$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7874A15AAEAB11EDAC77C14DC4F9AE02.roa File: 7874A15AAEAB11EDAC77C14DC4F9AE02.roa (raw, json) Hash identifier: Bb4xzk0x9kYY8aPb0mZNoe9FFO5/OBf59laOtwLfaKU= Subject key identifier: 78:A8:4B:5D:7F:8E:EF:4A:A3:C5:C3:0A:59:4F:DC:D4:EE:60:21:82 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6A7D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7874A15AAEAB11EDAC77C14DC4F9AE02.roa Signing time: Wed 10 May 2023 16:15:02 +0000 ROA not before: Wed 10 May 2023 16:15:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 133306 IP address blocks: 2402:740:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27261 (0x6a7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:15:02 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc306-1d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:34:d7:ed:c1:f6:f4:6c:d7:f3:bc:1e:58: bf:58:f9:f2:b7:9d:52:81:4f:5d:25:7c:f1:cf:94: 7f:d3:64:0b:a0:f1:6b:c0:ad:13:8a:5d:09:0b:bf: 29:5e:12:04:b8:77:e7:7d:ea:91:86:c0:13:85:f5: cb:20:43:be:0d:63:6d:6c:0f:b5:c7:93:d8:fe:78: 7c:fb:39:bf:83:ca:a3:66:59:d3:30:d6:b7:92:06: a6:80:91:48:0d:e7:11:d0:99:d9:a3:7f:2f:f6:4f: b8:a8:8c:7a:f2:fa:59:f6:1c:85:be:17:fb:dd:93: f7:d8:48:00:2e:10:ce:cd:ce:b5:0e:38:65:26:c5: 83:56:70:35:6b:68:ec:8f:df:04:e4:36:ca:2f:56: d0:ae:95:52:62:cc:79:ea:43:86:6b:bf:7d:15:a6: 37:b8:3d:8b:e2:57:98:ee:e7:5f:f3:23:23:06:64: 90:ab:2e:eb:e4:8c:95:2a:d7:3b:7b:b5:5f:3d:43: 81:21:e9:a5:f4:db:1f:86:15:a8:d0:33:7a:6a:6f: 9d:c7:76:17:53:31:83:be:e2:0a:75:b7:1e:23:d8: 2e:25:67:9b:68:5c:65:f7:eb:80:f4:7e:20:fa:1f: 34:30:e0:f3:bf:bf:13:fe:6b:81:d0:3b:83:4f:fa: b6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A8:4B:5D:7F:8E:EF:4A:A3:C5:C3:0A:59:4F:DC:D4:EE:60:21:82 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7874A15AAEAB11EDAC77C14DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:740:2000::/48 Signature Algorithm: sha256WithRSAEncryption 07:23:55:e8:d4:7f:ab:6f:d6:2d:27:a8:48:4c:85:82:ee:7f: 1a:94:c0:4c:6d:14:cc:83:0c:6c:1b:8f:4a:64:a5:b5:c3:f2: b5:74:e5:1b:dc:63:1f:1e:de:90:c5:0d:14:f2:49:83:b2:4b: d5:18:54:be:b0:bd:50:bc:11:78:00:d5:ee:a1:de:b8:91:19: ee:13:ed:c4:22:ee:58:50:f3:ba:03:d1:8b:ff:47:4c:f1:cc: 6a:ed:83:25:a4:f3:5a:5b:a2:ff:fc:bc:43:18:55:fb:c0:93: 2c:47:cf:7e:3b:43:21:d5:bd:47:e9:07:17:2f:9c:09:e2:da: 91:88:57:d6:88:5d:25:54:11:88:d2:4b:10:49:fd:65:50:6f: dc:42:19:8d:7e:8d:c6:77:7f:c2:f5:80:5d:38:87:0f:c0:24: 00:e9:d6:8e:27:c5:fa:4d:18:9b:9e:1c:b0:16:44:ed:86:ed: fe:e2:34:26:a0:3d:a6:0f:9c:1d:48:7d:39:d5:f3:ec:3c:ac: 4b:26:d8:a7:59:4e:bc:c6:07:88:02:32:71:c4:01:4f:90:b6: ca:8b:71:8a:41:a1:68:66:47:f7:7e:4b:b0:4c:36:c6:9f:95: 93:6a:35:28:d1:f8:e3:28:38:7c:e7:04:ee:fe:9d:e4:40:e4: 14:d4:f5:0b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICan0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxNTAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzMwNi0xZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB401+3B9vRs1/O8Hli/WPnyt51SgU9dJXzxz5R/02QLoPFrwK0Til0JC78p XhIEuHfnfeqRhsAThfXLIEO+DWNtbA+1x5PY/nh8+zm/g8qjZlnTMNa3kgamgJFI DecR0JnZo38v9k+4qIx68vpZ9hyFvhf73ZP32EgALhDOzc61DjhlJsWDVnA1a2js j98E5DbKL1bQrpVSYsx56kOGa799FaY3uD2L4leY7udf8yMjBmSQqy7r5IyVKtc7 e7VfPUOBIeml9NsfhhWo0DN6am+dx3YXUzGDvuIKdbceI9guJWebaFxl9+uA9H4g +h80MODzv78T/muB0DuDT/q2KwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHioS11/ ju9Ko8XDCllP3NTuYCGCMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzg3NEExNUFB RUFCMTFFREFDNzdDMTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAgdAIAAwDQYJKoZIhvcNAQELBQADggEBAAcjVejUf6tv 1i0nqEhMhYLufxqUwExtFMyDDGwbj0pkpbXD8rV05RvcYx8e3pDFDRTySYOyS9UY VL6wvVC8EXgA1e6h3riRGe4T7cQi7lhQ87oD0Yv/R0zxzGrtgyWk81pbov/8vEMY VfvAkyxHz347QyHVvUfpBxcvnAni2pGIV9aIXSVUEYjSSxBJ/WVQb9xCGY1+jcZ3 f8L1gF04hw/AJADp1o4nxfpNGJueHLAWRO2G7f7iNCagPaYPnB1IfTnV8+w8rEsm 2KdZTrzGB4gCMnHEAU+QtsqLcYpBoWhmR/d+S7BMNsaflZNqNSjR+OMoOHznBO7+ neRA5BTU9Qs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:37 2024 by rpki-client on console-ams.rpki-client.org