$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8691348C8C2E11EDBA232975C4F9AE02.roa File: 8691348C8C2E11EDBA232975C4F9AE02.roa (raw, json) Hash identifier: w3Mmsi/m+ZZOm9aB25gH0J9jvWdYuYspuCu1rH/qOUM= Subject key identifier: 91:42:04:EF:80:33:9E:35:23:F4:1B:E7:02:47:39:77:21:4D:C9:C0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6D3C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8691348C8C2E11EDBA232975C4F9AE02.roa Signing time: Wed 10 May 2023 16:28:20 +0000 ROA not before: Wed 10 May 2023 16:28:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137657 IP address blocks: 2403:74c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27964 (0x6d3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:28:20 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc623-c5fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b5:8c:ac:f8:bb:42:b3:ec:3f:2e:ac:ff:ce: 47:72:36:3a:35:bd:d9:61:9a:9b:be:a6:69:ab:c0: 80:17:10:03:f0:4d:32:42:fc:e9:41:a1:48:31:2e: 9d:88:10:05:64:44:a0:79:4a:f9:6e:42:4b:dc:72: 31:11:67:77:8f:60:58:e2:3d:b4:83:7a:87:ce:2d: 74:eb:18:ad:0b:ba:3f:f0:34:57:dd:b5:a5:ec:87: cb:eb:91:c4:7b:a3:71:89:ed:26:7a:88:4f:1e:dd: ec:b3:e3:99:07:47:5a:bb:6d:3c:37:17:5e:78:2d: a3:af:bd:e7:d3:9e:96:61:25:ce:d4:33:5e:c6:81: 90:0a:9a:b2:a8:4e:3c:8d:e9:41:98:32:d1:bc:a4: 8e:19:56:6e:6f:cd:0a:a9:0c:e8:9c:b1:b4:12:a6: af:77:e0:f2:80:84:96:71:9f:01:c9:0e:9b:b9:e8: 2b:95:b4:2a:16:5c:bd:39:6f:87:30:3b:41:e8:e5: 39:00:df:5c:44:12:b8:ae:8d:6d:3b:f8:d6:8e:a4: a7:78:58:aa:dc:f9:19:d9:0d:10:aa:20:c4:0b:fb: b8:b1:2a:94:2a:bf:1b:73:0f:54:42:3d:3e:81:99: ff:4f:92:66:58:3d:15:9a:e4:25:49:ee:e4:6f:7f: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:42:04:EF:80:33:9E:35:23:F4:1B:E7:02:47:39:77:21:4D:C9:C0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/8691348C8C2E11EDBA232975C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:74c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:4c:85:13:57:b7:97:2d:13:14:dd:7f:24:27:91:32:05:91: 6c:4e:5a:17:f7:29:b4:d2:48:04:41:3f:a4:aa:6e:17:f0:27: b9:f1:c6:d2:af:b8:05:ce:54:7f:0b:8b:67:68:35:19:a4:12: a2:78:33:29:3a:b3:09:a0:41:64:f9:2f:dc:3e:da:21:e8:a2: 3e:8f:d3:af:d9:ee:f6:52:3d:41:ae:8c:1c:d6:2b:97:6c:dd: 3d:e6:51:c3:12:a3:61:aa:b7:ae:9c:74:49:cf:2e:d8:1d:f7: 7f:81:e9:16:63:16:e5:7d:16:bb:bc:b0:7c:9a:38:a7:87:08: 75:cd:d8:ed:4f:0b:da:9c:46:48:f4:2b:bd:79:93:b1:01:fd: 95:ee:1d:a9:70:cb:89:45:27:73:15:b1:83:48:af:50:d7:bc: 04:2d:fe:ab:3c:13:f7:eb:d4:60:7c:30:51:0c:26:65:c6:c6: 76:0d:e6:af:28:63:f4:ea:87:98:02:8b:f3:03:68:2d:90:89: 21:f4:a9:27:36:a3:61:73:60:8c:38:22:1e:69:b7:42:11:28: 48:52:ac:a7:4e:1f:65:82:d8:96:01:8f:0a:d9:b0:f0:cd:47: 6a:c0:70:e6:ce:d0:7d:4b:68:dc:ec:aa:c0:ea:a9:fd:5f:13: 25:33:41:cb -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICbTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyODIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzYyMy1jNWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bWMrPi7QrPsPy6s/85HcjY6Nb3ZYZqbvqZpq8CAFxAD8E0yQvzpQaFIMS6d iBAFZESgeUr5bkJL3HIxEWd3j2BY4j20g3qHzi106xitC7o/8DRX3bWl7IfL65HE e6Nxie0meohPHt3ss+OZB0dau208NxdeeC2jr73n056WYSXO1DNexoGQCpqyqE48 jelBmDLRvKSOGVZub80KqQzonLG0Eqavd+DygISWcZ8ByQ6buegrlbQqFly9OW+H MDtB6OU5AN9cRBK4ro1tO/jWjqSneFiq3PkZ2Q0QqiDEC/u4sSqUKr8bcw9UQj0+ gZn/T5JmWD0VmuQlSe7kb3+S8QIDAQABo4ICljCCApIwHQYDVR0OBBYEFJFCBO+A M541I/Qb5wJHOXchTcnAMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODY5MTM0OEM4 QzJFMTFFREJBMjMyOTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA3TAMA0GCSqGSIb3DQEBCwUAA4IBAQBtTIUTV7eXLRMU 3X8kJ5EyBZFsTloX9ym00kgEQT+kqm4X8Ce58cbSr7gFzlR/C4tnaDUZpBKieDMp OrMJoEFk+S/cPtoh6KI+j9Ov2e72Uj1Browc1iuXbN095lHDEqNhqreunHRJzy7Y Hfd/gekWYxblfRa7vLB8mjinhwh1zdjtTwvanEZI9Cu9eZOxAf2V7h2pcMuJRSdz FbGDSK9Q17wELf6rPBP369RgfDBRDCZlxsZ2DeavKGP06oeYAovzA2gtkIkh9Kkn NqNhc2CMOCIeabdCEShIUqynTh9lgtiWAY8K2bDwzUdqwHDmztB9S2jc7KrA6qn9 XxMlM0HL -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:38 2024 by rpki-client on console-ams.rpki-client.org