$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa File: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (raw, json) Hash identifier: 3Qq37sSxACv5Ldn7kCrtNWP8w5ga3g9Ur/m7mESYzt4= Subject key identifier: EF:DC:E1:85:A8:5B:55:03:72:4B:37:C4:32:65:A6:FB:17:D7:AD:47 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 342D Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa Signing time: Tue 20 Aug 2024 15:31:12 +0000 ROA not before: Tue 20 Aug 2024 15:31:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142502 IP address blocks: 2405:8a00:ffff::/48 maxlen: 48 2409:e:e1::/48 maxlen: 48 2409:e:e2::/48 maxlen: 48 2409:e:e3::/48 maxlen: 48 2409:e:e5::/48 maxlen: 48 2409:e:e7::/48 maxlen: 48 2409:e:e9::/48 maxlen: 48 2409:e:ef::/48 maxlen: 48 2409:f:f2::/48 maxlen: 48 2409:f:f4::/48 maxlen: 48 240a:eabc:abce::/48 maxlen: 48 240a:eabc:abcf::/48 maxlen: 48 240a:eabc:dabc::/48 maxlen: 48 240a:eabc:dabd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13357 (0x342d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A Validity Not Before: Aug 20 15:31:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c4b6c0-3980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:59:7f:cf:f5:e1:44:66:03:f3:1b:40:85:15: 44:85:4d:8e:3a:27:13:71:92:66:00:ce:ae:f6:43: 87:1f:a6:94:77:5b:80:c8:2a:31:f5:18:60:a1:b3: 3e:37:68:e0:0e:ce:fe:2a:cf:d6:90:2d:20:29:1f: a4:ae:e3:96:aa:f8:50:bb:2a:32:c4:57:f3:4a:2a: 2b:a4:1e:7b:2e:20:1e:b7:fa:8d:de:08:2f:c5:49: ad:1a:3d:49:ec:77:5d:6e:ff:44:4d:de:0b:30:af: 4f:b0:89:a4:cb:07:09:e4:2a:62:aa:a3:ad:88:22: d6:64:ca:a3:36:c0:7e:11:0c:d8:97:52:f2:60:dd: 4c:dc:f5:ec:64:5e:6d:cb:0a:48:fc:64:d2:12:17: c1:47:26:72:0a:61:4e:6a:2f:67:7e:ac:a7:26:2f: 8d:b8:98:09:90:4e:10:2f:c9:10:bf:d4:f6:07:b1: c5:25:ed:6a:13:2f:2d:61:0c:d1:b2:f5:5d:64:2f: 16:00:dc:a8:88:e2:d3:b2:57:11:b2:6a:28:ed:9f: 91:17:e5:3f:01:cd:39:8f:25:6a:4a:98:32:47:b0: 7b:3f:8a:ee:89:dd:b2:fe:0d:03:f5:31:b2:47:2b: 25:41:b6:78:fd:61:9c:ab:af:2c:85:36:40:ce:fc: fd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DC:E1:85:A8:5B:55:03:72:4B:37:C4:32:65:A6:FB:17:D7:AD:47 X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/8D6973CE77C311EE90D4BD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8a00:ffff::/48 2409:e:e1::-2409:e:e3:ffff:ffff:ffff:ffff:ffff 2409:e:e5::/48 2409:e:e7::/48 2409:e:e9::/48 2409:e:ef::/48 2409:f:f2::/48 2409:f:f4::/48 240a:eabc:abce::/47 240a:eabc:dabc::/47 Signature Algorithm: sha256WithRSAEncryption e3:04:61:d7:1a:b1:47:e6:7d:58:4f:70:0a:bc:85:1c:44:62: 1f:85:32:eb:8e:ba:3a:56:2a:11:fb:22:c9:b7:0a:0c:87:1d: 5e:d2:fc:e0:c7:47:ef:b7:48:cb:b5:49:39:30:a6:c8:75:87: d6:bc:21:a0:bc:ef:e7:e0:04:28:d8:46:5c:a9:c6:67:b1:df: ee:77:32:91:19:46:35:67:28:51:c5:92:fc:ec:48:7d:fd:63: 8e:b0:0b:24:77:b5:40:92:98:7e:30:2b:a9:65:f9:50:96:c7: 5d:e6:6a:4d:5d:66:4a:d0:2c:40:e2:44:9c:77:5c:88:25:52: 5c:9d:3c:2e:56:a2:fd:8e:2f:d1:7d:fe:ca:e5:51:ee:36:63: 21:96:82:1f:34:4e:c9:47:aa:9c:ca:b5:9d:ca:a8:88:34:65: 54:5b:a6:b6:d5:01:2a:14:fb:c7:f9:90:a9:56:cd:2f:ce:3d: 29:a4:f3:4f:32:85:fe:f0:fe:5d:4e:1b:45:f6:49:46:4b:04: ef:d3:31:2e:2a:6a:51:96:18:75:b0:a4:c8:93:f5:9f:51:f2: 76:c2:24:dc:f4:94:59:f3:22:f9:58:6c:29:0a:50:5e:2a:81: 39:2f:20:3f:9e:9a:dd:4a:59:d0:36:09:9f:fd:72:40:fd:04: a3:61:1e:fc -----BEGIN CERTIFICATE----- MIIF0DCCBLigAwIBAgICNC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjQwODIwMTUzMTEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YjZjMC0zOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Fl/z/XhRGYD8xtAhRVEhU2OOicTcZJmAM6u9kOHH6aUd1uAyCox9RhgobM+ N2jgDs7+Ks/WkC0gKR+kruOWqvhQuyoyxFfzSiorpB57LiAet/qN3ggvxUmtGj1J 7Hddbv9ETd4LMK9PsImkywcJ5CpiqqOtiCLWZMqjNsB+EQzYl1LyYN1M3PXsZF5t ywpI/GTSEhfBRyZyCmFOai9nfqynJi+NuJgJkE4QL8kQv9T2B7HFJe1qEy8tYQzR svVdZC8WANyoiOLTslcRsmoo7Z+RF+U/Ac05jyVqSpgyR7B7P4ruid2y/g0D9TGy RyslQbZ4/WGcq68shTZAzvz95wIDAQABo4IC9DCCAvAwHQYDVR0OBBYEFO/c4YWo W1UDcks3xDJlpvsX161HMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvOEQ2OTczQ0U3 N0MzMTFFRTkwRDRCRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwfgYIKwYBBQUHAQcBAf8E bzBtMGsEAgACMGUDBwAkBYoA//8wEgMHACQJAA4A4QMHAiQJAA4A4AMHACQJAA4A 5QMHACQJAA4A5wMHACQJAA4A6QMHACQJAA4A7wMHACQJAA8A8gMHACQJAA8A9AMH ASQK6ryrzgMHASQK6rzavDANBgkqhkiG9w0BAQsFAAOCAQEA4wRh1xqxR+Z9WE9w CryFHERiH4Uy6466OlYqEfsiybcKDIcdXtL84MdH77dIy7VJOTCmyHWH1rwhoLzv 5+AEKNhGXKnGZ7Hf7ncykRlGNWcoUcWS/OxIff1jjrALJHe1QJKYfjArqWX5UJbH XeZqTV1mStAsQOJEnHdciCVSXJ08Llai/Y4v0X3+yuVR7jZjIZaCHzROyUeqnMq1 ncqoiDRlVFumttUBKhT7x/mQqVbNL849KaTzTzKF/vD+XU4bRfZJRksE79MxLipq UZYYdbCkyJP1n1HydsIk3PSUWfMi+VhsKQpQXiqBOS8gP56a3UpZ0DYJn/1yQP0E o2Ee/A== -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:19 2025 by rpki-client