$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57FEBC4AB35411E9A17DA248C4F9AE02.roa File: 57FEBC4AB35411E9A17DA248C4F9AE02.roa (raw, json) Hash identifier: 96DwQcXyrKM4KOCXkJTzxXqUQ2sEPZ0d7Hu34UFznkI= Subject key identifier: C1:5C:2F:55:E8:EE:EF:23:F9:D2:7E:AA:8A:3A:CE:F7:57:F5:CD:9B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6DA2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57FEBC4AB35411E9A17DA248C4F9AE02.roa Signing time: Wed 10 May 2023 16:30:18 +0000 ROA not before: Wed 10 May 2023 16:30:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138748 IP address blocks: 2405:1ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28066 (0x6da2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:30:18 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc69a-9247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:be:db:e7:5b:77:6e:33:70:c5:ae:cf:41: 8f:17:28:c6:96:10:eb:c4:cf:f2:84:6e:a9:cd:7b: 9f:08:e8:25:e4:89:21:20:82:79:ad:ff:91:b8:0c: f0:b8:63:41:6a:89:7e:31:f7:af:96:91:ac:31:c1: cf:c4:4a:e7:15:0a:c6:65:61:2c:f0:ef:94:9d:97: 88:43:20:ea:7a:35:da:fb:83:8a:dc:34:fd:b8:c1: 67:4f:d9:47:6c:a4:f4:17:d8:22:2b:2d:74:ee:a6: 28:1c:19:f3:98:64:60:c6:c0:09:3e:49:4d:2f:24: 84:9d:ec:a2:a7:3c:91:47:90:14:dd:5a:5f:55:45: f0:66:a8:24:8e:a3:5d:d9:ef:2e:ea:7a:02:ec:41: 0c:86:6c:47:f4:f7:c5:d8:7e:2d:a9:5b:35:e1:cd: bc:e5:be:fb:12:f0:c9:fb:f4:b8:85:9a:da:31:d4: 5d:f5:55:9a:3a:a9:a5:b6:fe:5b:dc:e7:8c:7f:04: f9:c5:83:38:03:ce:9d:22:96:43:ab:93:9a:1d:ed: 7b:c3:aa:90:ce:e6:3a:cc:d6:53:52:03:92:f9:5f: 91:1a:17:28:61:70:f1:64:5e:b0:e0:32:da:da:fb: 73:73:af:09:3c:e7:d8:bf:fa:84:9b:bb:85:62:31: 41:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5C:2F:55:E8:EE:EF:23:F9:D2:7E:AA:8A:3A:CE:F7:57:F5:CD:9B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57FEBC4AB35411E9A17DA248C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 3e:25:c4:f6:74:62:1c:60:be:c3:8d:72:ed:ea:49:00:54:66: c8:a8:4a:93:fb:7c:38:df:d0:4d:73:16:3d:99:6c:e6:86:e8: 83:e8:ef:64:a2:f8:eb:e7:ec:fa:96:cd:44:59:3e:61:7a:c6: 45:f3:3a:ce:f0:b7:a3:2b:20:16:57:b9:3d:90:ac:0a:71:56: a8:c0:ee:68:24:63:0f:b9:df:6b:fe:ce:a7:75:69:49:48:d0: 7e:62:bc:76:13:b3:ae:31:08:6c:34:5c:21:f4:b7:29:62:25: 7e:1d:a9:7a:87:2c:ab:5b:b5:c2:af:bc:05:cf:4d:94:ec:26: 65:0d:d6:7a:15:4c:3a:b9:b6:ad:02:dc:3a:21:ca:58:30:db: ed:31:da:10:91:af:20:6e:94:09:c8:92:46:04:56:a4:77:c6: d1:12:e3:1e:b6:a6:a8:b3:bb:4b:3e:6c:48:47:c3:29:d4:bf: 3d:e0:2f:5c:22:0b:be:91:d9:1d:bf:89:67:9a:df:e6:1e:c9: 26:82:d4:23:c1:9a:47:cd:b9:c4:d2:7d:64:d3:33:09:2d:e1: dd:5c:20:71:fb:42:71:61:a9:08:3c:47:fd:a7:65:8e:d1:23: d9:1b:98:5c:5a:cb:6d:9b:21:e7:e2:62:89:94:55:e5:d9:58: de:70:58:32 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICbaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMDE4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzY5YS05MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCW+2+dbd24zcMWuz0GPFyjGlhDrxM/yhG6pzXufCOgl5IkhIIJ5rf+RuAzw uGNBaol+MfevlpGsMcHPxErnFQrGZWEs8O+UnZeIQyDqejXa+4OK3DT9uMFnT9lH bKT0F9giKy107qYoHBnzmGRgxsAJPklNLySEneyipzyRR5AU3VpfVUXwZqgkjqNd 2e8u6noC7EEMhmxH9PfF2H4tqVs14c285b77EvDJ+/S4hZraMdRd9VWaOqmltv5b 3OeMfwT5xYM4A86dIpZDq5OaHe17w6qQzuY6zNZTUgOS+V+RGhcoYXDxZF6w4DLa 2vtzc68JPOfYv/qEm7uFYjFBdQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMFcL1Xo 7u8j+dJ+qoo6zvdX9c2bMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNTdGRUJDNEFC MzU0MTFFOUExN0RBMjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBR7AMA0GCSqGSIb3DQEBCwUAA4IBAQA+JcT2dGIcYL7D jXLt6kkAVGbIqEqT+3w439BNcxY9mWzmhuiD6O9kovjr5+z6ls1EWT5hesZF8zrO 8LejKyAWV7k9kKwKcVaowO5oJGMPud9r/s6ndWlJSNB+Yrx2E7OuMQhsNFwh9Lcp YiV+Hal6hyyrW7XCr7wFz02U7CZlDdZ6FUw6ubatAtw6IcpYMNvtMdoQka8gbpQJ yJJGBFakd8bREuMetqaos7tLPmxIR8Mp1L894C9cIgu+kdkdv4lnmt/mHskmgtQj wZpHzbnE0n1k0zMJLeHdXCBx+0JxYakIPEf9p2WO0SPZG5hcWsttmyHn4mKJlFXl 2VjecFgy -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:33 2024 by rpki-client on console-ams.rpki-client.org