$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa File: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (raw, json) Hash identifier: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0= Subject key identifier: 1A:6F:50:2B:B6:DC:34:02:AD:EF:35:4D:98:5F:4F:1A:FF:BE:59:D1 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 06 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa Signing time: Mon 30 Dec 2024 18:22:56 +0000 ROA not before: Mon 30 Dec 2024 18:22:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 215355 IP address blocks: 2401:e4e0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C Validity Not Before: Dec 30 18:22:56 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6772e4ff-62fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b9:e7:a5:2b:3d:86:c1:4e:de:cf:41:37:9b: 18:93:b3:af:80:5d:b3:66:4c:31:f1:03:1f:e1:aa: 23:ee:af:6e:9a:01:5a:b4:9f:e0:3b:22:79:13:5d: 10:9a:eb:49:7d:4c:14:96:98:54:1d:62:d7:c5:03: 82:90:aa:a0:9c:0e:c7:c1:c5:49:59:5c:6c:b0:49: 0c:ee:b7:8f:86:76:ed:1a:a6:60:4f:e6:20:3d:d9: dd:5c:33:0f:e3:ed:95:3d:d6:a3:a0:a1:9b:2b:fb: 79:d5:64:87:c7:85:0a:33:af:69:9d:96:46:13:87: 59:75:7f:32:f5:22:db:35:bd:84:d6:5a:6a:b8:3e: 05:07:ec:a4:37:06:dd:a2:36:53:f4:ec:91:29:ea: 6c:9e:36:c5:36:e0:0b:c0:bd:77:0d:68:86:b0:d8: 88:bf:ee:db:9c:d9:50:c8:1a:12:92:35:c6:4e:f6: 52:01:15:d7:4e:f3:3d:3a:f5:e1:73:81:f0:63:89: 17:8a:ea:f1:82:1b:fd:85:7d:96:76:44:9d:b1:a9: 52:67:a2:f1:3d:89:3a:52:d2:d5:28:47:43:e1:b9: 1d:f8:a7:04:c4:f6:5d:b8:ba:34:7a:87:29:9d:c8: ae:20:01:0c:81:98:65:76:2d:45:27:dd:c1:c8:56: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6F:50:2B:B6:DC:34:02:AD:EF:35:4D:98:5F:4F:1A:FF:BE:59:D1 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e4e0:100::/40 Signature Algorithm: sha256WithRSAEncryption 31:a7:9f:a3:66:ef:fa:8f:00:7f:01:83:26:27:d8:40:f0:e4: 79:59:b2:89:c9:49:d2:e3:32:12:9c:c9:42:f9:73:9a:75:55: 9a:f6:20:62:c3:9a:50:5b:9c:eb:3e:77:be:80:ab:c4:34:c6: f2:4f:46:e2:d7:5c:d8:65:3b:ca:23:13:30:64:95:cf:f1:c5: 95:0d:3d:c5:aa:30:55:3c:76:9b:22:7b:e5:47:52:57:2c:a8: 09:88:3e:cb:96:19:76:a9:11:07:1a:e9:7f:10:7d:95:6f:e4: 54:66:a8:e6:3d:5d:ee:2a:2e:ae:d6:f4:35:c3:c2:89:9a:7f: c1:68:94:d0:7c:f3:12:60:ca:1d:74:20:45:65:ff:98:db:13: 81:cd:6d:84:6a:6c:e2:a2:1a:8e:d6:79:1f:30:39:e9:b7:28: af:dd:32:7c:a5:2c:30:75:cf:c4:8b:98:e1:fb:f8:db:22:4b: a4:14:b0:04:fe:db:c4:fd:0c:3a:37:36:a4:68:e2:dd:fe:7f: 83:b8:a5:d3:8d:d8:c0:40:ef:35:d8:37:2a:3f:93:1c:9f:e4: fe:82:11:b5:f0:25:03:b2:3c:50:f4:f3:5e:18:95:5a:24:71: e8:6b:53:a7:3d:9e:e2:18:29:f1:00:dd:dd:73:8d:2d:77:c6: 61:2e:5f:c6 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNDEyMzAxODIyNTZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzJlNGZmLTYyZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSueelKz2GwU7ez0E3mxiTs6+AXbNmTDHxAx/hqiPur26aAVq0n+A7InkTXRCa 60l9TBSWmFQdYtfFA4KQqqCcDsfBxUlZXGywSQzut4+Gdu0apmBP5iA92d1cMw/j 7ZU91qOgoZsr+3nVZIfHhQozr2mdlkYTh1l1fzL1Its1vYTWWmq4PgUH7KQ3Bt2i NlP07JEp6myeNsU24AvAvXcNaIaw2Ii/7tuc2VDIGhKSNcZO9lIBFddO8z069eFz gfBjiReK6vGCG/2FfZZ2RJ2xqVJnovE9iTpS0tUoR0PhuR34pwTE9l24ujR6hymd yK4gAQyBmGV2LUUn3cHIVnQHAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUGm9QK7bc NAKt7zVNmF9PGv++WdEwHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi8xNkUxQzhFQ0M2 REIxMUVGQkREQjhBMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGACQB5OABMA0GCSqGSIb3DQEBCwUAA4IBAQAxp5+jZu/6jwB/ AYMmJ9hA8OR5WbKJyUnS4zISnMlC+XOadVWa9iBiw5pQW5zrPne+gKvENMbyT0bi 11zYZTvKIxMwZJXP8cWVDT3FqjBVPHabInvlR1JXLKgJiD7Llhl2qREHGul/EH2V b+RUZqjmPV3uKi6u1vQ1w8KJmn/BaJTQfPMSYModdCBFZf+Y2xOBzW2EamziohqO 1nkfMDnptyiv3TJ8pSwwdc/Ei5jh+/jbIkukFLAE/tvE/Qw6NzakaOLd/n+DuKXT jdjAQO812DcqP5Mcn+T+ghG18CUDsjxQ9PNeGJVaJHHoa1OnPZ7iGCnxAN3dc40t d8ZhLl/G -----END CERTIFICATE-----Generated at Thu Feb 6 04:57:26 2025 by rpki-client