$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306C3EAB06711EF9EB9716AC4F9AE02.roa File: D306C3EAB06711EF9EB9716AC4F9AE02.roa (raw, json) Hash identifier: MTuKt7zWGQOYJxevz0vryBJDbLu8kDYvQ4Pbpz8x478= Subject key identifier: 3B:CA:E2:E4:D1:53:83:BB:A2:59:0B:4B:AD:9B:08:BA:85:A9:96:B3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9E3C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306C3EAB06711EF9EB9716AC4F9AE02.roa Signing time: Mon 02 Dec 2024 04:42:24 +0000 ROA not before: Mon 02 Dec 2024 04:42:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153253 IP address blocks: 2001:df4:b140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40508 (0x9e3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 2 04:42:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=674d3ab0-422f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a3:03:dc:9d:65:e5:cf:c7:80:59:ef:00:b5: d5:4d:33:59:b4:d8:04:52:a9:ee:bc:45:8c:c2:a3: cc:2b:c3:a3:3b:7b:63:ef:76:a7:1b:dc:e3:b8:72: d3:da:9c:8d:42:46:af:5f:a5:70:e4:e4:10:14:96: 01:75:8c:db:45:a5:b4:2f:ce:9f:d8:8a:6d:96:c7: f6:81:bd:7d:0d:f9:2c:50:64:93:73:60:22:96:56: 34:67:90:68:01:f4:b4:90:4a:59:b0:be:c2:96:80: d6:37:e3:9f:1e:24:8c:d2:9f:03:ab:db:55:cc:52: 20:ff:2d:db:05:81:8a:27:18:83:2e:43:96:da:02: 51:75:31:c4:fe:b9:c2:ab:5c:d4:4c:0e:dc:c2:19: fa:38:18:0e:ae:ef:c4:39:54:bb:0a:08:e3:a7:46: 29:22:37:95:9e:2e:ed:cd:ff:65:64:3e:ed:a2:07: cc:e0:3f:c4:2e:1b:0e:ac:28:fd:8d:bc:5a:71:74: ca:2a:36:9d:20:f3:c8:a4:cf:6b:a5:5a:90:f0:54: 11:11:de:fb:37:9b:a4:d4:85:e0:04:37:02:a1:23: 18:77:64:5b:e3:cc:27:f5:35:3f:9c:c8:9e:37:4f: 67:33:69:d6:3d:ec:51:0b:84:e5:89:f6:36:c7:09: 79:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CA:E2:E4:D1:53:83:BB:A2:59:0B:4B:AD:9B:08:BA:85:A9:96:B3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D306C3EAB06711EF9EB9716AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:b140::/48 Signature Algorithm: sha256WithRSAEncryption 81:97:f4:20:90:e8:1f:89:39:c0:9d:ca:7b:19:8c:32:c7:21: 50:e1:46:cb:90:39:08:f1:aa:c6:6a:62:60:df:4c:b1:3b:da: 79:29:b0:58:e2:38:de:58:21:75:85:b3:ec:2a:ba:2a:a9:a3: a3:1c:b9:6f:3e:bb:83:bc:be:ef:42:16:9e:c6:35:38:b8:9d: eb:53:29:fe:51:22:3d:d2:a9:6e:6e:32:5c:f9:20:45:b8:ab: f6:01:8f:76:b3:46:0f:d4:ae:f8:da:1f:f8:95:11:af:bd:68: 2b:17:c7:f9:8f:49:26:ad:49:a6:26:fc:dc:f9:5e:11:7a:e0: b1:10:e6:f8:4e:c7:03:07:39:5d:b5:5b:5c:ab:79:0a:fc:19: a9:68:08:b3:1f:5b:dd:f6:8c:e0:5f:11:ce:9c:b4:44:a3:43: 1b:f9:8b:f1:ff:46:d6:f4:91:58:02:16:6f:c2:3a:4d:5a:e1: a7:2a:a0:42:f9:44:63:33:b7:38:94:16:93:06:04:0a:44:c2: cb:fa:c9:f5:6b:96:01:d0:9f:94:0c:3c:d3:9f:db:6e:b7:97: f5:7b:44:b1:b7:4d:8c:92:05:78:c2:f8:8f:64:33:c6:ee:ec: 35:20:5f:ff:f4:10:8d:18:e6:e5:d5:d7:2e:68:76:eb:66:a0: 4b:cd:10:57 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJ48MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIwMjA0NDIyNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc0ZDNhYjAtNDIyZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJujA9ydZeXPx4BZ7wC11U0zWbTYBFKp7rxFjMKjzCvDozt7Y+92pxvc47hy 09qcjUJGr1+lcOTkEBSWAXWM20WltC/On9iKbZbH9oG9fQ35LFBkk3NgIpZWNGeQ aAH0tJBKWbC+wpaA1jfjnx4kjNKfA6vbVcxSIP8t2wWBiicYgy5DltoCUXUxxP65 wqtc1EwO3MIZ+jgYDq7vxDlUuwoI46dGKSI3lZ4u7c3/ZWQ+7aIHzOA/xC4bDqwo /Y28WnF0yio2nSDzyKTPa6VakPBUERHe+zebpNSF4AQ3AqEjGHdkW+PMJ/U1P5zI njdPZzNp1j3sUQuE5Yn2NscJeSMCAwEAAaOCApgwggKUMB0GA1UdDgQWBBQ7yuLk 0VODu6JZC0utmwi6hamWszAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0QzMDZDM0VB QjA2NzExRUY5RUI5NzE2QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN9LFAMA0GCSqGSIb3DQEBCwUAA4IBAQCBl/QgkOgf iTnAncp7GYwyxyFQ4UbLkDkI8arGamJg30yxO9p5KbBY4jjeWCF1hbPsKroqqaOj HLlvPruDvL7vQhaexjU4uJ3rUyn+USI90qlubjJc+SBFuKv2AY92s0YP1K742h/4 lRGvvWgrF8f5j0kmrUmmJvzc+V4ReuCxEOb4TscDBzldtVtcq3kK/BmpaAizH1vd 9ozgXxHOnLREo0Mb+Yvx/0bW9JFYAhZvwjpNWuGnKqBC+URjM7c4lBaTBgQKRMLL +sn1a5YB0J+UDDzTn9tut5f1e0Sxt02MkgV4wviPZDPG7uw1IF//9BCNGObl1dcu aHbrZqBLzRBX -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:27 2025 by rpki-client