$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/C2BDF91086EE11EFB5A6B352C4F9AE02.roa File: C2BDF91086EE11EFB5A6B352C4F9AE02.roa (raw, json) Hash identifier: vOnw1zBAg2FFcl8sBOmkESgReB8BHoF4g3tKhlo/818= Subject key identifier: 0B:94:E7:E9:AF:4E:C9:3C:3F:14:2C:BE:56:36:17:9D:33:CE:6A:A9 Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 0587 Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/C2BDF91086EE11EFB5A6B352C4F9AE02.roa Signing time: Thu 28 Nov 2024 23:13:30 +0000 ROA not before: Thu 28 Nov 2024 23:13:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152879 IP address blocks: 2401:bc40:a500::/40 maxlen: 48 2401:bc40:e305::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C Validity Not Before: Nov 28 23:13:30 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748f919-2c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6f:b8:51:b9:f2:cb:16:11:fe:a6:d3:78:63: a3:80:48:83:ec:77:57:64:51:b3:2b:7d:94:bb:5f: 8e:2f:17:18:ae:38:ad:64:06:ca:80:73:75:96:53: 31:30:c4:3a:a2:6b:c1:fb:69:a4:18:7e:ff:bf:c4: 11:54:ab:48:d3:18:2d:89:fa:c8:a9:ea:88:27:ed: 2d:64:b3:e6:75:72:60:05:ed:46:97:fc:2a:92:60: e3:ea:0e:b5:fd:da:2b:b2:c5:5d:2f:db:15:7a:98: d2:45:7e:7f:05:35:09:a9:de:7d:5f:c7:10:d2:3f: db:e5:9d:cf:cb:53:c5:64:e6:37:78:2c:e1:9c:99: 0c:79:8c:8b:a9:68:35:b5:c0:ac:5a:24:b6:33:f0: 01:fb:6e:3b:13:d1:72:2f:9f:b3:04:c9:26:0f:9f: 53:ed:2d:ae:ea:eb:3b:b7:aa:86:bf:06:3c:b1:86: 17:03:a3:b8:e3:87:4f:43:55:78:bd:70:4f:a5:25: b3:63:6d:dd:3e:99:c1:46:20:7b:4a:98:03:e1:6f: f6:da:46:1f:98:09:69:62:5f:cd:fc:32:c4:49:b5: f2:9f:ef:cf:6e:53:c8:17:a2:67:05:db:ab:23:67: 92:29:f8:06:6b:6c:8f:bc:c2:b8:63:38:05:a8:21: 4a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:94:E7:E9:AF:4E:C9:3C:3F:14:2C:BE:56:36:17:9D:33:CE:6A:A9 X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/C2BDF91086EE11EFB5A6B352C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bc40:a500::/40 2401:bc40:e305::/48 Signature Algorithm: sha256WithRSAEncryption 1d:43:7f:c7:bd:71:f9:0c:ca:dc:75:14:8a:4c:d9:8e:b1:d4: 80:b7:7a:cc:49:bc:52:c4:40:2c:e2:f8:f8:b2:67:8f:8a:f1: 17:98:bd:70:a4:8d:19:e5:67:61:7f:88:09:89:79:6b:17:1e: 72:f8:61:51:88:8d:42:d3:1a:a5:e5:a7:29:46:9c:ff:b9:86: fd:9e:75:08:dd:33:a4:90:8a:c0:81:7b:df:60:5e:34:8b:4b: 13:e6:28:8c:71:79:75:1f:5a:20:c3:e8:8b:b6:83:aa:b0:a4: fc:dc:7b:3a:9a:3f:a7:08:b3:e4:2a:4d:5d:dd:4d:df:b7:c4: c4:27:f4:54:30:ee:7d:17:04:8c:c9:d8:4c:3d:6b:97:da:a9: a8:9e:6a:5d:0a:c4:5d:14:de:68:0c:f3:61:b6:dd:aa:8d:d7: 2b:43:58:ae:a2:8a:25:6b:8b:05:d0:f5:a8:2a:6b:14:7f:dc: d5:f2:d3:8e:3b:d7:5a:9b:5d:dc:1d:d1:bc:58:46:f4:b8:34: 58:c0:bc:32:0b:a8:49:d3:d9:d4:c8:b5:7d:f2:46:55:57:3d: 12:8f:3a:94:71:92:f4:5c:ac:e6:35:4b:41:f2:fd:ee:77:fc: ca:81:59:28:98:cf:21:5d:c5:c6:e7:a5:6a:bd:dc:9a:f8:00: 45:e9:22:bb -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjQxMTI4MjMxMzMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZjkxOS0yYzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42+4UbnyyxYR/qbTeGOjgEiD7HdXZFGzK32Uu1+OLxcYrjitZAbKgHN1llMx MMQ6omvB+2mkGH7/v8QRVKtI0xgtifrIqeqIJ+0tZLPmdXJgBe1Gl/wqkmDj6g61 /dorssVdL9sVepjSRX5/BTUJqd59X8cQ0j/b5Z3Py1PFZOY3eCzhnJkMeYyLqWg1 tcCsWiS2M/AB+247E9FyL5+zBMkmD59T7S2u6us7t6qGvwY8sYYXA6O444dPQ1V4 vXBPpSWzY23dPpnBRiB7SpgD4W/22kYfmAlpYl/N/DLESbXyn+/PblPIF6JnBdur I2eSKfgGa2yPvMK4YzgFqCFK0QIDAQABo4ICoDCCApwwHQYDVR0OBBYEFAuU5+mv Tsk8PxQsvlY2F50zzmqpMB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvQzJCREY5MTA4 NkVFMTFFRkI1QTZCMzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBgAkAbxApQMHACQBvEDjBTANBgkqhkiG9w0BAQsFAAOCAQEA HUN/x71x+QzK3HUUikzZjrHUgLd6zEm8UsRALOL4+LJnj4rxF5i9cKSNGeVnYX+I CYl5axcecvhhUYiNQtMapeWnKUac/7mG/Z51CN0zpJCKwIF732BeNItLE+YojHF5 dR9aIMPoi7aDqrCk/Nx7Opo/pwiz5CpNXd1N37fExCf0VDDufRcEjMnYTD1rl9qp qJ5qXQrEXRTeaAzzYbbdqo3XK0NYrqKKJWuLBdD1qCprFH/c1fLTjjvXWptd3B3R vFhG9Lg0WMC8MguoSdPZ1Mi1ffJGVVc9Eo86lHGS9Fys5jVLQfL97nf8yoFZKJjP IV3Fxuelar3cmvgARekiuw== -----END CERTIFICATE-----Generated at Sun Feb 16 21:00:48 2025 by rpki-client