$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/7BC585BEC9DD11EF98B1E263C4F9AE02.roa File: 7BC585BEC9DD11EF98B1E263C4F9AE02.roa (raw, json) Hash identifier: ZZi0Gn/OMvF3e89O2m6QByhZ3253TVeiYiuccUZGQj0= Subject key identifier: 7D:A5:00:F2:40:2B:19:A1:53:BF:9F:C7:84:B9:26:F7:AA:4D:77:92 Certificate issuer: /CN=A91B23D9/serialNumber=7634AD86656EFE6C45E4EF998F94B697AC39BEF1 Certificate serial: 05 Authority key identifier: 76:34:AD:86:65:6E:FE:6C:45:E4:EF:99:8F:94:B6:97:AC:39:BE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/7BC585BEC9DD11EF98B1E263C4F9AE02.roa Signing time: Fri 03 Jan 2025 14:17:37 +0000 ROA not before: Fri 03 Jan 2025 14:17:37 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140641 IP address blocks: 2001:df4:bf40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.crl rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9 Validity Not Before: Jan 3 14:17:37 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6777f181-d4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:de:7b:64:b6:7b:ba:dc:9f:c5:59:d0:46:93: df:4d:8e:d4:c7:02:a4:d7:69:cf:da:6f:cd:e4:85: cf:1b:c4:34:3c:31:8a:a7:c3:a1:94:95:f9:81:45: a0:c5:3e:21:bb:fe:3f:27:ac:a1:1e:7c:e6:15:48: 90:78:ae:eb:3c:ec:0e:71:a4:4f:c3:e9:15:e3:3d: 24:25:70:b9:c4:ac:9d:64:c1:38:11:2c:01:b9:1d: a5:bb:c3:65:10:67:ae:4c:de:e4:88:0d:a0:83:5a: a3:a0:12:dd:fc:64:8b:ee:46:b9:b0:72:76:ca:07: 68:fa:b9:28:68:cd:ce:6a:a3:a9:0f:4b:37:f3:2e: 34:0a:44:ff:35:10:43:36:43:dd:50:6c:a2:b0:a1: 04:42:41:4c:a6:d7:d4:05:87:0d:75:e4:ef:95:fb: 13:31:5e:9a:a2:93:7a:3f:92:d3:70:ce:2a:12:3c: bf:ed:42:aa:43:33:f8:9c:45:1e:1d:b4:ae:88:90: ed:ea:f8:43:fc:3a:fe:00:fb:01:a7:a9:d7:96:07: 46:00:47:22:bc:19:02:37:59:9c:ce:6f:6a:fe:c1: 98:43:35:f7:cf:c4:1b:bd:13:a1:b8:06:b1:27:21: 9c:fe:73:5f:13:88:c4:fd:76:27:b2:04:ba:be:1b: 8d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A5:00:F2:40:2B:19:A1:53:BF:9F:C7:84:B9:26:F7:AA:4D:77:92 X509v3 Authority Key Identifier: keyid:76:34:AD:86:65:6E:FE:6C:45:E4:EF:99:8F:94:B6:97:AC:39:BE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/djSthmVu_mxF5O-Zj5S2l6w5vvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/djSthmVu_mxF5O-Zj5S2l6w5vvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/83686ACCC9D111EF975BDC4BC4F9AE02/7BC585BEC9DD11EF98B1E263C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:bf40::/48 Signature Algorithm: sha256WithRSAEncryption 7d:67:d0:47:b1:21:c2:de:20:b1:f8:2e:70:7a:5d:f4:bd:3e: e5:4b:7a:6a:4d:6b:98:b7:86:f0:17:ae:c8:bb:8d:b9:ce:9e: ba:2b:a6:76:d0:fc:3d:aa:c0:7e:66:3b:85:cd:79:60:2e:51: 33:47:30:85:94:c6:4c:08:c3:35:18:a9:19:7e:e4:ef:ab:b2: 9e:67:eb:7e:da:48:0d:bc:19:25:9b:81:b8:bd:57:1b:d1:ff: af:98:9a:97:4b:87:30:b3:b3:bd:b2:87:01:5e:22:fc:db:d5: 71:ff:99:94:3a:b3:72:69:5c:11:52:33:cd:c3:cb:ef:8d:99: 33:69:78:31:9f:83:4f:81:15:9e:fd:e2:c3:25:52:49:ac:bc: f6:9e:c1:6b:2a:fc:8f:94:55:59:47:63:51:de:ac:05:e1:ab: e3:6e:df:3d:5f:a5:6c:ac:cf:65:30:03:7b:94:16:25:42:f1: d2:01:e7:88:08:23:27:fd:b6:66:07:31:2b:aa:ac:be:68:4e: 01:df:6b:75:16:5d:2c:94:e1:1a:1a:86:00:83:61:5b:c8:a0: b4:24:a0:ad:f8:39:1f:5b:3c:51:42:75:ef:a8:ab:fd:4c:3b: 21:24:94:5d:b1:fa:76:d2:d8:6b:01:0b:a7:74:d5:d6:1a:59: e2:12:3d:7c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoNzYzNEFEODY2NTZFRkU2QzQ1RTRFRjk5OEY5NEI2OTdB QzM5QkVGMTAeFw0yNTAxMDMxNDE3MzdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzdmMTgxLWQ0ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQ3ntktnu63J/FWdBGk99NjtTHAqTXac/ab83khc8bxDQ8MYqnw6GUlfmBRaDF PiG7/j8nrKEefOYVSJB4rus87A5xpE/D6RXjPSQlcLnErJ1kwTgRLAG5HaW7w2UQ Z65M3uSIDaCDWqOgEt38ZIvuRrmwcnbKB2j6uShozc5qo6kPSzfzLjQKRP81EEM2 Q91QbKKwoQRCQUym19QFhw115O+V+xMxXpqik3o/ktNwzioSPL/tQqpDM/icRR4d tK6IkO3q+EP8Ov4A+wGnqdeWB0YARyK8GQI3WZzOb2r+wZhDNffPxBu9E6G4BrEn IZz+c18TiMT9dieyBLq+G40pAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUfaUA8kAr GaFTv5/HhLkm96pNd5IwHwYDVR0jBBgwFoAUdjSthmVu/mxF5O+Zj5S2l6w5vvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzgzNjg2QUNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL2RqU3RobVZ1X214RjVPLVpqNVMybDZ3NXZ2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGpTdGhtVnVfbXhGNU8tWmo1UzJsNnc1dnZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNEOS84MzY4NkFDQ0M5RDExMUVGOTc1QkRDNEJDNEY5QUUwMi83QkM1ODVCRUM5 REQxMUVGOThCMUUyNjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfS/QDANBgkqhkiG9w0BAQsFAAOCAQEAfWfQR7Ehwt4g sfgucHpd9L0+5Ut6ak1rmLeG8BeuyLuNuc6euiumdtD8ParAfmY7hc15YC5RM0cw hZTGTAjDNRipGX7k76uynmfrftpIDbwZJZuBuL1XG9H/r5ial0uHMLOzvbKHAV4i /NvVcf+ZlDqzcmlcEVIzzcPL742ZM2l4MZ+DT4EVnv3iwyVSSay89p7Bayr8j5RV WUdjUd6sBeGr427fPV+lbKzPZTADe5QWJULx0gHniAgjJ/22ZgcxK6qsvmhOAd9r dRZdLJThGhqGAINhW8igtCSgrfg5H1s8UUJ176ir/Uw7ISSUXbH6dtLYawELp3TV 1hpZ4hI9fA== -----END CERTIFICATE-----Generated at Thu Feb 6 03:54:12 2025 by rpki-client