$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/E8780C5EAC8011E79D9EAC60C4F9AE02.roa File: E8780C5EAC8011E79D9EAC60C4F9AE02.roa (raw, json) Hash identifier: M0giNeJUYFHHWIGJ3hp4IIxg76YLnoDKySser5XKcL4= Subject key identifier: 18:BB:58:13:D7:BB:56:9B:D7:72:59:B6:05:96:9D:7F:6E:DB:F7:E3 Certificate issuer: /CN=A912FBCF/serialNumber=18700CB3D6507A3304BAEB270DEED1301CE3D902 Certificate serial: 17FC Authority key identifier: 18:70:0C:B3:D6:50:7A:33:04:BA:EB:27:0D:EE:D1:30:1C:E3:D9:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/E8780C5EAC8011E79D9EAC60C4F9AE02.roa Signing time: Wed 04 Dec 2024 16:53:57 +0000 ROA not before: Wed 04 Dec 2024 16:53:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134410 IP address blocks: 2001:df2:bb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.crl rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6140 (0x17fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBCF Validity Not Before: Dec 4 16:53:57 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67508925-fc2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:9a:0f:5e:71:83:dc:6e:ca:9a:80:a8:97: 46:3e:86:b0:f0:41:08:20:ba:55:ed:0a:91:32:18: 19:ad:81:88:88:d8:fa:5a:f5:b1:63:57:cf:6f:75: 72:6d:e8:60:2f:40:e6:bb:1e:7a:b5:8a:cf:77:7f: 29:a0:31:d0:fb:66:0a:39:d8:9b:41:6e:62:71:a3: c8:39:22:49:79:d5:c8:ca:9a:6c:19:36:3c:b8:fd: 69:1b:af:d7:6f:f1:8e:ec:de:8e:d0:6b:79:9b:8e: 29:8b:4d:d2:df:2b:31:b1:d1:10:56:13:12:bd:06: 8a:af:c2:41:b9:6a:a3:14:26:70:4c:9c:a2:c2:bf: b6:d8:2a:8d:f6:5a:74:da:aa:f1:04:f8:a3:e0:d6: 81:25:9c:58:e6:80:fb:59:71:f6:d0:db:01:69:82: 1c:2c:b9:f0:1f:7c:32:b9:a9:02:bc:91:7a:59:e1: 02:d7:80:f0:03:b6:c1:b4:20:11:47:45:a0:d2:db: ae:58:58:aa:a8:78:ce:44:64:e7:e2:a2:c3:b4:13: a5:ad:b3:cb:f9:7b:c2:82:6f:dd:e3:cb:0c:b4:af: 8e:35:65:f8:c4:00:58:9d:0e:ea:88:71:6f:b0:4b: e8:52:f0:bb:0f:e0:b8:29:9b:db:91:cb:24:e7:c8: da:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BB:58:13:D7:BB:56:9B:D7:72:59:B6:05:96:9D:7F:6E:DB:F7:E3 X509v3 Authority Key Identifier: keyid:18:70:0C:B3:D6:50:7A:33:04:BA:EB:27:0D:EE:D1:30:1C:E3:D9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/E8780C5EAC8011E79D9EAC60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:bb00::/48 Signature Algorithm: sha256WithRSAEncryption 4a:dc:5b:9f:28:5d:f7:22:10:c9:d9:bd:e9:7e:6d:29:47:2b: 9a:57:ce:18:5b:e3:5a:0d:dc:55:b4:f4:2c:ad:33:42:ad:9c: 7d:6e:ec:86:b4:81:52:af:1f:d7:14:e0:fa:29:32:13:f2:a2: 0a:81:4c:bd:5f:b5:9e:67:17:df:fa:6d:29:27:d8:64:61:2b: 1b:ff:ea:81:bb:1e:79:c7:19:49:d3:be:3a:03:b8:3f:38:07: 48:49:c4:2c:45:42:0d:da:bc:d2:bb:a5:59:f7:41:87:92:5c: 9d:ac:30:0c:78:23:47:12:75:62:1b:72:7c:d5:92:40:82:54: 2b:34:25:41:ef:26:50:1f:6d:13:7b:19:7e:e3:f6:a8:14:eb: 5d:67:b2:2f:82:68:c0:24:7d:4a:13:a8:49:46:d3:84:19:86: ca:95:57:9b:01:0d:05:45:54:b2:a7:e0:7a:6a:99:d7:fe:a7: 23:05:9b:7d:47:49:50:97:c4:27:55:f4:07:07:94:d9:80:6b: 5a:d3:89:5e:cb:79:ea:8d:36:62:7a:12:06:77:1d:87:86:40: 6c:0f:f7:16:7b:cc:a9:d2:b7:73:5e:6f:2a:b8:22:32:ac:c3: f9:c1:a6:22:49:70:ad:43:ac:4e:65:a9:3d:1f:f9:54:94:1a: 99:53:c8:d1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICF/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCQ0YxMTAvBgNVBAUTKDE4NzAwQ0IzRDY1MDdBMzMwNEJBRUIyNzBERUVEMTMw MUNFM0Q5MDIwHhcNMjQxMjA0MTY1MzU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwODkyNS1mYzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OaaD15xg9xuypqAqJdGPoaw8EEIILpV7QqRMhgZrYGIiNj6WvWxY1fPb3Vy behgL0Dmux56tYrPd38poDHQ+2YKOdibQW5icaPIOSJJedXIyppsGTY8uP1pG6/X b/GO7N6O0Gt5m44pi03S3ysxsdEQVhMSvQaKr8JBuWqjFCZwTJyiwr+22CqN9lp0 2qrxBPij4NaBJZxY5oD7WXH20NsBaYIcLLnwH3wyuakCvJF6WeEC14DwA7bBtCAR R0Wg0tuuWFiqqHjORGTn4qLDtBOlrbPL+XvCgm/d48sMtK+ONWX4xABYnQ7qiHFv sEvoUvC7D+C4KZvbkcsk58jaUwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBi7WBPX u1ab13JZtgWWnX9u2/fjMB8GA1UdIwQYMBaAFBhwDLPWUHozBLrrJw3u0TAc49kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJDRi80QUI1NzZCRUFB NUExMUU3QUU0MzZGMzJDNEY5QUUwMi9HSEFNczlaUWVqTUV1dXNuRGU3Uk1Cemoy UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIQU1zOVpRZWpNRXV1c25EZTdSTUJ6ajJRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZCQ0YvNEFCNTc2QkVBQTVBMTFFN0FFNDM2RjMyQzRGOUFFMDIvRTg3ODBDNUVB QzgwMTFFNzlEOUVBQzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yuwAwDQYJKoZIhvcNAQELBQADggEBAErcW58oXfci EMnZvel+bSlHK5pXzhhb41oN3FW09CytM0KtnH1u7Ia0gVKvH9cU4PopMhPyogqB TL1ftZ5nF9/6bSkn2GRhKxv/6oG7HnnHGUnTvjoDuD84B0hJxCxFQg3avNK7pVn3 QYeSXJ2sMAx4I0cSdWIbcnzVkkCCVCs0JUHvJlAfbRN7GX7j9qgU611nsi+CaMAk fUoTqElG04QZhsqVV5sBDQVFVLKn4Hpqmdf+pyMFm31HSVCXxCdV9AcHlNmAa1rT iV7LeeqNNmJ6EgZ3HYeGQGwP9xZ7zKnSt3Nebyq4IjKsw/nBpiJJcK1DrE5lqT0f +VSUGplTyNE= -----END CERTIFICATE-----Generated at Wed Apr 9 01:16:50 2025 by rpki-client