$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FCFD152C74AA11EEB7DA4C6BC4F9AE02.roa File: FCFD152C74AA11EEB7DA4C6BC4F9AE02.roa (raw, json) Hash identifier: 9hu3ynWegu14iz7TNt2rU1ojfb+aPLmFaMiWPbJK+pU= Subject key identifier: 90:A2:38:03:AD:C3:8F:CE:9E:D2:F8:CE:B7:36:87:3C:0A:89:DB:F5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7CB0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FCFD152C74AA11EEB7DA4C6BC4F9AE02.roa Signing time: Fri 27 Oct 2023 09:27:03 +0000 ROA not before: Fri 27 Oct 2023 09:27:03 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141268 IP address blocks: 2406:dd40::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31920 (0x7cb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 27 09:27:03 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=653b8267-4407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7f:64:ab:ed:8d:62:57:f3:5b:4a:19:13:76: 0a:bc:9f:36:c8:d1:aa:f5:23:dd:28:e9:d6:13:5b: d2:2a:29:77:5c:1a:c8:65:51:8a:6f:8d:1b:15:91: 67:b2:3f:25:f6:5d:3a:46:33:1f:ee:41:9c:ee:b8: 37:a0:2b:b3:46:5d:84:89:76:a5:68:83:4c:8b:51: c1:49:61:51:c6:57:bb:b0:f0:64:47:6a:40:44:19: dd:5a:ed:52:ab:27:7f:44:26:48:f6:94:8a:59:d6: 42:9f:b8:7c:85:68:7d:b1:d5:4b:bc:f4:c5:e2:2d: f6:24:96:f2:08:13:fc:1b:93:4d:64:cb:8b:3c:f4: 79:bb:62:3f:60:c7:ff:26:e8:58:9f:87:5d:5b:fa: b8:35:ed:ee:31:7e:c9:86:87:57:ef:ed:39:1e:5e: a7:fe:40:a6:56:1a:e9:5b:3e:90:bb:81:bc:0f:8a: a7:11:8a:b5:04:39:ad:f1:12:d2:5a:26:4f:f5:6b: 9c:1e:ec:80:28:a2:25:a4:1e:db:c6:ba:d9:12:08: 71:ff:b3:8b:d9:fc:fc:53:4d:df:b4:90:93:55:f9: 6b:be:9f:2f:5a:e5:2f:a2:30:f4:55:3c:99:e8:cd: 87:d1:6a:e0:46:13:e8:bb:dc:44:74:d4:da:88:d6: bf:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A2:38:03:AD:C3:8F:CE:9E:D2:F8:CE:B7:36:87:3C:0A:89:DB:F5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FCFD152C74AA11EEB7DA4C6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:dd40::/35 Signature Algorithm: sha256WithRSAEncryption 4a:63:98:49:8a:12:ec:13:f1:9d:8e:55:50:4a:06:37:49:f5: 74:69:62:7d:fd:8e:d6:3d:4b:c0:e5:ec:a5:8e:56:c9:eb:21: 74:45:1c:f0:ab:bb:6c:b7:82:fe:36:b4:b3:8b:54:ff:9d:9f: 3b:bc:ee:5a:da:bf:13:03:e2:49:b3:b1:c7:da:e9:c0:5c:4a: b0:b8:54:54:bd:1e:aa:f0:6e:ea:e2:2d:40:5c:8a:24:26:d5: f5:73:b4:e6:a6:91:3c:ef:c1:98:f7:76:f9:9e:21:99:a0:4a: 46:b0:63:40:6a:f1:40:50:a5:70:af:0c:e7:1b:97:fb:4c:de: 48:1a:e5:03:b9:1e:8d:39:b1:2c:1b:95:9f:33:6e:62:16:5d: e0:63:48:39:eb:14:f8:c3:7c:39:94:b6:f9:4e:8b:5c:a5:03: 47:c4:9a:73:ae:0e:c3:e9:a7:92:5e:2d:94:ca:bd:d2:ea:fa: 94:9d:43:d8:17:a1:5b:2d:5b:72:76:b4:e1:94:0f:8d:6e:8a: 1f:1c:21:13:ae:49:8e:b0:0c:a1:a7:0c:17:af:6a:06:c2:a5: 95:aa:34:6a:dd:d3:0d:9e:74:33:fd:a9:6c:be:bc:08:2c:68: ee:53:53:4e:d9:ad:2c:7d:b9:a5:9a:70:4b:b4:74:51:f1:39: 00:5c:9e:95 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICfLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMxMDI3MDkyNzAzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiODI2Ny00NDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2H9kq+2NYlfzW0oZE3YKvJ82yNGq9SPdKOnWE1vSKil3XBrIZVGKb40bFZFn sj8l9l06RjMf7kGc7rg3oCuzRl2EiXalaINMi1HBSWFRxle7sPBkR2pARBndWu1S qyd/RCZI9pSKWdZCn7h8hWh9sdVLvPTF4i32JJbyCBP8G5NNZMuLPPR5u2I/YMf/ JuhYn4ddW/q4Ne3uMX7JhodX7+05Hl6n/kCmVhrpWz6Qu4G8D4qnEYq1BDmt8RLS WiZP9WucHuyAKKIlpB7bxrrZEghx/7OL2fz8U03ftJCTVflrvp8vWuUvojD0VTyZ 6M2H0WrgRhPou9xEdNTaiNa/CwIDAQABo4IClzCCApMwHQYDVR0OBBYEFJCiOAOt w4/OntL4zrc2hzwKidv1MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRkNGRDE1MkM3 NEFBMTFFRUI3REE0QzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgUkBt1AADANBgkqhkiG9w0BAQsFAAOCAQEASmOYSYoS7BPx nY5VUEoGN0n1dGliff2O1j1LwOXspY5WyeshdEUc8Ku7bLeC/ja0s4tU/52fO7zu Wtq/EwPiSbOxx9rpwFxKsLhUVL0eqvBu6uItQFyKJCbV9XO05qaRPO/BmPd2+Z4h maBKRrBjQGrxQFClcK8M5xuX+0zeSBrlA7kejTmxLBuVnzNuYhZd4GNIOesU+MN8 OZS2+U6LXKUDR8Sac64Ow+mnkl4tlMq90ur6lJ1D2BehWy1bcna04ZQPjW6KHxwh E65JjrAMoacMF69qBsKllao0at3TDZ50M/2pbL68CCxo7lNTTtmtLH25pZpwS7R0 UfE5AFyelQ== -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:51 2024 by rpki-client on console-ams.rpki-client.org