$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa File: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (raw, json) Hash identifier: vxR6lGSB92W4nyf39qOZTHQvzgJz2i4ET4hSQ71BeOI= Subject key identifier: 4A:3B:3A:39:24:8E:A6:CD:81:78:37:47:29:57:A8:F8:29:D5:A5:D6 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 05 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa Signing time: Sun 26 Jan 2025 20:21:47 +0000 ROA not before: Sun 26 Jan 2025 20:21:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 206804 IP address blocks: 2401:eaa0:1::/48 maxlen: 48 2401:eaa0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 09:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749 Validity Not Before: Jan 26 20:21:47 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6796995b-433c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:29:77:77:ba:64:85:04:cc:3d:b7:72:46:bc: 19:ee:1c:de:29:95:b3:49:57:94:23:0e:79:f3:58: 74:5c:63:31:34:3e:8d:e8:a5:f8:ba:ed:bb:6e:6d: 63:ed:71:01:49:82:44:26:a1:8a:09:a9:2f:7c:cb: f8:e0:3b:15:ea:8d:59:cf:ef:b0:a9:8c:c1:86:0f: 80:f9:14:0b:f7:68:9e:69:c1:32:e4:f7:a6:fe:93: 01:f4:8d:52:d4:c8:4b:d7:97:65:dd:05:5f:e4:5f: 39:4f:70:7b:21:86:b0:95:23:3f:cb:e0:60:fe:18: 81:41:40:ca:0b:13:4e:dc:58:1a:d9:35:18:5a:ec: 74:88:4a:cb:46:03:48:10:9b:99:d0:97:8f:cf:43: 24:90:64:54:71:f0:4a:31:ec:95:b7:b5:48:ed:aa: ce:0f:6a:19:50:f1:19:c1:c5:5d:c5:67:af:07:7f: 03:47:ec:3e:86:ac:6b:45:a9:6e:8f:a8:2f:be:14: 86:55:d2:78:9e:e6:ae:fe:f5:c0:28:9f:fc:d1:35: 16:f9:d1:1c:15:d0:dd:b7:95:5a:e2:8a:92:56:5f: 7f:1c:98:29:a6:2f:55:b7:8f:91:c4:43:b3:a8:d1: de:8b:8d:67:13:48:0d:c3:29:ae:68:a8:7e:8d:45: df:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3B:3A:39:24:8E:A6:CD:81:78:37:47:29:57:A8:F8:29:D5:A5:D6 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:eaa0:1::-2401:eaa0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 49:43:fe:e7:55:41:c9:c6:b7:a9:96:e7:99:5a:ed:9d:b3:20: b7:74:1a:c8:b9:cd:78:a0:20:0e:29:9a:d7:42:5c:52:d8:ee: fe:e9:6c:5f:f8:1b:00:f4:b7:01:92:90:d5:d6:fa:9e:f0:bb: b7:bb:c8:f8:96:7c:c3:f5:15:e1:73:92:9e:eb:31:07:e5:da: 1b:60:49:9e:48:52:10:41:b7:ce:1b:db:3f:ad:87:80:fa:4f: 93:2b:30:ba:0d:05:c0:83:98:c3:04:09:e4:3c:1b:fa:6d:15: 50:94:32:a8:73:aa:e9:35:b8:82:d5:c5:bd:61:0e:ac:23:6c: 49:b2:47:e7:25:33:3d:c6:9d:53:74:84:a6:a0:fa:6b:22:73: 88:36:c7:7e:47:2c:21:3d:2b:47:c2:76:cc:69:97:9a:3f:2d: d9:ba:96:53:78:86:26:6e:bf:b2:e2:1f:a0:b0:69:2e:a4:9c: 98:16:4c:e1:00:2a:54:4f:35:1b:63:70:de:c3:6b:7f:c1:72: ea:88:93:0e:76:e0:d5:2c:d0:0d:b5:0d:10:5c:ce:cd:a5:d8: 0a:85:ef:7d:1f:f9:da:7f:24:6f:bf:08:17:0a:3f:44:a8:9c: 4f:ba:99:2e:32:f9:5a:dc:93:66:eb:28:bf:77:d4:06:f6:61: 29:44:f6:5b -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTAxMjYyMDIxNDdaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTY5OTViLTQzM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJKXd3umSFBMw9t3JGvBnuHN4plbNJV5QjDnnzWHRcYzE0Po3opfi67btubWPt cQFJgkQmoYoJqS98y/jgOxXqjVnP77CpjMGGD4D5FAv3aJ5pwTLk96b+kwH0jVLU yEvXl2XdBV/kXzlPcHshhrCVIz/L4GD+GIFBQMoLE07cWBrZNRha7HSISstGA0gQ m5nQl4/PQySQZFRx8Eox7JW3tUjtqs4PahlQ8RnBxV3FZ68HfwNH7D6GrGtFqW6P qC++FIZV0nie5q7+9cAon/zRNRb50RwV0N23lVriipJWX38cmCmmL1W3j5HEQ7Oo 0d6LjWcTSA3DKa5oqH6NRd+NAgMBAAGjggKjMIICnzAdBgNVHQ4EFgQUSjs6OSSO ps2BeDdHKVeo+CnVpdYwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODc0OS9CQTU3REJBNkRDMjAxMUVGOTFCNTQwMUVDNEY5QUUwMi8wRDlEOEM4Q0RD MjMxMUVGQUVCMkY2NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAIwFDASAwcAJAHqoAABAwcAJAHqoAACMA0GCSqGSIb3DQEBCwUAA4IB AQBJQ/7nVUHJxreplueZWu2dsyC3dBrIuc14oCAOKZrXQlxS2O7+6Wxf+BsA9LcB kpDV1vqe8Lu3u8j4lnzD9RXhc5Ke6zEH5dobYEmeSFIQQbfOG9s/rYeA+k+TKzC6 DQXAg5jDBAnkPBv6bRVQlDKoc6rpNbiC1cW9YQ6sI2xJskfnJTM9xp1TdISmoPpr InOINsd+RywhPStHwnbMaZeaPy3ZupZTeIYmbr+y4h+gsGkupJyYFkzhACpUTzUb Y3Dew2t/wXLqiJMOduDVLNANtQ0QXM7NpdgKhe99H/nafyRvvwgXCj9EqJxPupku Mvla3JNm6yi/d9QG9mEpRPZb -----END CERTIFICATE-----Generated at Wed Feb 19 22:35:09 2025 by rpki-client