$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FE17F000B12411EF8CF51A7FC4F9AE02.roa File: FE17F000B12411EF8CF51A7FC4F9AE02.roa (raw, json) Hash identifier: 5h9HpM7uWF1tdZDoMVb/M5JLahg0GJDFzB4gQP1L0GM= Subject key identifier: F5:36:6A:33:97:0F:D5:4D:6B:9C:88:5A:0E:A0:19:39:69:A7:ED:A2 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4887 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FE17F000B12411EF8CF51A7FC4F9AE02.roa Signing time: Tue 03 Dec 2024 03:16:31 +0000 ROA not before: Tue 03 Dec 2024 03:16:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153430 IP address blocks: 2001:df4:a9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18567 (0x4887) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Dec 3 03:16:31 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=674e780f-c23d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:19:f8:a2:8d:e5:e9:c3:06:74:5d:9e:15:97: 4b:db:33:7f:d5:e3:0f:2c:ac:b1:df:b6:53:42:f1: 3e:b1:48:ab:00:d2:07:e1:2e:15:a3:8d:cd:d3:62: 47:a6:1c:d2:ce:68:ad:ba:a2:db:a2:bc:cc:d2:a0: c0:d0:f5:08:d8:2b:42:e5:f8:c5:c2:59:3b:1d:2e: 79:8b:58:b1:ad:c8:cd:ef:86:ac:29:ee:b3:a9:30: 70:f5:ce:6b:8f:23:3d:1b:f1:f1:ff:84:81:e5:14: ce:6d:99:7b:2d:98:15:f6:20:81:0b:49:be:05:5b: 19:40:71:fb:9f:c3:ce:14:ee:30:bc:c4:27:76:aa: 9b:c1:6e:30:91:84:9d:57:b6:ee:3e:d1:67:81:8b: 09:35:c3:42:a4:c8:76:97:71:84:cd:96:7c:08:5c: 84:4d:3f:60:e9:30:71:c0:b1:43:38:fd:8c:1d:a0: 54:fb:2b:b5:f9:81:a5:2f:d3:85:a0:ee:f2:07:fd: 75:6c:9d:e8:eb:63:ee:31:e5:73:2a:8f:a3:8a:d4: 49:74:c8:0d:15:ab:69:1d:ed:1a:55:a8:83:d5:87: c6:fc:50:de:0c:23:c2:1b:35:4c:12:cc:e3:73:88: 6b:3e:11:49:60:d5:b7:17:c9:52:44:5b:29:43:33: 9d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:36:6A:33:97:0F:D5:4D:6B:9C:88:5A:0E:A0:19:39:69:A7:ED:A2 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FE17F000B12411EF8CF51A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a9c0::/48 Signature Algorithm: sha256WithRSAEncryption ae:07:6e:81:68:4c:49:c5:9a:6f:3c:a0:82:ec:8b:40:1a:e6: cf:a7:68:60:01:e0:f9:b1:95:85:f9:e9:3b:6a:24:6c:77:19: 20:4a:66:6d:1f:45:7a:6e:ba:8b:93:91:79:8a:12:6d:63:03: 4c:37:73:18:e7:d8:38:c2:ab:a3:e2:30:05:7f:f6:28:7e:19: 14:95:f3:5b:9d:fb:be:56:25:2b:f1:e0:82:fa:9f:27:29:ee: a2:e4:b2:c2:42:89:8d:c5:ae:c7:01:dc:9c:88:82:89:b7:b3: e5:7e:ec:ae:8c:ac:60:31:b8:60:6c:60:0d:a8:be:90:92:d6: f0:6e:e1:56:fe:a9:8b:eb:b4:70:d8:5e:40:7f:04:f2:e2:95: b5:e3:f6:ee:a8:a7:a0:87:b0:7e:ee:c5:53:72:36:91:9b:3a: 00:9f:ad:8a:69:fe:ab:c3:43:51:15:75:31:fd:3d:b2:55:4d: e7:78:06:66:f2:c8:5f:e9:66:4b:72:95:2b:08:ac:7b:0c:5a: f6:60:b3:3e:9e:14:11:c1:6e:29:0b:c3:8f:2b:85:5f:f3:77: 9c:74:d8:48:42:11:41:2c:cc:e2:50:86:dc:61:d6:9f:86:fc: 6f:e6:89:f8:fa:6c:24:4c:e6:8a:a0:c6:3e:a1:59:74:3c:88: 75:91:54:0d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICSIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMjAzMDMxNjMxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlNzgwZi1jMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhn4oo3l6cMGdF2eFZdL2zN/1eMPLKyx37ZTQvE+sUirANIH4S4Vo43N02JH phzSzmituqLborzM0qDA0PUI2CtC5fjFwlk7HS55i1ixrcjN74asKe6zqTBw9c5r jyM9G/Hx/4SB5RTObZl7LZgV9iCBC0m+BVsZQHH7n8POFO4wvMQndqqbwW4wkYSd V7buPtFngYsJNcNCpMh2l3GEzZZ8CFyETT9g6TBxwLFDOP2MHaBU+yu1+YGlL9OF oO7yB/11bJ3o62PuMeVzKo+jitRJdMgNFatpHe0aVaiD1YfG/FDeDCPCGzVMEszj c4hrPhFJYNW3F8lSRFspQzOdjQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPU2ajOX D9VNa5yIWg6gGTlpp+2iMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkUxN0YwMDBC MTI0MTFFRjhDRjUxQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30qcAwDQYJKoZIhvcNAQELBQADggEBAK4HboFoTEnF mm88oILsi0Aa5s+naGAB4PmxlYX56TtqJGx3GSBKZm0fRXpuuouTkXmKEm1jA0w3 cxjn2DjCq6PiMAV/9ih+GRSV81ud+75WJSvx4IL6nycp7qLkssJCiY3FrscB3JyI gom3s+V+7K6MrGAxuGBsYA2ovpCS1vBu4Vb+qYvrtHDYXkB/BPLilbXj9u6op6CH sH7uxVNyNpGbOgCfrYpp/qvDQ1EVdTH9PbJVTed4BmbyyF/pZktylSsIrHsMWvZg sz6eFBHBbikLw48rhV/zd5x02EhCEUEszOJQhtxh1p+G/G/mifj6bCRM5oqgxj6h WXQ8iHWRVA0= -----END CERTIFICATE-----Generated at Sat Apr 5 14:46:02 2025 by rpki-client