$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa File: CD00AFA60B7111EF96420153C4F9AE02.roa (raw, json) Hash identifier: 2L38wZViE9g/2cJqD4Lbtb+4nPdP8NGZENojx/sUyeQ= Subject key identifier: 40:23:84:0E:0B:8B:06:8A:D9:38:92:28:C7:43:90:F0:CA:B4:C9:04 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8FBB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa Signing time: Thu 30 May 2024 16:25:02 +0000 ROA not before: Thu 30 May 2024 16:25:02 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150581 IP address blocks: 2401:9120::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36795 (0x8fbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:25:02 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a85e-dc7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:79:bd:63:de:2e:a4:3c:e2:e6:33:c0:0d: c2:76:b2:18:d1:71:f7:2b:4d:a5:9b:56:b5:3a:26: b7:fc:1a:a1:e2:36:d7:7e:55:36:c7:cb:2e:06:dc: 31:5d:b3:c9:06:30:64:51:ac:ee:92:5a:2c:ce:4b: 6f:40:1c:9a:b2:32:f7:b0:5d:a7:3f:84:1e:67:75: 8e:6f:cb:a7:07:62:3e:c5:3f:25:7e:dd:15:50:fe: 60:bf:56:ce:1c:09:fb:53:04:b0:ed:88:85:10:ee: 77:06:32:38:b1:44:38:7e:81:c9:65:dc:fd:f6:30: a8:67:e5:e3:75:aa:59:bb:b4:dc:2c:7f:46:6c:04: b3:7a:64:65:9d:12:96:7a:63:ec:c3:aa:20:83:cd: 09:20:02:df:e5:bc:7a:f7:95:eb:3e:8d:74:50:ea: 71:45:e8:bc:0d:22:8d:57:20:d6:54:fe:6e:6c:02: 3d:cd:6f:f1:0e:1e:7c:72:26:9e:a4:c4:a2:e1:f4: ca:94:6d:18:e0:f4:75:0a:f0:58:eb:35:1f:cb:80: 77:5a:1f:42:a8:77:91:0e:2f:8d:cb:f4:e7:9f:3f: 65:fd:05:3d:91:b9:2a:f7:ca:46:6d:2a:42:8d:eb: 10:b6:de:05:c2:6f:18:1b:1c:e6:a9:64:59:69:32: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:23:84:0E:0B:8B:06:8A:D9:38:92:28:C7:43:90:F0:CA:B4:C9:04 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:9120::/32 Signature Algorithm: sha256WithRSAEncryption 5b:2d:d2:ce:c0:45:62:2f:e9:a8:8f:47:4c:b4:b1:75:ba:e6: 18:44:8f:ca:f3:fc:f5:99:cc:fb:79:ee:e1:b1:ef:d8:c2:4f: 04:07:1c:55:28:c6:f1:39:3f:3a:d0:23:84:b0:06:bc:5b:93: 97:d9:2e:17:56:52:af:cb:74:a1:ed:8c:15:d2:3e:35:10:69: fb:f0:e6:c4:76:7e:fc:48:ef:9c:fa:10:5b:76:a9:a4:f0:32: 83:86:28:ef:9e:56:80:12:e1:ee:a3:e5:aa:7a:4b:6e:a2:38: 92:dc:53:dd:7b:b2:da:e1:5d:41:b4:34:32:c0:42:3a:4d:37: 9a:97:c8:c2:ca:17:df:75:71:c5:c9:86:54:5a:dd:89:98:55: 0e:59:a8:f6:e0:04:c6:62:30:26:82:e7:da:32:17:c0:b6:eb: f3:11:d6:4e:b0:aa:04:7c:81:f8:87:eb:c8:2a:bc:cb:8d:9e: a6:c6:c7:08:d6:71:7c:02:ae:b6:1e:87:0a:c6:26:f5:ec:a5: 9d:e5:1e:79:1c:f7:da:f5:6c:02:de:45:09:60:15:d8:67:76: 31:74:cc:3a:f3:57:1b:dd:75:c6:05:c2:a2:09:57:d2:04:df: 03:3a:65:44:24:ea:f8:bb:23:32:b1:06:ae:de:b3:1e:7e:30: 6c:fd:ac:79 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIDAI+7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjUwMloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE4NWUtZGM3ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSdeb1j3i6kPOLmM8ANwnayGNFx9ytNpZtWtTomt/waoeI2135VNsfLLgbc MV2zyQYwZFGs7pJaLM5Lb0AcmrIy97Bdpz+EHmd1jm/LpwdiPsU/JX7dFVD+YL9W zhwJ+1MEsO2IhRDudwYyOLFEOH6ByWXc/fYwqGfl43WqWbu03Cx/RmwEs3pkZZ0S lnpj7MOqIIPNCSAC3+W8eveV6z6NdFDqcUXovA0ijVcg1lT+bmwCPc1v8Q4efHIm nqTEouH0ypRtGOD0dQrwWOs1H8uAd1ofQqh3kQ4vjcv0558/Zf0FPZG5KvfKRm0q Qo3rELbeBcJvGBsc5qlkWWkyiOECAwEAAaOCApYwggKSMB0GA1UdDgQWBBRAI4QO C4sGitk4kijHQ5DwyrTJBDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NEMDBBRkE2 MEI3MTExRUY5NjQyMDE1M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/ BBEwDzANBAIAAjAHAwUAJAGRIDANBgkqhkiG9w0BAQsFAAOCAQEAWy3SzsBFYi/p qI9HTLSxdbrmGESPyvP89ZnM+3nu4bHv2MJPBAccVSjG8Tk/OtAjhLAGvFuTl9ku F1ZSr8t0oe2MFdI+NRBp+/DmxHZ+/EjvnPoQW3appPAyg4Yo755WgBLh7qPlqnpL bqI4ktxT3Xuy2uFdQbQ0MsBCOk03mpfIwsoX33VxxcmGVFrdiZhVDlmo9uAExmIw JoLn2jIXwLbr8xHWTrCqBHyB+IfryCq8y42epsbHCNZxfAKuth6HCsYm9eylneUe eRz32vVsAt5FCWAV2Gd2MXTMOvNXG911xgXCoglX0gTfAzplRCTq+LsjMrEGrt6z Hn4wbP2seQ== -----END CERTIFICATE-----Generated at Fri May 31 16:41:30 2024 by rpki-client on console-ams.rpki-client.org