$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E124AAC29AD411EEB974AE30C4F9AE02.roa File: E124AAC29AD411EEB974AE30C4F9AE02.roa (raw, json) Hash identifier: xABDhQNPel7k2ghsN9U7o3FMZzGtIjF6XXZgouVkyEQ= Subject key identifier: 3D:42:6C:A4:73:80:00:EC:76:6E:0B:EB:F1:EC:27:AF:76:08:A2:F8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7FF3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E124AAC29AD411EEB974AE30C4F9AE02.roa Signing time: Thu 14 Dec 2023 23:02:40 +0000 ROA not before: Thu 14 Dec 2023 23:02:40 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 135813 IP address blocks: 2001:df3:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32755 (0x7ff3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 14 23:02:40 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=657b898f-b65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7a:03:50:69:3a:56:56:8a:06:6f:53:08:9d: 16:21:16:31:e1:94:8c:05:f1:8f:d2:12:08:9f:ea: 41:13:8a:2b:02:35:f9:52:a4:1f:7b:3a:20:1e:b9: 46:f7:d5:58:73:8c:49:29:c2:1e:1d:f4:72:42:26: 4b:58:a2:e3:f4:1f:de:12:5b:26:e6:da:75:3e:cf: 4e:f2:b2:d9:85:cb:22:88:d9:c2:e2:94:a5:da:7b: 79:40:3b:41:70:7f:50:e2:34:40:18:f8:79:8e:3d: 35:ff:3f:0a:79:9c:82:11:8e:3b:c8:9e:c5:18:d1: d9:39:9a:99:de:fa:75:f7:2e:5e:92:b0:4a:50:4a: 44:92:41:16:75:ec:24:94:20:00:66:67:93:9e:50: b7:18:60:f1:fe:5e:e9:3a:19:1b:9c:f6:45:26:d7: 5c:ed:d9:e6:40:0f:1a:b2:5c:9f:54:b5:a0:13:6f: 3a:c2:67:31:1a:5a:3e:3d:72:98:4e:da:61:dd:5c: e1:54:83:4a:3a:37:7d:62:ee:2b:b4:89:38:1d:cc: 3a:d5:b9:dd:a0:b1:fd:40:73:c7:87:db:91:1e:02: e6:71:8a:10:70:af:b0:c8:9c:cb:d7:2b:9c:6e:96: c8:96:4c:36:f7:b9:67:a1:17:3d:85:c4:6f:6b:09: af:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:42:6C:A4:73:80:00:EC:76:6E:0B:EB:F1:EC:27:AF:76:08:A2:F8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E124AAC29AD411EEB974AE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:4840::/48 Signature Algorithm: sha256WithRSAEncryption 1a:ec:ec:74:d5:cb:b5:a4:2b:73:f7:b9:1a:bb:21:79:5b:e8: 3f:80:6f:b5:46:73:ed:2b:17:f6:df:85:33:f4:4b:3b:9a:cd: 61:11:3b:88:4b:a3:31:9e:5b:19:e7:09:70:a6:46:e1:7f:29: 97:a6:41:4e:ea:87:64:5c:9c:26:4d:1e:d0:c2:15:7f:b8:50: cd:d4:19:bc:23:28:98:b0:2f:9a:32:83:59:e9:0a:ba:36:7d: 38:95:3d:72:b8:ae:c8:ac:13:e1:84:c2:91:dc:b2:a2:c6:b3: 04:e7:6d:c4:91:a2:8d:52:07:13:5e:c2:cc:3c:af:cd:f2:07: d4:fa:b6:17:ac:c0:de:53:64:8b:39:90:0f:73:b1:52:dd:37: 35:c4:70:bf:33:b5:98:c1:01:a4:98:66:16:3f:41:a1:f7:99: f6:fd:5d:d5:d5:e5:b0:3e:51:70:d8:10:79:88:c0:aa:4a:ad: f0:3f:88:07:1a:f6:02:d9:67:bb:2a:88:16:25:a8:55:54:a1: 62:bf:70:fd:c6:22:05:b9:4c:82:2d:8b:62:10:5e:92:2d:1e: f6:fe:bd:03:12:8c:4a:7e:ad:cd:bb:d8:60:38:54:47:9a:ef: 5c:7c:e7:d3:0d:ee:4e:c3:5b:3d:bf:81:dc:d2:f8:5b:bf:d8: b0:c3:41:0b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICf/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMjE0MjMwMjQwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiODk4Zi1iNjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynoDUGk6VlaKBm9TCJ0WIRYx4ZSMBfGP0hIIn+pBE4orAjX5UqQfezogHrlG 99VYc4xJKcIeHfRyQiZLWKLj9B/eElsm5tp1Ps9O8rLZhcsiiNnC4pSl2nt5QDtB cH9Q4jRAGPh5jj01/z8KeZyCEY47yJ7FGNHZOZqZ3vp19y5ekrBKUEpEkkEWdewk lCAAZmeTnlC3GGDx/l7pOhkbnPZFJtdc7dnmQA8aslyfVLWgE286wmcxGlo+PXKY Ttph3VzhVINKOjd9Yu4rtIk4Hcw61bndoLH9QHPHh9uRHgLmcYoQcK+wyJzL1yuc bpbIlkw297lnoRc9hcRvawmvMwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD1CbKRz gADsdm4L6/HsJ692CKL4MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRTEyNEFBQzI5 QUQ0MTFFRUI5NzRBRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zSEAwDQYJKoZIhvcNAQELBQADggEBABrs7HTVy7Wk K3P3uRq7IXlb6D+Ab7VGc+0rF/bfhTP0SzuazWERO4hLozGeWxnnCXCmRuF/KZem QU7qh2RcnCZNHtDCFX+4UM3UGbwjKJiwL5oyg1npCro2fTiVPXK4rsisE+GEwpHc sqLGswTnbcSRoo1SBxNewsw8r83yB9T6theswN5TZIs5kA9zsVLdNzXEcL8ztZjB AaSYZhY/QaH3mfb9XdXV5bA+UXDYEHmIwKpKrfA/iAca9gLZZ7sqiBYlqFVUoWK/ cP3GIgW5TIIti2IQXpItHvb+vQMSjEp+rc272GA4VEea71x859MN7k7DWz2/gdzS +Fu/2LDDQQs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:47 2024 by rpki-client on console-ams.rpki-client.org