$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/E11BD76CC6D911EF8CC3C849C4F9AE02.roa File: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (raw, json) Hash identifier: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA= Subject key identifier: B1:E9:9F:6D:CD:B6:4F:05:1F:C7:59:E8:A3:E5:05:37:75:BE:03:0E Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 04 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/E11BD76CC6D911EF8CC3C849C4F9AE02.roa Signing time: Mon 30 Dec 2024 18:14:16 +0000 ROA not before: Mon 30 Dec 2024 18:14:16 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153476 IP address blocks: 2401:e4e0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C Validity Not Before: Dec 30 18:14:16 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6772e2f8-2f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:ee:6f:56:c4:42:79:95:71:6f:97:75:64: 66:94:78:00:41:d9:cc:f8:f8:4c:ed:e5:eb:f0:dd: b6:12:0e:e7:27:8d:5a:ee:5a:7a:c7:75:7c:4f:22: 52:1c:fb:8c:62:0a:82:ca:53:b6:99:1c:86:71:ff: 4f:0b:b3:dd:36:d5:db:9c:03:d7:3e:c6:b9:d2:85: a7:48:f5:e8:0f:11:93:b6:2c:3c:b5:9a:77:c4:c9: 3a:b6:bb:16:30:f4:ed:99:2a:e7:8a:cb:a3:cf:29: 64:b0:15:05:80:dd:cd:0b:db:11:1c:97:cb:6c:a0: b7:4e:19:5f:1f:b4:db:bc:db:70:4c:1e:db:90:9b: 33:1e:e1:b9:4a:1d:68:25:28:d3:16:e7:be:9c:60: 61:a6:ff:dc:56:44:5a:7f:55:14:4b:e6:99:6a:66: a8:4d:60:99:e9:85:25:57:bb:a3:ac:a9:3b:89:42: 4c:4d:50:ba:81:6b:aa:cf:a3:de:33:b6:ff:5a:66: e8:7f:3a:de:5c:d0:d1:87:98:37:c9:72:aa:d0:9d: 4b:4f:84:95:f9:c3:e0:aa:66:b4:33:3a:b9:6c:65: a2:ee:14:d4:04:6c:9f:cd:dd:2c:67:92:b9:7f:4b: ec:89:5a:50:35:37:d0:bc:59:24:eb:d4:84:40:39: 4c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E9:9F:6D:CD:B6:4F:05:1F:C7:59:E8:A3:E5:05:37:75:BE:03:0E X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/E11BD76CC6D911EF8CC3C849C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e4e0::/40 Signature Algorithm: sha256WithRSAEncryption 27:d5:a4:62:3d:86:d4:77:d5:50:3b:c5:b8:cc:d1:69:b3:15: b2:08:78:ec:79:00:ca:2c:88:d7:b4:aa:c5:96:a6:50:ce:26: c9:a1:1d:91:b6:3d:a1:e9:80:c4:4b:34:59:de:c8:37:98:cb: e0:fa:c7:b0:ce:86:b4:d5:48:80:7e:3a:ce:c7:07:f7:d6:1d: 2d:d3:de:2b:dc:b2:1b:51:de:80:64:6b:c5:7e:28:03:4f:a5: 86:66:5b:95:7e:ee:49:00:11:8a:25:ac:f6:6f:bc:f1:0b:e9: 4e:ba:0a:c2:24:e2:e1:c0:1b:c2:c1:fd:7d:4f:ce:de:22:88: 73:6e:8e:79:ec:5c:05:e3:45:43:8f:4f:13:59:f2:5d:ca:70: 50:83:bf:43:4c:f4:ae:15:c6:bb:92:46:f8:98:81:f9:15:84: d0:87:d8:b7:c0:45:f1:f6:29:72:83:23:8d:20:87:5d:19:31: 69:9b:29:ae:82:91:53:a5:72:0b:9d:eb:fc:ce:b6:1e:e5:ec: f6:b0:72:ba:ba:94:ab:50:c9:a1:c7:f7:11:e0:52:a8:64:f4: 3c:d7:b1:0f:3c:8c:8f:ce:7e:9a:d6:1e:aa:a6:48:b4:e8:6b: c9:b1:f0:9e:c9:45:10:c5:1f:df:41:75:19:33:8b:42:5d:41: 30:84:94:bc -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNDEyMzAxODE0MTZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzJlMmY4LTJmMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeMO5vVsRCeZVxb5d1ZGaUeABB2cz4+Ezt5evw3bYSDucnjVruWnrHdXxPIlIc +4xiCoLKU7aZHIZx/08Ls9021ducA9c+xrnShadI9egPEZO2LDy1mnfEyTq2uxYw 9O2ZKueKy6PPKWSwFQWA3c0L2xEcl8tsoLdOGV8ftNu823BMHtuQmzMe4blKHWgl KNMW576cYGGm/9xWRFp/VRRL5plqZqhNYJnphSVXu6OsqTuJQkxNULqBa6rPo94z tv9aZuh/Ot5c0NGHmDfJcqrQnUtPhJX5w+CqZrQzOrlsZaLuFNQEbJ/N3Sxnkrl/ S+yJWlA1N9C8WSTr1IRAOUzVAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUsemfbc22 TwUfx1noo+UFN3W+Aw4wHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi9FMTFCRDc2Q0M2 RDkxMUVGOENDM0M4NDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGACQB5OAAMA0GCSqGSIb3DQEBCwUAA4IBAQAn1aRiPYbUd9VQ O8W4zNFpsxWyCHjseQDKLIjXtKrFlqZQzibJoR2Rtj2h6YDESzRZ3sg3mMvg+sew zoa01UiAfjrOxwf31h0t094r3LIbUd6AZGvFfigDT6WGZluVfu5JABGKJaz2b7zx C+lOugrCJOLhwBvCwf19T87eIohzbo557FwF40VDj08TWfJdynBQg79DTPSuFca7 kkb4mIH5FYTQh9i3wEXx9ilygyONIIddGTFpmymugpFTpXILnev8zrYe5ez2sHK6 upSrUMmhx/cR4FKoZPQ817EPPIyPzn6a1h6qpki06GvJsfCeyUUQxR/fQXUZM4tC XUEwhJS8 -----END CERTIFICATE-----Generated at Thu Feb 6 05:12:27 2025 by rpki-client