$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa File: 1A20AAF27BD311EBA6617987C4F9AE02.roa (raw, json) Hash identifier: ayNr4tR/Sfu0YrCAQZrJZu7BfQ9IzQFCs/VABD0dmLE= Subject key identifier: F6:9C:E6:70:51:81:90:4D:54:B3:92:89:CF:16:76:7C:A0:EB:3B:37 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 0664 Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa Signing time: Tue 08 Apr 2025 22:32:45 +0000 ROA not before: Tue 08 Apr 2025 22:32:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 2001:df3:3d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807 Validity Not Before: Apr 8 22:32:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5a40c-98fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3e:d6:76:c3:a6:e3:59:b3:c6:a2:33:01:3e: dd:59:53:ae:0d:ee:b2:0f:17:a6:ba:8a:e8:c5:3e: 24:ea:61:30:a1:2b:19:2c:cd:02:b0:cf:b9:33:87: 44:e0:70:5a:1e:5a:3a:6e:0e:75:a1:e4:bc:10:1e: 8c:78:9a:21:4f:80:bd:6d:0e:44:02:89:90:f0:ff: a1:33:d0:2c:2b:0c:b3:94:36:f5:14:4a:49:4a:b7: 51:b1:4f:97:04:f3:65:29:49:44:23:5c:f4:cf:be: e1:a5:98:cb:a9:88:1a:e4:c3:e9:cd:5d:e6:53:bc: b8:4b:b7:99:e4:eb:f5:f6:5a:7c:af:23:10:6a:f9: f5:db:07:d8:fe:9d:dc:40:31:93:87:98:73:42:bb: 07:b5:6c:f0:4b:c2:f3:f4:2b:c8:f3:b3:d9:c9:e1: a5:f8:36:6b:2c:99:d1:ae:d0:9b:e7:3e:4c:33:87: b5:d2:8f:b4:c2:8c:18:e4:fc:88:68:0f:ca:db:2c: 10:1b:a9:00:cf:a3:f5:e0:e0:fd:0b:1d:06:29:ab: c0:29:02:c9:d1:d0:8f:cf:8d:c2:3e:4a:81:65:df: d3:11:ad:ae:d3:c0:a2:30:93:70:1d:3b:e5:83:cb: 40:f8:db:72:b0:03:43:c3:c3:c2:c5:07:37:42:08: ff:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9C:E6:70:51:81:90:4D:54:B3:92:89:CF:16:76:7C:A0:EB:3B:37 X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/1A20AAF27BD311EBA6617987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:3d00::/48 Signature Algorithm: sha256WithRSAEncryption ae:73:d6:f4:75:9e:b6:ee:5c:3c:62:91:16:1e:42:86:ff:15: f8:1a:a6:8e:89:b5:6c:25:89:6e:17:fb:9f:ee:d9:b2:da:f8: 47:74:98:72:71:e3:94:5f:94:c8:38:86:11:a1:a1:48:18:55: c7:63:c1:24:22:3c:68:46:8a:31:bf:0b:62:7b:65:35:f2:95: d5:6d:75:0d:ee:45:9d:b6:38:86:2f:cb:d5:28:e4:d4:fa:91: 74:63:d2:06:a4:91:d0:e3:1e:ad:22:23:a4:31:07:45:82:63: 99:d0:5b:66:3b:26:fe:bd:26:ec:ac:36:12:df:70:76:16:46: 29:98:1e:bb:36:f9:43:2f:d8:fa:42:40:20:ca:59:03:2f:ed: fa:bc:ab:9a:fc:f6:d5:a4:f6:b7:09:7d:7d:21:24:01:ba:f4: 2c:72:a2:1d:7c:c1:10:75:e5:61:3d:b4:e5:e9:d2:a0:ce:cc: 91:c8:b2:55:40:35:ad:26:64:46:6f:06:9c:48:c4:1d:df:48: f2:66:96:a5:33:7e:ad:c5:4d:4b:ee:81:ec:77:ab:b0:4b:85: 61:29:82:51:03:96:79:79:9c:9a:7d:be:07:56:1b:03:49:9d: e5:9e:8b:11:3a:9a:22:db:59:6e:44:95:4f:8f:7d:25:1f:0d: 29:50:f3:15 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjUwNDA4MjIzMjQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1YTQwYy05OGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT7WdsOm41mzxqIzAT7dWVOuDe6yDxemuoroxT4k6mEwoSsZLM0CsM+5M4dE 4HBaHlo6bg51oeS8EB6MeJohT4C9bQ5EAomQ8P+hM9AsKwyzlDb1FEpJSrdRsU+X BPNlKUlEI1z0z77hpZjLqYga5MPpzV3mU7y4S7eZ5Ov19lp8ryMQavn12wfY/p3c QDGTh5hzQrsHtWzwS8Lz9CvI87PZyeGl+DZrLJnRrtCb5z5MM4e10o+0wowY5PyI aA/K2ywQG6kAz6P14OD9Cx0GKavAKQLJ0dCPz43CPkqBZd/TEa2u08CiMJNwHTvl g8tA+NtysANDw8PCxQc3Qgj/+wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPac5nBR gZBNVLOSic8Wdnyg6zs3MB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU4MDcvMjY5NkY2QzY3QjM2MTFFQkJFODc2NDYxQzRGOUFFMDIvMUEyMEFBRjI3 QkQzMTFFQkE2NjE3OTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zPQAwDQYJKoZIhvcNAQELBQADggEBAK5z1vR1nrbu XDxikRYeQob/Ffgapo6JtWwliW4X+5/u2bLa+Ed0mHJx45RflMg4hhGhoUgYVcdj wSQiPGhGijG/C2J7ZTXyldVtdQ3uRZ22OIYvy9Uo5NT6kXRj0gakkdDjHq0iI6Qx B0WCY5nQW2Y7Jv69JuysNhLfcHYWRimYHrs2+UMv2PpCQCDKWQMv7fq8q5r89tWk 9rcJfX0hJAG69Cxyoh18wRB15WE9tOXp0qDOzJHIslVANa0mZEZvBpxIxB3fSPJm lqUzfq3FTUvugex3q7BLhWEpglEDlnl5nJp9vgdWGwNJneWeixE6miLbWW5ElU+P fSUfDSlQ8xU= -----END CERTIFICATE-----Generated at Sat Apr 12 03:25:09 2025 by rpki-client