$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AAD3C54AAB1B11EFADDE005CC4F9AE02.roa File: AAD3C54AAB1B11EFADDE005CC4F9AE02.roa (raw, json) Hash identifier: TvJJyBv+JI0utpw5GFzrCAPpOozdHeYcaAIDeY2WxkE= Subject key identifier: BB:F3:C5:1E:13:FA:90:08:6F:B0:09:A2:FB:9E:09:F9:53:BB:CD:0C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 9DBF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AAD3C54AAB1B11EFADDE005CC4F9AE02.roa Signing time: Mon 25 Nov 2024 10:54:39 +0000 ROA not before: Mon 25 Nov 2024 10:54:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152541 IP address blocks: 2001:df3:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40383 (0x9dbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Nov 25 10:54:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6744576f-77e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b0:53:6d:d5:73:8f:c4:97:c2:2b:57:5d:6a: b9:87:17:a1:f4:9b:d7:00:ad:c7:63:ca:97:43:87: a1:01:04:ab:52:1c:75:98:6a:59:a0:51:ac:3b:a8: 4a:ad:76:48:a8:17:e2:d2:94:7c:9c:77:bd:da:77: a5:86:c1:f0:73:bf:66:14:b1:32:b0:e4:f2:8f:a3: a4:fe:7e:36:cf:96:d8:b3:e3:ef:69:16:8f:05:e8: 61:be:b7:7d:e6:c7:e4:50:13:12:6f:fa:f6:69:a0: 5f:f9:e9:9e:28:11:5a:e2:2c:0a:11:d6:e6:73:40: 6b:33:2a:46:21:14:67:ac:74:17:a7:a0:80:6c:11: 88:45:96:b2:6f:4c:58:5f:4d:5a:14:01:30:a4:70: 9d:cb:6a:09:15:70:31:2e:b9:94:5d:81:f5:93:b5: a8:30:38:fc:57:43:14:0d:95:df:f4:64:cc:5b:c9: 92:a0:11:d3:db:4c:27:81:d4:74:d9:ce:76:be:91: ab:7e:76:8c:eb:87:6d:a5:ad:7c:1f:e8:82:e8:32: b7:ba:0b:6e:c2:90:f4:9a:31:ef:1d:e0:f6:b3:0f: c7:d3:ca:c3:fd:3d:0f:46:ce:79:0c:36:87:3a:e5: f4:d3:d6:a3:8f:31:b3:87:0e:97:39:1e:ff:3b:43: 98:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F3:C5:1E:13:FA:90:08:6F:B0:09:A2:FB:9E:09:F9:53:BB:CD:0C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AAD3C54AAB1B11EFADDE005CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 10:29:6e:b9:70:a7:1d:d0:3f:53:6e:2b:31:68:e3:3c:5f:7f: ce:2d:a8:41:c1:cb:05:07:92:bf:56:3e:c6:43:22:e5:81:c4: c3:60:8d:27:10:32:27:b6:4d:ee:3e:35:b2:79:2f:13:9e:f0: 3f:42:ad:12:38:88:29:aa:2e:30:d0:b7:f0:71:53:76:8e:9f: 8b:08:75:0c:35:a8:a8:ad:6b:7f:87:80:11:c5:b6:05:c2:a0: ee:2d:99:f7:fd:c8:d6:f9:5b:48:ec:1f:bf:c5:37:a0:e2:0d: 1d:23:af:76:a8:e9:b4:b4:49:81:5c:fb:3c:17:4f:0e:6e:7b: 88:81:76:82:ad:37:5f:09:bd:1d:ca:be:71:2c:72:6b:73:a2: 14:0c:4a:4c:0d:d4:d1:20:fb:c9:68:3b:3f:32:b6:46:05:2a: 77:af:fd:a6:68:40:a3:89:35:01:7c:9f:31:17:b1:13:88:48: f4:92:2b:97:d6:a0:0c:d8:c2:8e:54:3d:c9:9b:e7:d1:49:ae: cc:0c:8f:af:68:b0:7c:e0:f5:b8:d5:41:69:a9:57:3f:84:3e: b5:a3:f4:5f:d8:1f:7f:38:bb:b9:cf:8d:4c:75:18:c0:ca:bc: 6b:e9:d8:da:b0:36:1b:9a:8d:6e:24:e6:56:b0:cf:66:0a:f6: 9b:6f:32:54 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIDAJ2/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTEyNTEwNTQzOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc0NDU3NmYtNzdlNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGwU23Vc4/El8IrV11quYcXofSb1wCtx2PKl0OHoQEEq1IcdZhqWaBRrDuo Sq12SKgX4tKUfJx3vdp3pYbB8HO/ZhSxMrDk8o+jpP5+Ns+W2LPj72kWjwXoYb63 febH5FATEm/69mmgX/npnigRWuIsChHW5nNAazMqRiEUZ6x0F6eggGwRiEWWsm9M WF9NWhQBMKRwnctqCRVwMS65lF2B9ZO1qDA4/FdDFA2V3/RkzFvJkqAR09tMJ4HU dNnOdr6Rq352jOuHbaWtfB/ogugyt7oLbsKQ9Jox7x3g9rMPx9PKw/09D0bOeQw2 hzrl9NPWo48xs4cOlzke/ztDmIcCAwEAAaOCApgwggKUMB0GA1UdDgQWBBS788Ue E/qQCG+wCaL7ngn5U7vNDDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FBRDNDNTRB QUIxQjExRUZBRERFMDA1Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAIAEN8/5AMA0GCSqGSIb3DQEBCwUAA4IBAQAQKW65cKcd 0D9TbisxaOM8X3/OLahBwcsFB5K/Vj7GQyLlgcTDYI0nEDIntk3uPjWyeS8TnvA/ Qq0SOIgpqi4w0LfwcVN2jp+LCHUMNaiorWt/h4ARxbYFwqDuLZn3/cjW+VtI7B+/ xTeg4g0dI692qOm0tEmBXPs8F08ObnuIgXaCrTdfCb0dyr5xLHJrc6IUDEpMDdTR IPvJaDs/MrZGBSp3r/2maECjiTUBfJ8xF7ETiEj0kiuX1qAM2MKOVD3Jm+fRSa7M DI+vaLB84PW41UFpqVc/hD61o/Rf2B9/OLu5z41MdRjAyrxr6djasDYbmo1uJOZW sM9mCvabbzJU -----END CERTIFICATE-----Generated at Sat Apr 5 07:08:11 2025 by rpki-client