$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/3F43565CB4A711EFA3D95012C4F9AE02.roa File: 3F43565CB4A711EFA3D95012C4F9AE02.roa (raw, json) Hash identifier: OELdD8LbVgXXbJX6bTHTOCI+oCTaXDP2euo2Avh/+Rk= Subject key identifier: 4A:D4:AE:B6:AA:3E:D3:4A:16:F1:86:C0:AC:63:18:A3:71:CD:34:E3 Certificate issuer: /CN=A91DD125/serialNumber=CE9056B4C65DE3857D4D0E1DB0023D60B6F7D30C Certificate serial: 1792 Authority key identifier: CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/3F43565CB4A711EFA3D95012C4F9AE02.roa Signing time: Tue 14 Jan 2025 17:04:36 +0000 ROA not before: Tue 14 Jan 2025 17:04:36 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 60011 IP address blocks: 2402:28c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.crl rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6034 (0x1792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD125 Validity Not Before: Jan 14 17:04:36 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67869924-ca54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:f4:e9:fa:ec:a3:ca:1b:99:70:3c:cc:0c: 1e:3d:66:92:4e:11:4c:c1:eb:f7:ff:fe:82:8a:a6: 54:d1:ac:31:b4:ce:84:68:de:8f:a5:a9:51:a3:9f: e2:06:6a:59:55:ae:c8:bb:8b:c4:83:0f:ad:9b:b5: a7:dc:b6:39:c4:cc:80:ea:01:a3:d6:81:cf:c6:c3: 4a:10:79:56:b4:25:12:e7:4a:3d:d7:46:55:68:63: a1:cf:68:54:0e:e3:78:d5:77:91:b3:32:26:61:25: 3d:38:90:75:80:b8:26:e4:68:db:40:7f:f8:b2:ef: 32:52:37:c1:08:35:c6:04:77:42:77:f9:7d:6a:cd: 29:b5:91:31:96:55:a7:b9:a7:a3:06:1a:41:bd:6d: e2:1c:04:86:65:0e:3e:eb:34:33:61:fd:5f:6b:e8: fd:ef:b8:1c:2f:2a:ed:00:2f:bc:e8:c6:e1:d2:ff: 2e:0f:f8:fb:b4:6d:75:ed:2e:aa:ae:e9:df:2a:0b: b3:d7:56:84:50:e0:c1:a6:c4:fc:8a:82:40:b4:94: df:4b:f1:8c:9a:9a:38:d4:f0:f2:26:4f:3c:46:9d: 1a:e3:e0:8b:47:53:17:23:3a:ea:cf:7f:f1:f7:7f: 37:8a:42:fe:ac:46:44:0e:e5:b4:10:b3:9c:28:1d: 7e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D4:AE:B6:AA:3E:D3:4A:16:F1:86:C0:AC:63:18:A3:71:CD:34:E3 X509v3 Authority Key Identifier: keyid:CE:90:56:B4:C6:5D:E3:85:7D:4D:0E:1D:B0:02:3D:60:B6:F7:D3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/zpBWtMZd44V9TQ4dsAI9YLb30ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zpBWtMZd44V9TQ4dsAI9YLb30ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD125/7A142D00D95E11E787A1A766C4F9AE02/3F43565CB4A711EFA3D95012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:28c0::/32 Signature Algorithm: sha256WithRSAEncryption 87:7c:bc:37:5f:22:68:d3:c7:d6:cd:34:9e:d1:c3:0e:ed:40: 11:b8:94:7d:c3:7f:8a:54:51:11:9f:88:8a:d0:cc:79:33:fa: da:f7:5a:3b:17:56:86:d9:fa:a2:1b:19:98:2a:59:04:ad:9e: 4a:04:7f:5d:13:8a:fe:20:14:9c:45:4a:10:b1:39:0e:27:15: bc:54:27:04:50:b4:15:8b:82:a4:f5:e6:4a:c9:88:9b:d7:fb: 5e:86:7c:46:4d:58:0e:0f:35:94:13:b5:f4:57:bc:01:d0:c2: cd:fd:96:64:70:39:06:a5:45:53:df:43:61:59:71:c8:9f:67: ae:8a:cd:33:ad:a5:7b:2c:38:0f:eb:f3:1d:cc:18:e0:16:e9: d8:db:17:47:b8:fa:e3:b6:18:85:fc:e9:0d:ac:f3:ed:02:fa: 2c:bc:7c:ff:a8:06:0c:bd:25:c9:a6:a7:50:f2:6f:80:96:c4: 86:a2:a3:ac:f5:61:36:5b:3a:3a:03:55:8a:f7:58:d4:ef:c4: 4f:dc:7a:45:73:26:63:2a:fa:87:6c:6d:a7:47:e1:bf:72:b4: 89:39:59:9b:0d:01:ae:b0:a3:6a:e2:70:7d:4f:ec:62:ae:2d: b9:6a:97:5f:10:c6:3d:4b:38:77:e6:1f:0e:30:fb:85:6e:92: 97:7f:82:f1 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICF5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxMjUxMTAvBgNVBAUTKENFOTA1NkI0QzY1REUzODU3RDREMEUxREIwMDIzRDYw QjZGN0QzMEMwHhcNMjUwMTE0MTcwNDM2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTkyNC1jYTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hj06frso8obmXA8zAwePWaSThFMwev3//6CiqZU0awxtM6EaN6PpalRo5/i BmpZVa7Iu4vEgw+tm7Wn3LY5xMyA6gGj1oHPxsNKEHlWtCUS50o910ZVaGOhz2hU DuN41XeRszImYSU9OJB1gLgm5GjbQH/4su8yUjfBCDXGBHdCd/l9as0ptZExllWn uaejBhpBvW3iHASGZQ4+6zQzYf1fa+j977gcLyrtAC+86Mbh0v8uD/j7tG117S6q runfKguz11aEUODBpsT8ioJAtJTfS/GMmpo41PDyJk88Rp0a4+CLR1MXIzrqz3/x 9383ikL+rEZEDuW0ELOcKB1+JQIDAQABo4ICljCCApIwHQYDVR0OBBYEFErUrraq PtNKFvGGwKxjGKNxzTTjMB8GA1UdIwQYMBaAFM6QVrTGXeOFfU0OHbACPWC299MM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDEyNS83QTE0MkQwMEQ5 NUUxMUU3ODdBMUE3NjZDNEY5QUUwMi96cEJXdE1aZDQ0VjlUUTRkc0FJOVlMYjMw d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pwQld0TVpkNDRWOVRRNGRzQUk5WUxiMzB3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQxMjUvN0ExNDJEMDBEOTVFMTFFNzg3QTFBNzY2QzRGOUFFMDIvM0Y0MzU2NUNC NEE3MTFFRkEzRDk1MDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAijAMA0GCSqGSIb3DQEBCwUAA4IBAQCHfLw3XyJo08fW zTSe0cMO7UARuJR9w3+KVFERn4iK0Mx5M/ra91o7F1aG2fqiGxmYKlkErZ5KBH9d E4r+IBScRUoQsTkOJxW8VCcEULQVi4Kk9eZKyYib1/tehnxGTVgODzWUE7X0V7wB 0MLN/ZZkcDkGpUVT30NhWXHIn2euis0zraV7LDgP6/MdzBjgFunY2xdHuPrjthiF /OkNrPPtAvosvHz/qAYMvSXJpqdQ8m+AlsSGoqOs9WE2Wzo6A1WK91jU78RP3HpF cyZjKvqHbG2nR+G/crSJOVmbDQGusKNq4nB9T+xiri25apdfEMY9Szh35h8OMPuF bpKXf4Lx -----END CERTIFICATE-----Generated at Sat Apr 5 06:02:19 2025 by rpki-client