$ rpki-client -vvf rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/631365F6CDA011EF9A781760C4F9AE02.roa File: 631365F6CDA011EF9A781760C4F9AE02.roa (raw, json) Hash identifier: b9xFFrzjuvwYbcIk4ZLMf5cF5I7piEwQw1yb0RX8EuU= Subject key identifier: F7:EF:31:D9:3B:8B:EF:0F:6D:12:8D:A4:38:46:34:1A:01:45:A1:5F Certificate issuer: /CN=A91D560D/serialNumber=D7146DA9DE28F5BB5E3DE2FF00C59FC85C9938DA Certificate serial: 0840 Authority key identifier: D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/631365F6CDA011EF9A781760C4F9AE02.roa Signing time: Wed 08 Jan 2025 09:10:21 +0000 ROA not before: Wed 08 Jan 2025 09:10:21 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 65540 IP address blocks: 2402:9f40:1::/48 maxlen: 48 2402:9f40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D560D Validity Not Before: Jan 8 09:10:21 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=677e40fd-7245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:0a:13:fc:6b:52:5d:dc:6a:0e:c0:bd:1a: 99:2c:ab:38:bb:cd:6a:be:44:ea:2c:9d:f4:50:4a: c6:f1:52:ff:8b:06:f3:f1:2b:88:50:73:23:50:8f: 6c:db:cf:c2:3b:df:fd:8d:2a:e5:e1:5c:43:42:72: 67:52:00:1a:02:c8:9d:15:db:49:a9:a0:64:88:83: cd:5e:b7:6f:39:90:0a:cd:4b:dc:2c:3e:db:aa:75: 86:13:43:77:f8:1b:2e:8c:b2:7e:8a:9a:98:64:40: 67:30:04:0d:5a:4f:36:9a:5c:5c:c7:a7:89:d6:14: 97:29:14:78:44:3a:03:d1:89:94:cd:9e:f2:ab:5a: 72:93:8a:ef:73:69:c6:66:59:32:de:a4:0f:76:81: 17:a4:29:bb:de:d6:ef:d3:98:fe:ec:fa:e0:92:da: 3a:de:ae:56:4c:c5:ed:d8:48:31:03:7a:33:64:45: 4e:bc:38:7e:7a:00:c7:1b:7b:43:6b:45:bc:9a:ab: f0:4b:4c:0a:e0:63:af:8a:53:e8:3d:0d:f8:f8:3e: 2d:d5:05:7d:15:66:c3:a7:73:87:7a:d4:70:a5:cb: 47:52:d4:44:52:a9:3a:8e:98:e8:ad:f7:8a:87:3c: f6:14:8c:d3:19:06:91:d7:33:8d:67:2f:5f:a3:53: b3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:EF:31:D9:3B:8B:EF:0F:6D:12:8D:A4:38:46:34:1A:01:45:A1:5F X509v3 Authority Key Identifier: keyid:D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/631365F6CDA011EF9A781760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:9f40:1::-2402:9f40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 31:fe:f9:55:df:07:e3:14:63:4b:12:81:28:54:27:2d:4e:7a: 2d:0e:93:bf:2b:c6:c9:ac:95:cb:e0:c8:02:a5:b3:a2:8f:50: 9d:42:ae:c2:64:11:02:54:4f:db:7a:d1:8e:1b:78:e5:57:f3: ce:17:76:f1:a3:50:75:c4:14:31:56:95:48:d8:48:17:29:a7: b0:b6:f8:c3:64:21:69:98:94:ef:68:e1:e3:0d:72:27:6d:b6: 2e:25:5d:4d:68:27:c4:85:f8:f8:65:35:65:1d:05:27:d8:23: 17:5c:ee:e8:3f:a9:9a:21:93:84:1d:87:d1:4b:2e:46:5b:7f: 2e:88:fe:85:c1:60:94:6c:36:37:39:1e:9d:e8:8f:7a:6a:e9: 36:b2:a8:89:ca:0c:c9:c7:f8:2a:1e:a4:2d:77:07:60:27:95: 12:25:f4:c8:4d:98:fe:38:cf:ad:ee:95:f7:a6:0a:1f:47:ba: 72:0b:0a:f4:a5:03:c1:40:2d:df:44:ee:1c:49:a2:40:6f:e0: e5:95:ec:16:7c:4f:36:4a:bb:5f:7d:35:98:43:be:89:e0:a6: 20:6f:87:01:dd:78:d5:7f:8b:67:34:b6:ef:fc:50:40:3a:b0: 81:8c:dc:f7:ff:a2:6c:44:90:54:d1:ca:e9:e0:6b:9a:19:10: e1:25:cb:3f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MEQxMTAvBgNVBAUTKEQ3MTQ2REE5REUyOEY1QkI1RTNERTJGRjAwQzU5RkM4 NUM5OTM4REEwHhcNMjUwMTA4MDkxMDIxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlNDBmZC03MjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjwKE/xrUl3cag7AvRqZLKs4u81qvkTqLJ30UErG8VL/iwbz8SuIUHMjUI9s 28/CO9/9jSrl4VxDQnJnUgAaAsidFdtJqaBkiIPNXrdvOZAKzUvcLD7bqnWGE0N3 +BsujLJ+ipqYZEBnMAQNWk82mlxcx6eJ1hSXKRR4RDoD0YmUzZ7yq1pyk4rvc2nG Zlky3qQPdoEXpCm73tbv05j+7Prgkto63q5WTMXt2EgxA3ozZEVOvDh+egDHG3tD a0W8mqvwS0wK4GOvilPoPQ34+D4t1QV9FWbDp3OHetRwpctHUtREUqk6jpjorfeK hzz2FIzTGQaR1zONZy9fo1OzNQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPfvMdk7 i+8PbRKNpDhGNBoBRaFfMB8GA1UdIwQYMBaAFNcUbaneKPW7Xj3i/wDFn8hcmTja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwRC82OEMzRjQ5QTQx RUUxMUVBOUNFQTFGNzVDNEY5QUUwMi8xeFJ0cWQ0bzlidGVQZUxfQU1XZnlGeVpP Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4UnRxZDRvOWJ0ZVBlTF9BTVdmeUZ5Wk9Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2MEQvNjhDM0Y0OUE0MUVFMTFFQTlDRUExRjc1QzRGOUFFMDIvNjMxMzY1RjZD REEwMTFFRjlBNzgxNzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQCn0AAAQMHACQCn0AAAjANBgkqhkiG9w0BAQsFAAOC AQEAMf75Vd8H4xRjSxKBKFQnLU56LQ6TvyvGyayVy+DIAqWzoo9QnUKuwmQRAlRP 23rRjht45Vfzzhd28aNQdcQUMVaVSNhIFymnsLb4w2QhaZiU72jh4w1yJ222LiVd TWgnxIX4+GU1ZR0FJ9gjF1zu6D+pmiGThB2H0UsuRlt/Loj+hcFglGw2NzkeneiP emrpNrKoicoMycf4Kh6kLXcHYCeVEiX0yE2Y/jjPre6V96YKH0e6cgsK9KUDwUAt 30TuHEmiQG/g5ZXsFnxPNkq7X301mEO+ieCmIG+HAd141X+LZzS27/xQQDqwgYzc 9/+ibESQVNHK6eBrmhkQ4SXLPw== -----END CERTIFICATE-----Generated at Sun Apr 6 15:23:01 2025 by rpki-client