$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/CCE068D6CB2411EF93F63631C4F9AE02.roa File: CCE068D6CB2411EF93F63631C4F9AE02.roa (raw, json) Hash identifier: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U= Subject key identifier: 4A:21:8D:FE:4A:45:73:4E:97:B3:B4:29:25:12:DA:62:1D:E1:84:27 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 02 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/CCE068D6CB2411EF93F63631C4F9AE02.roa Signing time: Sun 05 Jan 2025 05:20:39 +0000 ROA not before: Sun 05 Jan 2025 05:20:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153478 IP address blocks: 2401:e5e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854 Validity Not Before: Jan 5 05:20:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677a16a7-7b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:82:95:d8:32:39:2a:fd:91:0d:9f:96:10: 5a:b9:f8:e9:77:63:a8:62:6d:cd:f3:7d:75:3b:08: c2:8b:8a:d1:dc:f8:e3:8d:e4:8a:0b:23:e7:22:3b: 54:d9:1b:40:a2:8f:9b:5a:bb:ff:06:8f:7a:df:7a: 44:cf:8f:5c:69:bb:18:00:d7:69:69:d4:20:ef:39: 8f:a3:4b:6c:dc:20:0d:02:72:e9:49:79:0b:ab:50: 7d:56:5d:62:26:02:78:77:3f:a3:52:fb:3b:ba:29: 30:70:35:71:2e:19:66:c3:ec:61:90:1a:64:e6:07: 8d:2f:87:5b:c0:6a:bd:8b:de:c1:77:93:2b:26:e9: 9c:9c:1e:58:c1:87:3c:fc:8a:21:a0:be:f3:fa:31: 04:64:b2:3b:e7:ee:7d:09:7e:a2:e6:14:da:23:2b: 4b:02:e3:45:23:09:ce:a5:c8:9d:88:d1:7b:0b:ed: e2:96:b2:dd:34:36:86:09:da:3d:cf:d3:1c:f8:57: 0b:4e:29:25:f9:92:a4:a8:10:ed:f3:d7:f4:5f:93: bf:d9:6e:21:12:3b:1a:42:c5:b0:e9:97:a7:9d:2c: eb:c8:81:a9:80:a7:0f:24:3c:0e:97:ed:bd:bb:df: f6:38:2e:ec:b3:b5:7c:4b:4b:22:d6:97:34:63:67: d2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:21:8D:FE:4A:45:73:4E:97:B3:B4:29:25:12:DA:62:1D:E1:84:27 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/CCE068D6CB2411EF93F63631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e5e0::/32 Signature Algorithm: sha256WithRSAEncryption 37:b0:21:cd:5b:b1:fb:b6:e1:f8:33:9c:2e:18:7c:e6:e1:db: fd:4d:15:6a:90:ba:a4:6b:50:77:7e:9d:06:07:2e:b3:b3:73: db:ca:8a:88:a8:2c:cc:f6:46:fe:7c:be:2f:f9:e9:20:4c:0f: 78:20:6d:79:b8:b4:fe:e1:73:26:6d:85:c7:e1:cb:28:21:7e: 9b:13:6c:c5:e3:83:4c:ed:9a:3a:b4:3a:b1:86:2d:f4:1b:47: d8:d7:0e:01:ae:0c:45:54:f6:23:4f:53:18:11:a7:ca:28:a3: c4:66:95:79:3e:a2:0c:b5:ed:f5:1a:3f:bd:69:d7:91:35:6e: 37:97:8d:14:d4:f5:2c:a8:6b:16:d3:46:b5:02:fd:58:3a:21: 32:5c:c5:c2:69:13:7d:87:a2:c1:fe:3f:36:79:48:ba:ea:c0: a4:5b:18:0d:6e:1f:44:5d:d4:dc:10:7c:cb:1f:5a:56:03:8b: 74:7a:2b:a2:51:a3:ae:3f:f3:ec:63:46:83:59:36:ea:47:4f: ad:75:31:1f:79:54:68:78:7c:48:47:9a:e2:23:41:f4:f9:cc: 72:7b:d6:1f:ab:9a:0b:fe:ec:7a:6c:08:07:d2:3b:0c:4d:5b: 86:7e:8d:39:c8:51:07:eb:3c:b6:b9:72:71:46:6a:e2:bb:d2: 62:9a:17:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTAxMDUwNTIwMzlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2ExNmE3LTdiNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6NIKV2DI5Kv2RDZ+WEFq5+Ol3Y6hibc3zfXU7CMKLitHc+OON5IoLI+ciO1TZ G0Cij5tau/8Gj3rfekTPj1xpuxgA12lp1CDvOY+jS2zcIA0CculJeQurUH1WXWIm Anh3P6NS+zu6KTBwNXEuGWbD7GGQGmTmB40vh1vAar2L3sF3kysm6ZycHljBhzz8 iiGgvvP6MQRksjvn7n0JfqLmFNojK0sC40UjCc6lyJ2I0XsL7eKWst00NoYJ2j3P 0xz4VwtOKSX5kqSoEO3z1/Rfk7/ZbiESOxpCxbDpl6edLOvIgamApw8kPA6X7b27 3/Y4LuyztXxLSyLWlzRjZ9ItAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUSiGN/kpF c06Xs7QpJRLaYh3hhCcwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njg1NC9ERDkwQzNDMENCMjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9DQ0UwNjhENkNC MjQxMUVGOTNGNjM2MzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB5eAwDQYJKoZIhvcNAQELBQADggEBADewIc1bsfu24fgz nC4YfObh2/1NFWqQuqRrUHd+nQYHLrOzc9vKioioLMz2Rv58vi/56SBMD3ggbXm4 tP7hcyZthcfhyyghfpsTbMXjg0ztmjq0OrGGLfQbR9jXDgGuDEVU9iNPUxgRp8oo o8RmlXk+ogy17fUaP71p15E1bjeXjRTU9SyoaxbTRrUC/Vg6ITJcxcJpE32HosH+ PzZ5SLrqwKRbGA1uH0Rd1NwQfMsfWlYDi3R6K6JRo64/8+xjRoNZNupHT611MR95 VGh4fEhHmuIjQfT5zHJ71h+rmgv+7HpsCAfSOwxNW4Z+jTnIUQfrPLa5cnFGauK7 0mKaF4k= -----END CERTIFICATE-----Generated at Thu Feb 6 03:52:49 2025 by rpki-client