$ rpki-client -vvf rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa File: C00D9A3C71EE11EFA7DD021EC4F9AE02.roa (raw, json) Hash identifier: j/6dClTGKIF6Y0W3OQ8vmv5qC35aQkMZjQK9N8GGPFU= Subject key identifier: DF:E0:60:1D:96:0E:D3:6D:2C:79:23:24:47:58:8C:7E:43:77:86:F9 Certificate issuer: /CN=A91625DB/serialNumber=7BE230153CFF9001642DBC9B24F85D0CC282364E Certificate serial: E2 Authority key identifier: 7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa Signing time: Wed 25 Dec 2024 04:17:44 +0000 ROA not before: Wed 25 Dec 2024 04:17:44 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152176 IP address blocks: 2001:df3:3d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91625DB Validity Not Before: Dec 25 04:17:44 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b8768-01ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7f:ac:7c:33:17:22:0d:7d:05:a6:cd:66:73: 41:44:44:bd:0c:2e:35:23:3b:a4:a7:db:06:d2:18: c9:e3:ee:f8:03:0c:0d:d9:08:78:13:ff:a8:20:86: 2f:df:d1:95:88:a6:b6:9d:8c:11:75:09:95:fa:81: 59:1c:83:43:8e:56:27:25:74:58:f2:55:ad:70:7b: d1:70:1c:b1:1e:51:09:be:82:3b:fa:2c:fc:f7:8f: 6f:f1:1e:aa:97:41:fb:96:a7:63:b4:a7:f3:af:1d: c9:78:f9:ec:f2:e2:24:d9:c4:70:7a:92:78:a4:0e: 6f:5d:ad:25:a0:6e:52:45:f2:cc:fe:7d:f2:dd:46: a3:fe:a0:a6:60:dd:7b:40:a8:54:31:67:85:68:93: f8:8f:fe:f2:33:c1:f9:e4:5f:fc:55:48:6e:bf:72: e2:fb:51:9f:3b:bf:d5:e6:7a:24:05:9b:fb:2e:1a: 5d:09:69:f2:76:4d:50:3c:9b:a3:f9:c0:b6:0f:24: 48:be:6d:d6:5f:01:bb:1e:d1:a8:54:bd:b8:2b:7c: f8:cf:7b:23:54:74:bc:f3:49:ce:d0:fc:e3:e8:ee: 77:3f:43:45:e3:6f:01:64:e7:e3:82:44:a5:47:92: 90:7d:78:e4:d1:7a:5c:10:d1:ec:ee:42:99:f8:35: a1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E0:60:1D:96:0E:D3:6D:2C:79:23:24:47:58:8C:7E:43:77:86:F9 X509v3 Authority Key Identifier: keyid:7B:E2:30:15:3C:FF:90:01:64:2D:BC:9B:24:F8:5D:0C:C2:82:36:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/e-IwFTz_kAFkLbybJPhdDMKCNk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-IwFTz_kAFkLbybJPhdDMKCNk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91625DB/11939D10906911EEB23D7425C4F9AE02/C00D9A3C71EE11EFA7DD021EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:3d40::/48 Signature Algorithm: sha256WithRSAEncryption 23:3b:fc:7c:94:6c:23:86:8a:56:d1:9d:35:75:02:51:a0:14: 99:d5:44:c4:12:ed:0d:80:4c:ca:40:98:5c:a5:ce:a1:fe:b2: af:14:df:ec:cf:99:ca:1d:d1:db:28:58:82:9b:f0:b0:8e:15: 38:bb:49:22:18:4b:d7:30:2d:9d:77:05:30:48:db:ce:10:2a: 82:67:4c:c4:ba:c1:29:7a:9f:38:4b:88:5b:11:93:0c:4d:aa: 66:76:98:90:ca:58:93:38:fc:f5:a2:24:e5:01:5e:5a:6a:23: c9:a5:73:3a:67:d8:92:43:dd:cf:71:fa:76:f3:22:30:6c:0d: 58:19:b9:b7:af:12:a5:2d:5b:fb:08:22:4a:36:5a:ae:c4:d8: d4:ca:b5:37:06:41:df:27:62:15:6f:4b:83:61:e3:d0:1c:53: 0b:0f:9d:e2:e1:d5:ea:9c:36:68:37:6e:de:54:7b:9e:58:1b: d7:50:59:93:86:8a:dd:dc:31:a8:8e:60:e2:ca:cd:e0:8f:3b: 1c:4a:a9:9b:b2:a4:6b:0d:b0:5c:44:69:e4:3b:2f:74:42:fb: 3e:ca:39:6c:66:a0:c7:43:f7:d3:c2:ba:db:2a:d5:34:fd:f0: e5:25:4c:44:a8:c0:09:50:89:ce:05:27:7e:ed:3a:4b:8b:d6: c7:5a:fa:26 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI1REIxMTAvBgNVBAUTKDdCRTIzMDE1M0NGRjkwMDE2NDJEQkM5QjI0Rjg1RDBD QzI4MjM2NEUwHhcNMjQxMjI1MDQxNzQ0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiODc2OC0wMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH+sfDMXIg19BabNZnNBRES9DC41Izukp9sG0hjJ4+74AwwN2Qh4E/+oIIYv 39GViKa2nYwRdQmV+oFZHINDjlYnJXRY8lWtcHvRcByxHlEJvoI7+iz8949v8R6q l0H7lqdjtKfzrx3JePns8uIk2cRwepJ4pA5vXa0loG5SRfLM/n3y3Uaj/qCmYN17 QKhUMWeFaJP4j/7yM8H55F/8VUhuv3Li+1GfO7/V5nokBZv7LhpdCWnydk1QPJuj +cC2DyRIvm3WXwG7HtGoVL24K3z4z3sjVHS880nO0Pzj6O53P0NF428BZOfjgkSl R5KQfXjk0XpcENHs7kKZ+DWhFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFN/gYB2W DtNtLHkjJEdYjH5Dd4b5MB8GA1UdIwQYMBaAFHviMBU8/5ABZC28myT4XQzCgjZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjVEQi8xMTkzOUQxMDkw NjkxMUVFQjIzRDc0MjVDNEY5QUUwMi9lLUl3RlR6X2tBRmtMYnliSlBoZERNS0NO azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtSXdGVHpfa0FGa0xieWJKUGhkRE1LQ05rNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI1REIvMTE5MzlEMTA5MDY5MTFFRUIyM0Q3NDI1QzRGOUFFMDIvQzAwRDlBM0M3 MUVFMTFFRkE3REQwMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zPUAwDQYJKoZIhvcNAQELBQADggEBACM7/HyUbCOG ilbRnTV1AlGgFJnVRMQS7Q2ATMpAmFylzqH+sq8U3+zPmcod0dsoWIKb8LCOFTi7 SSIYS9cwLZ13BTBI284QKoJnTMS6wSl6nzhLiFsRkwxNqmZ2mJDKWJM4/PWiJOUB XlpqI8mlczpn2JJD3c9x+nbzIjBsDVgZubevEqUtW/sIIko2Wq7E2NTKtTcGQd8n YhVvS4Nh49AcUwsPneLh1eqcNmg3bt5Ue55YG9dQWZOGit3cMaiOYOLKzeCPOxxK qZuypGsNsFxEaeQ7L3RC+z7KOWxmoMdD99PCutsq1TT98OUlTESowAlQic4FJ37t OkuL1sda+iY= -----END CERTIFICATE-----Generated at Sat Apr 5 19:27:38 2025 by rpki-client