$ rpki-client -vvf rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/E1CA8E9C1E5F11EFA3C7AD2CC4F9AE02.roa File: E1CA8E9C1E5F11EFA3C7AD2CC4F9AE02.roa (raw, json) Hash identifier: ZHIbElia/eiGVKMDjGo/fSI2gIAIDU9H3ROFaeaevQg= Subject key identifier: 03:EF:36:75:26:9D:E4:40:51:BC:96:30:1F:CB:87:AF:D8:F6:E3:55 Certificate issuer: /CN=A917CC94/serialNumber=8BD83AD738DC4C57984DC2ECB21D5E9019BBC8CA Certificate serial: 0ABB Authority key identifier: 8B:D8:3A:D7:38:DC:4C:57:98:4D:C2:EC:B2:1D:5E:90:19:BB:C8:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9g61zjcTFeYTcLssh1ekBm7yMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/E1CA8E9C1E5F11EFA3C7AD2CC4F9AE02.roa Signing time: Thu 30 Jan 2025 19:38:52 +0000 ROA not before: Thu 30 Jan 2025 19:38:52 +0000 ROA not after: Mon 02 Jun 2025 00:00:00 +0000 asID: 138473 IP address blocks: 2404:a40::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/i9g61zjcTFeYTcLssh1ekBm7yMo.crl rsync://rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/i9g61zjcTFeYTcLssh1ekBm7yMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9g61zjcTFeYTcLssh1ekBm7yMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 19:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CC94 Validity Not Before: Jan 30 19:38:52 2025 GMT Not After : Jun 2 00:00:00 2025 GMT Subject: CN=679bd54c-1bb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:46:44:34:11:f9:50:d1:35:83:0e:06:85:39: bb:ae:13:d2:19:09:8b:70:5e:15:14:54:90:ec:48: 43:66:4f:bd:28:85:5d:b8:91:83:f6:2b:01:5d:3b: b9:a5:7c:18:21:ae:8b:34:28:e5:58:f0:b0:dd:ce: dc:55:2d:da:e3:28:8c:f6:6d:a1:9c:85:1c:ff:62: 8a:82:c6:29:cb:9f:fd:76:f0:27:08:9e:2e:65:bd: b1:57:e4:7a:ed:68:23:39:0b:1a:3c:7e:74:5e:15: f2:bd:61:da:4a:38:82:aa:5e:71:65:29:bb:8c:b5: 49:51:8a:04:65:4c:13:d3:05:60:d6:5d:00:1a:82: 3a:61:4a:bc:64:7b:e9:91:4d:ff:0c:f9:a4:dd:41: 09:73:21:59:23:5c:3b:6e:6b:e1:e3:50:57:52:06: b8:58:b2:b9:c7:0f:42:d3:a0:a9:1f:b9:1b:b0:92: cc:dd:12:f4:cc:05:0d:5f:85:7c:80:21:7a:0f:47: 5a:45:33:33:03:a9:4c:52:ba:56:f8:8c:73:91:b7: 99:c4:cc:ba:22:bb:de:6a:7a:fb:16:1a:05:df:a1: a6:96:79:9c:23:a7:91:7b:46:2b:23:96:94:55:b9: 98:89:cf:fc:9a:06:47:39:82:38:47:21:a8:d2:e0: 78:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EF:36:75:26:9D:E4:40:51:BC:96:30:1F:CB:87:AF:D8:F6:E3:55 X509v3 Authority Key Identifier: keyid:8B:D8:3A:D7:38:DC:4C:57:98:4D:C2:EC:B2:1D:5E:90:19:BB:C8:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/i9g61zjcTFeYTcLssh1ekBm7yMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9g61zjcTFeYTcLssh1ekBm7yMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CC94/66DEBE6447F011EA83E3E71BC4F9AE02/E1CA8E9C1E5F11EFA3C7AD2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:a40::/32 Signature Algorithm: sha256WithRSAEncryption a3:b2:99:8f:63:6b:84:3e:61:e7:cd:b8:2f:36:2a:bc:85:c1: c3:75:db:fc:ae:e6:b7:f2:21:6c:f7:e8:f5:70:21:80:2b:85: 9b:bc:27:15:47:fe:d8:df:70:af:8b:c1:7d:4c:50:c0:ca:5f: 9f:23:b5:16:84:e7:e8:e8:34:77:0d:19:9f:35:e4:ad:ee:ef: 48:e0:d1:d0:e6:b3:18:a6:e8:bf:de:ca:bf:eb:82:37:e9:fa: 3f:c2:55:b3:8e:2d:dd:d3:4f:bf:b5:8d:6d:fc:03:cb:86:d9: fe:71:ce:04:a5:bd:e5:53:54:2e:14:97:71:a4:7b:80:d1:2f: 4f:75:08:cc:ba:64:71:77:b0:8a:cd:fe:cb:dc:65:e6:f1:6b: 12:fc:a3:b5:13:12:1f:fb:bf:47:66:46:bf:0b:77:3c:2c:05: 6c:fb:8c:5e:5f:c4:ef:b2:52:1e:9d:fa:c8:1d:c4:27:5f:b6: c3:04:c8:dd:60:f0:08:5d:be:af:7f:47:20:50:b3:c8:c8:9a: 89:55:fe:e9:26:9b:2c:2e:f7:fc:e4:4f:d4:a0:b0:e4:97:ad: 93:56:c8:04:4a:2a:d6:6b:5c:14:33:56:e8:46:ed:7e:44:4a: b3:50:81:6f:9a:d7:59:a2:52:6f:7d:26:82:87:2f:2f:7a:ab: 31:e5:3a:24 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NDOTQxMTAvBgNVBAUTKDhCRDgzQUQ3MzhEQzRDNTc5ODREQzJFQ0IyMUQ1RTkw MTlCQkM4Q0EwHhcNMjUwMTMwMTkzODUyWhcNMjUwNjAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliZDU0Yy0xYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUZENBH5UNE1gw4GhTm7rhPSGQmLcF4VFFSQ7EhDZk+9KIVduJGD9isBXTu5 pXwYIa6LNCjlWPCw3c7cVS3a4yiM9m2hnIUc/2KKgsYpy5/9dvAnCJ4uZb2xV+R6 7WgjOQsaPH50XhXyvWHaSjiCql5xZSm7jLVJUYoEZUwT0wVg1l0AGoI6YUq8ZHvp kU3/DPmk3UEJcyFZI1w7bmvh41BXUga4WLK5xw9C06CpH7kbsJLM3RL0zAUNX4V8 gCF6D0daRTMzA6lMUrpW+IxzkbeZxMy6Irveanr7FhoF36GmlnmcI6eRe0YrI5aU VbmYic/8mgZHOYI4RyGo0uB4kwIDAQABo4ICljCCApIwHQYDVR0OBBYEFAPvNnUm neRAUbyWMB/Lh6/Y9uNVMB8GA1UdIwQYMBaAFIvYOtc43ExXmE3C7LIdXpAZu8jK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0M5NC82NkRFQkU2NDQ3 RjAxMUVBODNFM0U3MUJDNEY5QUUwMi9pOWc2MXpqY1RGZVlUY0xzc2gxZWtCbTd5 TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5ZzYxempjVEZlWVRjTHNzaDFla0JtN3lNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NDOTQvNjZERUJFNjQ0N0YwMTFFQTgzRTNFNzFCQzRGOUFFMDIvRTFDQThFOUMx RTVGMTFFRkEzQzdBRDJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBApAMA0GCSqGSIb3DQEBCwUAA4IBAQCjspmPY2uEPmHn zbgvNiq8hcHDddv8rua38iFs9+j1cCGAK4WbvCcVR/7Y33Cvi8F9TFDAyl+fI7UW hOfo6DR3DRmfNeSt7u9I4NHQ5rMYpui/3sq/64I36fo/wlWzji3d00+/tY1t/APL htn+cc4Epb3lU1QuFJdxpHuA0S9PdQjMumRxd7CKzf7L3GXm8WsS/KO1ExIf+79H Zka/C3c8LAVs+4xeX8TvslIenfrIHcQnX7bDBMjdYPAIXb6vf0cgULPIyJqJVf7p JpssLvf85E/UoLDkl62TVsgESirWa1wUM1boRu1+REqzUIFvmtdZolJvfSaChy8v eqsx5Tok -----END CERTIFICATE-----Generated at Mon Apr 7 08:58:45 2025 by rpki-client