$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa File: AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa (raw, json) Hash identifier: rEUDiwzxVQZLeY86Y+YYyFIH1q54NmMIsHkhlh5rW6A= Subject key identifier: 60:A1:E1:C6:86:0A:A8:1F:9E:79:9D:F0:AF:34:08:A9:5D:74:26:12 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6CD6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa Signing time: Wed 10 May 2023 16:26:28 +0000 ROA not before: Wed 10 May 2023 16:26:28 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137104 IP address blocks: 2001:df0:c7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27862 (0x6cd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:26:28 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc5b4-9252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:45:92:c4:59:f4:fd:f2:4c:b6:65:fe:ec: 65:72:12:13:67:8a:aa:28:45:ee:b0:ab:0d:07:aa: 92:d7:d6:2c:a9:c4:1c:e8:ee:fa:5c:86:4b:ee:16: 13:09:d7:4e:e9:82:43:cd:38:26:d3:f7:13:92:29: 13:b0:d9:3b:08:f8:b5:6f:46:c2:6b:dc:f4:2b:e0: 6e:b8:1a:fa:bf:8a:cc:92:8a:2a:2b:6b:77:70:a3: e0:ea:23:9e:7a:68:7e:34:e8:db:71:e7:51:02:91: 16:2a:0d:b2:88:54:fa:76:95:ca:ec:43:d9:9c:3b: 3e:0d:b2:3f:93:80:cb:4c:88:fb:a1:df:13:ea:47: 3d:e2:29:fc:d8:e7:55:30:6c:c1:8e:a5:de:89:27: 25:40:dd:ba:4e:27:e8:ec:c0:61:01:04:ee:2b:79: 02:d1:e2:0f:09:0b:b6:47:74:5c:1e:7c:c2:05:e7: 86:b1:e0:8b:6b:0f:e6:bb:54:ae:0f:1b:30:68:ce: 68:59:80:a2:99:9a:8b:dc:03:fe:0f:7e:d9:e6:b2: 86:a0:ae:1c:e9:42:76:96:34:cf:37:5e:61:51:99: 46:64:13:f1:5a:86:9f:df:29:f9:fc:5e:0c:19:cc: 79:2f:24:0b:c3:d6:f6:53:e7:fd:66:c7:e9:2f:ec: d9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A1:E1:C6:86:0A:A8:1F:9E:79:9D:F0:AF:34:08:A9:5D:74:26:12 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AF10CE5C13BD11EDB0A3DB50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:c7c0::/48 Signature Algorithm: sha256WithRSAEncryption aa:2a:83:46:03:20:38:f9:aa:ae:fa:bf:05:5f:9a:50:19:fa: ff:51:c7:32:60:be:2b:d6:66:87:03:c1:15:91:b1:7a:61:40: 69:c7:e4:7f:00:9e:21:b0:a2:a3:84:81:4a:0c:4e:fd:88:ab: 2d:a9:c1:37:a1:e8:e9:d9:71:88:74:48:e9:a0:f3:37:41:3a: 84:32:2f:85:ea:e4:b0:e3:a8:5c:e6:fc:89:c4:f4:74:e5:b6: 2b:34:13:0c:24:e6:8e:b8:4c:91:81:75:ec:69:5e:5c:ff:2f: 4a:e8:0e:b7:e8:43:25:7e:6f:5e:15:90:40:c9:29:30:b3:1e: 6a:3a:7e:b3:47:ac:c2:d8:75:53:f6:56:e7:55:19:cc:e4:75: ac:4e:56:c7:73:82:e7:8c:79:a8:ab:2e:23:e6:a7:b7:2a:24: 9e:e9:3e:ce:86:62:b0:fb:c2:2f:33:68:e7:ef:07:f1:19:b3: 8a:e6:94:58:a6:c0:9c:2d:4f:1f:da:18:bc:a3:7b:d3:0f:73: cf:d8:57:8e:89:57:3a:ae:16:2a:60:2d:c9:59:73:e9:13:92: 90:e3:5a:34:aa:b9:32:6a:3d:dc:fa:05:ac:c3:59:d7:4c:71: 89:e5:a2:ce:8f:ca:c4:bc:e0:3f:99:ac:09:8a:e5:86:56:6b: 01:8d:de:95 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICbNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYyNjI4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzViNC05MjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4xFksRZ9P3yTLZl/uxlchITZ4qqKEXusKsNB6qS19YsqcQc6O76XIZL7hYT CddO6YJDzTgm0/cTkikTsNk7CPi1b0bCa9z0K+BuuBr6v4rMkooqK2t3cKPg6iOe emh+NOjbcedRApEWKg2yiFT6dpXK7EPZnDs+DbI/k4DLTIj7od8T6kc94in82OdV MGzBjqXeiSclQN26Tifo7MBhAQTuK3kC0eIPCQu2R3RcHnzCBeeGseCLaw/mu1Su DxswaM5oWYCimZqL3AP+D37Z5rKGoK4c6UJ2ljTPN15hUZlGZBPxWoaf3yn5/F4M Gcx5LyQLw9b2U+f9ZsfpL+zZXwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGCh4caG Cqgfnnmd8K80CKlddCYSMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQUYxMENFNUMx M0JEMTFFREIwQTNEQjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wx8AwDQYJKoZIhvcNAQELBQADggEBAKoqg0YDIDj5 qq76vwVfmlAZ+v9RxzJgvivWZocDwRWRsXphQGnH5H8AniGwoqOEgUoMTv2Iqy2p wTeh6OnZcYh0SOmg8zdBOoQyL4Xq5LDjqFzm/InE9HTltis0Ewwk5o64TJGBdexp Xlz/L0roDrfoQyV+b14VkEDJKTCzHmo6frNHrMLYdVP2VudVGczkdaxOVsdzgueM eairLiPmp7cqJJ7pPs6GYrD7wi8zaOfvB/EZs4rmlFimwJwtTx/aGLyje9MPc8/Y V46JVzquFipgLclZc+kTkpDjWjSquTJqPdz6BazDWddMcYnlos6PysS84D+ZrAmK 5YZWawGN3pU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:41 2024 by rpki-client on console-ams.rpki-client.org