$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa File: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (raw, json) Hash identifier: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8= Subject key identifier: FD:F8:10:5B:EF:4D:36:BF:07:AD:E9:8D:A9:BA:09:62:F9:D6:6D:A1 Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: 15 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa Signing time: Fri 17 Jan 2025 02:38:25 +0000 ROA not before: Fri 17 Jan 2025 02:38:25 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133458 IP address blocks: 2401:e260::/40 maxlen: 48 2401:e260:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909 Validity Not Before: Jan 17 02:38:25 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6789c2a1-0552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:9c:7e:5a:ad:51:dd:9b:5b:a7:9c:85:cf: 3a:b0:3b:c3:03:70:ed:55:55:13:7c:99:d7:7b:08: 19:d1:41:25:cd:35:3a:aa:51:b2:64:0a:3d:b1:1f: 96:95:58:95:a1:6c:f0:f8:ca:aa:7b:72:78:cf:8c: 9c:50:ac:0c:84:65:77:a3:ca:21:43:1f:ef:f3:22: 3f:40:cc:13:3f:bd:74:97:54:57:f9:ba:bb:aa:fc: 69:6e:2d:bd:90:7f:06:9e:48:8b:34:44:ef:f8:22: 2d:79:e2:58:58:29:a9:d6:a1:36:f7:e3:3b:12:50: 79:8e:7d:fd:9b:8f:f1:34:82:40:03:5f:94:2e:98: b0:f1:45:77:6d:c1:15:0e:fa:c3:a8:bf:4e:b8:48: 6f:e8:d4:bd:72:6f:51:7a:96:3e:d0:f5:52:21:6a: 66:d8:15:87:44:b7:f6:63:86:73:7b:91:30:c4:fc: b1:86:28:12:23:d5:17:bd:e9:c7:c2:f9:07:80:eb: 29:6c:a2:a3:35:5c:37:1f:a6:73:b6:3e:22:be:ef: 70:ff:16:4c:ff:98:6d:d4:17:25:c1:a6:f8:03:37: b8:0f:3f:66:da:51:3e:db:44:7f:1c:90:87:d3:79: 6f:ce:c4:93:d2:13:7b:8c:27:c6:12:22:b9:c2:71: 2c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F8:10:5B:EF:4D:36:BF:07:AD:E9:8D:A9:BA:09:62:F9:D6:6D:A1 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/3A0E0B1CD47511EF91EA0832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e260::/39 Signature Algorithm: sha256WithRSAEncryption 1c:c6:bd:f8:32:f5:9f:4c:9d:38:9f:cd:5f:80:f6:b0:ad:41: 1e:6a:98:37:8b:c7:9e:4a:e5:e4:72:9b:c1:c1:20:bd:63:0d: 22:b7:8e:3d:e9:5c:52:22:7e:84:d4:57:3b:f2:b7:17:3f:78: 7b:1f:bf:7a:9e:be:b0:08:ac:40:5c:d4:0c:a5:d1:11:3e:3c: a3:36:ff:52:7f:79:9c:23:e3:62:da:c6:9c:e2:c2:7f:b3:fb: 6c:a8:11:44:49:a1:65:84:ce:22:c8:a0:6d:e0:44:36:84:26: 8e:83:67:7b:da:ac:9c:14:c6:cc:ce:f3:2a:f7:58:58:8c:4d: 70:d7:65:cd:58:50:1f:ba:35:1f:4c:48:8b:48:46:a4:f0:33: 89:85:d2:34:f3:51:a2:ee:61:2c:02:9e:15:72:ba:e3:26:b7: 8e:09:fe:0c:ce:56:81:72:2a:40:38:e5:75:88:09:49:93:1d: d8:80:e8:2d:43:64:e1:cc:10:27:e4:5a:3b:07:50:b4:64:98: 24:a2:fe:94:86:42:ef:e2:63:48:a8:db:43:90:0d:1e:cf:14: 5a:df:6c:f8:b3:7f:c8:a4:b0:0a:96:f9:0f:0d:aa:3d:04:48: 09:73:68:e7:90:84:85:f4:54:da:cc:ea:91:1a:bb:46:65:a3: ed:ca:ba:fc -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzkwOTExMC8GA1UEBRMoQUEwQjc4MkRCOTkzMkUyMkZEREVGMEMzRjc1NTk2RUUw OTQ1RTEyRDAeFw0yNTAxMTcwMjM4MjVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODljMmExLTA1NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKapx+Wq1R3Ztbp5yFzzqwO8MDcO1VVRN8mdd7CBnRQSXNNTqqUbJkCj2xH5aV WJWhbPD4yqp7cnjPjJxQrAyEZXejyiFDH+/zIj9AzBM/vXSXVFf5uruq/GluLb2Q fwaeSIs0RO/4Ii154lhYKanWoTb34zsSUHmOff2bj/E0gkADX5QumLDxRXdtwRUO +sOov064SG/o1L1yb1F6lj7Q9VIhambYFYdEt/ZjhnN7kTDE/LGGKBIj1Re96cfC +QeA6ylsoqM1XDcfpnO2PiK+73D/Fkz/mG3UFyXBpvgDN7gPP2baUT7bRH8ckIfT eW/OxJPSE3uMJ8YSIrnCcSz/AgMBAAGjggKXMIICkzAdBgNVHQ4EFgQU/fgQW+9N Nr8HremNqboJYvnWbaEwHwYDVR0jBBgwFoAUqgt4LbmTLiL93vDD91WW7glF4S0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDOTA5LzA3Nzk3RkU0QzBE QzExRUY5RTg3MTg0NEM0RjlBRTAyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRT MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWd0NExibVRMaUw5M3ZERDkxV1c3Z2xGNFMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkwOS8wNzc5N0ZFNEMwREMxMUVGOUU4NzE4NDRDNEY5QUUwMi8zQTBFMEIxQ0Q0 NzUxMUVGOTFFQTA4MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGASQB4mAAMA0GCSqGSIb3DQEBCwUAA4IBAQAcxr34MvWfTJ04 n81fgPawrUEeapg3i8eeSuXkcpvBwSC9Yw0it4496VxSIn6E1Fc78rcXP3h7H796 nr6wCKxAXNQMpdERPjyjNv9Sf3mcI+Ni2sac4sJ/s/tsqBFESaFlhM4iyKBt4EQ2 hCaOg2d72qycFMbMzvMq91hYjE1w12XNWFAfujUfTEiLSEak8DOJhdI081Gi7mEs Ap4VcrrjJreOCf4MzlaBcipAOOV1iAlJkx3YgOgtQ2ThzBAn5Fo7B1C0ZJgkov6U hkLv4mNIqNtDkA0ezxRa32z4s3/IpLAKlvkPDao9BEgJc2jnkISF9FTazOqRGrtG ZaPtyrr8 -----END CERTIFICATE-----Generated at Thu Feb 6 04:50:59 2025 by rpki-client