$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/4F39607ED24311EF919B6D12C4F9AE02.roa File: 4F39607ED24311EF919B6D12C4F9AE02.roa (raw, json) Hash identifier: JjJCce1zF9qiD7rlQJmvV1gpbHE3mN8ttiQOSid+Fl4= Subject key identifier: EE:4B:0A:2C:2A:73:CE:13:35:06:9E:F8:A1:A1:56:E1:E4:45:00:F8 Certificate issuer: /CN=A911E660/serialNumber=4CB0B95B4BDC23314F283EF739A96A7C658C0A6C Certificate serial: 02 Authority key identifier: 4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/4F39607ED24311EF919B6D12C4F9AE02.roa Signing time: Tue 14 Jan 2025 06:46:41 +0000 ROA not before: Tue 14 Jan 2025 06:46:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137248 IP address blocks: 2001:df4:e5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660 Validity Not Before: Jan 14 06:46:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67860850-de93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:13:a7:cb:42:26:da:3d:a0:dd:2f:ca:04:4e: fa:54:36:d0:86:63:a6:52:72:91:84:f7:be:d8:65: cb:b4:26:91:a8:90:cc:90:e2:cd:cc:5e:e1:c4:18: d7:fb:70:61:3d:5a:c7:aa:1e:c2:37:f4:9c:64:17: 36:df:74:8f:08:0d:fe:54:08:cb:38:3f:27:31:db: b3:cc:d8:48:73:8e:b4:f9:d5:aa:01:01:8e:e5:29: e7:fb:6e:eb:b2:78:5e:bf:c5:84:a4:aa:7b:42:b2: 0c:11:84:56:5f:88:6b:01:da:1a:2d:23:eb:ef:42: 4e:10:ab:e2:9d:e5:dd:cc:87:bc:ec:e4:9d:00:70: ad:fd:bf:03:05:9a:2e:37:bc:66:57:d5:40:1a:94: 5d:a4:a4:e5:db:bf:28:52:e8:85:9e:e1:b6:52:9f: f0:58:28:ea:85:0c:72:17:b9:81:18:fe:10:76:52: 31:6a:17:e6:9f:a0:c9:2c:d9:e1:ee:62:66:f8:0c: c0:c4:e9:d7:fe:00:79:5c:3e:18:39:a0:5a:a2:b9: ad:1d:32:82:f0:0f:8d:a5:4a:9f:30:3f:4b:b5:d8: c8:bf:74:f3:34:a4:82:00:7a:3d:7c:ab:be:86:12: 24:3f:58:6b:cd:ab:4b:64:20:26:6b:be:9c:d4:1c: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4B:0A:2C:2A:73:CE:13:35:06:9E:F8:A1:A1:56:E1:E4:45:00:F8 X509v3 Authority Key Identifier: keyid:4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/4F39607ED24311EF919B6D12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:e5c0::/48 Signature Algorithm: sha256WithRSAEncryption 16:71:b8:e3:5b:c2:b7:4c:96:f1:ad:da:3f:58:dc:c6:8a:2e: 78:f8:19:e7:3f:d9:29:50:b4:86:2f:7b:ca:83:21:53:1e:48: 0a:57:7d:d7:89:55:cb:92:f6:25:97:5b:27:d6:df:0a:8a:91: 49:8e:46:d9:ed:9f:75:32:6b:18:3f:67:e7:63:e9:49:42:c9: 3d:a8:e0:ea:6b:1b:8f:77:32:23:90:62:87:a4:e3:b8:e7:c9: 8b:20:79:86:ac:70:96:34:8f:ff:6f:b7:07:be:10:27:6e:80: c2:e7:f5:ed:94:77:29:ab:f7:dc:0d:ce:01:cf:79:7b:d0:3b: df:78:90:63:7b:4e:4b:13:04:fa:c5:08:02:f6:54:11:db:85: 03:da:dc:1d:ed:bc:45:c2:8b:b0:ec:af:34:37:4f:59:a8:ff: f1:83:ce:ea:69:34:92:72:fd:ad:47:9f:ee:97:9b:cf:b1:57: 2d:93:6b:7f:11:f2:34:67:85:fe:68:c9:af:09:11:d9:52:c5: 2a:c3:b8:b5:81:5b:c6:f3:34:46:74:db:99:a0:f9:42:52:40: 66:cb:c6:1a:60:41:69:9d:d2:88:c1:c9:e8:f7:2c:02:46:b9: 6a:5f:77:ba:64:01:3f:5a:fc:bf:d5:10:37:c4:71:9a:c1:89: a3:64:bd:34 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNENCMEI5NUI0QkRDMjMzMTRGMjgzRUY3MzlBOTZBN0M2 NThDMEE2QzAeFw0yNTAxMTQwNjQ2NDFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODYwODUwLWRlOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbE6fLQibaPaDdL8oETvpUNtCGY6ZScpGE977YZcu0JpGokMyQ4s3MXuHEGNf7 cGE9WseqHsI39JxkFzbfdI8IDf5UCMs4Pycx27PM2EhzjrT51aoBAY7lKef7buuy eF6/xYSkqntCsgwRhFZfiGsB2hotI+vvQk4Qq+Kd5d3Mh7zs5J0AcK39vwMFmi43 vGZX1UAalF2kpOXbvyhS6IWe4bZSn/BYKOqFDHIXuYEY/hB2UjFqF+afoMks2eHu Ymb4DMDE6df+AHlcPhg5oFqiua0dMoLwD42lSp8wP0u12Mi/dPM0pIIAej18q76G EiQ/WGvNq0tkICZrvpzUHKgRAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU7ksKLCpz zhM1Bp74oaFW4eRFAPgwHwYDVR0jBBgwFoAUTLC5W0vcIzFPKD73OalqfGWMCmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwLzAxQzUyQTMwRDI0 MzExRUY4OEM1QkMxMUM0RjlBRTAyL1RMQzVXMHZjSXpGUEtENzNPYWxxZkdXTUNt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVExDNVcwdmNJekZQS0Q3M09hbHFmR1dNQ213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTY2MC8wMUM1MkEzMEQyNDMxMUVGODhDNUJDMTFDNEY5QUUwMi80RjM5NjA3RUQy NDMxMUVGOTE5QjZEMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTlwDANBgkqhkiG9w0BAQsFAAOCAQEAFnG441vCt0yW 8a3aP1jcxoouePgZ5z/ZKVC0hi97yoMhUx5ICld914lVy5L2JZdbJ9bfCoqRSY5G 2e2fdTJrGD9n52PpSULJPajg6msbj3cyI5Bih6TjuOfJiyB5hqxwljSP/2+3B74Q J26Awuf17ZR3Kav33A3OAc95e9A733iQY3tOSxME+sUIAvZUEduFA9rcHe28RcKL sOyvNDdPWaj/8YPO6mk0knL9rUef7pebz7FXLZNrfxHyNGeF/mjJrwkR2VLFKsO4 tYFbxvM0RnTbmaD5QlJAZsvGGmBBaZ3SiMHJ6PcsAka5al93umQBP1r8v9UQN8Rx msGJo2S9NA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:55:51 2025 by rpki-client