$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa File: 0D90C6C899BC11EEBF0F7411C4F9AE02.roa (raw, json) Hash identifier: OqGy61SUyKNWplMZ7rgfQmmSj9+s8efrmcgKdf6cAJk= Subject key identifier: AF:36:5A:0C:F7:E2:60:D2:C2:EE:74:04:BC:04:66:FA:6D:1E:20:E6 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E03 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa Signing time: Tue 24 Dec 2024 05:46:28 +0000 ROA not before: Tue 24 Dec 2024 05:46:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 209554 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0::/48 maxlen: 48 2405:84c0:2000::/36 maxlen: 40 2405:84c0:4000::/36 maxlen: 40 2405:84c0:5000::/36 maxlen: 40 2405:84c0:6800::/40 maxlen: 44 2405:84c0:6f00::/40 maxlen: 44 2405:84c0:8000::/44 maxlen: 48 2405:84c0:8010::/44 maxlen: 48 2405:84c0:8020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3587 (0xe03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60 Validity Not Before: Dec 24 05:46:28 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=676a4ab4-0fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:27:18:2b:82:99:ac:5b:2b:a9:92:7a:ac: 85:11:3e:27:7b:e0:79:3c:5e:c6:be:8a:6f:0c:97: 59:b2:6f:1e:5f:f5:b0:04:d2:9b:b6:e2:06:57:3d: df:a5:b2:b9:06:ea:dc:0d:54:6f:e7:89:bc:7b:cc: 0e:78:45:f4:10:c5:f3:9a:55:5a:b3:a8:eb:5a:78: 97:07:4a:aa:70:cc:97:cf:d8:73:13:6e:42:49:03: c7:87:48:4e:ee:58:95:bd:db:a0:30:2e:3b:e7:a6: ed:de:3a:6a:b1:52:d5:a2:c7:b6:91:cd:d5:eb:52: 39:1d:0b:d7:b0:d4:dc:c5:0c:56:a2:71:5b:cc:d9: 53:58:9a:7d:fd:a1:b8:8a:67:2a:df:12:e9:af:3c: 08:63:49:a9:ab:41:39:ce:d0:2a:b6:1f:0b:90:87: ff:39:4f:42:14:34:62:f9:cd:0b:2f:f0:76:d0:dc: 6d:6c:f8:73:23:e9:66:64:cf:b6:dc:d6:55:3b:27: 5f:1e:08:62:15:2b:73:1b:ee:00:fd:07:4e:75:ae: 8e:c3:23:8e:ba:8b:e6:26:ff:f4:10:1a:c2:17:29: 45:f6:c2:35:33:a8:5c:7d:5a:ef:1d:1d:14:44:b8: 1c:32:20:17:64:ec:da:a9:78:fc:5e:07:11:19:8b: 8b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:36:5A:0C:F7:E2:60:D2:C2:EE:74:04:BC:04:66:FA:6D:1E:20:E6 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0D90C6C899BC11EEBF0F7411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0::/48 2405:84c0:2000::/36 2405:84c0:4000::/35 2405:84c0:6800::/40 2405:84c0:6f00::/40 2405:84c0:8000::-2405:84c0:802f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 93:63:35:c5:3a:16:04:a4:90:ce:19:ec:f9:93:df:dd:1e:2e: 3c:33:7e:7d:b5:30:14:ee:ed:10:5c:9b:74:8d:59:9f:26:27: 9b:2c:1e:83:58:5c:29:3c:40:ef:37:e2:4e:be:27:a0:0b:f7: eb:8a:03:fd:5a:96:83:a6:cb:30:77:c8:23:ea:a7:fa:85:d2: d0:46:33:2b:bb:ce:a1:7c:02:8f:a2:43:98:5b:91:13:93:dc: cd:08:48:ea:05:cf:20:d9:cc:8e:56:49:ea:21:51:1a:4e:a7: c2:cc:ba:20:d5:4a:f6:fa:7e:70:f4:48:04:c9:67:d6:ab:fe: 71:5b:eb:f2:8d:d3:88:25:63:c8:93:e5:19:b0:7b:d4:c3:93: 6e:e1:84:a4:8f:d3:6d:83:86:54:59:c9:0d:e6:23:0e:ad:22: 5d:2b:45:ca:16:46:40:61:30:84:c5:78:88:ee:89:f5:40:f6: 87:c4:f8:16:63:c9:8e:cf:49:7a:54:30:ce:e0:8c:01:78:21: 63:ea:e5:4f:27:d4:fe:14:71:7c:9e:90:7a:9f:18:e2:42:4f: 5d:8c:d9:7d:49:ee:39:e0:d2:46:f1:3c:95:92:67:4e:a6:63: 95:cf:60:d3:a6:3e:13:b5:43:e5:52:31:eb:37:c5:8c:85:92: 6f:0c:2d:45 -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICDgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQxMjI0MDU0NjI4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZhNGFiNC0wZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFcnGCuCmaxbK6mSeqyFET4ne+B5PF7GvopvDJdZsm8eX/WwBNKbtuIGVz3f pbK5BurcDVRv54m8e8wOeEX0EMXzmlVas6jrWniXB0qqcMyXz9hzE25CSQPHh0hO 7liVvdugMC4756bt3jpqsVLVose2kc3V61I5HQvXsNTcxQxWonFbzNlTWJp9/aG4 imcq3xLprzwIY0mpq0E5ztAqth8LkIf/OU9CFDRi+c0LL/B20NxtbPhzI+lmZM+2 3NZVOydfHghiFStzG+4A/QdOda6OwyOOuovmJv/0EBrCFylF9sI1M6hcfVrvHR0U RLgcMiAXZOzaqXj8XgcRGYuLbQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFK82Wgz3 4mDSwu50BLwEZvptHiDmMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMEQ5MEM2Qzg5 OUJDMTFFRUJGMEY3NDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMEsEAgACMEUDBwAgAQ3xRYADBwAkBYTAAAADBgQkBYTAIAMGBSQFhMBAAwYA JAWEwGgDBgAkBYTAbzARAwYHJAWEwIADBwQkBYTAgCAwDQYJKoZIhvcNAQELBQAD ggEBAJNjNcU6FgSkkM4Z7PmT390eLjwzfn21MBTu7RBcm3SNWZ8mJ5ssHoNYXCk8 QO834k6+J6AL9+uKA/1aloOmyzB3yCPqp/qF0tBGMyu7zqF8Ao+iQ5hbkROT3M0I SOoFzyDZzI5WSeohURpOp8LMuiDVSvb6fnD0SATJZ9ar/nFb6/KN04glY8iT5Rmw e9TDk27hhKSP022DhlRZyQ3mIw6tIl0rRcoWRkBhMITFeIjuifVA9ofE+BZjyY7P SXpUMM7gjAF4IWPq5U8n1P4UcXyekHqfGOJCT12M2X1J7jng0kbxPJWSZ06mY5XP YNOmPhO1Q+VSMes3xYyFkm8MLUU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:01 2025 by rpki-client