$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/A0B32E60CB4211EF80440147C4F9AE02.roa File: A0B32E60CB4211EF80440147C4F9AE02.roa (raw, json) Hash identifier: JL7M+cgdK8FBVwPaXyOqt4o/Eo1xHoyPJEMVHoLhZlE= Subject key identifier: C2:A8:EC:42:78:4A:E1:B8:2B:18:45:85:F7:1C:F8:93:46:B1:32:30 Certificate issuer: /CN=A91476E2/serialNumber=37DC61682944F0F3174FA0855B9ACE473FDE9D26 Certificate serial: 02 Authority key identifier: 37:DC:61:68:29:44:F0:F3:17:4F:A0:85:5B:9A:CE:47:3F:DE:9D:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9xhaClE8PMXT6CFW5rORz_enSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/A0B32E60CB4211EF80440147C4F9AE02.roa Signing time: Sun 05 Jan 2025 08:54:10 +0000 ROA not before: Sun 05 Jan 2025 08:54:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140937 IP address blocks: 2001:df4:6140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/N9xhaClE8PMXT6CFW5rORz_enSY.crl rsync://rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/N9xhaClE8PMXT6CFW5rORz_enSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9xhaClE8PMXT6CFW5rORz_enSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2 Validity Not Before: Jan 5 08:54:10 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=677a48b1-28f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1d:b2:84:bf:ef:52:a4:b6:f5:66:3d:7e:21: 86:16:87:a2:d0:d3:cc:0a:74:7e:97:f7:13:03:3d: 87:cf:0b:78:6c:7e:b4:7d:68:5d:10:08:c5:c1:57: 8e:09:7e:41:6c:98:9b:aa:08:e7:65:b4:a3:8a:93: d5:2f:1f:31:c4:be:b2:26:7e:99:26:5f:fe:59:0c: 64:9c:d7:02:4a:7d:2e:63:67:c2:7f:f1:15:a4:5e: da:a6:ab:e9:da:32:17:8e:70:a6:66:7a:a1:37:cf: 22:1f:99:56:3d:bd:4f:49:95:fa:3d:41:55:92:2a: 9c:ea:ba:f3:4d:66:5c:07:59:aa:fe:71:67:98:ad: 67:38:42:8f:f8:7c:3a:5d:4a:bc:02:e7:7c:40:2a: 34:79:61:02:d9:17:ef:9e:f0:f3:6e:d3:6c:ef:34: ac:d2:eb:b5:45:8d:ff:f2:9b:2c:8e:ab:46:e6:32: ba:59:d1:54:d9:7e:55:f0:c3:0e:ec:2a:07:35:05: 59:5e:03:7d:8f:af:6d:c6:e0:bc:81:c1:09:f9:3a: 83:9b:b7:92:46:8e:65:2f:97:9e:04:e6:dc:d9:1e: f6:ec:60:3d:69:cc:fc:48:8e:62:0e:8c:63:26:7c: e9:8e:f4:a3:3d:c1:46:93:5b:e9:5b:92:f7:00:09: 4d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A8:EC:42:78:4A:E1:B8:2B:18:45:85:F7:1C:F8:93:46:B1:32:30 X509v3 Authority Key Identifier: keyid:37:DC:61:68:29:44:F0:F3:17:4F:A0:85:5B:9A:CE:47:3F:DE:9D:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/N9xhaClE8PMXT6CFW5rORz_enSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9xhaClE8PMXT6CFW5rORz_enSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/4366EBB6CB3D11EF8703F75AC4F9AE02/A0B32E60CB4211EF80440147C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:6140::/48 Signature Algorithm: sha256WithRSAEncryption 54:a5:4b:d5:60:24:8e:ed:9f:46:90:64:ae:b9:f9:71:ec:66: c0:f5:bc:20:92:8b:99:80:63:0b:56:83:58:e7:56:40:df:a4: 5b:9f:f1:7d:32:9b:7b:70:74:91:4c:52:cc:c5:75:68:d4:9c: f7:aa:68:64:b5:fe:56:5c:c4:24:77:45:05:64:a0:c8:0b:ce: 69:52:05:9b:5f:39:41:90:e3:7d:c5:2f:f3:7e:81:e5:f3:1e: 28:2e:0d:ff:be:0d:06:d2:8e:d7:87:5b:ac:71:c3:ef:36:b2: f0:12:ed:95:3d:4a:ef:b9:5b:e6:b4:a1:f0:89:48:8d:d0:c0: 49:c1:7d:fc:22:10:bf:27:66:cf:ff:71:90:14:a1:cb:50:cb: 8d:83:13:8b:f0:ed:88:ba:de:d1:d9:58:77:12:8b:db:ca:3d: 30:ad:0a:80:6e:1f:ae:04:b8:ef:39:2d:cb:7e:5c:3e:2c:cc: e1:e2:78:d4:1c:c6:c1:3b:33:c9:6a:1d:1f:15:ba:db:3f:2c: f2:ae:c4:6b:26:eb:cc:dd:73:d4:11:7a:79:6b:66:39:d5:03: 4b:6b:39:43:37:0d:65:e7:b8:23:ea:39:42:b3:94:a9:f9:53: ea:a2:b3:3d:fc:1b:17:c7:5c:83:02:b8:dc:d9:27:5d:95:6a: 81:df:8e:29 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZFMjExMC8GA1UEBRMoMzdEQzYxNjgyOTQ0RjBGMzE3NEZBMDg1NUI5QUNFNDcz RkRFOUQyNjAeFw0yNTAxMDUwODU0MTBaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2E0OGIxLTI4ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzHbKEv+9SpLb1Zj1+IYYWh6LQ08wKdH6X9xMDPYfPC3hsfrR9aF0QCMXBV44J fkFsmJuqCOdltKOKk9UvHzHEvrImfpkmX/5ZDGSc1wJKfS5jZ8J/8RWkXtqmq+na MheOcKZmeqE3zyIfmVY9vU9Jlfo9QVWSKpzquvNNZlwHWar+cWeYrWc4Qo/4fDpd SrwC53xAKjR5YQLZF++e8PNu02zvNKzS67VFjf/ymyyOq0bmMrpZ0VTZflXwww7s Kgc1BVleA32Pr23G4LyBwQn5OoObt5JGjmUvl54E5tzZHvbsYD1pzPxIjmIOjGMm fOmO9KM9wUaTW+lbkvcACU0/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUwqjsQnhK 4bgrGEWF9xz4k0axMjAwHwYDVR0jBBgwFoAUN9xhaClE8PMXT6CFW5rORz/enSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkUyLzQzNjZFQkI2Q0Iz RDExRUY4NzAzRjc1QUM0RjlBRTAyL045eGhhQ2xFOFBNWFQ2Q0ZXNXJPUnpfZW5T WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjl4aGFDbEU4UE1YVDZDRlc1ck9Sel9lblNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi80MzY2RUJCNkNCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9BMEIzMkU2MENC NDIxMUVGODA0NDAxNDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfRhQDANBgkqhkiG9w0BAQsFAAOCAQEAVKVL1WAkju2f RpBkrrn5cexmwPW8IJKLmYBjC1aDWOdWQN+kW5/xfTKbe3B0kUxSzMV1aNSc96po ZLX+VlzEJHdFBWSgyAvOaVIFm185QZDjfcUv836B5fMeKC4N/74NBtKO14dbrHHD 7zay8BLtlT1K77lb5rSh8IlIjdDAScF9/CIQvydmz/9xkBShy1DLjYMTi/DtiLre 0dlYdxKL28o9MK0KgG4frgS47zkty35cPizM4eJ41BzGwTszyWodHxW62z8s8q7E aybrzN1z1BF6eWtmOdUDS2s5QzcNZee4I+o5QrOUqflT6qKzPfwbF8dcgwK43Nkn XZVqgd+OKQ== -----END CERTIFICATE-----Generated at Thu Feb 6 04:50:03 2025 by rpki-client