$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A51706904FF211EBB552EE6EC4F9AE02.roa File: A51706904FF211EBB552EE6EC4F9AE02.roa (raw, json) Hash identifier: NNj6K8N7ti1aanJ1bv0NugJTkpCW0f1qk6usglf56ZY= Subject key identifier: 04:2D:17:E5:3F:49:64:AE:B1:29:FA:2D:AA:EF:57:45:57:1A:62:8A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B37 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A51706904FF211EBB552EE6EC4F9AE02.roa Signing time: Wed 10 May 2023 16:18:34 +0000 ROA not before: Wed 10 May 2023 16:18:34 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134341 IP address blocks: 2406:d540::/32 maxlen: 32 2406:d540::/36 maxlen: 36 2406:d540:1000::/36 maxlen: 36 2406:d540:2000::/36 maxlen: 36 2406:d540:3000::/36 maxlen: 36 2406:d540:4000::/36 maxlen: 36 2406:d540:5000::/36 maxlen: 36 2406:d540:6000::/36 maxlen: 36 2406:d540:7000::/36 maxlen: 36 2406:d540:8000::/36 maxlen: 36 2406:d540:9000::/36 maxlen: 36 2406:d540:a000::/36 maxlen: 36 2406:d540:b000::/36 maxlen: 36 2406:d540:c000::/36 maxlen: 36 2406:d540:d000::/36 maxlen: 36 2406:d540:e000::/36 maxlen: 36 2406:d540:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27447 (0x6b37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:18:34 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc3da-c794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c9:9c:0d:d8:87:eb:c7:4c:6f:83:c1:33:f2: f9:ff:ff:77:47:fb:0c:f0:9b:ce:7e:70:20:33:f3: c4:ac:44:aa:69:3f:00:0f:c6:44:10:e6:87:42:1f: 68:ba:ed:77:3b:d7:4f:59:54:f9:fa:f2:cb:90:c5: 29:ef:9b:7e:3d:36:9c:d1:eb:45:db:f3:06:1c:c5: d2:9e:66:25:e9:e4:96:79:84:01:8f:4f:b9:79:ff: e7:ad:f2:55:cc:d4:86:8d:a2:3d:ad:c5:7c:5a:c6: 62:95:30:74:3b:38:ca:33:bf:69:3d:78:0d:a1:5c: 95:fc:cc:ca:ac:91:38:ce:33:a8:d1:a9:e8:01:eb: ec:91:dc:16:52:e6:7a:4f:87:3b:50:9d:0e:5e:ae: 1d:c2:80:0a:11:a0:bf:59:5e:cb:70:a1:35:53:b1: d6:bc:d1:04:73:16:88:d1:4b:53:15:73:41:18:9d: 44:87:bc:a1:2c:2c:bd:a2:f7:b6:7d:a2:8b:57:59: 48:fc:c4:54:8b:fe:ac:fb:30:75:53:8e:17:86:38: 95:5d:eb:f9:de:03:c4:30:dc:ef:b7:22:ab:cb:10: 18:d9:1f:0f:65:c4:32:72:3b:21:2e:f9:e0:d0:cf: c2:7a:7c:f9:c0:86:75:b8:8f:8a:23:aa:fc:2a:11: f9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2D:17:E5:3F:49:64:AE:B1:29:FA:2D:AA:EF:57:45:57:1A:62:8A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A51706904FF211EBB552EE6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:d540::/32 Signature Algorithm: sha256WithRSAEncryption 9a:1c:44:15:ec:78:84:dd:04:ab:37:a4:d9:f6:7b:00:00:63: 30:7d:27:61:8d:5f:34:00:09:c7:88:10:24:a9:b4:8f:68:4a: 94:4e:96:43:f7:22:08:68:b8:a2:3e:7e:06:ab:17:61:97:0f: 9a:dc:56:94:14:42:5c:c3:da:55:cf:1b:3b:ee:3d:a8:1d:77: 8a:24:8b:57:ed:79:27:36:51:53:13:6b:8a:a3:48:50:be:c5: ee:9d:b8:a9:c4:bd:6a:6b:c6:9e:27:ec:c0:02:7a:9e:b7:d7: 3e:0a:f2:ac:a8:d6:a1:08:0d:71:19:c4:88:a2:c5:37:6a:b0: d0:bf:f4:7f:12:06:5d:b1:0c:7a:94:ae:89:ed:b6:fa:17:e0: e4:15:e9:9f:e7:d9:67:ba:63:a8:86:b1:cf:ae:d9:7b:05:08: a0:7e:80:e4:e2:83:fc:d2:90:62:00:93:2a:34:4d:e0:13:c2: e4:18:17:1b:f4:78:42:25:f6:3d:43:19:de:04:b9:01:e9:e6: 4d:4e:bc:b9:4a:a2:6f:61:27:d6:ec:5c:21:5d:04:52:05:54: 6f:0a:a8:1e:b7:6b:39:b4:4c:66:77:d9:f3:80:60:b4:59:89: da:e8:2f:fc:a3:b9:18:81:58:4e:c5:8d:f7:71:88:ff:60:ba: 20:9b:26:ea -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICazcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxODM0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzNkYS1jNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MmcDdiH68dMb4PBM/L5//93R/sM8JvOfnAgM/PErESqaT8AD8ZEEOaHQh9o uu13O9dPWVT5+vLLkMUp75t+PTac0etF2/MGHMXSnmYl6eSWeYQBj0+5ef/nrfJV zNSGjaI9rcV8WsZilTB0OzjKM79pPXgNoVyV/MzKrJE4zjOo0anoAevskdwWUuZ6 T4c7UJ0OXq4dwoAKEaC/WV7LcKE1U7HWvNEEcxaI0UtTFXNBGJ1Eh7yhLCy9ove2 faKLV1lI/MRUi/6s+zB1U44XhjiVXev53gPEMNzvtyKryxAY2R8PZcQycjshLvng 0M/Cenz5wIZ1uI+KI6r8KhH5sQIDAQABo4ICljCCApIwHQYDVR0OBBYEFAQtF+U/ SWSusSn6LarvV0VXGmKKMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTUxNzA2OTA0 RkYyMTFFQkI1NTJFRTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBtVAMA0GCSqGSIb3DQEBCwUAA4IBAQCaHEQV7HiE3QSr N6TZ9nsAAGMwfSdhjV80AAnHiBAkqbSPaEqUTpZD9yIIaLiiPn4Gqxdhlw+a3FaU FEJcw9pVzxs77j2oHXeKJItX7XknNlFTE2uKo0hQvsXunbipxL1qa8aeJ+zAAnqe t9c+CvKsqNahCA1xGcSIosU3arDQv/R/EgZdsQx6lK6J7bb6F+DkFemf59lnumOo hrHPrtl7BQigfoDk4oP80pBiAJMqNE3gE8LkGBcb9HhCJfY9QxneBLkB6eZNTry5 SqJvYSfW7FwhXQRSBVRvCqget2s5tExmd9nzgGC0WYna6C/8o7kYgVhOxY33cYj/ YLogmybq -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org