$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa File: C0655836B3B511EA8BFADC14C4F9AE02.roa (raw, json) Hash identifier: VO5DG+TONfuWaK4KlLEPGGA7S5VlkkqdkwaWjpddPs4= Subject key identifier: 6C:84:6E:5C:EC:B0:24:C7:52:11:5C:F6:92:CA:4C:0E:C3:37:69:88 Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 11CA Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa Signing time: Tue 24 Dec 2024 17:14:50 +0000 ROA not before: Tue 24 Dec 2024 17:14:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 36351 IP address blocks: 2403:a280:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4554 (0x11ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73 Validity Not Before: Dec 24 17:14:50 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676aec0a-58ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:99:9f:f8:42:2c:65:cd:f4:6a:47:3e:c6:73: 52:8d:4c:86:06:a8:a3:de:40:56:12:83:ff:45:fb: d7:b3:28:7b:b4:e7:51:a9:8a:3d:b6:db:b9:6f:a6: 97:e1:6b:32:6e:b6:b9:0a:17:77:e4:de:1a:92:28: 7c:3c:14:5e:65:ca:d3:2d:5d:fb:d5:a3:37:75:ac: 39:90:0d:1e:27:04:5d:82:2f:d6:0e:06:c9:4d:5e: b9:93:31:86:f1:e0:e4:14:23:03:91:c0:5c:c3:77: 7d:4e:4c:f2:d9:48:36:7e:b6:e4:0f:39:07:79:27: 9c:7d:de:17:d7:7c:de:7d:c8:4d:5a:26:59:36:64: 32:f6:db:4f:78:0a:27:96:6f:e9:f7:f7:cf:ab:78: 38:88:d8:1f:45:9c:92:ef:72:dd:42:a5:29:2c:14: 5e:41:ca:41:f3:01:94:7d:2b:10:e2:47:52:bc:a3: 1b:d5:4b:5d:d7:3c:79:72:02:93:29:b2:44:7e:6a: 5b:b5:70:ca:f0:3d:bb:73:10:9c:f2:4f:b5:12:ba: 9b:fc:ed:c0:57:4d:0b:33:a6:44:e6:6b:f0:e3:8c: 51:a7:c3:23:75:90:d3:23:24:4d:60:be:fe:12:43: ea:da:4b:f7:28:e3:bf:d0:61:84:af:b3:01:69:db: 46:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:84:6E:5C:EC:B0:24:C7:52:11:5C:F6:92:CA:4C:0E:C3:37:69:88 X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C0655836B3B511EA8BFADC14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:a280:8000::/36 Signature Algorithm: sha256WithRSAEncryption 65:d0:2f:b0:f4:78:c8:97:3b:42:d0:78:d9:e9:35:93:22:94: 09:77:3f:db:94:70:8e:b8:38:7f:f6:fa:e7:28:8e:4c:60:08: d2:ea:bf:86:a6:2e:a5:52:24:4b:2e:b4:76:4b:2c:cf:5d:66: a3:37:ef:6f:18:b7:85:cd:d6:4f:c6:2b:d3:b8:d3:d2:b9:0e: 27:d2:b2:69:08:82:86:48:ed:64:c7:f3:a8:15:73:23:58:e9: b1:d9:93:fa:69:4d:d3:5d:2d:42:64:87:43:55:9b:6f:0c:81: af:7b:9a:d1:7c:a1:c0:0c:69:fb:ee:dc:42:95:19:3f:1b:0f: c7:fd:df:fa:a3:cf:da:22:6e:7b:8f:27:ad:c4:52:19:56:49: 67:74:21:dc:87:f5:c8:d9:49:e7:39:1e:29:eb:11:87:60:3c: ea:f9:d5:4b:c7:cf:f0:60:94:fe:d4:aa:fb:d0:31:7c:c5:79: 9b:a3:b2:5e:5b:43:e1:6e:31:8d:7e:14:cd:f5:b6:07:26:a0: 02:dd:ac:b5:5d:bb:be:af:6f:96:b6:2c:fe:5f:a4:68:ab:58: 14:08:4f:ca:c9:c9:11:53:e7:2a:b0:ba:8d:13:ec:86:f5:39: 49:c7:c5:c3:b4:26:fe:21:69:0a:4a:d6:e3:03:35:27:89:8f: a1:0d:25:ac -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICEcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjQxMjI0MTcxNDUwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZhZWMwYS01OGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Jmf+EIsZc30akc+xnNSjUyGBqij3kBWEoP/RfvXsyh7tOdRqYo9ttu5b6aX 4Wsybra5Chd35N4akih8PBReZcrTLV371aM3daw5kA0eJwRdgi/WDgbJTV65kzGG 8eDkFCMDkcBcw3d9Tkzy2Ug2frbkDzkHeSecfd4X13zefchNWiZZNmQy9ttPeAon lm/p9/fPq3g4iNgfRZyS73LdQqUpLBReQcpB8wGUfSsQ4kdSvKMb1Utd1zx5cgKT KbJEfmpbtXDK8D27cxCc8k+1Erqb/O3AV00LM6ZE5mvw44xRp8MjdZDTIyRNYL7+ EkPq2kv3KOO/0GGEr7MBadtGLQIDAQABo4IClzCCApMwHQYDVR0OBBYEFGyEblzs sCTHUhFc9pLKTA7DN2mIMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvQzA2NTU4MzZC M0I1MTFFQThCRkFEQzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA6KAgDANBgkqhkiG9w0BAQsFAAOCAQEAZdAvsPR4yJc7 QtB42ek1kyKUCXc/25Rwjrg4f/b65yiOTGAI0uq/hqYupVIkSy60dkssz11mozfv bxi3hc3WT8Yr07jT0rkOJ9KyaQiChkjtZMfzqBVzI1jpsdmT+mlN010tQmSHQ1Wb bwyBr3ua0XyhwAxp++7cQpUZPxsPx/3f+qPP2iJue48nrcRSGVZJZ3Qh3If1yNlJ 5zkeKesRh2A86vnVS8fP8GCU/tSq+9AxfMV5m6OyXltD4W4xjX4UzfW2ByagAt2s tV27vq9vlrYs/l+kaKtYFAhPysnJEVPnKrC6jRPshvU5ScfFw7Qm/iFpCkrW4wM1 J4mPoQ0lrA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:36 2025 by rpki-client