$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/18611004B42A11EC9BD3DE42C4F9AE02.roa File: 18611004B42A11EC9BD3DE42C4F9AE02.roa (raw, json) Hash identifier: MrOehOXflQUhc9W+FdP7kViEOIm0zhC3RKvz9jpM7pY= Subject key identifier: DF:DC:9B:30:A1:57:D4:97:3A:5F:8A:63:5E:A4:3F:C5:36:81:DD:BB Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 042C Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/18611004B42A11EC9BD3DE42C4F9AE02.roa Signing time: Wed 15 Jan 2025 00:03:25 +0000 ROA not before: Wed 15 Jan 2025 00:03:25 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 206434 IP address blocks: 2400:3e20:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11 Validity Not Before: Jan 15 00:03:25 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786fb4d-8c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:74:55:35:ec:35:33:a5:42:b8:6b:57:6c:14: 67:a9:ee:b5:c2:c1:77:cb:75:69:3f:25:d9:ee:60: 19:0f:d1:97:47:41:96:59:44:92:7f:c6:1b:5f:df: 34:62:06:be:41:e4:90:a1:22:97:a0:04:8f:87:76: 98:a3:d7:dc:27:06:65:52:aa:79:89:ef:5c:28:68: 78:19:cd:f0:4a:1b:bd:6f:f4:94:d3:2a:7c:3c:94: 86:01:b4:8c:38:d4:28:e7:62:8d:bf:ae:06:b3:15: ba:45:9c:f9:01:7f:05:2b:f8:6f:ce:f4:ea:82:cf: 5a:54:6e:80:a9:5e:78:4d:fd:53:90:6e:67:a6:78: e1:5c:d4:ce:bf:0a:64:c5:e6:30:f1:bc:98:30:82: 16:4b:4d:09:90:7b:3e:3c:0e:c9:45:8d:27:5a:9b: 7f:91:ba:62:a6:9e:c0:97:9f:c2:f1:83:ef:f7:78: b8:5e:97:9c:e2:c0:52:b1:cc:5d:4f:5f:d2:1d:63: 8e:05:f8:85:84:b2:6e:3f:06:ea:3f:a9:9b:3a:6d: 01:16:4b:17:d7:a8:58:ba:07:bd:0b:2d:39:49:be: c3:35:1b:b5:3d:5f:c3:10:ab:7b:f8:49:98:7f:91: 55:ae:8d:0c:7a:8e:47:6e:d5:99:33:4d:2a:d6:10: f7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DC:9B:30:A1:57:D4:97:3A:5F:8A:63:5E:A4:3F:C5:36:81:DD:BB X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/18611004B42A11EC9BD3DE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3e20:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8a:f2:fb:65:c4:be:ab:ce:1b:d5:f6:9c:06:c9:10:13:fa:6b: 43:13:86:dd:1a:48:2c:24:2f:fa:ec:fc:ca:55:16:9e:08:08: 90:e2:a7:1f:5c:3f:02:d3:ea:c1:81:46:c8:27:51:19:8a:3e: fe:b2:2e:43:dc:88:5b:72:09:da:c0:7e:0a:ba:c7:d8:91:97: 09:a1:d2:a1:85:09:4b:da:18:dd:91:dd:ee:66:3f:57:d3:33: 47:16:45:cc:1c:cf:32:82:80:a5:f1:08:5e:c3:b8:76:45:dc: 89:b6:0e:67:d6:87:c6:5b:ce:c4:fb:1b:1c:e3:b9:f3:dd:6c: 77:7f:1a:d1:e2:36:3e:38:fa:2c:9b:15:b6:bf:41:4f:54:56: da:66:ff:9b:23:d4:8b:30:9b:1e:c0:89:ef:71:c4:c2:01:2b: f8:07:85:b5:6e:e8:99:4b:8b:99:5e:fe:b6:80:0d:37:6a:87: 1e:b4:82:ad:50:6c:e8:bc:44:44:8c:61:cb:da:e5:b5:e2:11: 94:a8:90:ec:6a:07:b1:94:f6:56:dc:c3:b4:c9:41:aa:3f:86: 6f:23:07:53:dc:1b:5f:de:21:de:82:b2:2a:76:c5:e1:26:d4: 41:e5:df:da:9c:91:b7:5b:c5:e2:fd:8e:54:f2:ec:61:0d:a0: ff:91:c6:12 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwMTE1MDAwMzI1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2ZmI0ZC04YzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33RVNew1M6VCuGtXbBRnqe61wsF3y3VpPyXZ7mAZD9GXR0GWWUSSf8YbX980 Yga+QeSQoSKXoASPh3aYo9fcJwZlUqp5ie9cKGh4Gc3wShu9b/SU0yp8PJSGAbSM ONQo52KNv64GsxW6RZz5AX8FK/hvzvTqgs9aVG6AqV54Tf1TkG5npnjhXNTOvwpk xeYw8byYMIIWS00JkHs+PA7JRY0nWpt/kbpipp7Al5/C8YPv93i4Xpec4sBSscxd T1/SHWOOBfiFhLJuPwbqP6mbOm0BFksX16hYuge9Cy05Sb7DNRu1PV/DEKt7+EmY f5FVro0Meo5HbtWZM00q1hD3dwIDAQABo4IClzCCApMwHQYDVR0OBBYEFN/cmzCh V9SXOl+KY16kP8U2gd27MB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFMTEvRDA2MEM5QjI1QkQ2MTFFQ0FEODMzNjUxQzRGOUFFMDIvMTg2MTEwMDRC NDJBMTFFQzlCRDNERTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAD4gQDANBgkqhkiG9w0BAQsFAAOCAQEAivL7ZcS+q84b 1facBskQE/prQxOG3RpILCQv+uz8ylUWnggIkOKnH1w/AtPqwYFGyCdRGYo+/rIu Q9yIW3IJ2sB+CrrH2JGXCaHSoYUJS9oY3ZHd7mY/V9MzRxZFzBzPMoKApfEIXsO4 dkXcibYOZ9aHxlvOxPsbHOO5891sd38a0eI2Pjj6LJsVtr9BT1RW2mb/myPUizCb HsCJ73HEwgEr+AeFtW7omUuLmV7+toANN2qHHrSCrVBs6LxERIxhy9rlteIRlKiQ 7GoHsZT2VtzDtMlBqj+GbyMHU9wbX94h3oKyKnbF4SbUQeXf2pyRt1vF4v2OVPLs YQ2g/5HGEg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:31 2025 by rpki-client