$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa File: 3492D2F083BA11EA8728F076C4F9AE02.roa (raw, json) Hash identifier: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM= Subject key identifier: CB:64:EB:58:CB:C5:FC:0B:88:F1:7B:B8:B5:A7:DD:BA:5B:2E:35:BC Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 092D Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa Signing time: Tue 06 Aug 2024 20:48:25 +0000 ROA not before: Tue 06 Aug 2024 20:48:25 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 681 IP address blocks: 2001:df0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:13:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1 Validity Not Before: Aug 6 20:48:25 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b28c19-3a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:41:01:20:32:43:6b:8b:d8:27:d0:01:cc: a4:9a:c7:d4:2f:24:fb:18:14:5e:63:d5:6e:59:b7: aa:3f:07:ac:da:71:fd:fc:2e:c9:5a:ce:b4:12:8d: 01:2f:87:64:a8:03:98:1b:5c:fe:30:92:ac:02:1f: 46:93:81:51:03:26:ff:cb:7a:98:36:4f:db:eb:50: 56:8e:35:ca:ec:57:98:2e:d6:d6:3e:e4:23:16:5b: e8:c5:f8:73:84:75:56:bd:c3:e6:61:d5:ae:72:76: 49:e7:10:a0:86:04:48:40:8b:26:f1:92:4b:06:ea: 93:e3:fd:b5:cd:1c:e2:69:da:7f:36:3c:2a:1e:7c: f4:32:91:0f:8b:45:77:12:7b:10:ba:50:f6:18:68: d4:d6:c1:ac:41:de:6a:dd:f5:9d:63:c1:41:d4:f2: 5e:8c:dd:7c:a4:b4:f5:18:5f:8f:10:79:28:db:b8: b3:3a:7d:75:b0:a6:15:2a:10:68:94:18:48:9f:9e: da:90:3d:ed:be:1e:55:f0:c1:32:ba:aa:fe:9c:a2: 34:70:10:97:bb:b0:0c:fe:2d:76:55:eb:7b:c8:cb: a0:99:9f:77:e6:8f:fd:3a:0b:2e:9c:47:e9:fc:1f: 2c:e5:49:62:b0:2e:02:94:e5:88:0c:a5:de:ae:4f: be:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:64:EB:58:CB:C5:FC:0B:88:F1:7B:B8:B5:A7:DD:BA:5B:2E:35:BC X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:4::/48 Signature Algorithm: sha256WithRSAEncryption 0c:cf:ad:d4:37:ed:3b:7b:1b:53:51:eb:d8:a7:18:18:8e:ef: 1b:9f:b6:c1:8a:c4:32:35:8d:e3:17:d1:6c:9a:4a:1a:e4:91: 75:18:a1:af:c6:b8:25:cf:fc:25:55:82:25:ca:7c:3a:9b:a2: e0:b0:fb:a8:c3:91:07:f4:50:2f:c1:5e:4c:a4:a9:0e:21:8e: e5:35:e4:69:f7:03:a3:18:30:8b:1a:05:10:65:be:a4:40:9b: 8d:f4:69:c1:56:b9:9b:06:f2:05:d3:37:d7:ee:a6:08:4f:f3: 4c:28:bc:3d:e5:0a:40:56:b9:bd:d4:a1:9b:c4:0b:22:16:1b: 4a:8b:d5:a6:1d:aa:04:e6:f9:2f:dc:72:33:5e:7e:04:66:5b: d3:af:41:09:04:91:16:f8:bb:12:0a:de:99:df:75:6a:ca:db: b2:f8:78:78:7b:67:13:5f:90:73:31:b0:72:81:e6:a7:74:7b: 35:91:d9:b2:a9:20:21:8d:86:29:b5:30:a7:09:68:15:f9:65: 57:cd:bd:db:65:ef:d3:6f:41:00:e3:27:6d:0a:d2:5d:27:86: 53:3d:40:aa:50:29:6b:ab:24:e9:f0:e5:3e:8e:c3:fe:3f:0f: 0e:ea:dc:43:0a:85:1d:1a:56:e5:3b:fa:e1:b8:5b:49:c3:6e: a6:c7:8b:5f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjQwODA2MjA0ODI1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyOGMxOS0zYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrZBASAyQ2uL2CfQAcykmsfULyT7GBReY9VuWbeqPwes2nH9/C7JWs60Eo0B L4dkqAOYG1z+MJKsAh9Gk4FRAyb/y3qYNk/b61BWjjXK7FeYLtbWPuQjFlvoxfhz hHVWvcPmYdWucnZJ5xCghgRIQIsm8ZJLBuqT4/21zRziadp/NjwqHnz0MpEPi0V3 EnsQulD2GGjU1sGsQd5q3fWdY8FB1PJejN18pLT1GF+PEHko27izOn11sKYVKhBo lBhIn57akD3tvh5V8MEyuqr+nKI0cBCXu7AM/i12Vet7yMugmZ935o/9OgsunEfp /B8s5UlisC4ClOWIDKXerk++GQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMtk61jL xfwLiPF7uLWn3bpbLjW8MB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3QzEvNTM0NDcyQ0M4M0I5MTFFQTg1MkExNTc2QzRGOUFFMDIvMzQ5MkQyRjA4 M0JBMTFFQTg3MjhGMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wAAQwDQYJKoZIhvcNAQELBQADggEBAAzPrdQ37Tt7 G1NR69inGBiO7xuftsGKxDI1jeMX0WyaShrkkXUYoa/GuCXP/CVVgiXKfDqbouCw +6jDkQf0UC/BXkykqQ4hjuU15Gn3A6MYMIsaBRBlvqRAm430acFWuZsG8gXTN9fu pghP80wovD3lCkBWub3UoZvECyIWG0qL1aYdqgTm+S/ccjNefgRmW9OvQQkEkRb4 uxIK3pnfdWrK27L4eHh7ZxNfkHMxsHKB5qd0ezWR2bKpICGNhim1MKcJaBX5ZVfN vdtl79NvQQDjJ20K0l0nhlM9QKpQKWurJOnw5T6Ow/4/Dw7q3EMKhR0aVuU7+uG4 W0nDbqbHi18= -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:32 2025 by rpki-client