$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/24A28E0C07B911F091752834C4F9AE02.roa File: 24A28E0C07B911F091752834C4F9AE02.roa (raw, json) Hash identifier: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w= Subject key identifier: 4E:2F:F9:B1:B9:CE:9D:E9:78:0B:4D:43:37:D3:B7:23:52:80:F6:9E Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0C5E Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/24A28E0C07B911F091752834C4F9AE02.roa Signing time: Sun 23 Mar 2025 07:33:41 +0000 ROA not before: Sun 23 Mar 2025 07:33:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139602 IP address blocks: 2001:df1:3480::/48 maxlen: 52 2400:a7a0::/32 maxlen: 32 2400:a7a0::/33 maxlen: 33 2400:a7a0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF Validity Not Before: Mar 23 07:33:41 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67dfb955-7ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:10:48:d6:c6:79:8e:66:ab:fb:8a:a7:6b:c1: 2f:56:6c:40:3e:cf:11:b5:2e:5d:f9:70:18:f5:8f: cd:a4:a6:f9:2c:2a:1e:56:dd:eb:33:41:f6:31:ca: 8d:af:e2:04:ce:ae:c8:e4:bb:b7:7b:a7:2a:83:17: 9a:36:c7:ae:99:76:03:eb:e5:42:0c:d6:09:06:0d: fe:13:0f:43:38:5a:3f:28:ae:0b:f0:f9:81:98:f3: 01:13:51:bc:01:d2:9d:75:91:a4:07:75:d2:06:4d: 5e:e6:8b:0c:07:b9:2d:43:d2:bb:06:76:66:7c:30: 97:ea:6d:b3:df:7f:3e:0a:fc:d5:ed:92:7e:28:34: 23:99:33:e8:4e:7e:da:69:db:9e:16:f4:21:ed:34: 01:39:8e:1c:36:16:88:98:ed:80:dc:f5:36:8a:5b: 92:d0:02:82:e9:7c:06:3d:99:6b:23:98:d3:46:ad: 66:94:bf:d1:d8:0f:4a:58:78:90:a4:73:42:f4:ed: 37:99:62:74:be:96:ee:b7:4c:a5:2f:4f:f8:30:19: 8b:74:91:15:b0:e3:0b:eb:6e:e1:91:1a:08:15:73: b5:96:b8:f9:d9:fd:31:6b:2b:26:45:cc:d6:73:ff: ad:fd:32:ff:b5:cd:b0:30:72:a9:88:f1:dd:49:83: 39:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2F:F9:B1:B9:CE:9D:E9:78:0B:4D:43:37:D3:B7:23:52:80:F6:9E X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/24A28E0C07B911F091752834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:3480::/48 2400:a7a0::/32 Signature Algorithm: sha256WithRSAEncryption 86:f6:4c:4f:a7:ef:b6:8f:a1:ce:44:02:81:2b:62:f0:70:39: f6:9c:8f:7a:09:4a:f8:1b:77:04:d9:11:cc:5b:bb:1a:18:9e: d9:f3:4d:cc:72:b5:2d:d8:10:b0:9b:be:d4:13:f2:97:85:68: e6:35:70:41:5d:b4:db:94:e1:f3:1e:2f:8a:57:8b:b4:45:08: 5d:7e:2d:59:54:9e:8e:8b:ae:5a:83:62:1b:0c:99:9e:09:25: 99:c1:c3:d8:72:70:e2:27:56:be:b8:2d:b7:61:61:17:ed:0f: 8d:fd:cb:61:5b:71:d4:d3:2f:37:94:3b:e0:00:76:8f:45:f9: f0:59:51:ad:22:ab:87:35:b1:1c:f1:61:52:25:0a:13:d6:b7: 10:05:63:99:11:53:1f:92:e0:0f:05:e4:e3:a5:86:25:92:f9: c7:16:73:39:df:dd:58:42:cf:fe:84:43:20:8c:04:f7:21:0b: 44:b1:d8:59:77:56:a0:f7:aa:82:64:fc:15:ec:39:b3:f6:48: 7d:9a:21:63:05:cb:83:58:f2:de:f6:f3:fd:26:4e:30:c8:df: 2f:43:22:f7:c6:4c:33:40:c9:95:46:9e:1c:2a:df:09:52:3f: 11:a0:2b:fa:d8:ee:9f:d3:9a:56:f7:2a:bc:04:5e:47:81:aa: 18:67:69:da -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwMzIzMDczMzQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RmYjk1NS03Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhBI1sZ5jmar+4qna8EvVmxAPs8RtS5d+XAY9Y/NpKb5LCoeVt3rM0H2McqN r+IEzq7I5Lu3e6cqgxeaNseumXYD6+VCDNYJBg3+Ew9DOFo/KK4L8PmBmPMBE1G8 AdKddZGkB3XSBk1e5osMB7ktQ9K7BnZmfDCX6m2z338+CvzV7ZJ+KDQjmTPoTn7a adueFvQh7TQBOY4cNhaImO2A3PU2iluS0AKC6XwGPZlrI5jTRq1mlL/R2A9KWHiQ pHNC9O03mWJ0vpbut0ylL0/4MBmLdJEVsOML627hkRoIFXO1lrj52f0xaysmRczW c/+t/TL/tc2wMHKpiPHdSYM5QQIDAQABo4ICnzCCApswHQYDVR0OBBYEFE4v+bG5 zp3peAtNQzfTtyNSgPaeMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI2RUYvOUQ4Njc1MTBGRkQ0MTFFOTkyRDA2NTE4QzRGOUFFMDIvMjRBMjhFMEMw N0I5MTFGMDkxNzUyODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQcBAf8E GjAYMBYEAgACMBADBwAgAQ3xNIADBQAkAKegMA0GCSqGSIb3DQEBCwUAA4IBAQCG 9kxPp++2j6HORAKBK2LwcDn2nI96CUr4G3cE2RHMW7saGJ7Z803McrUt2BCwm77U E/KXhWjmNXBBXbTblOHzHi+KV4u0RQhdfi1ZVJ6Oi65ag2IbDJmeCSWZwcPYcnDi J1a+uC23YWEX7Q+N/cthW3HU0y83lDvgAHaPRfnwWVGtIquHNbEc8WFSJQoT1rcQ BWOZEVMfkuAPBeTjpYYlkvnHFnM5391YQs/+hEMgjAT3IQtEsdhZd1ag96qCZPwV 7Dmz9kh9miFjBcuDWPLe9vP9Jk4wyN8vQyL3xkwzQMmVRp4cKt8JUj8RoCv62O6f 05pW9yq8BF5HgaoYZ2na -----END CERTIFICATE-----Generated at Sat Apr 5 06:15:24 2025 by rpki-client