$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7DA6C2AEADFE11EE92653D70C4F9AE02.roa File: 7DA6C2AEADFE11EE92653D70C4F9AE02.roa (raw, json) Hash identifier: ollxxgyzDgCLXvky0SVvOiYy0JWcBHXJjpERkXCZdiI= Subject key identifier: F2:D5:47:3A:4C:7F:B2:64:62:25:27:9D:96:A7:43:E1:D2:88:5B:F6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8122 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7DA6C2AEADFE11EE92653D70C4F9AE02.roa Signing time: Mon 08 Jan 2024 08:18:24 +0000 ROA not before: Mon 08 Jan 2024 08:18:24 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151703 IP address blocks: 2001:df3:5440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33058 (0x8122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 8 08:18:24 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=659bafcf-3ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:be:6f:e5:21:11:16:7c:f8:65:e1:cd:7a: bb:68:b0:51:37:38:03:8b:88:ca:eb:96:7c:bb:83: a1:e5:58:c4:46:01:4c:d3:06:b6:88:ea:c5:14:c2: 02:86:ba:0e:ad:a7:c6:a3:19:26:4f:f0:dd:d0:02: a5:4f:76:d7:cf:8a:46:50:0f:5f:22:3f:49:fe:f6: 0a:c8:9d:6e:19:88:f0:b5:16:36:df:c1:6a:b7:12: 84:c7:62:0a:55:a7:44:b6:a1:51:b4:76:7a:cc:80: 60:79:40:0b:6c:51:5b:59:f1:82:dc:60:54:da:8f: fd:0b:9a:49:9e:cc:6f:70:5c:95:f5:c0:3b:d1:95: 2b:67:6d:22:d3:d3:6c:e5:85:72:77:07:ad:59:4b: af:cb:e9:3e:bc:aa:86:1b:73:fe:8b:af:a1:a4:18: ea:1b:85:49:f6:8c:6b:f0:05:ff:0f:05:a6:8c:b9: a2:22:a4:11:ca:d5:9a:f2:eb:f2:a5:80:d2:f6:42: 76:51:68:4d:d3:7e:93:06:99:27:88:aa:e6:a7:a3: 82:8a:51:cf:7c:59:8f:2f:37:1b:be:2c:f8:0a:ab: 2d:33:73:16:a4:40:e5:5f:70:19:46:40:1f:16:f2: 55:27:59:61:9c:c2:bc:b2:6a:be:42:03:02:86:88: 57:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D5:47:3A:4C:7F:B2:64:62:25:27:9D:96:A7:43:E1:D2:88:5B:F6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7DA6C2AEADFE11EE92653D70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5440::/48 Signature Algorithm: sha256WithRSAEncryption 89:33:f0:ae:24:f0:39:5a:96:e5:35:b0:7c:c0:59:2a:22:13: 92:03:b9:e3:62:b5:c5:cd:b6:4d:40:49:99:ce:dc:73:cf:02: 0c:03:1f:3b:43:78:a4:ad:77:0b:26:05:0d:6c:4c:18:f0:25: 1f:0d:f2:3e:b8:15:a8:52:78:66:52:a6:46:cd:33:aa:e8:17: 5f:c1:48:30:8c:71:be:35:60:43:5d:5a:5d:c8:32:c6:f8:70: 9c:96:22:44:48:9f:29:b8:6f:c2:43:a9:f3:b9:58:f9:27:14: 48:5a:e6:c8:84:70:c7:8b:9a:a1:9b:63:7b:1e:03:7d:b3:74: 6a:9b:fe:b7:d4:4e:78:c8:c0:1d:66:21:d1:da:16:ba:59:7c: 14:64:b7:ee:0a:ac:3e:bb:67:0e:55:b6:93:d6:16:03:63:b7: 60:13:c8:3c:f8:08:5c:7d:0e:38:e7:d8:a6:2d:12:eb:a6:fc: a3:21:dc:29:1d:2e:84:cc:8a:a4:0a:88:c6:fd:e2:aa:48:6b: 9c:39:8f:05:9b:6b:7f:21:b8:c1:d9:6d:01:74:25:dc:e0:f9: b6:9e:e6:bf:62:54:e9:fa:c7:f9:e5:50:32:91:82:5a:8a:3e: 1b:ff:b7:bc:05:c8:7f:4c:f1:fa:1a:20:d8:df:dd:9e:fd:54: 46:d7:c0:3c -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAIEiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDEwODA4MTgyNFoXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU5YmFmY2YtM2FiMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIJvm/lIREWfPhl4c16u2iwUTc4A4uIyuuWfLuDoeVYxEYBTNMGtojqxRTC Aoa6Dq2nxqMZJk/w3dACpU9218+KRlAPXyI/Sf72CsidbhmI8LUWNt/BarcShMdi ClWnRLahUbR2esyAYHlAC2xRW1nxgtxgVNqP/QuaSZ7Mb3BclfXAO9GVK2dtItPT bOWFcncHrVlLr8vpPryqhhtz/ouvoaQY6huFSfaMa/AF/w8Fpoy5oiKkEcrVmvLr 8qWA0vZCdlFoTdN+kwaZJ4iq5qejgopRz3xZjy83G74s+AqrLTNzFqRA5V9wGUZA HxbyVSdZYZzCvLJqvkIDAoaIV/kCAwEAAaOCApgwggKUMB0GA1UdDgQWBBTy1Uc6 TH+yZGIlJ52Wp0Ph0ohb9jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdEQTZDMkFF QURGRTExRUU5MjY1M0Q3MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN81RAMA0GCSqGSIb3DQEBCwUAA4IBAQCJM/CuJPA5 WpblNbB8wFkqIhOSA7njYrXFzbZNQEmZztxzzwIMAx87Q3ikrXcLJgUNbEwY8CUf DfI+uBWoUnhmUqZGzTOq6BdfwUgwjHG+NWBDXVpdyDLG+HCcliJESJ8puG/CQ6nz uVj5JxRIWubIhHDHi5qhm2N7HgN9s3Rqm/631E54yMAdZiHR2ha6WXwUZLfuCqw+ u2cOVbaT1hYDY7dgE8g8+AhcfQ4459imLRLrpvyjIdwpHS6EzIqkCojG/eKqSGuc OY8Fm2t/IbjB2W0BdCXc4Pm2nua/YlTp+sf55VAykYJaij4b/7e8Bch/TPH6GiDY 392e/VRG18A8 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org