74:e5:45:37:d7: ed:01:3b:5e:a4:bd:e7:b7:23:52:e6:89:1f:7b:90:21:d4:ff: ef:73:78:f6:ce:fc:3d:82:2a:0a:0a:a1:31:ce:72:31:87:39: 71:c8:e1:03:bf:17:a6:dc:13:10:2c:37:ec:a9:67:70:1c:74: 58:8b:3f:38:8d:5e:ee:bc:20:2d:ef:cf:70:a1:60:de:76:89: a0:ba:68:51:35:ca:39:37:aa:e6:7b:8f:6e:4d:de:1f:b5:7b: 8a:0d:d3:e6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICe3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDA5MDgzOTA5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIzYmMyZC1lYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAUiO+6Fa/jJyw55i2LPtVEO3N/pfnw0tgsj8I6+S8iFPX2tS18UbXnaqVNy 55V496pK4PyGTfLVqoHwluXb54TLJ6F3uHjPsCbaol55b0IZdNPLUnv9+/37wvfc 9Kw+x1Ux9LRckMt/pJTS1mIBbl+Cq/QAG5gE7gIu4eUp436CQaAvIeAJZ8bUhk2U FFiRC+HidkAy7bNHzOrjI2YkyicJpdUzb/lZbQ+tdFdX8/U4YTiev2q5hh32zqFO 053wwynCQLOOWXwKIyyh7duftlDclTG4AHHclAS+2QZPtWmIwcsAZm59am3Yd0gr 8ZZu3QSjCaFFmCqXv0JeNmB3TQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOAtEuxw HRwJb2n5QAXsZb0Fcx/lMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTA5OEFGNzg2 NjdGMTFFRThFN0U1QjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3y4EAwDQYJKoZIhvcNAQELBQADggEBAICdCawb+KwR a8ObSKWf1U5yEsn0HZcXTVyxMhny7HzWsvHUPteYXO+0TeRLmZTngpNB24MrGDOu HdN/eK3/fvpl9G+oEMIehvbxsnIzE/vVoAdP1BWCyeZXSMo9GYGfcErekuZKlk/0 5oeaZABgNaaJX4P+jE+CrIuEEmiv0aakRebnuaBhswwA0XjHYy4EX4drvvl8sHtW Yupmr1d05UU31+0BO16kvee3I1LmiR97kCHU/+9zePbO/D2CKgoKoTHOcjGHOXHI 4QO/F6bcExAsN+ypZ3AcdFiLPziNXu68IC3vz3ChYN52iaC6aFE1yjk3quZ7j25N 3h+1e4oN0+Y= -----END CERTIFICATE-----Generated at Thu Apr 25 22:33:53 2024 by rpki-client on console-fra.rpki-client.org