$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa File: 3F4717D0D89B11E9AB8A5F14C4F9AE02.roa (raw, json) Hash identifier: /ylY6kHbRD4NOz703RJDwu8cDni8qw0ZW1DbwZ+fss4= Subject key identifier: A7:A1:A2:BF:32:79:92:1D:B7:59:1F:52:01:81:73:99:9F:CA:F0:DE Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34D1 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:39 +0000 ROA not before: Fri 24 Jan 2025 16:02:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 46047 IP address blocks: 2405:1dc0::/32 maxlen: 32 2405:1dc0::/36 maxlen: 36 2405:1dc0:1000::/36 maxlen: 36 2405:1dc0:2000::/36 maxlen: 36 2405:1dc0:3000::/36 maxlen: 36 2405:1dc0:4000::/36 maxlen: 36 2405:1dc0:5000::/36 maxlen: 36 2405:1dc0:6000::/36 maxlen: 36 2405:1dc0:7000::/36 maxlen: 36 2405:1dc0:8000::/36 maxlen: 36 2405:1dc0:9000::/36 maxlen: 36 2405:1dc0:a000::/36 maxlen: 36 2405:1dc0:b000::/36 maxlen: 36 2405:1dc0:c000::/36 maxlen: 36 2405:1dc0:d000::/36 maxlen: 36 2405:1dc0:e000::/36 maxlen: 36 2405:1dc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 24 16:02:39 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b99f-7bab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4a:03:35:b7:1e:70:d7:26:62:7a:f2:82:3e: 11:b2:fc:cd:f6:91:d6:d9:dc:ea:78:80:a2:9e:4d: f9:f2:c5:92:15:01:52:07:59:6c:27:7f:71:10:17: 73:bd:be:ce:a8:34:9e:df:66:14:47:46:62:93:f7: b2:26:54:d7:bd:94:bf:9d:93:ec:6b:1d:b7:3c:9b: 17:29:c5:19:a7:ab:d9:e3:27:a6:cf:17:14:3a:be: c4:28:6a:5e:4f:d8:16:90:0c:4d:61:41:a4:a4:f1: a8:7d:4d:70:13:f6:e7:a5:08:63:ec:2a:88:16:86: d8:e0:c1:f5:6c:69:12:fe:0c:f0:c0:5e:2a:38:95: f4:4e:6a:68:c2:f0:ed:34:57:25:94:97:85:ea:cf: cd:d4:9a:f6:e2:d9:f2:bb:48:54:ce:64:47:24:8c: d1:0e:0e:72:a1:61:4f:10:0d:2a:f5:b4:c5:60:e0: fa:a8:15:69:4c:8b:1b:5c:a9:7f:dc:25:d6:dd:80: 0b:c7:70:ff:36:ab:d4:1e:ae:5b:c6:25:b0:1e:08: 62:b3:cf:b7:77:b6:82:17:46:0c:04:e2:12:48:24: 79:f6:fc:1f:20:ef:61:86:51:dd:fd:29:64:2d:d7: 7b:1d:c0:fc:a4:83:d3:71:3e:45:ee:66:eb:e9:44: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A1:A2:BF:32:79:92:1D:B7:59:1F:52:01:81:73:99:9F:CA:F0:DE X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F4717D0D89B11E9AB8A5F14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:cc:1b:48:93:43:4f:be:0c:a1:9b:05:3b:2f:2a:a4:f5:df: b1:a0:28:3b:ca:26:b7:71:9c:e0:05:ed:9b:53:23:bf:4a:44: cf:b6:97:c4:7f:aa:0f:8e:16:ec:4a:86:48:b5:61:9a:62:6b: 07:f0:ef:32:c6:fc:53:33:8e:40:d8:a8:67:c5:c4:2d:13:af: 06:31:f9:57:02:59:08:9a:27:e5:03:f5:6f:e0:ed:c1:1e:45: 65:90:ab:84:d2:a1:17:51:3f:47:16:a5:a1:83:69:16:1c:e7: c7:07:44:24:35:3a:05:2b:d4:c8:26:57:9b:58:00:ee:75:b3: 00:e8:f1:34:3c:16:dc:5e:0d:e8:88:e8:32:4e:ab:ab:0b:fb: 11:f2:90:3d:52:3a:5e:c3:4b:53:f5:aa:16:d5:a0:fd:ea:8f: a1:8e:8f:a8:5f:b6:71:0a:34:d3:fd:d6:3c:6f:2e:44:6f:c4: e3:54:56:ce:9e:c0:bf:52:63:34:b4:89:d8:b5:de:ab:b5:13: ef:8e:0d:5c:8c:38:cf:83:58:81:7c:a1:60:48:a2:1b:81:11: 49:3c:99:00:3e:64:24:da:67:65:e6:99:f8:f6:0f:ec:02:0b: 43:0b:22:49:af:42:cd:31:38:17:2e:5b:c6:ae:7d:0e:d9:4e: ac:af:b7:da -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk5Zi03YmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUoDNbcecNcmYnrygj4RsvzN9pHW2dzqeICink358sWSFQFSB1lsJ39xEBdz vb7OqDSe32YUR0Zik/eyJlTXvZS/nZPsax23PJsXKcUZp6vZ4yemzxcUOr7EKGpe T9gWkAxNYUGkpPGofU1wE/bnpQhj7CqIFobY4MH1bGkS/gzwwF4qOJX0TmpowvDt NFcllJeF6s/N1Jr24tnyu0hUzmRHJIzRDg5yoWFPEA0q9bTFYOD6qBVpTIsbXKl/ 3CXW3YALx3D/NqvUHq5bxiWwHghis8+3d7aCF0YMBOISSCR59vwfIO9hhlHd/Slk Ldd7HcD8pIPTcT5F7mbr6UR6dwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKehor8y eZIdt1kfUgGBc5mfyvDeMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y0NzE3RDBE ODlCMTFFOUFCOEE1RjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBR3AMA0GCSqGSIb3DQEBCwUAA4IBAQBLzBtIk0NPvgyh mwU7Lyqk9d+xoCg7yia3cZzgBe2bUyO/SkTPtpfEf6oPjhbsSoZItWGaYmsH8O8y xvxTM45A2KhnxcQtE68GMflXAlkImiflA/Vv4O3BHkVlkKuE0qEXUT9HFqWhg2kW HOfHB0QkNToFK9TIJlebWADudbMA6PE0PBbcXg3oiOgyTqurC/sR8pA9Ujpew0tT 9aoW1aD96o+hjo+oX7ZxCjTT/dY8by5Eb8TjVFbOnsC/UmM0tInYtd6rtRPvjg1c jDjPg1iBfKFgSKIbgRFJPJkAPmQk2mdl5pn49g/sAgtDCyJJr0LNMTgXLlvGrn0O 2U6sr7fa -----END CERTIFICATE-----Generated at Sun Apr 13 18:32:02 2025 by rpki-client