$ rpki-client -vvf rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa File: 1FD07ED231FB11EAA335E10FC4F9AE02.roa (raw, json) Hash identifier: y17aQP9C+LDn4Yph2n6mf2nnVwvpkbeV6pXqgmt1qVQ= Subject key identifier: C2:AD:C6:4F:3B:7B:59:62:1E:26:78:BE:75:46:CF:49:B2:C4:C8:33 Certificate issuer: /CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Certificate serial: 1302 Authority key identifier: 15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa Signing time: Tue 10 Dec 2024 17:15:15 +0000 ROA not before: Tue 10 Dec 2024 17:15:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45494 IP address blocks: 2001:dd8:25::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4866 (0x1302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91771E3 Validity Not Before: Dec 10 17:15:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67587723-47fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:cf:59:94:b4:5d:75:e0:f6:51:9a:07:1b: ba:75:0e:4a:8a:7d:54:3e:68:6e:51:5c:a3:29:50: 31:c1:2a:8f:8c:0a:e9:0c:64:59:ae:70:03:78:01: c1:87:23:64:a2:e2:18:be:96:b5:5f:9a:6f:c2:03: 71:04:bf:5a:5d:cd:0c:7a:f0:09:7b:fd:13:68:e2: 0d:f6:ed:14:62:08:9f:b3:6e:24:f2:64:59:a7:f3: 7a:87:a5:9e:c1:45:d9:82:98:d8:ca:7b:ff:8d:10: 3c:22:dd:cb:cc:35:7f:e1:df:d4:ba:8d:e4:9a:bc: 47:fc:56:1c:d9:b1:32:f5:ac:51:1a:34:8b:a9:d2: b6:6f:25:d9:9e:3d:64:4f:5b:de:7e:9d:25:48:41: 57:99:b0:b7:66:17:1f:66:cb:90:3b:56:50:8c:8c: 75:57:ed:eb:2b:eb:4f:b5:fd:86:a1:a6:d5:d9:57: bc:ad:19:03:e1:3d:05:f0:c2:14:c5:88:8a:cc:07: 56:5a:9c:3f:ce:13:4f:db:1b:c8:55:3f:31:a6:2e: 5c:15:f8:57:9d:cc:9d:6e:3a:01:a3:f4:fb:87:c9: ac:b9:60:ae:0e:11:c0:4e:05:23:9e:f1:33:d2:8f: d4:d2:fd:58:1f:85:06:3f:05:b4:d0:7a:32:29:bc: e5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AD:C6:4F:3B:7B:59:62:1E:26:78:BE:75:46:CF:49:B2:C4:C8:33 X509v3 Authority Key Identifier: keyid:15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8:25::/48 Signature Algorithm: sha256WithRSAEncryption 27:c4:ea:04:9c:46:58:50:4f:4d:ac:68:e1:2b:fc:88:08:9b: ef:97:81:69:85:8b:f0:54:f5:00:55:0e:e4:a4:95:ea:6b:18: 5a:62:3e:69:2e:4e:1d:05:80:ef:b0:ba:76:c2:01:1b:79:5e: 93:58:65:22:66:6c:2a:13:2c:96:84:04:c8:73:85:2c:49:ec: 26:03:5a:cc:bd:50:9c:e0:2a:a0:8e:b0:c9:bb:31:be:16:93: c8:d3:e2:5f:33:9a:e5:0a:08:77:71:5a:86:cd:3a:4f:3b:46: d3:4a:ff:d6:b6:08:13:69:36:49:ed:af:12:68:6c:3e:c8:49: 27:cf:c2:05:d6:fd:5c:ac:2d:f0:6e:bd:93:3e:08:eb:f0:86: 9b:b3:38:fb:44:22:2a:a0:ef:19:28:e0:49:fb:51:1a:bc:68: 7d:a4:8e:f3:7f:14:e9:a9:c1:84:71:4b:80:d8:d4:c7:38:d1: a3:ba:95:58:26:b7:2e:2c:e3:e0:e1:b4:12:a8:37:9f:78:27: 26:fc:99:b5:ea:3c:99:87:13:be:6f:d4:45:19:7a:aa:d5:40: d6:eb:d4:27:a1:84:2c:ea:8c:48:a4:36:5c:2b:33:97:f8:3e: fa:8b:29:60:c2:02:a0:f7:3c:f5:87:1b:d8:c0:30:ed:a6:cb: 21:0c:7c:6b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcxRTMxMTAvBgNVBAUTKDE1OTZDNEJCRTczMkRBODVDQjgzRThBNzcwODczRUEz NDEzNzAxQTUwHhcNMjQxMjEwMTcxNTE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4NzcyMy00N2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApK3PWZS0XXXg9lGaBxu6dQ5Kin1UPmhuUVyjKVAxwSqPjArpDGRZrnADeAHB hyNkouIYvpa1X5pvwgNxBL9aXc0MevAJe/0TaOIN9u0UYgifs24k8mRZp/N6h6We wUXZgpjYynv/jRA8It3LzDV/4d/Uuo3kmrxH/FYc2bEy9axRGjSLqdK2byXZnj1k T1vefp0lSEFXmbC3ZhcfZsuQO1ZQjIx1V+3rK+tPtf2GoabV2Ve8rRkD4T0F8MIU xYiKzAdWWpw/zhNP2xvIVT8xpi5cFfhXncydbjoBo/T7h8msuWCuDhHATgUjnvEz 0o/U0v1YH4UGPwW00HoyKbzlaQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMKtxk87 e1liHiZ4vnVGz0myxMgzMB8GA1UdIwQYMBaAFBWWxLvnMtqFy4Pop3CHPqNBNwGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzFFMy85MzgzRTY0NkFE NjUxMUU4QUNCRDBENkFDNEY5QUUwMi9GWmJFdS1jeTJvWExnLWluY0ljLW8wRTNB YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZaYkV1LWN5Mm9YTGctaW5jSWMtbzBFM0FhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcxRTMvOTM4M0U2NDZBRDY1MTFFOEFDQkQwRDZBQzRGOUFFMDIvMUZEMDdFRDIz MUZCMTFFQUEzMzVFMTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3YACUwDQYJKoZIhvcNAQELBQADggEBACfE6gScRlhQ T02saOEr/IgIm++XgWmFi/BU9QBVDuSkleprGFpiPmkuTh0FgO+wunbCARt5XpNY ZSJmbCoTLJaEBMhzhSxJ7CYDWsy9UJzgKqCOsMm7Mb4Wk8jT4l8zmuUKCHdxWobN Ok87RtNK/9a2CBNpNkntrxJobD7ISSfPwgXW/VysLfBuvZM+COvwhpuzOPtEIiqg 7xko4En7URq8aH2kjvN/FOmpwYRxS4DY1Mc40aO6lVgmty4s4+DhtBKoN594Jyb8 mbXqPJmHE75v1EUZeqrVQNbr1CehhCzqjEikNlwrM5f4PvqLKWDCAqD3PPWHG9jA MO2myyEMfGs= -----END CERTIFICATE-----Generated at Sat Apr 5 04:13:55 2025 by rpki-client