$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa File: F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa (raw, json) Hash identifier: bTHUxxssWziIXGGDs3FaNbsdMbd0w+8+gyMv7kRJZqE= Subject key identifier: D5:5C:5B:C5:DA:CC:16:92:71:79:57:7A:A4:AD:72:52:94:13:3B:91 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0196 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa Signing time: Sun 15 Dec 2024 02:25:46 +0000 ROA not before: Sun 15 Dec 2024 02:25:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 8071 IP address blocks: 2404:f801:8050::/48 maxlen: 48 2404:f801:a808::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Dec 15 02:25:46 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675e3e29-8a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d3:36:be:70:cf:50:04:b7:91:33:63:c9:4c: c3:ab:3a:5e:2a:5b:d9:5f:f4:df:e3:96:8c:bd:b7: 42:17:87:18:24:14:b1:0c:17:9e:ee:ab:19:54:a8: 24:6d:df:7a:52:2c:d3:83:77:dc:35:47:07:df:a7: 40:43:30:f2:3b:f9:4c:a1:d7:ea:80:6e:33:f7:87: 04:a3:89:8e:c3:81:ab:fc:55:84:1d:dd:91:7a:2a: 6f:f3:5b:2d:13:5c:ad:2f:0c:5c:18:94:97:7f:2a: eb:d2:5c:fc:94:38:e5:fe:28:f1:71:1d:69:fe:e2: bf:3b:3e:77:5c:b1:22:4b:78:f8:86:96:ef:c4:33: ae:d7:2f:8c:3e:94:9c:b3:72:c9:c4:9b:f4:54:d3: 0f:bb:84:a6:e4:3f:91:5a:4d:51:79:f3:b8:a5:f7: 6b:de:65:54:23:65:d8:0f:be:e8:37:2f:08:e1:1b: a8:69:e8:02:9e:c9:fd:d5:3a:b5:df:33:05:28:bf: 0c:43:98:e4:e2:e3:7a:18:b7:a0:06:7f:ab:ac:cd: 83:39:4c:6a:48:4f:57:1c:bd:dd:28:e1:98:4e:2f: e4:d5:cb:eb:8b:ea:44:91:3e:b0:9c:46:1d:b6:25: 33:97:29:1d:68:eb:82:83:86:2b:32:b7:b7:ac:86: 46:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5C:5B:C5:DA:CC:16:92:71:79:57:7A:A4:AD:72:52:94:13:3B:91 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/F3A5BAB47F4C11ED9D79DA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f801:8050::/48 2404:f801:a808::/48 Signature Algorithm: sha256WithRSAEncryption 11:3a:b5:b1:47:09:ec:ef:c1:eb:1d:18:b3:fe:ef:e0:a8:e2: 4d:d0:a5:f9:a0:eb:25:fd:6c:3b:9e:8d:5e:09:a5:15:a9:9b: 34:1d:b7:76:20:2f:6a:e0:a9:db:d0:5c:84:93:08:e8:be:f5: d6:07:28:8c:fe:86:f3:0d:4b:c2:f9:48:da:13:fe:b8:48:3d: 03:b7:3c:29:cc:00:78:2d:0b:2a:74:43:bb:43:71:61:f8:1a: e9:87:f1:c5:d2:c0:05:08:fc:bb:89:a2:7c:16:28:0d:b8:f1: ec:c0:ef:21:ed:ee:fa:b8:f7:24:33:41:38:13:32:19:6c:99: df:05:1d:d5:dd:28:f9:c0:36:86:40:91:9e:97:80:f6:93:2b: 89:a2:63:00:0b:6f:aa:0b:62:f9:fa:cc:2d:a7:bc:80:b5:69: 42:1f:8f:c5:d2:92:ae:64:c4:23:2c:f7:7e:a2:4b:63:1c:7c: db:04:81:e1:7f:16:87:03:c0:28:25:59:b8:f7:aa:47:cb:9c: 42:34:06:aa:18:63:85:e2:50:6e:65:b7:8e:f6:1f:ca:70:c8: 4c:bd:96:cd:72:74:65:59:d0:96:5f:46:95:d5:0a:90:f7:95: 62:39:5f:27:8a:80:87:83:bc:47:72:05:78:fe:90:1b:76:fe: bf:a8:2b:05 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjQxMjE1MDIyNTQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlM2UyOS04YTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8dM2vnDPUAS3kTNjyUzDqzpeKlvZX/Tf45aMvbdCF4cYJBSxDBee7qsZVKgk bd96UizTg3fcNUcH36dAQzDyO/lModfqgG4z94cEo4mOw4Gr/FWEHd2Reipv81st E1ytLwxcGJSXfyrr0lz8lDjl/ijxcR1p/uK/Oz53XLEiS3j4hpbvxDOu1y+MPpSc s3LJxJv0VNMPu4Sm5D+RWk1RefO4pfdr3mVUI2XYD77oNy8I4RuoaegCnsn91Tq1 3zMFKL8MQ5jk4uN6GLegBn+rrM2DOUxqSE9XHL3dKOGYTi/k1cvri+pEkT6wnEYd tiUzlykdaOuCg4YrMre3rIZGUwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNVcW8Xa zBaScXlXeqStclKUEzuRMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvRjNBNUJBQjQ3 RjRDMTFFRDlENzlEQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkBPgBgFADBwAkBPgBqAgwDQYJKoZIhvcNAQELBQADggEB ABE6tbFHCezvwesdGLP+7+Co4k3Qpfmg6yX9bDuejV4JpRWpmzQdt3YgL2rgqdvQ XISTCOi+9dYHKIz+hvMNS8L5SNoT/rhIPQO3PCnMAHgtCyp0Q7tDcWH4GumH8cXS wAUI/LuJonwWKA248ezA7yHt7vq49yQzQTgTMhlsmd8FHdXdKPnANoZAkZ6XgPaT K4miYwALb6oLYvn6zC2nvIC1aUIfj8XSkq5kxCMs936iS2McfNsEgeF/FocDwCgl Wbj3qkfLnEI0BqoYY4XiUG5lt472H8pwyEy9ls1ydGVZ0JZfRpXVCpD3lWI5XyeK gIeDvEdyBXj+kBt2/r+oKwU= -----END CERTIFICATE-----Generated at Fri Apr 4 23:55:51 2025 by rpki-client