$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa File: 8BF4322E978211EF8ED65F7CC4F9AE02.roa (raw, json) Hash identifier: 69vf8i2AyBWTvcreeXZcAmXyRzf/6fUCTiPRkTLNVcA= Subject key identifier: B7:8B:5A:97:85:A2:BA:25:87:C2:A5:64:11:D4:81:9B:D5:5D:01:7E Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0EC1 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa Signing time: Thu 31 Oct 2024 12:20:42 +0000 ROA not before: Thu 31 Oct 2024 12:20:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137256 IP address blocks: 2402:3180::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3777 (0xec1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF Validity Not Before: Oct 31 12:20:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6723761a-5fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fa:e7:df:07:fe:24:df:e9:53:b2:37:0b:ee: 0e:a1:1d:2e:34:43:16:e2:4f:34:44:3b:9b:6b:47: 6d:02:41:ee:e1:1f:f8:55:8a:74:62:66:3e:21:e5: ad:de:69:c2:7f:38:1c:e5:ec:8a:45:a8:df:e3:a9: af:ca:72:9a:34:34:31:88:77:06:ee:1c:c5:7a:00: 25:ff:c0:48:fd:4a:2c:bc:6b:98:67:db:34:28:02: 03:3c:e7:38:69:29:60:73:a8:22:84:41:c5:99:16: 7f:d2:58:f6:29:d1:bd:55:c5:d5:59:cf:e9:f8:b4: 76:bc:60:f3:b4:0b:57:1e:7a:cc:5a:f0:8d:73:ec: 2c:f5:76:3e:67:25:17:c9:05:4e:b9:77:5f:50:f8: 9d:62:9c:61:d1:0b:20:b8:f2:b7:95:f0:65:64:68: e1:54:20:10:39:d1:0c:06:aa:04:f7:84:1e:54:fe: da:55:c1:8b:9e:e6:39:8e:92:50:aa:4b:5e:79:b3: 85:9f:6e:e8:c6:1a:e9:c5:68:7d:47:b5:af:2c:de: b2:36:0f:7f:46:ff:f7:46:8d:cf:b6:27:c4:a6:24: f4:83:3c:61:87:7a:78:21:fc:24:3e:a7:b3:32:8c: d3:99:e2:80:28:20:17:c2:1c:47:13:8d:29:17:d8: d5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8B:5A:97:85:A2:BA:25:87:C2:A5:64:11:D4:81:9B:D5:5D:01:7E X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/8BF4322E978211EF8ED65F7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3180::/45 Signature Algorithm: sha256WithRSAEncryption 2b:e8:07:24:8e:41:bb:af:ac:e5:b0:79:06:2b:d5:c3:51:4e: a0:e6:38:a0:84:a0:7f:5f:8c:ea:88:20:9f:4b:4e:e1:78:3b: 92:d8:0b:20:ad:0a:d1:cc:e1:4e:75:7b:d0:3c:05:04:23:b9: 38:c3:37:1b:78:e0:46:84:86:d8:12:5a:d6:c0:15:e3:f0:ca: 9a:65:47:8e:bf:c4:ad:c7:69:30:2d:a3:67:f0:f5:49:aa:66: 44:c3:c6:48:b0:d6:c5:59:76:5f:0f:b5:98:e1:95:d4:1f:7a: 8b:9e:29:a4:e3:7a:ea:eb:27:1b:71:50:63:40:17:ee:61:2b: 7d:dd:81:42:51:e2:b9:cb:e7:54:d0:5e:ca:b4:0b:76:58:dc: 0b:2c:ee:2d:15:87:a4:ac:98:b9:dd:3d:88:ab:13:0f:a4:40: 20:6d:61:79:43:6b:d1:31:a5:cc:0c:71:2f:54:a0:da:ba:49: 46:ff:c7:b7:ea:aa:83:c7:85:1d:f2:04:e1:03:a3:52:a7:17: 66:27:7f:f7:f4:9d:af:cf:69:4d:f8:71:e5:e7:af:f3:83:06: 53:41:2e:ed:41:a7:ed:38:15:bb:4d:c3:5e:a8:cc:3d:b2:34: 91:38:cc:6d:1b:e2:ac:fb:c0:bf:f5:66:5f:9a:d7:54:10:f5: 25:4b:82:11 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQxMDMxMTIyMDQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzNzYxYS01ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/rn3wf+JN/pU7I3C+4OoR0uNEMW4k80RDuba0dtAkHu4R/4VYp0YmY+IeWt 3mnCfzgc5eyKRajf46mvynKaNDQxiHcG7hzFegAl/8BI/UosvGuYZ9s0KAIDPOc4 aSlgc6gihEHFmRZ/0lj2KdG9VcXVWc/p+LR2vGDztAtXHnrMWvCNc+ws9XY+ZyUX yQVOuXdfUPidYpxh0QsguPK3lfBlZGjhVCAQOdEMBqoE94QeVP7aVcGLnuY5jpJQ qkteebOFn27oxhrpxWh9R7WvLN6yNg9/Rv/3Ro3PtifEpiT0gzxhh3p4IfwkPqez MozTmeKAKCAXwhxHE40pF9jVVQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLeLWpeF orolh8KlZBHUgZvVXQF+MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvOEJGNDMyMkU5 NzgyMTFFRjhFRDY1RjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwMkAjGAAAAwDQYJKoZIhvcNAQELBQADggEBACvoBySOQbuv rOWweQYr1cNRTqDmOKCEoH9fjOqIIJ9LTuF4O5LYCyCtCtHM4U51e9A8BQQjuTjD Nxt44EaEhtgSWtbAFePwypplR46/xK3HaTAto2fw9UmqZkTDxkiw1sVZdl8PtZjh ldQfeoueKaTjeurrJxtxUGNAF+5hK33dgUJR4rnL51TQXsq0C3ZY3Ass7i0Vh6Ss mLndPYirEw+kQCBtYXlDa9ExpcwMcS9UoNq6SUb/x7fqqoPHhR3yBOEDo1KnF2Yn f/f0na/PaU34ceXnr/ODBlNBLu1Bp+04FbtNw16ozD2yNJE4zG0b4qz7wL/1Zl+a 11QQ9SVLghE= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:42 2025 by rpki-client