$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B957F9C0075711EDB81B387BC4F9AE02.roa File: B957F9C0075711EDB81B387BC4F9AE02.roa (raw, json) Hash identifier: mKNGjIWSm+RTFHnzDYphZB0zg9i5n54jNXiF1UYIDy0= Subject key identifier: E5:7D:35:17:A2:ED:47:D4:01:BA:B5:BE:74:32:B2:70:09:67:B9:7B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6F9C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B957F9C0075711EDB81B387BC4F9AE02.roa Signing time: Wed 10 May 2023 16:39:36 +0000 ROA not before: Wed 10 May 2023 16:39:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 146863 IP address blocks: 2001:df7:9480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28572 (0x6f9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:39:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc8c8-8779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c0:5c:71:bf:99:cb:32:db:54:80:c8:f5:0f: 08:26:a1:9b:d2:1a:67:c8:06:2a:5f:4f:69:42:a6: 8d:cb:ec:e2:34:95:79:5e:42:7d:e5:f3:a7:92:7c: 12:c6:12:ce:22:b9:11:ae:20:73:0e:b2:61:8e:90: 6d:73:ab:18:29:f2:5e:c1:40:81:da:89:4f:91:6d: 1a:83:70:49:38:6d:5a:74:b0:84:85:b0:e5:66:2b: 83:de:cb:7e:f2:f0:c6:dc:63:68:92:80:9b:10:d6: 00:16:00:ee:b5:8d:9f:03:32:20:67:39:8c:71:4e: ba:3e:cc:04:e8:9c:b0:1e:da:f9:52:b5:91:2a:f9: c4:a1:28:63:ef:53:88:4e:a8:8a:88:7a:92:58:b8: 58:11:e5:6f:f0:c7:b9:c4:79:0d:62:bb:e8:84:54: 89:64:83:42:61:0b:31:47:ce:96:63:4e:90:0f:7c: 75:1e:15:a0:5d:c0:0e:92:f2:3a:c4:b9:9a:b7:df: 01:7e:9d:72:7e:73:e4:66:da:85:ce:12:a8:f0:8c: 3d:8b:e9:93:2c:df:11:cf:1f:08:3e:f6:80:97:b5: a4:e5:4d:4b:21:ae:12:9d:2b:40:6a:9d:5d:9b:d6: dd:07:d5:bf:c4:a7:c7:d6:5a:a5:96:62:20:d0:8c: eb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7D:35:17:A2:ED:47:D4:01:BA:B5:BE:74:32:B2:70:09:67:B9:7B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B957F9C0075711EDB81B387BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:9480::/48 Signature Algorithm: sha256WithRSAEncryption 05:f0:51:29:83:21:1c:38:2a:67:61:45:a8:9f:f7:d2:1a:62: ce:c1:ea:f7:81:b5:30:d1:32:dc:c1:49:9f:32:42:a4:48:cd: 78:af:0d:0c:06:3b:b3:bb:9c:69:57:29:bc:fb:61:10:0a:a0: 34:fe:4a:a2:d6:1f:e7:06:b4:59:02:72:38:02:44:0b:c4:e0: b8:49:37:cd:9b:d8:85:d2:1d:75:43:e3:ee:61:c9:fe:53:2e: 75:d1:2e:a7:4d:a7:9a:f8:a7:46:61:08:dd:b6:02:fd:4f:88: 37:29:79:b1:5c:3d:01:82:28:13:b0:8b:82:69:01:65:cb:fb: 53:5b:e8:b9:a3:65:c6:9c:ec:d5:56:0c:8c:3b:3b:39:b8:c0: 39:df:09:81:1c:a4:59:cf:d7:a1:e9:45:d4:2d:cd:ed:9a:d7: 2e:b3:e6:4f:f0:2c:66:bb:f3:50:5d:18:3b:59:03:7f:84:7e: 12:82:7b:d2:f2:6e:f0:6d:a1:b9:dd:34:2b:79:90:96:51:02: 9f:15:ce:80:86:58:f8:52:af:51:b1:48:10:cd:d0:90:ab:a7: c8:d0:81:c3:d6:1f:54:63:28:a9:37:34:b0:94:87:1d:07:73: 5f:07:97:3b:f8:94:29:67:54:ba:2e:5b:1b:65:ea:9f:a8:73: 2e:de:2b:81 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICb5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzOTM2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzhjOC04Nzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cBccb+ZyzLbVIDI9Q8IJqGb0hpnyAYqX09pQqaNy+ziNJV5XkJ95fOnknwS xhLOIrkRriBzDrJhjpBtc6sYKfJewUCB2olPkW0ag3BJOG1adLCEhbDlZiuD3st+ 8vDG3GNokoCbENYAFgDutY2fAzIgZzmMcU66PswE6JywHtr5UrWRKvnEoShj71OI TqiKiHqSWLhYEeVv8Me5xHkNYrvohFSJZINCYQsxR86WY06QD3x1HhWgXcAOkvI6 xLmat98Bfp1yfnPkZtqFzhKo8Iw9i+mTLN8Rzx8IPvaAl7Wk5U1LIa4SnStAap1d m9bdB9W/xKfH1lqllmIg0IzrtQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOV9NRei 7UfUAbq1vnQysnAJZ7l7MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQjk1N0Y5QzAw NzU3MTFFREI4MUIzODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33lIAwDQYJKoZIhvcNAQELBQADggEBAAXwUSmDIRw4 KmdhRaif99IaYs7B6veBtTDRMtzBSZ8yQqRIzXivDQwGO7O7nGlXKbz7YRAKoDT+ SqLWH+cGtFkCcjgCRAvE4LhJN82b2IXSHXVD4+5hyf5TLnXRLqdNp5r4p0ZhCN22 Av1PiDcpebFcPQGCKBOwi4JpAWXL+1Nb6LmjZcac7NVWDIw7Ozm4wDnfCYEcpFnP 16HpRdQtze2a1y6z5k/wLGa781BdGDtZA3+EfhKCe9LybvBtobndNCt5kJZRAp8V zoCGWPhSr1GxSBDN0JCrp8jQgcPWH1RjKKk3NLCUhx0Hc18Hlzv4lClnVLouWxtl 6p+ocy7eK4E= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:44 2024 by rpki-client on console-ams.rpki-client.org