$ rpki-client -vvf rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa File: 3DD736B0BF9511EEAD184E59C4F9AE02.roa (raw, json) Hash identifier: aAotkUpTu/+JybhkWBN3FLBD+6K9gZJwPXhnau7EH7M= Subject key identifier: 03:D6:B4:69:90:A5:B3:75:EA:EC:A5:7A:18:3B:7A:33:19:40:C7:7B Certificate issuer: /CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Certificate serial: 22BC Authority key identifier: C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa Signing time: Mon 02 Dec 2024 15:52:58 +0000 ROA not before: Mon 02 Dec 2024 15:52:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7489 IP address blocks: 2403:5680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8892 (0x22bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501CE Validity Not Before: Dec 2 15:52:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dd7da-7611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:60:fd:f9:ee:fa:14:55:a3:d6:07:50:85: 2f:b1:dd:a2:09:54:76:d5:36:f9:a0:54:5e:54:03: f8:b2:2b:05:9c:0e:8d:01:82:fc:9f:9d:45:3b:5f: b6:a9:7b:1d:34:0e:db:2e:3b:a9:a2:97:6e:f0:b8: af:cc:c3:00:26:4c:d5:39:40:e4:49:98:73:9d:aa: 74:29:74:bf:41:6a:7a:5b:01:12:50:63:63:8f:cb: f1:64:4e:36:12:19:85:b8:b1:08:b0:43:57:d7:d0: 73:df:26:df:ad:e0:f2:87:ab:47:87:19:5f:7b:ee: 08:f0:0f:0a:bc:09:fd:9b:d6:65:9a:05:f9:e6:cb: 1b:15:f8:e7:cc:85:1b:75:ba:6c:36:ce:72:1f:93: 70:87:8b:5f:9d:8e:4a:8d:fe:4c:65:61:49:f0:50: f1:cb:9a:42:f4:57:2c:11:10:26:72:d8:87:8e:37: 2a:f3:38:9d:1b:7c:0c:57:be:b5:70:b8:48:17:7f: 7c:c9:10:fb:44:c7:ce:e6:25:b7:a3:61:bf:29:42: fd:9f:63:f4:06:e2:88:86:3a:5b:95:6b:0d:a9:27: e4:8e:a5:34:57:64:9c:fa:51:aa:92:ae:88:05:24: de:b4:4c:50:f7:d6:46:1d:cb:25:e4:b8:f2:d9:55: 20:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D6:B4:69:90:A5:B3:75:EA:EC:A5:7A:18:3B:7A:33:19:40:C7:7B X509v3 Authority Key Identifier: keyid:C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:5680::/48 Signature Algorithm: sha256WithRSAEncryption 87:42:05:2a:c4:1c:98:e0:e1:77:88:0e:f5:89:8c:4a:f6:f6: d4:15:a8:fa:dd:3b:0e:32:28:05:ab:6c:f2:13:d2:b6:d7:43: 28:97:1a:6a:e3:18:1a:39:70:1a:a1:ff:ac:86:0b:ec:24:24: 88:ae:57:14:9d:fd:9b:10:4e:0d:10:ce:f1:aa:89:de:d6:d1: 87:ad:33:37:1c:55:a5:01:8c:c3:2c:5d:2c:7e:02:d3:8f:97: 46:31:43:bd:0e:d2:d0:8f:30:6f:01:bf:ad:6e:40:67:f3:1d: a2:14:df:4e:63:bb:8e:80:87:5c:90:f4:90:d3:fa:81:39:7b: 50:7f:97:af:b8:9d:29:2a:57:7c:4f:25:54:56:4a:0c:48:0e: be:ea:4e:b2:ae:a2:c9:0e:21:51:ca:de:82:f5:d8:7b:8b:e7: 1d:72:89:e7:a1:6c:d2:1d:85:38:f4:29:82:63:c2:8f:d0:45: 81:de:7c:38:af:33:78:cd:16:77:5c:e6:d3:f4:e2:60:73:13: ae:dc:c2:96:ef:fa:68:3d:9a:2f:5e:68:33:98:4e:ba:94:ca: 66:02:ad:76:51:10:73:cf:01:60:77:0d:a7:10:85:55:6b:c5: 11:79:d3:a6:d6:16:a5:31:c3:96:88:30:19:86:bc:fd:14:9c: 12:91:c0:95 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICIrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxQ0UxMTAvBgNVBAUTKEM2QkY4OTcwOThBRjQ0ODZBNTRFMjhCQTNFRkY1MzVE NDUyODk0MTEwHhcNMjQxMjAyMTU1MjU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkZDdkYS03NjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuVg/fnu+hRVo9YHUIUvsd2iCVR21Tb5oFReVAP4sisFnA6NAYL8n51FO1+2 qXsdNA7bLjupopdu8LivzMMAJkzVOUDkSZhznap0KXS/QWp6WwESUGNjj8vxZE42 EhmFuLEIsENX19Bz3ybfreDyh6tHhxlfe+4I8A8KvAn9m9ZlmgX55ssbFfjnzIUb dbpsNs5yH5Nwh4tfnY5Kjf5MZWFJ8FDxy5pC9FcsERAmctiHjjcq8zidG3wMV761 cLhIF398yRD7RMfO5iW3o2G/KUL9n2P0BuKIhjpblWsNqSfkjqU0V2Sc+lGqkq6I BSTetExQ99ZGHcsl5Ljy2VUgiQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAPWtGmQ pbN16uylehg7ejMZQMd7MB8GA1UdIwQYMBaAFMa/iXCYr0SGpU4ouj7/U11FKJQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFDRS85M0JBODUzQTk3 RjAxMUU1QjkyMDEwNkFDNEY5QUUwMi94ci1KY0ppdlJJYWxUaWk2UHY5VFhVVW9s QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hyLUpjSml2UklhbFRpaTZQdjlUWFVVb2xCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAxQ0UvOTNCQTg1M0E5N0YwMTFFNUI5MjAxMDZBQzRGOUFFMDIvM0RENzM2QjBC Rjk1MTFFRUFEMTg0RTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkA1aAAAAwDQYJKoZIhvcNAQELBQADggEBAIdCBSrEHJjg 4XeIDvWJjEr29tQVqPrdOw4yKAWrbPIT0rbXQyiXGmrjGBo5cBqh/6yGC+wkJIiu VxSd/ZsQTg0QzvGqid7W0YetMzccVaUBjMMsXSx+AtOPl0YxQ70O0tCPMG8Bv61u QGfzHaIU305ju46Ah1yQ9JDT+oE5e1B/l6+4nSkqV3xPJVRWSgxIDr7qTrKuoskO IVHK3oL12HuL5x1yieehbNIdhTj0KYJjwo/QRYHefDivM3jNFndc5tP04mBzE67c wpbv+mg9mi9eaDOYTrqUymYCrXZREHPPAWB3DacQhVVrxRF506bWFqUxw5aIMBmG vP0UnBKRwJU= -----END CERTIFICATE-----Generated at Sun Apr 6 05:36:13 2025 by rpki-client