$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/90D4C28CC2BA11EA8A079767C4F9AE02.roa File: 90D4C28CC2BA11EA8A079767C4F9AE02.roa (raw, json) Hash identifier: e+13EZAvpj9mc2IILMERDnSK9NszhBMUbUBC2BNslfY= Subject key identifier: 74:3C:7B:24:E9:C6:F6:C9:6E:77:A3:29:4B:D9:2B:33:E2:9C:61:3C Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Certificate serial: 0835 Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/90D4C28CC2BA11EA8A079767C4F9AE02.roa Signing time: Tue 10 Dec 2024 20:49:40 +0000 ROA not before: Tue 10 Dec 2024 20:49:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 0 IP address blocks: 2001:df0:1d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 20:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EED0 Validity Not Before: Dec 10 20:49:40 2024 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6758a964-91a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:28:eb:f4:79:d1:db:9c:94:da:3e:2e:89:90: 3d:37:e5:fa:cb:cf:ea:f6:33:eb:87:09:51:a4:83: 58:0c:9e:78:8d:80:27:33:98:dc:a4:88:5f:ff:ca: 31:ef:a5:e0:d9:08:8f:fb:16:f4:91:c4:55:fb:7c: 75:7c:41:e4:f7:71:de:72:c3:46:bc:ac:b9:1c:b1: 1a:40:8e:d1:99:8f:8c:03:13:a6:c1:b0:ca:7c:03: 66:c8:46:5b:6e:37:19:5b:c1:b3:c7:fb:57:b1:35: 70:b7:dd:47:e2:5d:d0:ec:a2:62:b4:e5:4d:70:3e: 20:e0:dc:e9:b7:b9:ea:0b:bc:ae:01:07:bf:ea:ed: a6:08:f6:75:4e:a2:d1:26:28:67:73:a1:55:b8:ac: 3b:b2:1d:0b:85:6c:2b:0c:de:f8:5d:17:41:fd:b5: 3d:6a:42:fb:fe:c9:c7:0f:f9:79:0c:75:94:ff:e7: 89:e2:10:4c:36:a7:10:78:33:39:20:83:c0:ac:21: a3:ef:1a:6e:11:63:07:3a:17:2c:a7:d4:ac:5f:9c: 69:16:8d:f3:c8:ab:98:eb:a2:7d:8e:32:2e:dc:e6: 74:ec:cf:7a:50:8a:0a:8c:47:21:4d:9d:e2:e6:cd: a5:38:73:97:7e:fd:2f:01:34:17:22:57:cf:cb:fc: db:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3C:7B:24:E9:C6:F6:C9:6E:77:A3:29:4B:D9:2B:33:E2:9C:61:3C X509v3 Authority Key Identifier: keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/90D4C28CC2BA11EA8A079767C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:1d00::/48 Signature Algorithm: sha256WithRSAEncryption 8b:9f:f2:78:13:14:cf:79:79:c0:3b:a4:da:69:49:f4:76:c8: da:e9:b0:8e:e0:5d:2a:51:90:88:b8:f6:cc:95:ee:9a:59:d7: c7:c3:a1:38:97:38:9c:cd:12:41:03:ab:33:c7:4f:21:36:7f: 29:7b:0d:68:39:ed:ec:69:92:a0:07:a5:78:e8:d4:13:7d:85: 3b:8d:d8:d9:1f:c9:46:9d:0c:6f:92:db:9a:33:98:9a:54:fe: 7a:74:87:9d:12:d2:b6:43:1e:4a:cc:76:99:dc:2f:db:66:60: 1f:02:0d:20:7d:45:a2:20:73:48:e5:bd:56:59:c5:5b:88:26: cc:7c:7b:95:98:20:8f:fd:31:ef:22:f5:3f:d6:05:6c:69:2c: 67:b0:c8:ac:61:5e:2e:49:c9:54:5a:06:04:56:7b:ae:e9:63: 6e:6d:59:e6:14:ed:7b:18:d4:6a:26:2a:6d:92:ab:29:56:1c: a9:e1:0e:33:6e:fa:1a:4c:7d:2e:f2:a6:f2:10:21:55:7d:06: 09:fd:f8:b9:aa:c8:97:ee:41:6e:53:02:24:7d:8c:f8:7d:c1: 2a:bd:07:2e:6e:c8:30:fc:b8:55:c9:d1:ff:a1:58:9b:29:05: 02:cc:cd:6b:ff:df:13:8a:b6:6c:e8:11:c2:61:a2:f7:56:0f: 9a:c7:b9:98 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFRDAxMTAvBgNVBAUTKENCRTEzMUEwODNBNDU2M0M3QzQzOURCMDc5QjY0QjZB RDExMDFBN0MwHhcNMjQxMjEwMjA0OTQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YTk2NC05MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoijr9HnR25yU2j4uiZA9N+X6y8/q9jPrhwlRpINYDJ54jYAnM5jcpIhf/8ox 76Xg2QiP+xb0kcRV+3x1fEHk93HecsNGvKy5HLEaQI7RmY+MAxOmwbDKfANmyEZb bjcZW8Gzx/tXsTVwt91H4l3Q7KJitOVNcD4g4Nzpt7nqC7yuAQe/6u2mCPZ1TqLR Jihnc6FVuKw7sh0LhWwrDN74XRdB/bU9akL7/snHD/l5DHWU/+eJ4hBMNqcQeDM5 IIPArCGj7xpuEWMHOhcsp9SsX5xpFo3zyKuY66J9jjIu3OZ07M96UIoKjEchTZ3i 5s2lOHOXfv0vATQXIlfPy/zb5wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHQ8eyTp xvbJbnejKUvZKzPinGE8MB8GA1UdIwQYMBaAFMvhMaCDpFY8fEOdsHm2S2rREBp8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUVEMC82RUVCMTE1MEMy QjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1ZqeDhRNTJ3ZWJaTGF0RVFH bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktRXhvSU9rVmp4OFE1MndlYlpMYXRFUUdudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVFRDAvNkVFQjExNTBDMkIzMTFFQUI0ODMyNzUwQzRGOUFFMDIvOTBENEMyOEND MkJBMTFFQThBMDc5NzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wHQAwDQYJKoZIhvcNAQELBQADggEBAIuf8ngTFM95 ecA7pNppSfR2yNrpsI7gXSpRkIi49syV7ppZ18fDoTiXOJzNEkEDqzPHTyE2fyl7 DWg57expkqAHpXjo1BN9hTuN2NkfyUadDG+S25ozmJpU/np0h50S0rZDHkrMdpnc L9tmYB8CDSB9RaIgc0jlvVZZxVuIJsx8e5WYII/9Me8i9T/WBWxpLGewyKxhXi5J yVRaBgRWe67pY25tWeYU7XsY1GomKm2SqylWHKnhDjNu+hpMfS7ypvIQIVV9Bgn9 +LmqyJfuQW5TAiR9jPh9wSq9By5uyDD8uFXJ0f+hWJspBQLMzWv/3xOKtmzoEcJh ovdWD5rHuZg= -----END CERTIFICATE-----Generated at Mon Apr 7 05:02:32 2025 by rpki-client