$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/AB4A60EECBA311EFB9E20E13C4F9AE02.roa File: AB4A60EECBA311EFB9E20E13C4F9AE02.roa (raw, json) Hash identifier: Xcy4MFhRyr2k/5Jm4R5iv0t1VBaS/P+wq9LQCj1UUVw= Subject key identifier: 7D:D9:DE:95:47:DB:31:B2:7B:84:EC:F4:E6:36:07:2A:19:33:0F:DB Certificate issuer: /CN=A9179F64/serialNumber=BDC4A5163317F73097F027A342B860A792D7F1DC Certificate serial: 4C Authority key identifier: BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/AB4A60EECBA311EFB9E20E13C4F9AE02.roa Signing time: Sun 05 Jan 2025 20:28:49 +0000 ROA not before: Sun 05 Jan 2025 20:28:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138954 IP address blocks: 2001:df4:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.crl rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64 Validity Not Before: Jan 5 20:28:49 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=677aeb80-c01c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:95:ce:5b:ff:c9:3c:d2:33:97:4e:01:60:49: 59:90:6c:fe:84:c1:69:17:b2:d9:e4:5e:61:04:5e: 0b:f1:77:0f:0e:05:51:4c:f9:6d:8f:58:a9:cf:e9: e0:e8:72:93:86:dc:40:95:92:9a:0f:19:f7:fa:21: 32:f7:20:24:3b:94:63:1b:c8:1f:94:96:40:9e:d4: 67:82:b7:e5:ca:ac:12:87:cb:f0:5f:af:29:cd:f5: 5e:59:ac:1c:64:d8:b6:54:e8:75:ad:0c:69:2d:50: 45:5d:7f:aa:e1:51:34:c0:6d:cc:4b:e4:cf:59:d9: 90:a1:a4:f9:3f:b6:63:46:e8:05:61:1c:90:b1:7b: a4:78:91:d0:74:27:ff:dd:21:46:46:ce:ec:e5:9c: 53:47:ae:d1:27:97:34:b3:1e:50:05:1f:bd:72:25: d4:39:88:a3:22:3a:a6:10:86:e2:1a:c3:36:58:a6: a3:eb:b8:5c:fd:1f:23:e9:66:3c:a8:33:39:9e:bd: fc:1b:5a:77:87:e7:e2:a7:c9:61:31:b7:be:e6:02: 90:a8:81:dd:68:9e:04:75:40:07:6e:e0:12:ed:84: 31:d3:4d:09:7c:04:4e:3a:e3:f7:6e:7e:a1:a4:77: ac:c0:99:0e:be:90:85:51:a8:23:d7:62:3c:12:95: 0d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D9:DE:95:47:DB:31:B2:7B:84:EC:F4:E6:36:07:2A:19:33:0F:DB X509v3 Authority Key Identifier: keyid:BD:C4:A5:16:33:17:F7:30:97:F0:27:A3:42:B8:60:A7:92:D7:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/vcSlFjMX9zCX8CejQrhgp5LX8dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vcSlFjMX9zCX8CejQrhgp5LX8dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/80938464624B11EFAB120F4FC4F9AE02/AB4A60EECBA311EFB9E20E13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3340::/48 Signature Algorithm: sha256WithRSAEncryption 44:73:f7:93:71:f1:4b:29:8e:43:a2:be:e8:68:b8:a3:91:cc: c4:e3:7e:03:25:70:3e:75:06:89:2d:fc:29:30:6e:8c:63:ee: 92:7e:da:c4:7b:8a:40:d3:86:ad:40:3f:e3:b9:22:e4:db:57: 73:d1:ed:14:87:62:c2:39:d1:3d:3d:e6:5b:39:6c:95:f5:13: 97:bc:4b:02:ef:5a:71:34:13:e3:79:69:a7:fd:ba:fd:5f:07: 1a:79:ab:c1:11:9a:30:56:71:b6:ae:25:db:38:d6:d5:00:33: 3c:1c:df:e3:38:fc:e8:d2:b9:e4:73:cd:6d:99:10:c5:ee:09: b2:1a:75:0a:f2:ea:f0:d4:23:96:e5:9f:fc:29:ff:0b:fe:73: 21:1e:69:98:ff:31:c0:f9:ca:47:fd:b0:38:9a:1d:e4:46:d1: b2:40:1d:a2:06:4b:9d:ea:de:6c:33:67:7d:9f:6c:da:2b:26: 42:1c:15:0c:c8:32:51:7a:21:31:00:0b:cf:ba:f9:30:6e:f2: 98:3a:b0:52:2d:94:e0:90:e2:a1:df:39:bf:74:f0:7e:e0:97: 54:ee:3e:43:8a:61:ca:71:32:02:b5:8d:e6:cb:8a:e4:79:c9: 1b:03:8a:00:35:78:86:51:33:43:38:e1:32:bd:f7:2b:3f:f4: 43:5b:5b:17 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OUY2NDExMC8GA1UEBRMoQkRDNEE1MTYzMzE3RjczMDk3RjAyN0EzNDJCODYwQTc5 MkQ3RjFEQzAeFw0yNTAxMDUyMDI4NDlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2FlYjgwLWMwMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjlc5b/8k80jOXTgFgSVmQbP6EwWkXstnkXmEEXgvxdw8OBVFM+W2PWKnP6eDo cpOG3ECVkpoPGff6ITL3ICQ7lGMbyB+UlkCe1GeCt+XKrBKHy/BfrynN9V5ZrBxk 2LZU6HWtDGktUEVdf6rhUTTAbcxL5M9Z2ZChpPk/tmNG6AVhHJCxe6R4kdB0J//d IUZGzuzlnFNHrtEnlzSzHlAFH71yJdQ5iKMiOqYQhuIawzZYpqPruFz9HyPpZjyo MzmevfwbWneH5+KnyWExt77mApCogd1ongR1QAdu4BLthDHTTQl8BE464/dufqGk d6zAmQ6+kIVRqCPXYjwSlQ2ZAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUfdnelUfb MbJ7hOz05jYHKhkzD9swHwYDVR0jBBgwFoAUvcSlFjMX9zCX8CejQrhgp5LX8dww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5RjY0LzgwOTM4NDY0NjI0 QjExRUZBQjEyMEY0RkM0RjlBRTAyL3ZjU2xGak1YOXpDWDhDZWpRcmhncDVMWDhk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdmNTbEZqTVg5ekNYOENlalFyaGdwNUxYOGR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC84MDkzODQ2NDYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9BQjRBNjBFRUNC QTMxMUVGQjlFMjBFMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQzQDANBgkqhkiG9w0BAQsFAAOCAQEARHP3k3HxSymO Q6K+6Gi4o5HMxON+AyVwPnUGiS38KTBujGPukn7axHuKQNOGrUA/47ki5NtXc9Ht FIdiwjnRPT3mWzlslfUTl7xLAu9acTQT43lpp/26/V8HGnmrwRGaMFZxtq4l2zjW 1QAzPBzf4zj86NK55HPNbZkQxe4Jshp1CvLq8NQjluWf/Cn/C/5zIR5pmP8xwPnK R/2wOJod5EbRskAdogZLnerebDNnfZ9s2ismQhwVDMgyUXohMQALz7r5MG7ymDqw Ui2U4JDiod85v3TwfuCXVO4+Q4phynEyArWN5suK5HnJGwOKADV4hlEzQzjhMr33 Kz/0Q1tbFw== -----END CERTIFICATE-----Generated at Sat Apr 5 21:07:55 2025 by rpki-client