$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EECC4AAC0DF11EE8F84FA79C4F9AE02.roa File: 5EECC4AAC0DF11EE8F84FA79C4F9AE02.roa (raw, json) Hash identifier: WHlGeQWUF76AyBPC4/maDxCbPshx4jNPNI1orS5RsLk= Subject key identifier: 75:01:B3:D1:2C:A8:35:F7:D6:8B:31:F9:2A:F9:20:7B:5E:6A:25:B5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8250 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EECC4AAC0DF11EE8F84FA79C4F9AE02.roa Signing time: Thu 01 Feb 2024 08:53:30 +0000 ROA not before: Thu 01 Feb 2024 08:53:30 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151731 IP address blocks: 2401:7ca0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33360 (0x8250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 1 08:53:30 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65bb5c0a-e27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:55:2b:66:c9:b6:1a:ef:ef:07:0e:cf:6a:c9: b6:17:c8:c6:0d:50:c3:3a:73:07:2f:b6:82:aa:7d: 1b:03:b8:95:99:83:ac:ea:ac:cb:07:5d:8d:76:2d: 90:0a:75:9b:cf:30:94:0f:5b:aa:68:d9:d5:4c:b7: 76:8b:a5:6e:49:d4:4c:92:e8:a1:81:d0:66:26:63: db:91:f4:44:20:d2:ef:bc:f6:15:ad:67:0f:1d:e7: c1:04:7f:37:9d:60:73:2f:da:15:70:ed:3a:df:1d: 4b:8c:91:66:71:66:5e:26:cb:4e:6c:39:69:63:68: 34:42:f6:69:6d:6a:d4:53:74:ee:b4:64:00:2b:04: 16:bc:68:eb:51:87:c0:b7:69:0a:a3:45:1b:c9:1e: ac:8f:d9:cd:d5:d9:6b:0c:f3:9d:f5:7c:7e:40:f4: 25:17:a3:35:e3:d1:4a:9c:1a:ef:71:99:69:27:22: f5:ef:1e:0f:22:7f:72:12:51:87:97:9d:fd:b3:fe: c2:ab:e2:37:6e:ee:83:ae:6f:3d:41:30:c7:d5:29: 6c:2c:0b:62:3e:9f:7f:df:7b:f9:49:08:9a:fd:bd: 63:50:1e:7f:d5:10:b7:b6:50:87:fc:d8:e7:0f:69: 1a:01:2c:6a:53:1b:7d:13:c4:9e:2b:45:b7:e0:6b: 63:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:01:B3:D1:2C:A8:35:F7:D6:8B:31:F9:2A:F9:20:7B:5E:6A:25:B5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EECC4AAC0DF11EE8F84FA79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:7ca0::/32 Signature Algorithm: sha256WithRSAEncryption 53:d3:38:7a:9b:26:c1:bc:89:22:fc:1e:b3:42:b6:c8:d3:86: cb:a0:45:d1:cb:34:6d:f2:f6:8d:f1:23:54:c4:57:4e:0a:e2: ef:45:57:78:a6:08:fd:8f:8a:cf:49:ba:5a:36:f7:dc:87:7f: 6a:12:1e:22:cc:99:20:52:c2:a1:f6:27:81:7b:c9:3c:dc:c0: fb:a2:f5:4e:ba:47:c9:14:f8:72:34:db:7c:bb:59:bf:d0:5b: 87:08:0a:e3:91:ba:e4:00:ff:c8:f5:87:1a:00:26:01:14:da: 96:a0:9d:ce:2f:ef:ff:e9:33:04:cb:cd:11:77:0f:b7:38:13: 75:a2:92:3b:64:fb:45:aa:54:9c:55:cb:58:6a:91:9d:20:49: 18:70:8e:d8:b8:72:ed:a5:f6:05:cd:0a:33:54:22:de:4f:d7: 5d:08:19:52:47:58:87:f0:04:4f:23:aa:0d:61:63:f9:e9:b2: bc:f6:21:19:ab:3a:53:3c:05:0a:fa:c9:73:f6:bf:d9:05:24: d0:e4:26:aa:ab:35:6a:aa:96:bf:33:f9:de:aa:6e:31:f9:66: ad:51:93:67:7a:a7:52:dd:4a:71:7c:6a:63:e5:e7:99:cf:ca: 03:6e:f1:a3:f6:47:9c:87:34:ee:f7:a5:28:5d:77:3b:ba:58: a3:62:e5:07 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAIJQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDIwMTA4NTMzMFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjViYjVjMGEtZTI3YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpVK2bJthrv7wcOz2rJthfIxg1QwzpzBy+2gqp9GwO4lZmDrOqsywddjXYt kAp1m88wlA9bqmjZ1Uy3doulbknUTJLooYHQZiZj25H0RCDS77z2Fa1nDx3nwQR/ N51gcy/aFXDtOt8dS4yRZnFmXibLTmw5aWNoNEL2aW1q1FN07rRkACsEFrxo61GH wLdpCqNFG8kerI/ZzdXZawzznfV8fkD0JRejNePRSpwa73GZaSci9e8eDyJ/chJR h5ed/bP+wqviN27ug65vPUEwx9UpbCwLYj6ff997+UkImv29Y1Aef9UQt7ZQh/zY 5w9pGgEsalMbfRPEnitFt+BrY8cCAwEAAaOCApYwggKSMB0GA1UdDgQWBBR1AbPR LKg199aLMfkq+SB7XmoltTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVFRUNDNEFB QzBERjExRUU4Rjg0RkE3OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAF8oDANBgkqhkiG9w0BAQsFAAOCAQEAU9M4epsmwbyJ Ivwes0K2yNOGy6BF0cs0bfL2jfEjVMRXTgri70VXeKYI/Y+Kz0m6Wjb33Id/ahIe IsyZIFLCofYngXvJPNzA+6L1TrpHyRT4cjTbfLtZv9BbhwgK45G65AD/yPWHGgAm ARTalqCdzi/v/+kzBMvNEXcPtzgTdaKSO2T7RapUnFXLWGqRnSBJGHCO2Lhy7aX2 Bc0KM1Qi3k/XXQgZUkdYh/AETyOqDWFj+emyvPYhGas6UzwFCvrJc/a/2QUk0OQm qqs1aqqWvzP53qpuMflmrVGTZ3qnUt1KcXxqY+Xnmc/KA27xo/ZHnIc07velKF13 O7pYo2LlBw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:34 2024 by rpki-client on console-ams.rpki-client.org