$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/E310D7E2C58B11EFBA44DE34C4F9AE02.roa File: E310D7E2C58B11EFBA44DE34C4F9AE02.roa (raw, json) Hash identifier: KRcguCIL3wMi3PwztLJpTVhTUzHmH2MqWyforuoA8o0= Subject key identifier: 74:AF:95:6E:D6:74:FD:DC:64:FC:D7:A2:3F:75:F0:2A:80:A6:EC:7C Certificate issuer: /CN=A912C7DC/serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Certificate serial: 02 Authority key identifier: 99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/E310D7E2C58B11EFBA44DE34C4F9AE02.roa Signing time: Sun 29 Dec 2024 02:23:27 +0000 ROA not before: Sun 29 Dec 2024 02:23:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137943 IP address blocks: 2001:df4:d2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC Validity Not Before: Dec 29 02:23:27 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6770b29f-d720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:03:39:ac:d3:4f:3c:c3:28:c6:ae:e1:cd:2d: 32:97:7f:27:b9:83:e9:52:ac:51:63:5c:62:af:4a: ed:07:2e:e4:ad:1c:4c:26:1d:2a:b1:1f:9a:2c:5e: d7:00:3c:be:91:1d:47:1a:a3:d5:b1:22:9b:2f:28: 6a:a6:fe:b0:8f:dc:c9:6f:1e:b7:5b:7c:5d:31:e6: f5:de:a2:9b:eb:5f:cb:38:fa:26:dd:ee:f0:ba:0a: 63:2a:5b:dd:4e:4d:98:d2:ff:4f:ed:d6:7f:ce:0e: 01:77:8b:30:f5:17:2b:cf:c8:5e:a4:18:96:5b:c2: ec:46:48:70:20:10:ab:65:57:8f:76:2f:c0:8a:9b: e9:7e:56:b0:ba:39:6e:89:af:4d:af:57:46:5c:8c: 4d:9e:f6:78:e8:34:d8:09:c0:68:f4:42:e0:ab:0e: d9:c2:03:1e:7c:6b:fd:16:21:e6:80:86:4a:a8:d1: 5c:96:33:52:09:99:46:0d:88:db:76:25:cd:f8:b1: 64:04:ed:e4:58:c0:e6:21:97:61:f9:e0:b3:29:bb: 46:ea:8e:1f:30:be:fd:0b:fd:6d:8e:bc:10:57:9b: 12:20:f8:f2:01:15:31:20:f4:b2:49:5f:b6:35:fe: 5c:d2:c7:5f:9e:ac:85:7c:79:4a:6a:2d:7e:c3:9c: 13:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AF:95:6E:D6:74:FD:DC:64:FC:D7:A2:3F:75:F0:2A:80:A6:EC:7C X509v3 Authority Key Identifier: keyid:99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/E310D7E2C58B11EFBA44DE34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d2c0::/48 Signature Algorithm: sha256WithRSAEncryption 88:ef:21:e4:43:84:c6:bc:12:b2:71:1c:2d:fc:77:b1:b0:35: 35:a5:34:a7:28:7e:9e:bd:98:40:34:28:96:15:55:e1:7e:bd: fc:41:7b:81:c1:d4:d3:ac:34:f6:c9:dd:54:6c:b0:56:89:5b: cf:f0:33:e2:1c:95:ee:b2:8d:64:ba:c3:f9:eb:21:1c:01:1f: 26:45:9e:00:da:54:5b:1a:fc:8f:dd:97:28:06:d6:95:ac:9c: 1a:a6:f5:58:bd:6a:24:ba:ae:e7:b2:76:58:21:77:6a:3f:40: cc:5f:ce:37:24:94:93:89:76:9b:6c:68:c8:e2:17:15:ab:bf: 94:92:e6:a2:09:45:b6:6f:30:66:92:fa:ca:e2:ab:94:2c:d6: aa:24:77:60:39:98:72:49:1f:43:39:7b:44:5c:dd:02:6a:c7: ab:e2:cb:a1:1a:39:fa:9e:2c:b1:05:39:f3:6f:5e:9c:00:c4: 7a:4b:a8:a4:db:bc:fd:75:15:28:18:a6:a5:f8:ed:6d:4f:b2: 77:c1:ec:e8:c6:10:59:3e:9a:0e:92:2a:9b:ac:2e:e6:1b:76: 4a:af:87:65:1f:3c:12:03:7c:85:ff:a4:63:e1:8a:3c:2f:ac: 54:7c:44:c1:03:59:f0:ce:b4:e1:f1:da:42:f8:db:78:8f:b9: 0f:c3:b9:ec -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoOTlCNzBCRjIwMjVFRERDREY5MkE0N0QwNENCNzU2QUNC MDczREM0NTAeFw0yNDEyMjkwMjIzMjdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzBiMjlmLWQ3MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLAzms0088wyjGruHNLTKXfye5g+lSrFFjXGKvSu0HLuStHEwmHSqxH5osXtcA PL6RHUcao9WxIpsvKGqm/rCP3MlvHrdbfF0x5vXeopvrX8s4+ibd7vC6CmMqW91O TZjS/0/t1n/ODgF3izD1FyvPyF6kGJZbwuxGSHAgEKtlV492L8CKm+l+VrC6OW6J r02vV0ZcjE2e9njoNNgJwGj0QuCrDtnCAx58a/0WIeaAhkqo0VyWM1IJmUYNiNt2 Jc34sWQE7eRYwOYhl2H54LMpu0bqjh8wvv0L/W2OvBBXmxIg+PIBFTEg9LJJX7Y1 /lzSx1+erIV8eUpqLX7DnBOnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUdK+VbtZ0 /dxk/NeiP3XwKoCm7HwwHwYDVR0jBBgwFoAUmbcL8gJe3c35KkfQTLdWrLBz3EUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzZERUZEQjcwQzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2MzNUtrZlFUTGRXckxCejNF VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWJjTDhnSmUzYzM1S2tmUVRMZFdyTEJ6M0VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzdEQy82REVGREI3MEM1OEIxMUVGQjg3RTVGMzNDNEY5QUUwMi9FMzEwRDdFMkM1 OEIxMUVGQkE0NERFMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTSwDANBgkqhkiG9w0BAQsFAAOCAQEAiO8h5EOExrwS snEcLfx3sbA1NaU0pyh+nr2YQDQolhVV4X69/EF7gcHU06w09sndVGywVolbz/Az 4hyV7rKNZLrD+eshHAEfJkWeANpUWxr8j92XKAbWlaycGqb1WL1qJLqu57J2WCF3 aj9AzF/ONySUk4l2m2xoyOIXFau/lJLmoglFtm8wZpL6yuKrlCzWqiR3YDmYckkf Qzl7RFzdAmrHq+LLoRo5+p4ssQU5829enADEekuopNu8/XUVKBimpfjtbU+yd8Hs 6MYQWT6aDpIqm6wu5ht2Sq+HZR88EgN8hf+kY+GKPC+sVHxEwQNZ8M604fHaQvjb eI+5D8O57A== -----END CERTIFICATE-----Generated at Thu Feb 6 04:08:57 2025 by rpki-client