$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E2151032B90D11EE9E5C667EC4F9AE02.roa File: E2151032B90D11EE9E5C667EC4F9AE02.roa (raw, json) Hash identifier: 6neNhKhqLx9m3mZanGMoNTXIIz+oo4GhfvmT8NzQVns= Subject key identifier: 72:92:20:CF:6A:84:B1:F8:3A:4A:83:01:CD:8A:3E:A4:87:FD:4A:50 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 81A5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E2151032B90D11EE9E5C667EC4F9AE02.roa Signing time: Mon 22 Jan 2024 10:06:18 +0000 ROA not before: Mon 22 Jan 2024 10:06:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 151735 IP address blocks: 2001:df3:6140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33189 (0x81a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 22 10:06:17 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65ae3e19-ba8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1d:75:c7:36:06:df:be:50:e1:3b:28:4e:64: 04:22:d1:15:01:b9:14:94:14:cd:6d:b4:84:38:57: e8:d4:18:da:78:bf:fc:fa:43:91:bf:89:2f:b0:56: d3:06:5f:f1:8b:c1:af:2e:81:e5:8e:cf:cf:90:6b: 1e:14:a8:d3:c1:3b:da:96:fb:58:bc:13:ad:b8:52: 98:35:31:c7:95:fb:ba:86:2a:47:bb:a4:94:e1:4f: 76:af:d4:8a:3c:de:2d:9c:f6:5d:e5:cc:b7:17:c8: 97:6f:9b:26:72:5b:e7:7b:f5:5c:5f:d9:e3:f6:e3: f5:5d:89:74:ce:9e:41:15:c3:1b:32:df:6f:e5:2e: d8:9c:5f:ab:4d:68:40:90:86:5e:c7:7e:87:22:4b: 25:0a:63:2a:6b:7a:68:30:26:4b:5c:c8:df:3d:60: 7a:13:96:78:7e:76:55:8b:89:f7:7d:f9:48:3e:1d: 7f:e2:50:b7:87:aa:31:94:50:24:11:51:9a:47:de: 3f:f1:2d:07:33:4f:c2:b2:e6:dc:e6:4f:4c:51:fe: 49:d8:8b:e6:5f:b6:f2:56:1d:60:37:01:df:be:ee: 51:2a:67:52:91:f6:54:fa:f8:ba:59:61:22:8a:b8: 96:2e:0e:45:c6:c7:17:f0:58:b1:57:36:ad:19:ce: ca:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:92:20:CF:6A:84:B1:F8:3A:4A:83:01:CD:8A:3E:A4:87:FD:4A:50 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E2151032B90D11EE9E5C667EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6140::/48 Signature Algorithm: sha256WithRSAEncryption 98:f6:8a:6b:10:9c:1a:ea:14:dd:c2:a6:ee:b9:62:68:96:3c: 52:18:4f:94:f7:a6:d4:9b:24:84:49:2b:61:43:5e:ac:6e:40: 98:ee:4f:a3:08:60:c4:5f:17:94:bf:82:e2:2a:dd:6d:26:18: 43:a0:ff:60:e5:4a:1b:9d:c9:3a:a5:a9:16:03:df:82:c8:6d: 59:16:93:95:74:fa:d6:8e:59:1a:70:31:05:e0:6e:40:8e:d5: 8d:20:c5:dc:f3:d3:1f:50:10:61:05:2b:d7:57:db:49:ec:9b: fe:30:92:37:ea:94:3a:91:7e:2a:2a:3e:2c:2f:bc:3b:f8:69: db:0e:89:e5:9a:fc:55:74:41:43:fb:a7:73:04:89:b9:89:39: 1f:39:bd:ed:b7:2c:3b:68:56:f5:f3:ff:9b:e2:9b:f6:68:04: 0f:f2:ec:0e:4a:f2:8f:33:fa:57:c4:2d:cf:67:c1:c6:d5:cc: 22:2a:7a:e5:c3:21:59:3a:88:05:72:86:5a:9f:4f:13:de:57: dd:d4:f6:3e:3b:2a:ad:e4:8d:9e:44:e3:25:06:cb:04:d5:0d: 99:cf:39:f4:99:1b:14:12:38:c6:5f:8d:2b:e9:db:f7:72:44: 73:97:ab:2a:e3:17:14:c7:eb:0e:0a:27:41:c2:41:27:06:1a: f2:53:78:5c -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAIGlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDEyMjEwMDYxN1oXDTI0MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjVhZTNlMTktYmE4ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANoddcc2Bt++UOE7KE5kBCLRFQG5FJQUzW20hDhX6NQY2ni//PpDkb+JL7BW 0wZf8YvBry6B5Y7Pz5BrHhSo08E72pb7WLwTrbhSmDUxx5X7uoYqR7uklOFPdq/U ijzeLZz2XeXMtxfIl2+bJnJb53v1XF/Z4/bj9V2JdM6eQRXDGzLfb+Uu2Jxfq01o QJCGXsd+hyJLJQpjKmt6aDAmS1zI3z1gehOWeH52VYuJ9335SD4df+JQt4eqMZRQ JBFRmkfeP/EtBzNPwrLm3OZPTFH+SdiL5l+28lYdYDcB377uUSpnUpH2VPr4ullh Ioq4li4ORcbHF/BYsVc2rRnOyukCAwEAAaOCApgwggKUMB0GA1UdDgQWBBRykiDP aoSx+DpKgwHNij6kh/1KUDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0UyMTUxMDMy QjkwRDExRUU5RTVDNjY3RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN82FAMA0GCSqGSIb3DQEBCwUAA4IBAQCY9oprEJwa 6hTdwqbuuWJoljxSGE+U96bUmySESSthQ16sbkCY7k+jCGDEXxeUv4LiKt1tJhhD oP9g5Uobnck6pakWA9+CyG1ZFpOVdPrWjlkacDEF4G5AjtWNIMXc89MfUBBhBSvX V9tJ7Jv+MJI36pQ6kX4qKj4sL7w7+GnbDonlmvxVdEFD+6dzBIm5iTkfOb3ttyw7 aFb18/+b4pv2aAQP8uwOSvKPM/pXxC3PZ8HG1cwiKnrlwyFZOogFcoZan08T3lfd 1PY+Oyqt5I2eROMlBssE1Q2Zzzn0mRsUEjjGX40r6dv3ckRzl6sq4xcUx+sOCidB wkEnBhryU3hc -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:48 2024 by rpki-client on console-ams.rpki-client.org