$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa File: C4488734721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: hxhxpxpKsrpDkDZ/UMG0ULyvuuy5vIkzcT7OXYLG65A= Subject key identifier: 1F:99:7E:3C:2C:27:F4:22:84:4E:31:7A:7A:64:8A:3F:39:FE:35:F8 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: C5 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:14 +0000 ROA not before: Sat 21 Dec 2024 05:50:14 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 3839 IP address blocks: 2001:3c8:1401::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:14 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665716-82c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:14:c2:c8:56:67:74:61:8c:53:a6:4a:58: d7:e4:cf:41:62:f0:f8:ea:bf:61:d1:d6:2a:1f:a5: 6c:69:e0:84:9e:3f:9a:2e:c3:06:cc:c0:ca:fa:2f: 96:5e:08:93:dd:dc:7d:2b:3d:1f:ef:71:c4:79:9b: 85:a8:c3:9c:6e:f2:ac:a1:2c:b8:78:d7:8a:66:be: 15:2b:e0:7f:76:2d:ad:ee:28:9c:4d:7d:2e:48:cd: f7:e2:57:f1:18:e8:1f:5a:54:9d:ce:d4:92:e6:87: 78:3e:37:fa:94:b2:46:b1:4e:56:a5:c4:7d:31:b8: 6d:22:13:bc:75:9a:47:e5:3c:a8:56:5b:ca:4e:57: 90:2e:65:8f:67:72:9b:2b:f2:2f:78:b9:a5:0c:f0: b0:09:da:e5:24:23:85:d2:c2:f7:c7:ae:b4:1d:dc: 6b:70:7a:07:e1:ef:c3:5d:6b:e6:5e:47:08:c7:e8: 1c:f6:b9:93:ab:0e:94:52:a4:37:62:dc:43:7d:98: 8c:f0:44:87:21:f9:ca:8e:9c:68:61:6b:86:7b:81: 89:d0:be:15:29:47:4f:72:7f:56:9b:99:15:1f:e8: 16:8c:4d:e7:d0:33:23:a1:3f:d2:f0:13:0e:61:c1: 86:55:75:fa:86:98:2e:2e:00:de:2e:e9:fb:c0:cb: 77:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:99:7E:3C:2C:27:F4:22:84:4E:31:7A:7A:64:8A:3F:39:FE:35:F8 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C4488734721511EF9D7B9F3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:1401::/48 Signature Algorithm: sha256WithRSAEncryption 80:04:5b:b7:55:cc:66:c1:75:e8:7c:a5:f9:a2:9d:25:10:09: 38:94:9a:6d:43:0d:f3:21:4f:32:79:51:c9:dc:5b:bb:1f:0b: af:11:9a:7d:c1:65:92:e3:8c:3d:9e:5f:ac:d6:db:64:f5:69: 0e:a9:45:d9:86:6b:64:d9:1a:5b:e5:11:09:38:fe:af:e5:37: 63:64:0e:0f:ce:0f:be:92:e9:f6:47:db:3d:44:9f:aa:52:14: b5:02:8d:10:d1:a6:f4:b3:67:38:c8:08:28:7a:4c:8c:e8:15: 17:8f:6d:23:25:78:cf:65:62:ea:84:04:a9:70:a8:bd:ab:76: fb:49:6c:ca:0a:23:fb:a4:63:b6:da:93:b4:5f:02:58:d4:b9: 49:29:0b:f3:3e:a9:3f:ed:85:27:77:8a:50:0f:41:85:77:59: 59:6d:e1:ce:72:4e:c6:0e:7a:a8:03:56:e5:d1:49:fc:6d:fd: ff:a4:f8:e6:ff:06:cf:6b:d8:ae:40:c1:c0:4f:9c:8d:f1:7e: 9d:50:81:d4:18:ba:0d:b4:dd:f4:e6:77:04:99:0f:d4:d4:da: c4:68:98:86:e1:a3:18:4c:a6:00:73:c7:12:77:ba:90:4c:97: f8:ef:05:35:11:47:5e:c5:33:65:57:1a:9b:5e:3c:40:cf:e8: c5:fd:73:97 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDE0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxNi04MmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Q8UwshWZ3RhjFOmSljX5M9BYvD46r9h0dYqH6VsaeCEnj+aLsMGzMDK+i+W XgiT3dx9Kz0f73HEeZuFqMOcbvKsoSy4eNeKZr4VK+B/di2t7iicTX0uSM334lfx GOgfWlSdztSS5od4Pjf6lLJGsU5WpcR9MbhtIhO8dZpH5TyoVlvKTleQLmWPZ3Kb K/IveLmlDPCwCdrlJCOF0sL3x660HdxrcHoH4e/DXWvmXkcIx+gc9rmTqw6UUqQ3 YtxDfZiM8ESHIfnKjpxoYWuGe4GJ0L4VKUdPcn9Wm5kVH+gWjE3n0DMjoT/S8BMO YcGGVXX6hpguLgDeLun7wMt3lQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB+Zfjws J/QihE4xenpkij85/jX4MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzQ0ODg3MzQ3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQPIFAEwDQYJKoZIhvcNAQELBQADggEBAIAEW7dVzGbB deh8pfminSUQCTiUmm1DDfMhTzJ5UcncW7sfC68Rmn3BZZLjjD2eX6zW22T1aQ6p RdmGa2TZGlvlEQk4/q/lN2NkDg/OD76S6fZH2z1En6pSFLUCjRDRpvSzZzjICCh6 TIzoFRePbSMleM9lYuqEBKlwqL2rdvtJbMoKI/ukY7bak7RfAljUuUkpC/M+qT/t hSd3ilAPQYV3WVlt4c5yTsYOeqgDVuXRSfxt/f+k+Ob/Bs9r2K5AwcBPnI3xfp1Q gdQYug203fTmdwSZD9TU2sRomIbhoxhMpgBzxxJ3upBMl/jvBTURR17FM2VXGpte PEDP6MX9c5c= -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:12 2025 by rpki-client