$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/739C8BDECB5A11EFBEE64062C4F9AE02.roa File: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (raw, json) Hash identifier: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g= Subject key identifier: 4A:61:F3:95:1E:BF:86:9F:93:8F:0B:E2:A7:C8:44:1A:64:DA:DE:19 Certificate issuer: /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Certificate serial: 02 Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/739C8BDECB5A11EFBEE64062C4F9AE02.roa Signing time: Sun 05 Jan 2025 11:44:42 +0000 ROA not before: Sun 05 Jan 2025 11:44:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133446 IP address blocks: 2401:e160::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6 Validity Not Before: Jan 5 11:44:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677a70aa-308e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:db:81:e1:f8:79:77:49:31:b6:eb:24:1b:19: 48:ff:cc:a9:44:a3:74:a9:c5:5d:ee:e7:c5:3f:6d: 73:81:68:78:6b:e4:91:8d:7c:45:25:30:1d:fc:2c: bf:ee:90:2e:03:93:bc:ee:2d:a4:53:fb:9b:e8:65: 7c:be:e0:e0:c3:81:77:ce:e2:00:25:e3:eb:b5:88: 77:86:6b:4d:a4:64:ab:0e:47:01:82:ed:ef:0d:7f: 6d:6e:0e:30:f3:2d:fe:9a:7c:b7:7e:c6:6f:7e:f1: c0:8d:e4:ad:05:4d:6c:43:57:87:44:89:43:82:9c: 40:23:e1:8d:37:65:c5:4a:70:56:94:dc:97:32:32: 66:fc:f6:60:33:a5:97:d0:9b:fa:f9:b4:03:61:31: 2c:8f:f8:18:90:9a:40:83:8f:08:fa:51:40:3d:49: f3:4c:c4:58:46:68:64:c6:08:ba:4e:c1:aa:74:4a: f3:13:80:76:4e:16:c7:a8:d9:5d:c9:d8:3e:94:54: 82:f8:33:ec:0d:f8:30:f3:8b:cb:e8:e1:fd:f7:07: ba:fb:f6:a5:06:de:88:9e:88:ae:90:a2:fe:08:14: 9c:a9:81:fd:1d:e5:f7:f2:c8:89:39:9d:9b:9c:92: 13:d6:5a:6e:e5:c4:85:84:b5:b9:a5:37:64:7b:a0: 57:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:61:F3:95:1E:BF:86:9F:93:8F:0B:E2:A7:C8:44:1A:64:DA:DE:19 X509v3 Authority Key Identifier: keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/739C8BDECB5A11EFBEE64062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e160::/32 Signature Algorithm: sha256WithRSAEncryption 0d:5b:74:f1:1c:5e:20:a1:fa:90:13:00:43:5a:5e:7c:4f:6d: 74:ea:75:a5:d7:22:80:0e:37:c6:12:ba:94:8d:03:9b:90:da: 9f:8a:c8:95:5c:8b:61:59:ab:4a:21:0c:93:66:60:f4:0d:d0: 16:0f:0e:5c:4e:28:16:11:d5:83:ac:ab:39:fc:05:af:8b:c7: df:60:28:90:4e:38:83:36:d1:36:a3:34:e1:f9:cc:31:75:8a: 2d:84:50:a8:99:3a:e9:de:19:d5:9b:18:41:4c:20:ee:22:1d: c9:8c:b4:63:f0:28:46:a2:b1:1a:ee:41:72:3c:0b:4c:1c:79: 58:04:e8:78:b1:07:ea:57:cc:03:c8:52:84:63:8b:1a:12:a4: 04:1e:8e:15:a5:af:9e:15:21:96:1c:71:3b:aa:81:4f:1c:d3: 3a:e5:0b:87:c4:2e:ef:f6:99:8b:71:c5:08:ef:11:7a:1c:2d: 39:53:8a:01:46:9c:fb:09:88:f3:60:c6:58:42:e1:6a:52:60: d1:1b:ca:f3:8b:01:50:62:74:4c:99:79:10:40:9f:d4:0c:37: 02:a7:a4:85:c8:df:df:62:6e:47:c4:e0:9c:62:39:2a:5f:bd: 58:4f:82:21:3f:3e:af:55:61:0c:93:f7:2b:68:45:a3:38:84: 78:7f:c0:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoRUM2NzkxNjkxNzdCOUUxMzFEMERBQTAxMzk4RDcwMDM5 ODI3RDFGNjAeFw0yNTAxMDUxMTQ0NDJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2E3MGFhLTMwOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDo24Hh+Hl3STG26yQbGUj/zKlEo3SpxV3u58U/bXOBaHhr5JGNfEUlMB38LL/u kC4Dk7zuLaRT+5voZXy+4ODDgXfO4gAl4+u1iHeGa02kZKsORwGC7e8Nf21uDjDz Lf6afLd+xm9+8cCN5K0FTWxDV4dEiUOCnEAj4Y03ZcVKcFaU3JcyMmb89mAzpZfQ m/r5tANhMSyP+BiQmkCDjwj6UUA9SfNMxFhGaGTGCLpOwap0SvMTgHZOFseo2V3J 2D6UVIL4M+wN+DDzi8vo4f33B7r79qUG3oieiK6Qov4IFJypgf0d5ffyyIk5nZuc khPWWm7lxIWEtbmlN2R7oFeBAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUSmHzlR6/ hp+Tjwvip8hEGmTa3hkwHwYDVR0jBBgwFoAU7GeRaRd7nhMdDaoBOY1wA5gn0fYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0U2NEIwM0I0Q0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyLzdHZVJhUmQ3bmhNZERhb0JPWTF3QTVnbjBm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0dlUmFSZDduaE1kRGFvQk9ZMXdBNWduMGZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9FNjRCMDNCNENCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi83MzlDOEJERUNC NUExMUVGQkVFNjQwNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB4WAwDQYJKoZIhvcNAQELBQADggEBAA1bdPEcXiCh+pAT AENaXnxPbXTqdaXXIoAON8YSupSNA5uQ2p+KyJVci2FZq0ohDJNmYPQN0BYPDlxO KBYR1YOsqzn8Ba+Lx99gKJBOOIM20TajNOH5zDF1ii2EUKiZOuneGdWbGEFMIO4i HcmMtGPwKEaisRruQXI8C0wceVgE6HixB+pXzAPIUoRjixoSpAQejhWlr54VIZYc cTuqgU8c0zrlC4fELu/2mYtxxQjvEXocLTlTigFGnPsJiPNgxlhC4WpSYNEbyvOL AVBidEyZeRBAn9QMNwKnpIXI399ibkfE4JxiOSpfvVhPgiE/Pq9VYQyT9ytoRaM4 hHh/wO8= -----END CERTIFICATE-----Generated at Thu Feb 6 04:09:42 2025 by rpki-client