$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa File: D09FF69C48AD11EBA15A3A26C4F9AE02.roa (raw, json) Hash identifier: wDuvMnv18CEEykC/8vKCo3Cxk80XgNkgI1krGKgdJ2c= Subject key identifier: 55:4B:37:6B:47:DF:CF:65:69:6B:65:1D:CB:42:64:D7:C7:FF:E8:31 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2989 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:17 +0000 ROA not before: Tue 31 Dec 2024 15:53:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38899 IP address blocks: 2405:9800:c91f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10633 (0x2989) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:17 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774136d-6b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f9:6c:fd:5d:a0:35:30:86:81:84:b3:21:35: b5:c8:d1:4b:f5:c3:3a:60:a8:78:e8:a7:6c:42:09: ab:cc:b4:56:f6:37:e0:e9:2a:e9:0c:61:17:79:f5: 84:e7:3f:28:e0:bd:ed:8b:5a:8f:17:91:dd:6f:09: 9f:a9:be:eb:50:fa:2c:0e:e6:e3:43:0b:ca:65:f3: 63:33:74:7b:82:b0:e0:83:d4:fd:6c:a4:78:eb:4c: 5d:3e:6c:6b:a0:4b:f7:b8:d1:d5:4c:0e:de:6e:4c: b7:72:ea:ad:cf:cd:26:7b:05:88:64:a8:1c:3a:69: fb:2f:78:2d:9e:d2:e6:0e:5a:73:c4:eb:5c:19:af: f3:c1:81:8e:f5:f8:32:a3:fa:61:e5:0f:66:68:5c: 87:d3:80:93:cd:36:ec:96:ac:e8:0c:b4:4a:aa:80: 17:1b:19:f4:46:13:ce:49:67:76:b8:6d:ce:83:64: f5:ed:31:11:52:1f:c5:e7:e4:b3:f9:1f:ae:a0:22: f3:64:c4:d8:0c:42:8f:3f:b4:8a:fb:33:d7:4f:6d: de:d9:98:f3:69:41:98:f8:14:c5:45:4e:e8:e4:05: 6b:fe:41:c3:fb:c4:c9:63:6a:4a:b0:2c:83:2d:46: 89:0d:9e:d7:44:37:8d:84:13:19:c0:b2:0b:56:26: 8a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4B:37:6B:47:DF:CF:65:69:6B:65:1D:CB:42:64:D7:C7:FF:E8:31 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/D09FF69C48AD11EBA15A3A26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:9800:c91f::/48 Signature Algorithm: sha256WithRSAEncryption 9b:29:8a:e4:a0:e1:27:7a:cb:76:36:0e:9f:53:d9:6c:9e:a5: 48:cc:ad:ef:7c:c1:5e:8c:57:31:2d:e7:89:8f:db:b2:08:01: e0:74:30:72:30:e8:c6:d4:23:1f:47:17:23:46:25:11:03:90: d2:df:80:60:e1:64:b2:fe:b1:d6:9a:ca:9b:fc:15:be:66:af: 5d:e4:54:a1:bc:4f:ac:55:d0:ec:3e:74:64:90:c6:64:69:05: 3d:da:b2:06:fe:6e:03:6f:ca:02:00:2c:a0:e3:cf:b6:64:64: b0:8f:c0:4b:c2:d7:06:20:09:9c:94:49:27:73:6a:36:47:c2: d7:ab:6c:94:bf:78:b9:b2:0a:5d:4c:1f:a0:0a:a3:b7:72:23: 85:37:b0:17:20:48:e4:77:e7:ee:ff:39:b3:09:27:e1:a5:5a: b1:15:da:85:1b:5d:3d:2d:a1:0b:0f:ef:4e:58:c5:0b:0c:fc: 68:07:af:51:fe:08:ef:5d:c3:5d:c6:81:5a:a9:9e:71:72:9f: 8e:ba:2d:f4:cc:eb:01:cd:45:25:8f:eb:e7:0b:fd:c4:77:62: 56:a3:ec:aa:f6:61:5d:a9:94:da:b0:4f:22:69:0d:57:5b:44: 82:79:9e:9c:9a:83:74:1c:80:7f:a3:17:64:53:ba:f2:e2:ce: 4f:b6:20:e9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICKYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM2ZC02YjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfls/V2gNTCGgYSzITW1yNFL9cM6YKh46KdsQgmrzLRW9jfg6SrpDGEXefWE 5z8o4L3ti1qPF5Hdbwmfqb7rUPosDubjQwvKZfNjM3R7grDgg9T9bKR460xdPmxr oEv3uNHVTA7ebky3cuqtz80mewWIZKgcOmn7L3gtntLmDlpzxOtcGa/zwYGO9fgy o/ph5Q9maFyH04CTzTbslqzoDLRKqoAXGxn0RhPOSWd2uG3Og2T17TERUh/F5+Sz +R+uoCLzZMTYDEKPP7SK+zPXT23e2ZjzaUGY+BTFRU7o5AVr/kHD+8TJY2pKsCyD LUaJDZ7XRDeNhBMZwLILViaK/wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFVLN2tH 389laWtlHctCZNfH/+gxMB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvRDA5RkY2OUM0 OEFEMTFFQkExNUEzQTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBZgAyR8wDQYJKoZIhvcNAQELBQADggEBAJspiuSg4Sd6 y3Y2Dp9T2WyepUjMre98wV6MVzEt54mP27IIAeB0MHIw6MbUIx9HFyNGJREDkNLf gGDhZLL+sdaaypv8Fb5mr13kVKG8T6xV0Ow+dGSQxmRpBT3asgb+bgNvygIALKDj z7ZkZLCPwEvC1wYgCZyUSSdzajZHwterbJS/eLmyCl1MH6AKo7dyI4U3sBcgSOR3 5+7/ObMJJ+GlWrEV2oUbXT0toQsP705YxQsM/GgHr1H+CO9dw13GgVqpnnFyn466 LfTM6wHNRSWP6+cL/cR3Ylaj7Kr2YV2plNqwTyJpDVdbRIJ5npyag3QcgH+jF2RT uvLizk+2IOk= -----END CERTIFICATE-----Generated at Sun Feb 16 20:22:33 2025 by rpki-client