$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa File: B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa (raw, json) Hash identifier: ZxCbb7cdq/LewtopQIPSnB7gN2Ydt1y4TyGzN7hgTr4= Subject key identifier: 2F:5B:78:0F:71:32:C4:DB:EC:60:81:FA:BF:5C:FE:16:5E:F2:61:56 Certificate issuer: /CN=A91C022C/serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A Certificate serial: 0B Authority key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa Signing time: Sun 19 Jan 2025 00:09:57 +0000 ROA not before: Sun 19 Jan 2025 00:09:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153377 IP address blocks: 2001:df4:ec40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C Validity Not Before: Jan 19 00:09:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=678c42d4-7ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fc:de:85:e2:7b:a3:56:13:60:6e:e7:44:e0: d5:c5:ad:2b:ae:0a:5b:e8:d6:be:82:b8:8a:b4:1d: 98:1d:41:72:7c:0e:10:01:6e:ca:85:cb:05:9d:d7: 83:6c:d0:4a:2a:cd:76:a8:63:e6:39:1a:7b:d9:f6: c5:b7:6a:59:48:1b:3f:64:05:cd:9a:18:22:c5:66: d4:92:75:9e:f6:8b:39:da:88:f9:2f:d1:95:90:7f: 0c:00:31:86:dc:4c:10:f2:e6:bd:22:0b:fc:76:01: 40:29:1a:22:11:93:a9:5c:9d:1e:70:1d:a1:95:92: 78:c5:dc:d8:dc:92:97:7c:86:12:cb:01:6f:c1:77: 84:47:24:7d:fb:fa:e4:61:ad:30:e9:0a:0d:8f:01: 5f:29:3b:47:26:65:d4:96:b8:40:f7:05:50:51:75: cf:cd:63:ec:61:7b:9a:de:6e:3e:cf:69:22:c6:e9: c2:33:77:21:b0:27:2c:1d:63:aa:80:7b:e9:f6:aa: 54:e4:75:2d:d2:fb:32:48:85:84:70:0b:34:8f:84: 5d:2a:2c:e9:81:ed:76:e0:23:5a:e9:bb:2d:16:bd: c2:03:7b:57:3a:a8:73:26:ff:f1:01:e5:82:ad:90: b4:73:ea:e6:bc:70:95:be:d1:63:77:75:19:03:cf: ee:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5B:78:0F:71:32:C4:DB:EC:60:81:FA:BF:5C:FE:16:5E:F2:61:56 X509v3 Authority Key Identifier: keyid:D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:ec40::/48 Signature Algorithm: sha256WithRSAEncryption 37:23:83:82:bd:ac:72:46:3f:72:3c:02:14:6e:9a:76:c8:5f: 1c:f1:3d:81:3d:76:ca:98:d8:e8:72:1e:e2:c5:93:fd:43:4f: e7:00:52:c3:31:7a:45:6c:b7:c2:5c:b4:4f:bb:7d:ee:20:e1: 5c:5b:d9:65:7a:f4:00:7e:55:31:4d:3c:61:dc:1c:ae:fe:74: 2d:e1:09:23:9c:f6:c6:69:ef:f7:ac:44:b6:1a:6e:90:4e:7b: 26:78:25:b2:f3:71:8e:83:66:57:20:80:f6:9b:7c:6e:bb:34: ae:4f:0c:ae:86:5d:8f:52:26:df:8d:e6:46:99:31:4a:8f:65: d1:dd:cb:07:17:ee:63:7f:62:46:d9:d4:8b:f9:ce:49:72:52: 21:c7:5d:f1:87:f8:93:3a:ca:df:ab:73:e6:6a:91:e0:14:82: 84:1f:01:b7:9f:7b:37:70:4a:d4:db:11:cb:dd:6c:6e:4c:92: c2:73:d9:1d:4a:12:2f:7b:cd:f5:ed:16:16:f8:09:ef:04:e1: 15:8f:48:91:e6:88:d4:56:5b:d5:0f:f8:9e:25:32:e1:cb:9a: 3a:49:d8:35:76:d4:39:28:3b:b2:2e:00:59:09:04:d4:d3:27: e0:08:65:64:0f:aa:6c:1a:30:02:00:c8:49:0f:1e:c0:10:de: a2:6d:9b:0b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoRDc5Njk5NUE3NzY3NTlDNDI2NDMxNzgwMDI4N0VCRUVF RkI0QkE2QTAeFw0yNTAxMTkwMDA5NTdaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OGM0MmQ0LTdhYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ/N6F4nujVhNgbudE4NXFrSuuClvo1r6CuIq0HZgdQXJ8DhABbsqFywWd14Ns 0EoqzXaoY+Y5GnvZ9sW3allIGz9kBc2aGCLFZtSSdZ72iznaiPkv0ZWQfwwAMYbc TBDy5r0iC/x2AUApGiIRk6lcnR5wHaGVknjF3Njckpd8hhLLAW/Bd4RHJH37+uRh rTDpCg2PAV8pO0cmZdSWuED3BVBRdc/NY+xhe5rebj7PaSLG6cIzdyGwJywdY6qA e+n2qlTkdS3S+zJIhYRwCzSPhF0qLOmB7XbgI1rpuy0WvcIDe1c6qHMm//EB5YKt kLRz6ua8cJW+0WN3dRkDz+5pAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUL1t4D3Ey xNvsYIH6v1z+Fl7yYVYwHwYDVR0jBBgwFoAU15aZWndnWcQmQxeAAofr7u+0umow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0JBMEYyREYyRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyLzE1YVpXbmRuV2NRbVF4ZUFBb2ZyN3UtMHVt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMTVhWlduZG5XY1FtUXhlQUFvZnI3dS0wdW1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDIyQy9CQTBGMkRGMkQ0QjkxMUVGOUZBOEUyNEZDNEY5QUUwMi9CNkNGRjFCMkQ1 RjkxMUVGQjlCMTA1NUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTsQDANBgkqhkiG9w0BAQsFAAOCAQEANyODgr2sckY/ cjwCFG6adshfHPE9gT12ypjY6HIe4sWT/UNP5wBSwzF6RWy3wly0T7t97iDhXFvZ ZXr0AH5VMU08Ydwcrv50LeEJI5z2xmnv96xEthpukE57JnglsvNxjoNmVyCA9pt8 brs0rk8MroZdj1Im343mRpkxSo9l0d3LBxfuY39iRtnUi/nOSXJSIcdd8Yf4kzrK 36tz5mqR4BSChB8Bt597N3BK1NsRy91sbkySwnPZHUoSL3vN9e0WFvgJ7wThFY9I keaI1FZb1Q/4niUy4cuaOknYNXbUOSg7si4AWQkE1NMn4AhlZA+qbBowAgDISQ8e wBDeom2bCw== -----END CERTIFICATE-----Generated at Thu Feb 6 05:10:41 2025 by rpki-client