$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa File: F6979612721511EFA7D82D3EC4F9AE02.roa (raw, json) Hash identifier: u1Ukjd6jd1/Khk2eTILOipVz/Ra1hzzXELPCop6pIfA= Subject key identifier: 92:4B:50:35:00:1B:BE:BD:CD:E9:9A:38:78:3F:79:84:A8:B6:FE:4B Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: C2 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa Signing time: Sat 21 Dec 2024 05:50:11 +0000 ROA not before: Sat 21 Dec 2024 05:50:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 37932 IP address blocks: 2001:3c8:c109::/48 maxlen: 48 2001:3c8:c10a::/48 maxlen: 48 2001:3c8:c10b::/48 maxlen: 48 2001:3c8:c305::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2 Validity Not Before: Dec 21 05:50:11 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67665713-5784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:49:ea:88:e1:03:00:2d:dc:25:c9:02:10:d2: ec:fa:ce:b3:97:12:73:3c:68:83:e0:cb:be:22:74: 08:0a:ab:9e:98:16:3d:1b:12:ba:d3:a3:db:63:e5: f0:50:bf:5f:9e:ff:e3:7c:f1:7f:d6:fe:fe:0f:3c: d9:7c:70:75:37:e6:20:35:7d:3d:09:57:de:e2:f2: ad:f2:cb:9d:6c:a9:13:61:1b:6a:3f:4c:a2:4b:cf: d8:20:63:a9:6c:24:7a:a0:fd:45:48:3d:37:82:e0: 09:51:9d:c1:85:aa:99:b1:cf:71:8c:e8:10:48:a8: 6f:a1:cf:9d:57:f5:e0:81:95:f6:aa:b9:56:4b:0f: 3b:ff:60:68:4f:cc:87:75:a0:28:37:71:ad:53:68: a7:13:56:5f:84:dd:be:36:d6:1e:77:69:26:17:81: 7d:95:bb:45:65:b8:86:98:a1:67:2c:61:e4:db:b4: d6:26:a8:20:f9:4e:6a:5a:cb:d6:c0:ca:c6:e7:bc: ee:0c:ed:01:60:d0:e1:5d:df:81:65:0b:ff:a0:83: 02:87:63:8a:d9:20:eb:2d:ee:d0:1a:cf:68:90:ca: ed:dc:57:d6:ed:2a:e9:33:c1:81:cc:51:77:a1:fd: df:f8:1f:51:e6:0a:d0:93:49:c6:49:ec:da:09:f6: 80:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4B:50:35:00:1B:BE:BD:CD:E9:9A:38:78:3F:79:84:A8:B6:FE:4B X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F6979612721511EFA7D82D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:3c8:c109::-2001:3c8:c10b:ffff:ffff:ffff:ffff:ffff 2001:3c8:c305::/48 Signature Algorithm: sha256WithRSAEncryption 68:d1:31:40:67:49:b1:d4:f7:e2:a6:04:3e:99:a2:2f:75:d6: 98:58:0a:83:c0:a2:4e:a3:10:e8:57:51:27:c0:93:83:c9:c4: bd:76:ff:61:07:6e:ea:d7:46:6b:6e:90:07:43:b9:e9:00:f1: a7:5c:8c:0e:d7:1f:6a:ec:b5:62:2e:70:a3:66:d2:32:66:07: 7f:cf:2d:2b:f2:f7:74:a1:56:81:ae:02:07:bb:03:e7:8e:b3: 00:16:53:61:fb:f4:75:1f:a6:9d:4f:87:a0:c9:99:02:1b:9e: 18:b3:24:46:f5:ad:22:ad:34:f4:e1:16:9a:3a:c3:99:09:3a: cb:94:a1:6f:e1:f1:52:fc:28:ba:39:c5:d9:fb:d3:27:ba:3f: 28:01:32:73:f4:5a:cb:cb:42:81:a4:ad:7f:c8:d2:fb:2b:70: de:05:21:7d:e3:a7:52:11:e1:a7:3a:ec:4c:85:47:41:8f:18: a0:d5:4c:96:3d:9c:5d:ee:da:9c:a1:0e:4e:4f:d4:31:f5:f5: 96:9c:4d:14:8d:64:48:8a:a9:89:a0:ef:20:ef:1b:17:6a:a2: 5d:12:28:0f:4e:89:e3:02:d4:b8:44:b3:6c:32:df:64:16:60: ed:c3:f2:81:29:80:90:15:78:72:f5:34:72:0d:19:9a:24:7a: 38:2d:b4:86 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjQxMjIxMDU1MDExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NTcxMy01Nzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUnqiOEDAC3cJckCENLs+s6zlxJzPGiD4Mu+InQICquemBY9GxK606PbY+Xw UL9fnv/jfPF/1v7+DzzZfHB1N+YgNX09CVfe4vKt8sudbKkTYRtqP0yiS8/YIGOp bCR6oP1FSD03guAJUZ3BhaqZsc9xjOgQSKhvoc+dV/XggZX2qrlWSw87/2BoT8yH daAoN3GtU2inE1ZfhN2+NtYed2kmF4F9lbtFZbiGmKFnLGHk27TWJqgg+U5qWsvW wMrG57zuDO0BYNDhXd+BZQv/oIMCh2OK2SDrLe7QGs9okMrt3FfW7SrpM8GBzFF3 of3f+B9R5grQk0nGSezaCfaAzwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJJLUDUA G769zemaOHg/eYSotv5LMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjY5Nzk2MTI3 MjE1MTFFRkE3RDgyRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0wEgMHACABA8jBCQMHAiABA8jBCAMHACABA8jDBTANBgkqhkiG 9w0BAQsFAAOCAQEAaNExQGdJsdT34qYEPpmiL3XWmFgKg8CiTqMQ6FdRJ8CTg8nE vXb/YQdu6tdGa26QB0O56QDxp1yMDtcfauy1Yi5wo2bSMmYHf88tK/L3dKFWga4C B7sD546zABZTYfv0dR+mnU+HoMmZAhueGLMkRvWtIq009OEWmjrDmQk6y5Shb+Hx UvwoujnF2fvTJ7o/KAEyc/Ray8tCgaStf8jS+ytw3gUhfeOnUhHhpzrsTIVHQY8Y oNVMlj2cXe7anKEOTk/UMfX1lpxNFI1kSIqpiaDvIO8bF2qiXRIoD06J4wLUuESz bDLfZBZg7cPygSmAkBV4cvU0cg0ZmiR6OC20hg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:42 2025 by rpki-client