$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/61E0CE4ED20611EEAD3BE953C4F9AE02.roa File: 61E0CE4ED20611EEAD3BE953C4F9AE02.roa (raw, json) Hash identifier: teIVp1s+k0TjSEXepgCfpnkbF0G0y8H2i1OT55NXDYQ= Subject key identifier: 23:E9:3D:09:A1:4D:37:51:D3:02:99:7E:07:D4:C0:41:8F:59:B1:0A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9066 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/61E0CE4ED20611EEAD3BE953C4F9AE02.roa Signing time: Thu 30 May 2024 16:27:47 +0000 ROA not before: Thu 30 May 2024 16:27:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151747 IP address blocks: 2001:df3:7a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Sep 2024 15:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36966 (0x9066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:27:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a902-96c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dd:fc:38:71:53:ec:7b:47:72:68:62:c3:35: bc:89:1a:80:ea:3d:97:0e:76:c5:07:0d:67:ac:84: 68:97:b8:6f:2e:c8:3a:64:e5:3d:87:b1:de:74:b8: 44:b8:93:16:f4:33:22:f4:01:a3:42:12:09:1f:1b: d7:db:d9:45:7b:94:02:4b:9d:07:a4:1b:54:22:22: a2:06:fa:5f:60:9d:be:13:30:a3:39:18:f7:ef:47: b2:e3:14:19:54:48:84:1e:e0:5c:19:f4:42:2d:00: 3a:92:87:4b:a5:4d:ac:b9:32:8f:ee:53:90:41:54: 74:f1:bb:34:d9:d2:bf:1f:f7:3f:a1:48:2c:26:52: 49:de:f2:83:d7:6f:df:34:51:0a:40:7c:ab:bf:76: 29:9a:65:67:21:90:41:49:61:f2:37:9f:59:c9:bf: f3:00:8a:0a:cd:d6:df:08:52:05:48:18:47:2e:0a: ee:8b:fb:25:da:88:02:31:7b:21:0c:e9:93:a1:4f: 77:b9:d9:1e:11:c5:af:9e:9a:24:2d:d7:48:1c:13: 9d:1a:39:f4:20:c7:50:95:0e:36:72:b8:bc:37:2a: 06:d9:a0:09:dc:08:37:0b:c3:b1:cd:53:41:18:87: 65:20:7c:dd:e6:5b:18:01:44:2d:29:d7:10:ad:6f: 1d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E9:3D:09:A1:4D:37:51:D3:02:99:7E:07:D4:C0:41:8F:59:B1:0A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/61E0CE4ED20611EEAD3BE953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7a40::/48 Signature Algorithm: sha256WithRSAEncryption 3f:95:5e:f0:cb:72:bc:af:30:17:d5:d9:8a:1b:35:f2:b0:1d: 0e:bf:df:65:de:4c:28:4f:b9:d0:38:36:fc:cf:83:03:3a:b7: 22:43:b8:b8:c2:ff:c6:90:ee:53:90:e9:bf:bb:ea:21:11:73: 6e:22:ef:f3:72:9b:bf:7d:6d:d2:ae:fe:35:01:69:b3:20:80: 00:3b:de:2c:f8:e5:f8:a5:45:54:32:2b:0e:00:d1:96:6c:9b: 89:f3:63:c7:6d:29:10:9f:51:60:04:35:49:41:2a:0e:1f:f4: c6:98:54:0a:08:40:97:77:28:be:78:63:99:80:0d:8b:b4:ce: cf:18:05:4a:ab:10:66:10:bf:45:6e:1c:6d:dc:e2:54:0f:1b: 31:44:40:6f:fb:84:35:6a:d5:69:01:20:1b:b3:c6:7c:78:bd: 32:d2:88:1c:38:4e:92:99:b2:90:af:9b:70:c0:88:8c:53:eb: a0:01:c5:40:f7:4c:3b:6a:77:37:97:58:18:88:88:08:cf:61: b5:04:9b:ab:81:31:84:79:97:92:60:45:8f:37:b4:12:61:54: 45:4b:91:e7:55:a9:99:6e:d3:7f:fa:32:84:a2:e6:fb:db:14: a1:7c:db:5a:f9:59:47:b8:be:4a:3a:3f:e2:6d:88:23:17:50: 19:59:37:7d -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJBmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2Mjc0N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE5MDItOTZjMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMrd/DhxU+x7R3JoYsM1vIkagOo9lw52xQcNZ6yEaJe4by7IOmTlPYex3nS4 RLiTFvQzIvQBo0ISCR8b19vZRXuUAkudB6QbVCIiogb6X2CdvhMwozkY9+9HsuMU GVRIhB7gXBn0Qi0AOpKHS6VNrLkyj+5TkEFUdPG7NNnSvx/3P6FILCZSSd7yg9dv 3zRRCkB8q792KZplZyGQQUlh8jefWcm/8wCKCs3W3whSBUgYRy4K7ov7JdqIAjF7 IQzpk6FPd7nZHhHFr56aJC3XSBwTnRo59CDHUJUONnK4vDcqBtmgCdwINwvDsc1T QRiHZSB83eZbGAFELSnXEK1vHUUCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQj6T0J oU03UdMCmX4H1MBBj1mxCjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYxRTBDRTRF RDIwNjExRUVBRDNCRTk1M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN83pAMA0GCSqGSIb3DQEBCwUAA4IBAQA/lV7wy3K8 rzAX1dmKGzXysB0Ov99l3kwoT7nQODb8z4MDOrciQ7i4wv/GkO5TkOm/u+ohEXNu Iu/zcpu/fW3Srv41AWmzIIAAO94s+OX4pUVUMisOANGWbJuJ82PHbSkQn1FgBDVJ QSoOH/TGmFQKCECXdyi+eGOZgA2LtM7PGAVKqxBmEL9Fbhxt3OJUDxsxREBv+4Q1 atVpASAbs8Z8eL0y0ogcOE6SmbKQr5twwIiMU+ugAcVA90w7anc3l1gYiIgIz2G1 BJurgTGEeZeSYEWPN7QSYVRFS5HnVamZbtN/+jKEoub72xShfNta+VlHuL5KOj/i bYgjF1AZWTd9 -----END CERTIFICATE-----Generated at Fri Sep 20 16:41:54 2024 by rpki-client on console-ams.rpki-client.org