$ rpki-client -vvf rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/8A69BFBAC67011EFAE929D0DC4F9AE02.roa File: 8A69BFBAC67011EFAE929D0DC4F9AE02.roa (raw, json) Hash identifier: sznnb83JGGX6kxaOiYhmv1K3OAoUlfeqG+/vLr2w58w= Subject key identifier: AD:7C:34:F2:51:7C:E0:AC:F6:33:70:38:41:12:22:48:50:9D:EA:09 Certificate issuer: /CN=A912F281/serialNumber=C1B766DA29ED293DDFA5CCEB0AE429745444D615 Certificate serial: 02 Authority key identifier: C1:B7:66:DA:29:ED:29:3D:DF:A5:CC:EB:0A:E4:29:74:54:44:D6:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbdm2intKT3fpczrCuQpdFRE1hU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/8A69BFBAC67011EFAE929D0DC4F9AE02.roa Signing time: Mon 30 Dec 2024 05:40:13 +0000 ROA not before: Mon 30 Dec 2024 05:40:13 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135609 IP address blocks: 2401:e2a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/wbdm2intKT3fpczrCuQpdFRE1hU.crl rsync://rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/wbdm2intKT3fpczrCuQpdFRE1hU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbdm2intKT3fpczrCuQpdFRE1hU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F281 Validity Not Before: Dec 30 05:40:13 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6772323d-1e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:96:61:de:64:aa:64:fe:30:34:ec:e3:a3: 11:8b:f4:d6:11:99:f7:af:69:27:fd:bc:39:ad:f6: 55:de:63:bd:87:b3:8a:a6:49:c8:92:e2:45:1d:4e: 4d:eb:18:7f:44:a2:c3:66:86:80:f7:1d:87:e6:c2: dd:19:76:10:69:75:ef:8b:10:61:93:11:cf:3f:a3: 54:3f:fd:d4:ae:c2:34:f2:33:f2:96:cc:e3:9a:32: 94:52:65:1e:7a:76:84:69:eb:a0:61:5f:55:01:31: 73:18:1f:f7:27:59:34:1f:87:b0:ff:2d:4f:08:d8: 5a:8c:34:0e:9a:9b:17:60:82:19:da:f9:41:5e:70: 42:05:d0:7f:a4:2f:42:4f:39:21:6d:4d:11:cf:a6: a1:69:88:83:4f:51:15:56:91:07:11:52:cf:4a:a0: b0:70:97:64:f6:e3:38:8f:8d:fe:d8:2e:e9:6d:3b: 02:8f:b3:40:c1:ef:63:60:bd:9a:b8:37:c9:e1:56: 8c:ee:69:7b:20:64:d3:2b:7b:4d:96:84:08:6f:36: f7:fb:80:4d:f3:3e:09:49:66:e7:fa:90:42:6c:a9: e8:03:83:e2:98:48:df:16:90:3d:da:71:2a:a8:c1: 4c:07:79:8f:20:b7:bd:36:0d:2c:bd:a0:e9:6f:f1: 99:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7C:34:F2:51:7C:E0:AC:F6:33:70:38:41:12:22:48:50:9D:EA:09 X509v3 Authority Key Identifier: keyid:C1:B7:66:DA:29:ED:29:3D:DF:A5:CC:EB:0A:E4:29:74:54:44:D6:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/wbdm2intKT3fpczrCuQpdFRE1hU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wbdm2intKT3fpczrCuQpdFRE1hU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F281/1AF7DF6AC66E11EFA787F865C4F9AE02/8A69BFBAC67011EFAE929D0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e2a0::/32 Signature Algorithm: sha256WithRSAEncryption d5:81:f1:d6:de:2a:9c:6c:9d:1b:3c:17:6b:2d:1f:b0:3e:10: 38:77:4a:4f:33:be:4d:a1:db:2c:df:b7:7d:13:40:96:72:63: 55:3a:ea:1e:9b:9e:ab:08:d3:7b:9b:8d:38:64:33:9f:fd:97: 7e:9f:7b:89:dc:d9:4e:ff:52:4f:b2:3a:b7:7e:0d:f4:34:35: fc:ab:25:60:02:db:42:7b:06:73:60:39:6d:ad:e4:8e:90:0f: 9e:29:44:8e:35:57:73:22:33:32:79:a1:67:b1:05:cd:24:e5: bb:00:29:4f:55:6f:f6:05:b0:db:a2:cf:81:f9:be:30:f2:75: f9:56:89:a9:ad:a3:9e:62:7e:04:27:58:5d:96:87:c6:7d:4f: de:2d:da:02:a8:99:6f:25:14:4c:42:45:b0:3b:1f:c9:93:6e: 04:66:01:65:41:16:d4:4e:3a:9b:d1:76:f4:fb:b2:16:1a:0a: 37:9e:a3:73:61:6f:53:34:c0:0e:16:4c:aa:30:d5:0b:1b:78: aa:db:e1:25:d1:76:6c:ec:e4:3c:92:27:d0:5f:65:f0:3b:f4: bd:bf:22:ec:84:0e:7b:85:96:ab:c0:ce:25:ad:ee:ab:17:8d: 28:5d:8d:14:f0:6e:0b:7d:ec:37:4d:5c:41:9d:33:b8:bc:8f: 76:f8:7c:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjI4MTExMC8GA1UEBRMoQzFCNzY2REEyOUVEMjkzRERGQTVDQ0VCMEFFNDI5NzQ1 NDQ0RDYxNTAeFw0yNDEyMzAwNTQwMTNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzIzMjNkLTFlODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrYpZh3mSqZP4wNOzjoxGL9NYRmfevaSf9vDmt9lXeY72Hs4qmSciS4kUdTk3r GH9EosNmhoD3HYfmwt0ZdhBpde+LEGGTEc8/o1Q//dSuwjTyM/KWzOOaMpRSZR56 doRp66BhX1UBMXMYH/cnWTQfh7D/LU8I2FqMNA6amxdgghna+UFecEIF0H+kL0JP OSFtTRHPpqFpiINPURVWkQcRUs9KoLBwl2T24ziPjf7YLultOwKPs0DB72NgvZq4 N8nhVozuaXsgZNMre02WhAhvNvf7gE3zPglJZuf6kEJsqegDg+KYSN8WkD3acSqo wUwHeY8gt702DSy9oOlv8ZlHAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUrXw08lF8 4Kz2M3A4QRIiSFCd6gkwHwYDVR0jBBgwFoAUwbdm2intKT3fpczrCuQpdFRE1hUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGMjgxLzFBRjdERjZBQzY2 RTExRUZBNzg3Rjg2NUM0RjlBRTAyL3diZG0yaW50S1QzZnBjenJDdVFwZEZSRTFo VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2JkbTJpbnRLVDNmcGN6ckN1UXBkRlJFMWhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjI4MS8xQUY3REY2QUM2NkUxMUVGQTc4N0Y4NjVDNEY5QUUwMi84QTY5QkZCQUM2 NzAxMUVGQUU5MjlEMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB4qAwDQYJKoZIhvcNAQELBQADggEBANWB8dbeKpxsnRs8 F2stH7A+EDh3Sk8zvk2h2yzft30TQJZyY1U66h6bnqsI03ubjThkM5/9l36fe4nc 2U7/Uk+yOrd+DfQ0NfyrJWAC20J7BnNgOW2t5I6QD54pRI41V3MiMzJ5oWexBc0k 5bsAKU9Vb/YFsNuiz4H5vjDydflWiamto55ifgQnWF2Wh8Z9T94t2gKomW8lFExC RbA7H8mTbgRmAWVBFtROOpvRdvT7shYaCjeeo3Nhb1M0wA4WTKow1QsbeKrb4SXR dmzs5DySJ9BfZfA79L2/IuyEDnuFlqvAziWt7qsXjShdjRTwbgt97DdNXEGdM7i8 j3b4fMw= -----END CERTIFICATE-----Generated at Thu Feb 6 05:14:03 2025 by rpki-client