$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa File: EDD8F8E0721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: 2Y+cbAUrWV2ZAy6kYp1UeFv3m2Ks5PfJYW1FVrKypV4= Subject key identifier: C9:7F:C2:DD:67:B5:53:8A:FA:E7:04:D1:A7:7E:73:94:CB:CF:41:78 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 9E Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa Signing time: Sat 21 Dec 2024 05:49:36 +0000 ROA not before: Sat 21 Dec 2024 05:49:36 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132482 IP address blocks: 2001:3c8:2705::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:49:36 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676656f0-ac32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:38:51:03:77:32:82:5a:e5:47:6f:7b:60: d1:e7:33:36:2e:c5:a4:72:3a:68:83:ca:73:2c:64: ff:47:32:6c:0e:30:e2:be:8e:b1:00:e4:65:c3:00: 42:cd:1b:20:c7:65:a7:c0:95:4b:b6:df:b5:9b:cc: 05:e4:f2:68:83:d6:db:f2:69:cb:20:b0:3b:0d:cf: 27:d2:c9:b5:72:f3:4c:e2:99:f1:57:23:f1:16:35: 28:df:27:6a:cf:0c:7c:b5:7b:ca:9d:dd:9d:54:c2: ef:94:81:ca:49:05:f9:1f:e6:e0:22:58:77:fa:40: 34:66:1a:72:60:e6:ca:af:a6:11:7a:e7:cf:c7:3b: 4c:d7:4e:ed:f1:c7:82:c3:fa:ac:42:83:53:7b:52: de:1f:76:e6:6d:d3:20:6b:f6:63:fe:67:04:4f:87: d7:d1:7a:6c:20:85:4a:84:6f:a7:ed:36:36:76:88: 13:5a:c2:cd:56:66:b6:37:b2:f4:75:f2:55:46:1c: e7:ac:7d:64:b4:0f:6f:0f:ad:3e:8a:2d:37:3b:e8: 26:17:e1:bf:31:3c:fd:29:a9:85:2b:33:cf:90:20: dc:1e:77:c9:e7:49:3b:35:36:1b:ae:b5:f4:98:f7: 24:de:c6:d8:51:12:ee:3f:85:89:bb:b4:95:db:7a: b2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7F:C2:DD:67:B5:53:8A:FA:E7:04:D1:A7:7E:73:94:CB:CF:41:78 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EDD8F8E0721A11EFBDE87567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:2705::/48 Signature Algorithm: sha256WithRSAEncryption 40:06:fa:ce:f3:de:e8:b5:e3:6e:50:ab:b9:76:7b:e6:18:08: ca:a9:95:d8:ed:6c:95:d2:8e:60:d5:39:72:ff:a3:18:d1:6d: c9:da:e2:38:2e:a2:88:c6:06:8c:a8:65:0e:a0:91:68:47:21: 46:39:c9:5e:8b:bc:a9:cd:de:1f:8b:b8:02:d6:50:e7:19:9e: 42:94:b0:d5:7b:ee:3b:a6:87:04:bc:53:36:f9:4f:2e:51:cc: 7c:32:7a:3b:c9:c4:85:f3:99:fe:13:a1:d6:3c:61:3f:d2:2b: 92:5f:ab:7e:73:cd:23:00:5e:92:c6:d6:e1:4b:6d:01:94:dd: 5b:58:5a:50:f7:e5:22:a0:d5:66:91:8e:ef:9f:43:31:30:d7: 6e:65:ad:a1:27:dd:7f:4e:00:24:83:a4:6c:c4:e4:70:75:5b: 3f:be:78:c8:c3:ab:9d:b5:19:d8:85:f8:b1:92:5c:4f:11:00: 40:47:c4:42:1e:02:44:6d:b7:45:99:78:00:0a:37:2d:bb:74: 33:f7:f9:b7:af:88:aa:8c:e1:eb:24:e4:c5:8a:2f:ae:aa:13: 3f:16:49:46:a8:1f:9f:cb:1a:57:51:69:08:42:fd:42:29:4a: f9:e5:b1:da:d9:e5:fa:99:05:43:a1:a2:38:7d:52:19:ab:31: 69:48:4b:5d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU0OTM2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTZmMC1hYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1As4UQN3MoJa5Udve2DR5zM2LsWkcjpog8pzLGT/RzJsDjDivo6xAORlwwBC zRsgx2WnwJVLtt+1m8wF5PJog9bb8mnLILA7Dc8n0sm1cvNM4pnxVyPxFjUo3ydq zwx8tXvKnd2dVMLvlIHKSQX5H+bgIlh3+kA0ZhpyYObKr6YReufPxztM107t8ceC w/qsQoNTe1LeH3bmbdMga/Zj/mcET4fX0XpsIIVKhG+n7TY2dogTWsLNVma2N7L0 dfJVRhznrH1ktA9vD60+ii03O+gmF+G/MTz9KamFKzPPkCDcHnfJ50k7NTYbrrX0 mPck3sbYURLuP4WJu7SV23qyvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMl/wt1n tVOK+ucE0ad+c5TLz0F4MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUREOEY4RTA3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQPIJwUwDQYJKoZIhvcNAQELBQADggEBAEAG+s7z3ui1 425Qq7l2e+YYCMqpldjtbJXSjmDVOXL/oxjRbcna4jguoojGBoyoZQ6gkWhHIUY5 yV6LvKnN3h+LuALWUOcZnkKUsNV77jumhwS8Uzb5Ty5RzHwyejvJxIXzmf4TodY8 YT/SK5Jfq35zzSMAXpLG1uFLbQGU3VtYWlD35SKg1WaRju+fQzEw125lraEn3X9O ACSDpGzE5HB1Wz++eMjDq521GdiF+LGSXE8RAEBHxEIeAkRtt0WZeAAKNy27dDP3 +beviKqM4esk5MWKL66qEz8WSUaoH5/LGldRaQhC/UIpSvnlsdrZ5fqZBUOhojh9 UhmrMWlIS10= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:45 2025 by rpki-client