$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa File: 96862188486111E8AA9B1B45C4F9AE02.roa (raw, json) Hash identifier: Tf0FHT1S2LqhWgKXbz3aiqZH7Ay/C2PxgAMnS0SSxOA= Subject key identifier: A6:BE:E3:64:B3:A9:A7:5E:D9:00:9C:96:D2:E1:6E:97:FE:9A:50:CF Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 2151 Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa Signing time: Thu 30 Jan 2025 16:03:31 +0000 ROA not before: Thu 30 Jan 2025 16:03:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58621 IP address blocks: 2400:6d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8529 (0x2151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794 Validity Not Before: Jan 30 16:03:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679ba2d3-4494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:54:46:d1:75:c1:e6:95:23:72:03:6d:47:3a: 39:08:68:e1:4b:3d:ab:a3:b4:2b:d4:cc:9d:62:47: 2f:12:7b:f0:e7:af:ab:c1:b5:33:d3:42:58:9a:3b: 61:37:89:30:5a:59:17:7d:0f:41:4f:9a:bb:aa:64: 75:f2:dc:bf:f2:4e:d2:86:ba:93:86:d2:c6:d3:35: fa:9d:76:ac:49:05:5f:0a:ce:b8:79:3c:c0:cd:64: 78:d9:46:7f:43:ac:ad:c6:0a:44:f8:7c:6b:30:d7: 2d:83:42:8f:32:a2:da:f6:26:13:20:41:43:bc:9b: 54:66:92:a6:03:a3:c8:29:e1:47:4a:9b:f6:87:fe: 2c:c1:d7:03:d8:c6:4e:fc:8a:2c:4b:05:63:1a:dc: a1:2f:50:ee:b8:eb:8e:46:f6:55:82:9d:58:cb:fe: 6b:81:61:f5:13:b1:1c:fc:07:0b:d9:7d:d8:7f:de: b1:9e:22:6b:3e:a1:e2:89:aa:93:a4:38:08:e1:3d: c7:15:20:e5:63:87:1e:1a:9e:f2:cf:4e:3d:18:2c: d4:f4:7c:cb:44:63:d2:4a:5f:36:44:08:34:58:ce: 78:a5:f5:38:0e:8b:6b:3f:fe:bd:2b:97:57:0c:40: 2d:17:59:67:88:e7:a5:0e:25:37:ef:13:fb:d4:14: f0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BE:E3:64:B3:A9:A7:5E:D9:00:9C:96:D2:E1:6E:97:FE:9A:50:CF X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6d80::/32 Signature Algorithm: sha256WithRSAEncryption 76:e0:1c:b8:b5:b3:7b:d3:e8:63:e6:80:fa:df:86:7e:11:10: 42:b0:d9:7f:a7:38:40:f9:26:d5:d0:1e:40:d5:af:21:b8:58: d0:a6:16:71:06:5a:a2:25:d7:02:92:5c:76:2b:14:6e:1a:9e: 64:36:e4:ea:c8:32:4f:c7:a5:40:84:f6:d7:31:93:5b:61:b4: 8e:2e:34:29:ca:bd:2b:0d:1d:ff:1b:9b:52:8e:c3:24:4d:e0: f1:99:61:d1:d4:5d:9c:21:63:83:2d:7c:1f:24:c4:66:49:e5: 48:1d:a0:01:1c:ca:21:e9:94:06:5a:2f:91:45:9e:23:88:67: 0a:c5:3d:89:df:f0:2a:df:5a:42:01:7c:1a:37:e7:1f:f3:2c: fc:6c:25:2c:f9:10:27:6d:f0:d7:b6:d7:48:68:73:18:8e:c7: f9:06:09:4b:97:97:ba:36:2a:ed:55:55:58:d0:e8:57:a8:99: 88:f4:62:2e:85:f3:a5:f2:05:2a:e1:a2:76:69:c2:aa:60:cf: 0c:17:d2:f7:55:f0:8e:1d:00:ca:10:6a:ae:34:bb:36:31:8d: 60:f8:19:f5:b8:1a:2f:c3:b1:50:3d:51:42:2d:f7:b2:1b:cc: 5d:a5:fb:ed:86:85:78:f8:3d:ea:dc:d5:e2:f0:8f:83:2e:ee: 40:8d:68:f6 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICIVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjUwMTMwMTYwMzMxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliYTJkMy00NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1RG0XXB5pUjcgNtRzo5CGjhSz2ro7Qr1MydYkcvEnvw56+rwbUz00JYmjth N4kwWlkXfQ9BT5q7qmR18ty/8k7ShrqThtLG0zX6nXasSQVfCs64eTzAzWR42UZ/ Q6ytxgpE+HxrMNctg0KPMqLa9iYTIEFDvJtUZpKmA6PIKeFHSpv2h/4swdcD2MZO /IosSwVjGtyhL1DuuOuORvZVgp1Yy/5rgWH1E7Ec/AcL2X3Yf96xniJrPqHiiaqT pDgI4T3HFSDlY4ceGp7yz049GCzU9HzLRGPSSl82RAg0WM54pfU4DotrP/69K5dX DEAtF1lniOelDiU37xP71BTwyQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKa+42Sz qade2QCcltLhbpf+mlDPMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvOTY4NjIxODg0 ODYxMTFFOEFBOUIxQjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAG2AMA0GCSqGSIb3DQEBCwUAA4IBAQB24By4tbN70+hj 5oD634Z+ERBCsNl/pzhA+SbV0B5A1a8huFjQphZxBlqiJdcCklx2KxRuGp5kNuTq yDJPx6VAhPbXMZNbYbSOLjQpyr0rDR3/G5tSjsMkTeDxmWHR1F2cIWODLXwfJMRm SeVIHaABHMoh6ZQGWi+RRZ4jiGcKxT2J3/Aq31pCAXwaN+cf8yz8bCUs+RAnbfDX ttdIaHMYjsf5BglLl5e6NirtVVVY0OhXqJmI9GIuhfOl8gUq4aJ2acKqYM8MF9L3 VfCOHQDKEGquNLs2MY1g+Bn1uBovw7FQPVFCLfeyG8xdpfvthoV4+D3q3NXi8I+D Lu5AjWj2 -----END CERTIFICATE-----Generated at Sat Apr 5 02:22:55 2025 by rpki-client