$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/02F0D9DED0BA11EFA8B5A526C4F9AE02.roa File: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (raw, json) Hash identifier: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA= Subject key identifier: A6:C7:C1:62:44:6B:D2:30:04:AC:F4:71:94:0E:C9:A8:49:2C:6F:F8 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 02 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/02F0D9DED0BA11EFA8B5A526C4F9AE02.roa Signing time: Sun 12 Jan 2025 07:51:20 +0000 ROA not before: Sun 12 Jan 2025 07:51:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140975 IP address blocks: 2001:df4:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3 Validity Not Before: Jan 12 07:51:20 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67837478-fc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c2:c0:47:af:2b:91:11:37:72:8b:41:9d:8d: 27:03:bb:52:18:d0:5a:cc:3c:2b:fd:45:33:c0:09: 97:16:b9:67:73:6a:94:51:d3:e3:c3:e9:92:a7:18: e3:14:57:9d:f6:3a:6e:e8:8a:bb:bf:93:12:9c:a8: c2:61:ad:c2:37:af:30:49:41:a1:6d:6d:ac:14:8e: 9f:5d:e2:a7:f4:3d:29:91:f0:76:68:f3:64:e0:5f: fc:b8:55:73:75:6e:78:e5:fd:29:a0:29:8c:56:1b: ab:c0:8a:64:66:9d:24:d8:87:c6:72:4f:67:71:31: 9f:33:ac:58:a0:d4:fb:96:7e:78:53:9e:e9:7c:d8: da:1b:cc:9c:63:fe:db:fb:f7:88:2d:d1:ec:5f:8a: 91:2d:ec:a7:dc:13:3e:14:90:56:5c:14:36:b1:57: dd:58:52:a1:8b:de:80:0a:ff:06:a9:cf:69:ec:e0: 85:e7:9b:50:51:4a:40:13:d5:22:9f:71:a3:2d:f0: 59:e9:10:37:76:77:de:cd:cb:4c:9b:df:6d:6a:7e: f3:f9:a7:8a:61:81:b4:9f:ea:e6:8f:ef:b4:b0:70: 4c:90:c7:e8:61:f5:44:d5:d4:9e:ef:73:9d:79:d1: f8:81:c5:53:94:dc:3d:4b:4d:bc:7b:a6:b4:2f:4e: ec:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C7:C1:62:44:6B:D2:30:04:AC:F4:71:94:0E:C9:A8:49:2C:6F:F8 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/02F0D9DED0BA11EFA8B5A526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 4d:39:a6:4e:26:a8:28:7e:94:d7:17:34:33:7c:07:4d:eb:2d: a7:b3:da:05:15:1c:74:b0:01:90:b9:b2:e3:13:aa:a3:d3:14: 8f:96:9d:8a:dc:79:73:17:82:b2:9d:24:4b:72:59:91:66:3c: 5b:22:62:ed:12:90:52:87:a8:83:fc:36:c3:e0:0b:ac:7b:76: fd:da:29:99:16:1b:8f:87:e4:5d:52:80:05:bf:8b:33:ce:be: c2:3a:d6:55:50:98:3b:f8:e8:17:c6:a8:6c:d0:73:b4:59:b4: f9:12:69:04:f1:8d:6f:a8:91:48:0c:fd:32:fe:9a:bf:06:31: 56:44:03:a1:fd:da:cc:c6:ba:da:0c:49:cd:64:82:d9:dd:f8: aa:ac:8d:87:73:67:bf:23:e4:9d:c1:29:2c:f7:c6:44:49:ad: 34:07:f7:e8:b5:fc:96:01:4a:46:c5:48:c3:68:19:fd:6a:f3: 4b:7d:3d:2e:79:fe:a9:2b:06:08:2d:f2:d0:27:0b:2e:72:3d: f1:a3:4e:d9:36:b9:2c:9c:9a:a7:c2:85:92:3d:1c:39:ea:df: 00:00:54:e5:e1:8f:91:98:50:df:8d:90:c0:ad:3f:36:94:4e: 97:40:a1:aa:3c:8b:b0:69:41:8e:db:83:a1:7c:21:3e:6b:c8: b2:81:73:de -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTAxMTIwNzUxMjBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODM3NDc4LWZjOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDewsBHryuRETdyi0GdjScDu1IY0FrMPCv9RTPACZcWuWdzapRR0+PD6ZKnGOMU V532Om7oiru/kxKcqMJhrcI3rzBJQaFtbawUjp9d4qf0PSmR8HZo82TgX/y4VXN1 bnjl/SmgKYxWG6vAimRmnSTYh8ZyT2dxMZ8zrFig1PuWfnhTnul82NobzJxj/tv7 94gt0exfipEt7KfcEz4UkFZcFDaxV91YUqGL3oAK/wapz2ns4IXnm1BRSkAT1SKf caMt8FnpEDd2d97Ny0yb321qfvP5p4phgbSf6uaP77SwcEyQx+hh9UTV1J7vc515 0fiBxVOU3D1LTbx7prQvTuw5AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUpsfBYkRr 0jAErPRxlA7JqEksb/gwHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGMy82MEUyMDdCQ0QwQjkxMUVGQTA4NDg4MjVDNEY5QUUwMi8wMkYwRDlERUQw QkExMUVGQThCNUE1MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfSlwDANBgkqhkiG9w0BAQsFAAOCAQEATTmmTiaoKH6U 1xc0M3wHTestp7PaBRUcdLABkLmy4xOqo9MUj5aditx5cxeCsp0kS3JZkWY8WyJi 7RKQUoeog/w2w+ALrHt2/dopmRYbj4fkXVKABb+LM86+wjrWVVCYO/joF8aobNBz tFm0+RJpBPGNb6iRSAz9Mv6avwYxVkQDof3azMa62gxJzWSC2d34qqyNh3NnvyPk ncEpLPfGREmtNAf36LX8lgFKRsVIw2gZ/WrzS309Lnn+qSsGCC3y0CcLLnI98aNO 2Ta5LJyap8KFkj0cOerfAABU5eGPkZhQ342QwK0/NpROl0ChqjyLsGlBjtuDoXwh PmvIsoFz3g== -----END CERTIFICATE-----Generated at Thu Feb 6 03:39:34 2025 by rpki-client