$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/B8EBF604C6E911EFA1D4BA2BC4F9AE02.roa File: B8EBF604C6E911EFA1D4BA2BC4F9AE02.roa (raw, json) Hash identifier: WSip5oZr/nzKqOFRarIzVKDUM0vv09DRdF9A4kj+F5w= Subject key identifier: E8:65:43:A9:0E:17:96:9C:13:26:86:F4:E5:A4:5A:AC:B9:C8:8B:F2 Certificate issuer: /CN=A9113B62/serialNumber=41A75E057E25055F14A89F530C78E223B1F0F590 Certificate serial: 02 Authority key identifier: 41:A7:5E:05:7E:25:05:5F:14:A8:9F:53:0C:78:E2:23:B1:F0:F5:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/B8EBF604C6E911EFA1D4BA2BC4F9AE02.roa Signing time: Mon 30 Dec 2024 20:07:41 +0000 ROA not before: Mon 30 Dec 2024 20:07:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138151 IP address blocks: 2001:df4:d340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.crl rsync://rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B62 Validity Not Before: Dec 30 20:07:41 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6772fd8c-f085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:36:ba:62:11:c5:02:c5:5b:0a:73:3c:0e: 15:76:71:a1:71:e0:2a:b8:09:f3:ef:4e:87:ae:f3: 8a:d5:6b:0a:dd:c9:c0:9a:a9:99:0f:e5:37:fa:27: 92:5f:fc:fe:50:4b:ec:a7:cc:a0:f2:cf:43:82:f9: ca:e6:b1:bf:e1:c9:be:db:a7:9f:ed:8e:96:69:a9: cb:f9:9a:15:74:f2:7a:2c:b3:f8:cd:0a:65:f8:23: a2:92:53:1b:e4:05:5b:c6:e6:62:34:19:f0:2f:8b: 80:3c:7c:e5:6e:4a:17:fc:4b:cf:6e:bc:ed:b1:6f: d3:7f:5c:64:26:62:ef:f4:15:c1:1e:c7:9a:ef:b5: ad:02:bb:86:c7:e8:b5:77:6c:04:71:54:3d:9d:5f: 09:f8:91:1e:01:3a:01:b8:8f:19:e7:67:e2:7c:38: 49:d5:b5:70:b2:98:24:8d:cc:92:5b:b2:4e:a3:f3: 3d:34:f6:e2:e3:3a:71:ad:a9:7e:29:c4:c4:03:b4: 8b:c3:c3:96:67:08:ba:18:1f:8d:f1:ea:37:1f:1e: c8:cb:1f:58:4a:67:39:86:1e:a4:9d:27:da:42:8c: 58:79:c1:02:6d:4d:03:65:76:49:af:97:f5:ba:78: b3:4d:2d:e5:92:e0:40:a9:94:b5:21:c1:22:9c:d4: 0d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:65:43:A9:0E:17:96:9C:13:26:86:F4:E5:A4:5A:AC:B9:C8:8B:F2 X509v3 Authority Key Identifier: keyid:41:A7:5E:05:7E:25:05:5F:14:A8:9F:53:0C:78:E2:23:B1:F0:F5:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QadeBX4lBV8UqJ9TDHjiI7Hw9ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B62/2E8A754AC6E811EFBB520B0DC4F9AE02/B8EBF604C6E911EFA1D4BA2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d340::/48 Signature Algorithm: sha256WithRSAEncryption 11:8e:fc:e1:c1:7d:0f:4c:8c:31:64:88:54:1c:a1:27:93:70: dc:63:28:42:9b:2f:5c:1f:6d:f1:61:e7:2e:7d:26:77:41:b3: 5c:ae:8c:33:ba:b9:49:0a:34:76:5d:cf:7f:12:0b:bd:f3:df: 41:67:1f:d7:2d:38:5a:0d:11:42:2e:a4:ef:83:7f:ae:f7:1b: a5:b3:69:fa:8b:e5:ff:d0:41:bf:03:1b:d8:54:5c:a3:9f:38: a2:1e:2e:8e:be:c2:70:95:b8:53:53:44:cc:49:62:fb:9f:e4: 4d:99:10:ce:50:e8:00:26:d1:f6:2a:69:f4:97:d3:9f:72:4e: 5d:7c:1b:0b:90:7e:60:85:35:89:2a:49:b7:33:2c:66:65:6f: 0f:e7:b2:db:3a:67:1f:60:b2:20:01:a8:9c:3b:08:2c:4f:d7: 65:10:79:2e:28:d7:56:14:1a:e1:74:55:bb:9c:07:45:4e:ca: 08:99:6e:d0:16:86:dc:29:2c:61:ea:62:5f:ce:95:59:2f:78: 43:d9:44:e6:17:84:67:41:f9:dd:e0:6f:45:ab:fc:78:bb:89: fc:b2:1b:af:1f:98:96:4f:d5:cd:35:35:8c:da:a8:19:81:5b: b0:66:0a:2f:a5:dd:10:41:3a:1e:43:e3:d8:dc:73:74:c5:93: cd:df:f5:64 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx M0I2MjExMC8GA1UEBRMoNDFBNzVFMDU3RTI1MDU1RjE0QTg5RjUzMEM3OEUyMjNC MUYwRjU5MDAeFw0yNDEyMzAyMDA3NDFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzJmZDhjLWYwODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTpja6YhHFAsVbCnM8DhV2caFx4Cq4CfPvToeu84rVawrdycCaqZkP5Tf6J5Jf /P5QS+ynzKDyz0OC+crmsb/hyb7bp5/tjpZpqcv5mhV08noss/jNCmX4I6KSUxvk BVvG5mI0GfAvi4A8fOVuShf8S89uvO2xb9N/XGQmYu/0FcEex5rvta0Cu4bH6LV3 bARxVD2dXwn4kR4BOgG4jxnnZ+J8OEnVtXCymCSNzJJbsk6j8z009uLjOnGtqX4p xMQDtIvDw5ZnCLoYH43x6jcfHsjLH1hKZzmGHqSdJ9pCjFh5wQJtTQNldkmvl/W6 eLNNLeWS4ECplLUhwSKc1A3jAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU6GVDqQ4X lpwTJob05aRarLnIi/IwHwYDVR0jBBgwFoAUQadeBX4lBV8UqJ9TDHjiI7Hw9ZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzQjYyLzJFOEE3NTRBQzZF ODExRUZCQjUyMEIwREM0RjlBRTAyL1FhZGVCWDRsQlY4VXFKOVRESGppSTdIdzla QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWFkZUJYNGxCVjhVcUo5VERIamlJN0h3OVpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0I2Mi8yRThBNzU0QUM2RTgxMUVGQkI1MjBCMERDNEY5QUUwMi9COEVCRjYwNEM2 RTkxMUVGQTFENEJBMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTTQDANBgkqhkiG9w0BAQsFAAOCAQEAEY784cF9D0yM MWSIVByhJ5Nw3GMoQpsvXB9t8WHnLn0md0GzXK6MM7q5SQo0dl3PfxILvfPfQWcf 1y04Wg0RQi6k74N/rvcbpbNp+ovl/9BBvwMb2FRco584oh4ujr7CcJW4U1NEzEli +5/kTZkQzlDoACbR9ipp9JfTn3JOXXwbC5B+YIU1iSpJtzMsZmVvD+ey2zpnH2Cy IAGonDsILE/XZRB5LijXVhQa4XRVu5wHRU7KCJlu0BaG3CksYepiX86VWS94Q9lE 5heEZ0H53eBvRav8eLuJ/LIbrx+Ylk/VzTU1jNqoGYFbsGYKL6XdEEE6HkPj2Nxz dMWTzd/1ZA== -----END CERTIFICATE-----Generated at Thu Feb 6 05:18:28 2025 by rpki-client