$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/40366CF0F8C811EBB7BFD243C4F9AE02.roa File: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (raw, json) Hash identifier: 8hyXNYESkSjUrpbYxaS/qkwp3HcVC+EurBWeQvWRtvM= Subject key identifier: AD:4B:AB:92:14:5C:1F:69:86:FE:96:B2:E7:A4:83:02:DD:18:36:9A Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 127C Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/40366CF0F8C811EBB7BFD243C4F9AE02.roa Signing time: Mon 26 Feb 2024 17:55:40 +0000 ROA not before: Mon 26 Feb 2024 17:55:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55002 IP address blocks: 2403:5800:e000::/36 maxlen: 37 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4732 (0x127c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8 Validity Not Before: Feb 26 17:55:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dcd09c-3146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f7:54:ef:39:5d:7c:a6:99:80:d6:a1:e3:ca: 14:0c:dd:f3:be:42:d4:71:34:eb:c0:9f:35:05:ea: b5:d7:b1:2b:8e:44:f1:91:1e:0c:4e:0e:65:d3:a5: 80:e1:40:70:37:5a:70:2a:9c:c1:1d:45:75:27:7d: c2:cd:f6:b7:6b:d8:24:38:21:ec:71:3c:6a:ae:89: d4:c2:c0:71:e5:dc:3d:7a:0b:95:8c:d6:b9:fa:25: 57:32:5d:3c:ad:31:c6:a0:e7:f3:23:68:c4:9e:fc: 03:38:0d:f8:ba:15:42:04:02:0b:c0:03:c7:54:f2: 04:f4:0e:ea:fa:b9:62:d8:44:4e:00:ae:36:65:c6: 1d:68:ff:96:06:90:da:cc:a5:4b:89:7b:86:07:f5: 06:f6:4c:93:c2:2a:ee:d0:ac:07:91:c3:22:3f:4d: 1f:bc:51:4d:c3:78:d8:be:70:10:72:a6:7d:f6:27: c3:de:7c:c2:b3:6d:ee:01:7b:36:a4:aa:03:d6:9f: a8:b2:dd:4f:53:81:2a:0e:52:c0:ad:c7:a6:6c:59: df:ef:c1:0d:24:43:e6:34:3e:05:d7:98:b7:05:09: 0f:f2:f7:0c:96:83:b7:aa:e9:cc:17:6d:64:95:61: 3e:7a:dd:c5:38:7c:4c:8f:15:ef:08:de:80:74:9c: 68:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4B:AB:92:14:5C:1F:69:86:FE:96:B2:E7:A4:83:02:DD:18:36:9A X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/40366CF0F8C811EBB7BFD243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:5800:e000::/36 Signature Algorithm: sha256WithRSAEncryption 93:19:de:cf:7e:04:d0:cb:7f:f3:55:6c:94:cb:34:0d:ea:81: 21:ab:7f:d2:4b:0d:b3:ec:64:b0:45:48:23:26:05:00:cb:3d: 82:e5:36:26:73:19:f0:da:c0:ec:e6:2d:b3:d9:b9:b3:26:63: dc:60:f6:ff:c1:04:76:f7:35:29:cf:28:52:ce:af:14:98:62: 02:03:36:46:9e:c9:f9:3f:35:62:07:9f:6a:c8:a3:78:47:fc: c2:37:d3:61:97:10:d1:d9:61:35:a6:9f:f3:5a:ea:0c:b3:c5: eb:56:b3:18:f0:29:3a:2a:9c:7e:ab:2c:88:55:91:08:57:7d: eb:6a:1c:9f:59:d8:7e:30:5a:50:20:e0:37:52:ff:a6:d0:f0: 9f:37:1d:8a:2a:d3:d4:cf:d8:b3:52:c7:f6:06:2d:82:82:b4: d5:e8:8d:a3:87:6e:11:3a:5d:fc:a1:02:58:34:dc:e1:f4:e3: 73:c2:88:20:09:72:db:62:da:c5:da:db:8a:b8:be:66:ee:27: a2:d7:58:ae:65:f3:3d:d5:3b:7d:ca:4d:96:0a:18:fe:9c:f7: 5e:9f:3a:78:a9:fb:ef:d2:a5:8c:7c:b0:c0:55:1b:7a:36:d5: fb:62:95:a5:75:f5:d0:ac:d0:b3:ee:70:5b:a9:b7:0c:f2:b9: 35:12:95:35 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICEnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjQwMjI2MTc1NTQwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRjZDA5Yy0zMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/dU7zldfKaZgNah48oUDN3zvkLUcTTrwJ81Beq117ErjkTxkR4MTg5l06WA 4UBwN1pwKpzBHUV1J33Czfa3a9gkOCHscTxqronUwsBx5dw9eguVjNa5+iVXMl08 rTHGoOfzI2jEnvwDOA34uhVCBAILwAPHVPIE9A7q+rli2EROAK42ZcYdaP+WBpDa zKVLiXuGB/UG9kyTwiru0KwHkcMiP00fvFFNw3jYvnAQcqZ99ifD3nzCs23uAXs2 pKoD1p+ost1PU4EqDlLArcembFnf78ENJEPmND4F15i3BQkP8vcMloO3qunMF21k lWE+et3FOHxMjxXvCN6AdJxoYQIDAQABo4IClzCCApMwHQYDVR0OBBYEFK1Lq5IU XB9phv6WsuekgwLdGDaaMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFGQTgvRTg2MUZEM0FBRkQ5MTFFOEIyRUQ0QzdGQzRGOUFFMDIvNDAzNjZDRjBG OEM4MTFFQkI3QkZEMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA1gA4DANBgkqhkiG9w0BAQsFAAOCAQEAkxnez34E0Mt/ 81VslMs0DeqBIat/0ksNs+xksEVIIyYFAMs9guU2JnMZ8NrA7OYts9m5syZj3GD2 /8EEdvc1Kc8oUs6vFJhiAgM2Rp7J+T81YgefasijeEf8wjfTYZcQ0dlhNaaf81rq DLPF61azGPApOiqcfqssiFWRCFd962ocn1nYfjBaUCDgN1L/ptDwnzcdiirT1M/Y s1LH9gYtgoK01eiNo4duETpd/KECWDTc4fTjc8KIIAly22Laxdrbiri+Zu4notdY rmXzPdU7fcpNlgoY/pz3Xp86eKn779KljHywwFUbejbV+2KVpXX10KzQs+5wW6m3 DPK5NRKVNQ== -----END CERTIFICATE-----Generated at Sun Feb 16 15:17:43 2025 by rpki-client