$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa File: 538172167F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: NZi3AS5kSmfmC1ciiMxez1kqC/wPD4BHzNn8bShQs48= Subject key identifier: EF:BE:E0:21:A8:22:25:4B:39:73:31:B7:E7:38:D9:84:9D:A5:8B:16 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0195 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa Signing time: Sun 15 Dec 2024 02:25:45 +0000 ROA not before: Sun 15 Dec 2024 02:25:45 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45139 IP address blocks: 2404:f801:8020::/48 maxlen: 48 2404:f801:802c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Dec 15 02:25:45 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675e3e28-1381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:e1:b6:83:b2:da:4e:6a:79:6b:66:7e:f0: 04:36:71:48:19:4d:b7:ea:0c:6a:a5:7f:c4:33:76: 06:b4:7b:02:13:12:96:b3:ae:49:44:a9:19:2f:43: ed:53:4e:22:fc:26:58:6a:a5:c9:b5:b8:d5:67:43: 57:de:ed:e3:f2:62:49:25:9e:4c:01:35:3b:cb:f3: 2f:f4:c2:82:a4:06:7d:1f:95:82:43:1c:52:aa:a4: b5:ed:4c:11:03:25:c3:7c:64:42:0c:a1:a4:5b:1c: 12:9f:3b:5a:4e:a1:50:36:43:82:0a:62:2d:07:59: 99:93:3f:ee:4d:1c:16:0a:f0:5d:00:c6:1c:39:56: 4e:aa:a7:67:a7:63:81:e0:a1:9e:aa:35:79:14:b9: 03:db:fa:4d:da:24:7e:7c:16:f5:66:e6:8e:09:ba: b9:48:95:7f:96:91:1a:ad:8b:7b:94:e2:90:cc:fb: 7a:4e:aa:32:7e:80:78:0f:d5:1d:b0:7e:b6:2d:8f: 7a:4e:2f:60:fc:f0:4d:32:16:85:1a:5f:fd:21:ad: 43:71:f3:8e:51:2d:8b:25:5c:10:30:b5:8d:60:92: 41:f2:78:67:a7:9b:6b:39:7e:d5:3b:3e:b3:3c:b1: 0c:32:71:46:08:c0:5f:2f:43:9d:c9:07:1e:e3:93: a1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:BE:E0:21:A8:22:25:4B:39:73:31:B7:E7:38:D9:84:9D:A5:8B:16 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f801:8020::/48 2404:f801:802c::/48 Signature Algorithm: sha256WithRSAEncryption 58:10:71:eb:c0:df:de:f2:18:3e:22:80:58:b7:0a:8a:bb:2b: 4e:7e:31:39:f3:89:af:fe:83:cb:48:ef:d3:26:3f:cd:93:b5: 6c:46:95:52:c6:2f:62:5b:77:1c:23:e6:cf:76:13:8e:0c:a7: f2:ab:de:cc:d5:db:c4:77:bc:ba:eb:21:b3:06:8f:a6:7d:ae: c1:c3:f1:8d:6b:ff:c1:d6:c6:69:ae:d9:db:d1:fb:76:41:72: 2c:57:53:75:d9:ee:87:17:46:26:03:c8:64:ff:0b:b0:1d:33: 58:72:05:d6:ea:fe:f4:ab:02:af:ae:e3:f3:20:51:3b:4b:4d: 5d:23:81:93:65:0a:af:16:85:e1:6b:80:57:21:e8:6e:54:d5: eb:f9:bf:ef:84:49:1a:08:dc:22:cd:df:64:b4:77:19:4d:c5: 4b:34:8a:b0:1b:64:c0:86:f1:e9:e1:6b:01:b0:4d:2d:3f:7c: 57:29:18:b7:3e:34:12:fd:e1:86:65:d0:47:3a:61:c0:72:e2: 59:85:b4:1c:ed:77:66:93:60:29:9b:19:c3:db:d0:0a:a3:c2: 6f:2e:5f:ac:4d:b2:23:df:0f:5c:43:cc:a7:a5:05:36:79:8a: 1f:9b:f9:9e:1c:2c:10:0e:d4:ba:c1:6f:b4:65:45:40:3d:d0: 08:c4:72:e0 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjQxMjE1MDIyNTQ1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlM2UyOC0xMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnThtoOy2k5qeWtmfvAENnFIGU236gxqpX/EM3YGtHsCExKWs65JRKkZL0Pt U04i/CZYaqXJtbjVZ0NX3u3j8mJJJZ5MATU7y/Mv9MKCpAZ9H5WCQxxSqqS17UwR AyXDfGRCDKGkWxwSnztaTqFQNkOCCmItB1mZkz/uTRwWCvBdAMYcOVZOqqdnp2OB 4KGeqjV5FLkD2/pN2iR+fBb1ZuaOCbq5SJV/lpEarYt7lOKQzPt6TqoyfoB4D9Ud sH62LY96Ti9g/PBNMhaFGl/9Ia1DcfOOUS2LJVwQMLWNYJJB8nhnp5trOX7VOz6z PLEMMnFGCMBfL0OdyQce45OhNwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFO++4CGo IiVLOXMxt+c42YSdpYsWMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvNTM4MTcyMTY3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBPgBgCADBwAkBPgBgCwwDQYJKoZIhvcNAQELBQADggEB AFgQcevA397yGD4igFi3Coq7K05+MTnzia/+g8tI79MmP82TtWxGlVLGL2Jbdxwj 5s92E44Mp/Kr3szV28R3vLrrIbMGj6Z9rsHD8Y1r/8HWxmmu2dvR+3ZBcixXU3XZ 7ocXRiYDyGT/C7AdM1hyBdbq/vSrAq+u4/MgUTtLTV0jgZNlCq8WheFrgFch6G5U 1ev5v++ESRoI3CLN32S0dxlNxUs0irAbZMCG8enhawGwTS0/fFcpGLc+NBL94YZl 0Ec6YcBy4lmFtBztd2aTYCmbGcPb0Aqjwm8uX6xNsiPfD1xDzKelBTZ5ih+b+Z4c LBAO1LrBb7RlRUA90AjEcuA= -----END CERTIFICATE-----Generated at Fri Apr 4 23:55:53 2025 by rpki-client