$ rpki-client -vvf rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/90322C4C332311EF9149E085C4F9AE02.roa File: 90322C4C332311EF9149E085C4F9AE02.roa (raw, json) Hash identifier: +LqWEa5rSALqs0LMlx4uyv4FlCHQZms5sQeB8rQmgBU= Subject key identifier: B7:E2:86:B9:73:5A:94:FB:E0:4B:9E:97:A4:9C:A4:F3:62:70:FA:AE Certificate issuer: /CN=A913CDE5/serialNumber=F9941694B6A77B24C583FA78B527E54BB6D5BF9F Certificate serial: C2 Authority key identifier: F9:94:16:94:B6:A7:7B:24:C5:83:FA:78:B5:27:E5:4B:B6:D5:BF:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/90322C4C332311EF9149E085C4F9AE02.roa Signing time: Sat 29 Jun 2024 06:08:00 +0000 ROA not before: Sat 29 Jun 2024 06:08:00 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138622 IP address blocks: 2401:f20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.crl rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CDE5 Validity Not Before: Jun 29 06:08:00 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667fa4c0-4d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:08:87:b9:00:57:d8:62:ac:ba:51:91:d4: 6f:a3:c9:71:c4:95:b0:19:64:57:43:b5:53:10:4e: 3e:a5:fc:44:4d:e5:8c:ad:2c:35:4e:d9:87:e1:e1: e5:8b:8d:96:01:48:f9:21:a0:d5:99:97:7b:42:98: c9:15:9e:97:b2:99:8a:c1:fe:6b:06:b5:27:70:5f: 7f:b1:a4:34:06:44:8f:e7:fe:5a:ab:fd:d7:a2:10: c9:ed:a1:fb:19:cd:59:41:db:be:a7:ee:4f:02:64: 4c:b9:c0:fd:6e:98:c9:d2:eb:47:40:4c:05:19:bb: 8c:ef:ed:c1:5a:70:78:47:c6:a6:3b:11:8b:a3:e2: 97:ce:76:5d:e7:1b:26:22:7e:69:7f:e5:15:2c:8f: 70:d3:d4:73:f7:45:fc:35:bc:e3:7b:ca:11:e3:78: c7:e5:51:41:12:8c:20:0b:f6:8a:98:8d:6d:cc:0c: d1:91:36:51:e7:2e:d5:05:c9:2a:de:5f:e9:7a:b5: a1:8f:7e:bd:8f:69:da:6c:8a:a5:f0:28:0c:a3:ca: 35:88:ef:3b:9a:a6:81:72:a1:93:ff:ef:8d:9e:3a: 90:e2:02:c8:d3:7d:05:e6:ae:7a:b5:c1:5e:c0:e0: 5b:20:8b:4a:86:ba:5a:27:15:df:5c:e6:db:43:93: ca:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E2:86:B9:73:5A:94:FB:E0:4B:9E:97:A4:9C:A4:F3:62:70:FA:AE X509v3 Authority Key Identifier: keyid:F9:94:16:94:B6:A7:7B:24:C5:83:FA:78:B5:27:E5:4B:B6:D5:BF:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/-ZQWlLaneyTFg_p4tSflS7bVv58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ZQWlLaneyTFg_p4tSflS7bVv58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CDE5/4993B7FC127B11EEB27E8C2BC4F9AE02/90322C4C332311EF9149E085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f20::/32 Signature Algorithm: sha256WithRSAEncryption 21:3b:39:02:bf:79:ef:f8:d7:07:2b:7e:86:eb:f3:0a:91:51: 7f:42:4b:9e:9a:4b:e7:36:31:8c:6d:d2:eb:1d:fa:76:1a:16: eb:d9:d4:34:37:08:01:f0:4d:df:ec:3b:2b:9f:5f:d9:1d:01: e8:32:78:e3:36:45:6d:b3:65:b7:0b:6e:c5:14:f3:19:5f:f8: cf:4b:e9:85:1e:94:09:e6:16:48:a8:4f:dc:40:16:55:53:a3: 9f:e0:34:7a:c3:70:d5:54:01:7f:62:df:35:95:76:aa:6f:00: 1d:82:1b:de:f2:e5:ff:26:26:69:77:9a:9f:2e:79:4d:6a:bc: 4e:c1:b0:18:3f:19:bc:f0:eb:91:58:8e:ec:83:8b:df:bf:85: b4:7e:a4:d5:0c:5b:20:e9:d7:16:95:d2:bb:24:bc:ea:c4:88: 91:50:29:c3:3d:ec:64:06:2e:1b:98:13:0a:69:bf:55:7b:f8: 4e:11:4c:6b:d0:85:8e:87:02:be:26:1c:1e:7a:5a:5f:5e:57: 80:82:42:20:dc:ad:b3:96:d9:be:3d:2c:35:1f:8d:c6:fd:83: 0b:86:8f:15:c7:62:00:56:2a:86:28:6d:61:49:8b:a9:5f:2a: 2e:7e:c2:ec:7d:53:7c:02:c9:dd:27:fc:64:f9:ae:50:95:1b: e1:2c:8c:ad -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NERTUxMTAvBgNVBAUTKEY5OTQxNjk0QjZBNzdCMjRDNTgzRkE3OEI1MjdFNTRC QjZENUJGOUYwHhcNMjQwNjI5MDYwODAwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmYTRjMC00ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OcIh7kAV9hirLpRkdRvo8lxxJWwGWRXQ7VTEE4+pfxETeWMrSw1TtmH4eHl i42WAUj5IaDVmZd7QpjJFZ6XspmKwf5rBrUncF9/saQ0BkSP5/5aq/3XohDJ7aH7 Gc1ZQdu+p+5PAmRMucD9bpjJ0utHQEwFGbuM7+3BWnB4R8amOxGLo+KXznZd5xsm In5pf+UVLI9w09Rz90X8Nbzje8oR43jH5VFBEowgC/aKmI1tzAzRkTZR5y7VBckq 3l/perWhj369j2nabIql8CgMo8o1iO87mqaBcqGT/++NnjqQ4gLI030F5q56tcFe wOBbIItKhrpaJxXfXObbQ5PKZwIDAQABo4ICljCCApIwHQYDVR0OBBYEFLfihrlz WpT74Euel6ScpPNicPquMB8GA1UdIwQYMBaAFPmUFpS2p3skxYP6eLUn5Uu21b+f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0RFNS80OTkzQjdGQzEy N0IxMUVFQjI3RThDMkJDNEY5QUUwMi8tWlFXbExhbmV5VEZnX3A0dFNmbFM3YlZ2 NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1aUVdsTGFuZXlURmdfcDR0U2ZsUzdiVnY1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NERTUvNDk5M0I3RkMxMjdCMTFFRUIyN0U4QzJCQzRGOUFFMDIvOTAzMjJDNEMz MzIzMTFFRjkxNDlFMDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAQ8gMA0GCSqGSIb3DQEBCwUAA4IBAQAhOzkCv3nv+NcH K36G6/MKkVF/QkuemkvnNjGMbdLrHfp2Ghbr2dQ0NwgB8E3f7Dsrn1/ZHQHoMnjj NkVts2W3C27FFPMZX/jPS+mFHpQJ5hZIqE/cQBZVU6Of4DR6w3DVVAF/Yt81lXaq bwAdghve8uX/JiZpd5qfLnlNarxOwbAYPxm88OuRWI7sg4vfv4W0fqTVDFsg6dcW ldK7JLzqxIiRUCnDPexkBi4bmBMKab9Ve/hOEUxr0IWOhwK+JhweelpfXleAgkIg 3K2zltm+PSw1H43G/YMLho8Vx2IAViqGKG1hSYupXyoufsLsfVN8AsndJ/xk+a5Q lRvhLIyt -----END CERTIFICATE-----Generated at Fri Apr 11 20:45:38 2025 by rpki-client