$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa File: 0989F3EE120911EB83107638C4F9AE02.roa (raw, json) Hash identifier: ZN83zETo/fGZjHplsgi4LIPj/1+Cv9tK+RMfhDQAvcM= Subject key identifier: F9:9B:8C:25:63:20:6E:5B:6D:63:CA:76:F4:AC:38:FF:BC:B4:95:33 Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 079E Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa Signing time: Tue 10 Dec 2024 21:50:51 +0000 ROA not before: Tue 10 Dec 2024 21:50:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 207268 IP address blocks: 2406:9dc0:10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F Validity Not Before: Dec 10 21:50:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758b7bb-fe1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:76:a5:31:1f:ea:54:31:26:7c:67:53:6a: e7:69:04:0b:bd:f5:8e:8e:ac:f9:e1:1c:46:9d:b9: c7:6a:13:b7:89:49:56:07:e4:79:ee:11:34:5d:ac: 77:bb:63:ba:32:16:51:7d:7f:19:0a:fc:4a:21:f4: b3:27:37:be:a2:10:fc:06:47:17:04:88:e9:e2:44: 21:81:c6:d2:b6:5c:6d:68:19:38:85:1f:74:0c:cc: 2b:0a:d7:f9:97:2e:32:a0:97:1b:f1:8f:3c:0c:22: e2:9b:e1:aa:fe:ec:77:7c:96:6c:22:31:68:bc:7c: f8:a5:68:47:85:5f:50:6f:00:fc:f4:1d:1b:80:14: 35:64:e3:8f:af:37:bf:66:0e:f5:ee:85:db:48:cc: 95:e4:fd:6e:c0:36:0a:f9:5f:df:cb:c3:ba:f6:92: 48:ab:62:6e:39:f7:43:cc:68:46:29:43:7f:92:96: 93:83:8a:25:74:03:28:a9:48:8b:f8:8e:8f:b8:92: 7d:04:e3:3d:80:36:6f:d2:de:63:cf:60:13:41:1c: e4:a3:ad:e8:36:74:b4:0e:73:d5:b9:e1:c2:33:2a: bd:89:bf:19:cd:92:23:63:0c:5c:4b:26:c0:0d:ed: 79:b9:d4:73:e0:af:4d:87:bf:32:8f:48:be:25:c9: 3a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9B:8C:25:63:20:6E:5B:6D:63:CA:76:F4:AC:38:FF:BC:B4:95:33 X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/0989F3EE120911EB83107638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:10::/44 Signature Algorithm: sha256WithRSAEncryption 87:39:be:c5:0d:55:fb:98:46:fd:ab:1e:fe:76:c0:e6:4b:13: 27:d7:5e:73:5a:d4:16:5f:86:86:92:0f:13:c5:3a:c8:a7:9d: c7:d9:c2:f1:47:4f:8d:1a:b6:b5:63:51:89:0c:c0:fc:fc:4c: c1:84:99:65:65:ba:08:49:2b:5f:89:41:94:e0:fc:77:e4:15: 2f:cd:03:83:0b:25:45:fa:61:6b:d3:7f:1c:0c:e4:32:1b:ff: ae:4b:c8:3d:b1:19:c5:d9:3c:f7:da:71:86:6c:95:de:9b:b6: be:fc:e6:b0:33:bc:b0:c5:6c:aa:e4:68:77:c6:ae:66:c3:04: f9:07:08:fa:4a:75:7c:bd:f7:51:47:53:03:1e:fb:76:b5:4d: b6:66:f2:07:42:10:48:fe:f0:67:a1:08:73:8b:f3:94:ff:e2: 00:70:3e:e4:3e:f4:f2:c3:18:12:c4:8a:b0:40:db:6c:67:fb: 95:bf:db:d3:60:1a:51:e5:a1:65:2c:32:ea:88:4d:aa:03:13: 8e:ed:a0:ba:ad:cd:00:03:94:a5:52:0c:85:66:0b:ff:e2:99: ce:90:7f:19:b5:ea:1c:19:1d:76:f6:c8:49:a0:f4:f8:2d:81: 3f:59:ee:d1:d6:0c:2e:ee:ba:26:76:8e:6b:86:7d:d6:b6:f8: f9:eb:75:d9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjQxMjEwMjE1MDUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YjdiYi1mZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkt2pTEf6lQxJnxnU2rnaQQLvfWOjqz54RxGnbnHahO3iUlWB+R57hE0Xax3 u2O6MhZRfX8ZCvxKIfSzJze+ohD8BkcXBIjp4kQhgcbStlxtaBk4hR90DMwrCtf5 ly4yoJcb8Y88DCLim+Gq/ux3fJZsIjFovHz4pWhHhV9QbwD89B0bgBQ1ZOOPrze/ Zg717oXbSMyV5P1uwDYK+V/fy8O69pJIq2JuOfdDzGhGKUN/kpaTg4oldAMoqUiL +I6PuJJ9BOM9gDZv0t5jz2ATQRzko63oNnS0DnPVueHCMyq9ib8ZzZIjYwxcSybA De15udRz4K9Nh78yj0i+Jck6IwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPmbjCVj IG5bbWPKdvSsOP+8tJUzMB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvMDk4OUYzRUUx MjA5MTFFQjgzMTA3NjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AABAwDQYJKoZIhvcNAQELBQADggEBAIc5vsUNVfuY Rv2rHv52wOZLEyfXXnNa1BZfhoaSDxPFOsinncfZwvFHT40atrVjUYkMwPz8TMGE mWVlughJK1+JQZTg/HfkFS/NA4MLJUX6YWvTfxwM5DIb/65LyD2xGcXZPPfacYZs ld6btr785rAzvLDFbKrkaHfGrmbDBPkHCPpKdXy991FHUwMe+3a1TbZm8gdCEEj+ 8GehCHOL85T/4gBwPuQ+9PLDGBLEirBA22xn+5W/29NgGlHloWUsMuqITaoDE47t oLqtzQADlKVSDIVmC//imc6Qfxm16hwZHXb2yEmg9PgtgT9Z7tHWDC7uuiZ2jmuG fda2+Pnrddk= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:19 2025 by rpki-client