$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa File: F0223A56C8F711EFB2542D5FC4F9AE02.roa (raw, json) Hash identifier: kpDV72L5PduT1hbcSCHGP6VsjclG6oQQ8bH1ad5jDYA= Subject key identifier: 36:3E:BD:42:03:A9:FB:89:B1:21:88:49:38:04:65:17:7C:97:D4:25 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 0373 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa Signing time: Thu 02 Jan 2025 10:54:28 +0000 ROA not before: Thu 02 Jan 2025 10:54:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149058 IP address blocks: 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720 Validity Not Before: Jan 2 10:54:28 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67767064-84ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:8f:72:24:67:8a:e5:b1:e3:94:5f:df:4a: f0:4c:0b:d6:58:42:05:43:36:19:fd:55:ef:2c:90: ce:c4:3a:b3:2f:87:01:c8:0f:b3:9d:07:21:ad:d5: ad:03:d0:4a:fb:6a:5b:f2:9f:41:9f:a1:94:87:3b: fc:27:44:32:8a:ed:ec:2e:5e:4d:c0:e6:b4:48:01: 1f:47:83:fd:1e:2c:15:11:84:b0:14:b2:32:50:ff: d6:00:1c:0a:52:5e:a0:ec:91:85:f7:13:50:84:67: c4:f2:7f:0e:b5:0e:12:c5:42:e1:6a:f8:87:29:55: 2a:32:46:be:a5:8a:0e:f7:08:53:a6:34:ac:7d:63: 7b:34:9c:2f:24:fa:93:c5:6c:35:52:fc:54:11:11: b7:0f:5e:3c:db:52:66:72:bf:30:41:4e:df:34:ad: e6:cd:e7:4a:aa:94:f4:c3:24:5e:79:ef:dd:d7:7f: 9b:cb:f1:b2:c1:32:39:3b:31:fc:dd:93:38:d3:8b: 9d:ce:98:d4:4f:01:3d:5c:e0:b2:96:74:58:8b:50: 6a:f0:e8:ea:27:c5:2b:53:43:33:cc:b1:f7:54:15: 60:cc:e3:9f:31:ba:6e:0f:83:19:00:98:6a:37:5d: 0b:b7:78:7a:57:14:eb:05:02:cc:b7:6d:0e:b4:9f: 53:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:3E:BD:42:03:A9:FB:89:B1:21:88:49:38:04:65:17:7C:97:D4:25 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 90:e4:50:1e:3f:d2:fa:ea:83:db:82:29:b5:8c:b3:5c:e2:d9: 87:fa:6c:bd:62:58:b8:7d:c6:1f:92:b3:c3:b3:cc:04:34:7d: 60:3e:6f:69:76:da:8c:e6:bd:aa:77:31:5b:28:ba:b1:ea:ee: 68:8a:7c:f1:24:7c:c4:c3:48:6f:df:56:4f:97:9c:7e:7e:94: f2:a5:12:da:83:b8:6f:35:0b:0d:5c:d6:a3:99:a3:8a:b8:e8: f1:fb:cf:2b:1c:3b:3a:d5:01:6f:19:59:60:68:35:6d:fc:74: e6:f5:85:6e:09:a7:ce:30:e6:34:a2:23:19:17:f4:8c:c5:fa: bf:46:7f:34:ed:6a:fa:23:24:ea:28:9c:98:8e:3a:31:2a:ae: ab:aa:c5:37:d5:b2:78:a8:f7:ca:04:78:05:8c:b9:15:f4:78: 99:14:22:1b:24:dc:90:d5:84:33:40:36:09:de:9f:27:2e:23: bb:0f:40:81:77:e8:33:04:56:e4:e1:ee:9a:c7:d6:57:28:61: 6e:d3:7c:c2:2a:2c:b3:85:d4:2d:3d:5d:29:7c:52:00:8f:f8: e7:71:5e:29:de:49:59:98:fb:45:6b:8c:1c:3e:05:59:6b:01: 1b:5a:de:0c:1e:f6:cb:0d:13:ba:9f:23:79:6a:f7:e4:85:00: 63:05:b6:6d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUwMTAyMTA1NDI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2NzA2NC04NGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wSPciRniuWx45Rf30rwTAvWWEIFQzYZ/VXvLJDOxDqzL4cByA+znQchrdWt A9BK+2pb8p9Bn6GUhzv8J0Qyiu3sLl5NwOa0SAEfR4P9HiwVEYSwFLIyUP/WABwK Ul6g7JGF9xNQhGfE8n8OtQ4SxULhaviHKVUqMka+pYoO9whTpjSsfWN7NJwvJPqT xWw1UvxUERG3D14821Jmcr8wQU7fNK3mzedKqpT0wyReee/d13+by/GywTI5OzH8 3ZM404udzpjUTwE9XOCylnRYi1Bq8OjqJ8UrU0MzzLH3VBVgzOOfMbpuD4MZAJhq N10Lt3h6VxTrBQLMt20OtJ9TeQIDAQABo4ICljCCApIwHQYDVR0OBBYEFDY+vUID qfuJsSGISTgEZRd8l9QlMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvRjAyMjNBNTZD OEY3MTFFRkIyNTQyRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQCQ5FAeP9L66oPb gim1jLNc4tmH+my9Yli4fcYfkrPDs8wENH1gPm9pdtqM5r2qdzFbKLqx6u5oinzx JHzEw0hv31ZPl5x+fpTypRLag7hvNQsNXNajmaOKuOjx+88rHDs61QFvGVlgaDVt /HTm9YVuCafOMOY0oiMZF/SMxfq/Rn807Wr6IyTqKJyYjjoxKq6rqsU31bJ4qPfK BHgFjLkV9HiZFCIbJNyQ1YQzQDYJ3p8nLiO7D0CBd+gzBFbk4e6ax9ZXKGFu03zC KiyzhdQtPV0pfFIAj/jncV4p3klZmPtFa4wcPgVZawEbWt4MHvbLDRO6nyN5avfk hQBjBbZt -----END CERTIFICATE-----Generated at Sat Apr 5 03:26:05 2025 by rpki-client