$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa File: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (raw, json) Hash identifier: xD+NCFUusyV8948kjGogzh90vclALi1BI0w1G6upBJY= Subject key identifier: 4B:AF:64:E5:C8:7F:B9:62:DC:5E:F2:0C:D6:A0:96:3C:81:C8:F2:0B Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 0629 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa Signing time: Sat 04 Jan 2025 22:11:45 +0000 ROA not before: Sat 04 Jan 2025 22:11:45 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 18054 IP address blocks: 2001:df2:33c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C Validity Not Before: Jan 4 22:11:45 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6779b221-b4d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:e2:5d:85:b1:27:bb:59:a3:f7:74:74:95: f5:2a:1f:de:b0:bc:75:ff:9b:db:45:8f:15:80:1a: 48:db:02:9d:05:d4:c2:f0:2c:e2:51:72:fd:f3:df: 32:01:1b:0a:00:4f:1d:32:57:6f:d8:d8:40:d6:64: 73:6d:ec:2b:b3:5e:4f:2c:ad:fa:c1:6f:3d:3d:3d: c1:41:99:20:51:a6:6b:ca:9e:99:c7:75:ef:de:31: c5:cb:82:48:d0:3a:a4:2e:68:8a:6a:59:7d:52:51: 5e:34:71:8f:bb:54:4b:1f:4f:ec:52:3e:a1:87:fc: 53:5d:bb:90:7d:9b:b3:3d:cc:40:bf:0a:b5:a2:9e: ef:52:01:41:ad:08:a6:ee:64:ce:ff:8a:05:dd:55: 01:7a:37:cf:2c:15:53:90:c5:72:28:59:8c:a8:d0: 15:a5:96:24:ca:9f:19:40:50:f0:46:e5:54:1c:bf: 9e:17:bd:f4:1f:fb:46:aa:fb:6a:9f:60:26:5c:ea: b7:6d:1a:57:2b:06:f5:ab:d7:54:fd:eb:99:8e:b6: 42:cf:41:35:fd:d5:fb:d0:87:93:f6:28:66:84:b1: 5d:48:6a:4a:75:d5:27:9e:35:24:09:42:d9:94:67: c8:a3:fb:0a:cd:71:a7:0e:9b:7d:91:80:b4:d3:5c: 9f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AF:64:E5:C8:7F:B9:62:DC:5E:F2:0C:D6:A0:96:3C:81:C8:F2:0B X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:33c0::/48 Signature Algorithm: sha256WithRSAEncryption 93:63:be:82:33:63:96:1f:c8:a3:eb:55:b7:57:b0:c0:2a:57: e3:47:17:23:f1:31:af:5d:fb:7d:05:bd:80:46:86:7d:e5:27: c8:5d:05:4d:05:30:6a:25:15:7a:e3:dc:4b:04:ad:73:47:e7: c5:f7:c2:b2:16:24:84:a8:9b:14:05:91:e6:11:72:47:0b:3d: b3:57:54:a7:3b:05:e6:26:ae:11:f0:3e:45:20:72:77:a8:8e: f5:04:e3:14:31:32:f1:c2:47:4c:8c:c2:40:59:e7:b7:e7:f9: ed:5d:e7:51:eb:a7:0e:e9:a1:c7:8a:5c:90:13:48:41:bc:fe: a0:8a:f3:e1:36:ea:45:b8:ba:f2:6c:59:2b:7e:7b:17:79:40: 45:68:5c:0a:f2:f9:eb:d8:fc:e4:1a:a9:88:28:13:2d:61:a3: 77:bc:b3:e2:af:08:71:72:c2:85:96:b4:00:19:52:50:2f:0b: 1a:59:1d:9f:df:52:40:5c:cd:5b:69:f1:88:16:6f:b8:1f:27: 27:94:64:84:8f:92:a9:51:d9:1a:f3:70:45:dc:d7:a3:f0:af: 56:f6:19:9f:22:b6:c4:33:61:dc:ca:88:04:62:b0:0d:5e:76: 5b:90:3f:89:d6:32:6a:ae:4d:0a:ed:a7:04:42:80:15:25:b7: b6:a4:05:8f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUwMTA0MjIxMTQ1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5YjIyMS1iNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlTiXYWxJ7tZo/d0dJX1Kh/esLx1/5vbRY8VgBpI2wKdBdTC8CziUXL9898y ARsKAE8dMldv2NhA1mRzbewrs15PLK36wW89PT3BQZkgUaZryp6Zx3Xv3jHFy4JI 0DqkLmiKall9UlFeNHGPu1RLH0/sUj6hh/xTXbuQfZuzPcxAvwq1op7vUgFBrQim 7mTO/4oF3VUBejfPLBVTkMVyKFmMqNAVpZYkyp8ZQFDwRuVUHL+eF730H/tGqvtq n2AmXOq3bRpXKwb1q9dU/euZjrZCz0E1/dX70IeT9ihmhLFdSGpKddUnnjUkCULZ lGfIo/sKzXGnDpt9kYC001yf9QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEuvZOXI f7li3F7yDNagljyByPILMB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0MkMvMUI2MzQ2NkU4Q0E4MTFFQkEyQkQwQTZCQzRGOUFFMDIvRjBGRkNCQ0NG OUM5MTFFREFGNzA0RTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yM8AwDQYJKoZIhvcNAQELBQADggEBAJNjvoIzY5Yf yKPrVbdXsMAqV+NHFyPxMa9d+30FvYBGhn3lJ8hdBU0FMGolFXrj3EsErXNH58X3 wrIWJISomxQFkeYRckcLPbNXVKc7BeYmrhHwPkUgcneojvUE4xQxMvHCR0yMwkBZ 57fn+e1d51Hrpw7poceKXJATSEG8/qCK8+E26kW4uvJsWSt+exd5QEVoXAry+evY /OQaqYgoEy1ho3e8s+KvCHFywoWWtAAZUlAvCxpZHZ/fUkBczVtp8YgWb7gfJyeU ZISPkqlR2RrzcEXc16Pwr1b2GZ8itsQzYdzKiARisA1edluQP4nWMmquTQrtpwRC gBUlt7akBY8= -----END CERTIFICATE-----Generated at Sun Apr 6 01:27:00 2025 by rpki-client