$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa File: B331A964432A11EEA004DA1AC4F9AE02.roa (raw, json) Hash identifier: gZXViWxH+I4Z1SpTM2YKAk+BCQWnPjwgBKVnBPf6s1g= Subject key identifier: 85:F8:81:6B:25:66:8F:9D:F0:75:4E:FB:1C:92:45:5D:F8:65:E7:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 78A4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa Signing time: Fri 25 Aug 2023 09:35:17 +0000 ROA not before: Fri 25 Aug 2023 09:35:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134257 IP address blocks: 2001:df1:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30884 (0x78a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 25 09:35:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64e875d5-551e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:44:38:26:bd:bb:28:9b:5b:f6:68:df:8d: 3c:8a:5f:69:31:41:33:fa:c9:fd:72:e9:b6:a9:c7: 72:c1:16:72:bd:c0:3d:78:22:44:c2:e2:5a:ca:ab: 3b:ab:56:89:66:d4:71:ed:0d:91:f7:61:0f:26:5c: 73:c0:36:bd:32:3c:55:66:dc:9f:f9:d9:cf:2d:5c: af:73:72:ed:29:5d:51:40:5d:1a:e7:30:a8:3a:5d: e9:59:87:c1:f8:2d:ac:98:9c:67:8e:bb:93:a9:7c: 11:ca:55:ca:1d:d5:e3:6c:6a:88:5b:22:92:be:e4: e9:f2:a5:a2:a9:cf:0c:54:68:5a:f6:fb:c4:a6:20: 55:9e:ee:47:16:0f:bb:ca:86:7b:94:6c:96:90:13: 79:10:ca:d9:ea:fd:59:a9:62:28:38:c9:ec:04:cd: c0:f2:2b:6d:cd:f8:df:a1:04:09:69:ea:6f:76:ca: 4e:15:c9:a6:c9:41:6f:24:c9:d4:42:ff:8c:e1:2c: 21:bd:53:d8:f1:0e:15:d0:b9:f5:f3:1a:46:51:29: f7:0d:51:cf:63:e7:59:f0:11:f7:22:cd:23:34:58: d0:9d:2a:2a:09:44:ca:21:76:e8:7a:5f:06:d2:27: 8d:02:35:83:75:c7:99:1d:b7:21:a9:b1:85:65:6c: 15:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F8:81:6B:25:66:8F:9D:F0:75:4E:FB:1C:92:45:5D:F8:65:E7:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B331A964432A11EEA004DA1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 38:c3:00:e8:aa:11:f3:07:72:a7:2e:31:84:a9:67:62:6d:87: ac:60:95:80:3e:51:0e:03:24:bd:96:ae:d7:39:ad:a0:18:14: 27:b5:cd:45:f9:5d:70:7c:12:2b:8f:b5:ab:4e:3c:de:83:66: 65:91:69:6e:36:a2:88:04:39:0c:b8:3f:4d:d0:a2:79:8b:dd: 45:39:37:69:95:68:50:4a:13:be:85:28:25:3f:92:e7:1f:3a: 6a:ef:b6:31:97:bc:92:78:1f:c0:33:63:8e:f8:4a:52:7f:8f: ef:28:6b:47:4a:00:73:06:bd:48:0f:be:5b:6f:0a:61:c0:8a: 7f:27:d3:bb:71:13:56:f6:c3:9f:4f:ad:d4:15:b8:77:df:b7: b5:60:ad:2f:8e:aa:a0:a7:37:17:c9:43:98:ba:c9:bf:7e:d2: 97:b5:8a:9e:18:20:da:00:60:b6:d7:cc:fc:25:d6:27:bf:fa: 13:a6:ff:a0:bc:0c:7c:4c:62:7f:16:5c:a8:ab:a0:92:e1:c6: c4:4a:8f:c0:d6:0c:6e:f1:2d:1f:dc:4a:cf:ae:97:68:18:52: df:61:20:73:5c:aa:fd:b9:1c:44:ba:07:f4:63:fb:4b:99:cc: 84:94:7d:5a:eb:47:06:a0:94:1a:37:f1:35:4f:4b:83:00:da: 22:08:85:28 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICeKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwODI1MDkzNTE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU4NzVkNS01NTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvH9EOCa9uyibW/Zo3408il9pMUEz+sn9cum2qcdywRZyvcA9eCJEwuJayqs7 q1aJZtRx7Q2R92EPJlxzwDa9MjxVZtyf+dnPLVyvc3LtKV1RQF0a5zCoOl3pWYfB +C2smJxnjruTqXwRylXKHdXjbGqIWyKSvuTp8qWiqc8MVGha9vvEpiBVnu5HFg+7 yoZ7lGyWkBN5EMrZ6v1ZqWIoOMnsBM3A8ittzfjfoQQJaepvdspOFcmmyUFvJMnU Qv+M4SwhvVPY8Q4V0Ln18xpGUSn3DVHPY+dZ8BH3Is0jNFjQnSoqCUTKIXboel8G 0ieNAjWDdceZHbchqbGFZWwVQwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIX4gWsl Zo+d8HVO+xySRV34ZeckMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjMzMUE5NjQ0 MzJBMTFFRUEwMDREQTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xS0AwDQYJKoZIhvcNAQELBQADggEBADjDAOiqEfMH cqcuMYSpZ2Jth6xglYA+UQ4DJL2Wrtc5raAYFCe1zUX5XXB8EiuPtatOPN6DZmWR aW42oogEOQy4P03QonmL3UU5N2mVaFBKE76FKCU/kucfOmrvtjGXvJJ4H8AzY474 SlJ/j+8oa0dKAHMGvUgPvltvCmHAin8n07txE1b2w59PrdQVuHfft7VgrS+OqqCn NxfJQ5i6yb9+0pe1ip4YINoAYLbXzPwl1ie/+hOm/6C8DHxMYn8WXKiroJLhxsRK j8DWDG7xLR/cSs+ul2gYUt9hIHNcqv25HES6B/Rj+0uZzISUfVrrRwaglBo38TVP S4MA2iIIhSg= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:42 2024 by rpki-client on console-ams.rpki-client.org