$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF4DB296A0A011EEA2EF8713C4F9AE02.roa File: BF4DB296A0A011EEA2EF8713C4F9AE02.roa (raw, json) Hash identifier: GJgX1JQXVr+oNjk/MwvHmM/cUNlpV2KWEXeL/E8OH+E= Subject key identifier: FD:B2:CA:AC:67:83:EA:1E:F7:92:72:AD:4C:80:62:43:89:7B:D9:E1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8087 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF4DB296A0A011EEA2EF8713C4F9AE02.roa Signing time: Fri 22 Dec 2023 08:04:36 +0000 ROA not before: Fri 22 Dec 2023 08:04:36 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135801 IP address blocks: 2001:df6:5580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32903 (0x8087) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 22 08:04:36 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65854314-2221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:92:39:49:de:d2:96:29:5a:ba:5e:28:c9: 6d:44:a1:d9:93:29:0e:ca:c1:fe:e2:be:7b:4b:49: a6:0c:22:3d:83:0a:99:1f:ae:f5:4e:9e:0e:f2:e1: d3:3f:f5:92:5c:44:c3:7e:87:06:95:66:e2:8f:05: be:f3:ac:84:32:ae:74:71:e9:91:ab:db:d7:4b:4f: d5:a1:89:b9:3f:f8:e6:2f:f7:54:21:3b:04:f3:d7: 12:de:5a:ca:20:78:3f:25:76:8d:2b:e6:ba:74:c2: 8a:54:f3:e7:6f:0b:7d:73:c7:ac:e3:ff:4b:36:1f: 94:23:55:9a:1c:73:6a:32:67:4a:93:88:ec:27:70: 31:f8:08:ab:e2:5a:9b:af:fb:09:9a:b6:08:d9:60: 2e:85:fb:48:1e:ff:24:71:31:95:3f:a3:69:6e:79: 4b:f4:99:24:35:51:aa:2d:e1:ae:f2:0f:82:02:1a: d4:20:10:6a:3e:bc:68:0e:bf:59:90:3b:0f:cd:0f: e0:45:05:97:43:53:b2:57:20:1a:52:7d:c0:b4:b7: 1a:a5:8f:09:ff:b5:02:88:35:4a:46:77:60:be:bb: ff:39:5a:35:ef:fa:8e:44:b4:01:54:2a:c3:30:cb: 0d:cf:1e:4b:af:52:2d:08:56:c1:f7:af:52:47:19: e8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B2:CA:AC:67:83:EA:1E:F7:92:72:AD:4C:80:62:43:89:7B:D9:E1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BF4DB296A0A011EEA2EF8713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:5580::/48 Signature Algorithm: sha256WithRSAEncryption 6d:c2:1d:1f:8d:46:bc:c3:27:8c:11:78:58:6f:b7:d1:bf:20: 88:59:78:b9:41:ae:03:30:74:32:3f:03:36:ad:b2:65:50:76: 04:cf:29:77:4c:70:1d:e6:15:04:a6:be:32:b8:84:a7:f8:04: bc:5e:f4:23:1f:c3:78:4f:73:f0:3c:5a:24:10:90:56:35:9f: 93:06:c8:aa:4b:1b:38:8a:7e:44:68:6a:0a:a7:a3:f1:79:dc: 05:8c:a3:1a:29:1a:0b:22:bf:30:04:a5:04:1f:36:89:1f:b7: 73:88:48:07:de:96:db:cc:06:b2:c8:23:50:7d:19:ff:5c:e8: a2:7f:59:62:cb:73:b4:a1:d6:e4:a0:3c:c7:02:95:56:01:0b: ab:00:ca:e3:64:28:5d:15:35:70:09:41:0f:5c:49:0a:37:d2: 85:1e:07:70:9b:44:3a:da:06:11:8d:ac:26:4d:d5:53:ae:ce: 2b:ee:f2:a8:82:a8:eb:07:22:b5:a3:d6:bb:09:53:06:82:aa: 7f:1c:b9:de:08:bf:b4:46:6c:52:f9:14:6b:d3:51:63:16:61: 99:47:02:f7:4b:68:b7:cc:51:6c:cc:e9:8c:43:2c:c6:2e:1d: d2:9e:99:46:18:dc:3f:f5:6c:38:79:f1:61:b8:3e:50:ec:fb: f2:c0:f7:35 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAICHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTIzMTIyMjA4MDQzNloXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjU4NTQzMTQtMjIyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbAkjlJ3tKWKVq6XijJbUSh2ZMpDsrB/uK+e0tJpgwiPYMKmR+u9U6eDvLh 0z/1klxEw36HBpVm4o8FvvOshDKudHHpkavb10tP1aGJuT/45i/3VCE7BPPXEt5a yiB4PyV2jSvmunTCilTz528LfXPHrOP/SzYflCNVmhxzajJnSpOI7CdwMfgIq+Ja m6/7CZq2CNlgLoX7SB7/JHExlT+jaW55S/SZJDVRqi3hrvIPggIa1CAQaj68aA6/ WZA7D80P4EUFl0NTslcgGlJ9wLS3GqWPCf+1Aog1SkZ3YL67/zlaNe/6jkS0AVQq wzDLDc8eS69SLQhWwfevUkcZ6I0CAwEAAaOCApgwggKUMB0GA1UdDgQWBBT9ssqs Z4PqHveScq1MgGJDiXvZ4TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0JGNERCMjk2 QTBBMDExRUVBMkVGODcxM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9lWAMA0GCSqGSIb3DQEBCwUAA4IBAQBtwh0fjUa8 wyeMEXhYb7fRvyCIWXi5Qa4DMHQyPwM2rbJlUHYEzyl3THAd5hUEpr4yuISn+AS8 XvQjH8N4T3PwPFokEJBWNZ+TBsiqSxs4in5EaGoKp6PxedwFjKMaKRoLIr8wBKUE HzaJH7dziEgH3pbbzAayyCNQfRn/XOiif1liy3O0odbkoDzHApVWAQurAMrjZChd FTVwCUEPXEkKN9KFHgdwm0Q62gYRjawmTdVTrs4r7vKogqjrByK1o9a7CVMGgqp/ HLneCL+0RmxS+RRr01FjFmGZRwL3S2i3zFFszOmMQyzGLh3SnplGGNw/9Ww4efFh uD5Q7PvywPc1 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:45 2024 by rpki-client on console-ams.rpki-client.org