$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa File: ED352AAEBFE511EEBB3B4D25C4F9AE02.roa (raw, json) Hash identifier: Cg10Lh1/jWjaqO5EBHv5C6vMK3khuwZ/+iMJMpvh7AE= Subject key identifier: 53:02:BF:F9:A8:8D:FA:0C:C0:B4:B1:3F:1B:D5:87:F6:03:E2:66:DF Certificate issuer: /CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Certificate serial: B1 Authority key identifier: BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa Signing time: Wed 11 Dec 2024 04:48:29 +0000 ROA not before: Wed 11 Dec 2024 04:48:28 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 15830 IP address blocks: 2401:5aa0::/32 maxlen: 32 2401:5aa1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4EC7 Validity Not Before: Dec 11 04:48:28 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6759199c-8c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:ab:4a:8e:0d:db:56:c4:2e:2e:ed:30:f8: 22:ee:d9:d4:0f:c9:02:b9:b5:ee:b2:0b:11:69:6b: 0b:4f:62:34:47:57:65:51:a4:3f:58:c4:2c:e3:fb: 21:e0:78:18:64:7e:91:e9:df:bb:ca:40:45:45:65: 83:2a:9b:a0:c1:36:3a:b5:23:19:18:41:e1:7e:71: 18:1e:88:97:f0:d1:16:23:40:e3:25:fc:43:3e:db: a8:88:9d:8d:8d:a7:f7:53:3b:f5:2d:f6:ab:33:91: ad:a2:6e:0c:9d:da:4f:0e:e1:32:01:e1:ff:42:11: 10:58:58:9d:34:f8:3a:9b:dd:89:81:a8:30:17:d7: c1:62:1b:46:0f:a8:24:40:d3:59:5e:a0:c3:37:fb: 7f:1f:18:5e:0a:84:22:be:ff:3b:67:93:05:a8:8c: 8b:a5:66:24:6d:20:47:07:a3:7c:c6:65:cc:76:5f: d2:89:be:22:06:3e:48:d1:ea:66:97:36:3b:9e:5b: fc:ec:21:67:94:5c:ea:eb:74:3d:57:67:00:06:48: 38:19:39:93:bc:ea:24:09:cd:d0:01:23:4f:e5:b7: e6:9d:6f:86:5a:09:79:d1:82:58:fa:ab:07:be:61: eb:b1:4b:c7:30:1d:9b:9a:3b:15:97:ac:24:1a:47: d1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:02:BF:F9:A8:8D:FA:0C:C0:B4:B1:3F:1B:D5:87:F6:03:E2:66:DF X509v3 Authority Key Identifier: keyid:BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/ED352AAEBFE511EEBB3B4D25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5aa0::/31 Signature Algorithm: sha256WithRSAEncryption 44:63:16:1c:c6:e0:77:33:1b:1e:e8:08:0f:ec:d9:e2:6c:c7: 5e:7f:6a:6c:e2:9c:78:79:05:a0:ae:c4:4e:9c:36:c4:c5:61: 31:03:64:03:67:e8:cb:d9:95:e8:74:fc:16:e4:6c:49:65:21: 14:2b:cf:4d:3f:70:65:0c:70:78:14:83:2b:02:53:c2:6a:a7: 3b:ba:82:d8:71:32:09:7f:82:a0:8e:a4:d5:6c:3b:41:93:9f: fb:13:18:c9:7f:20:ce:a7:c4:41:52:d4:4c:26:f9:e4:7c:22: ec:98:d9:85:1d:b5:6e:c3:9d:b8:e8:f8:c5:57:70:75:7b:f6: a4:e4:f2:33:de:a5:f4:69:a6:12:17:1f:6f:22:af:78:da:0c: cb:99:3f:36:fc:b1:89:a4:7e:3f:c4:82:e4:0b:af:19:47:aa: d3:7b:1b:fc:75:12:69:b3:9a:2a:05:e0:f0:19:10:7c:b4:72: 2a:e2:2e:79:46:08:dc:3f:88:05:0f:8f:8e:bb:1d:db:2c:2f: 8f:b6:06:75:a7:68:e0:b4:05:a9:68:59:2a:c7:02:58:ae:d9: 0d:49:25:ba:75:16:19:bb:24:ae:cb:00:de:63:9e:25:9b:48: 16:95:56:c6:4f:d0:ce:09:7f:4e:c5:13:dd:19:a7:4a:16:9c: 03:95:b8:c2 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRFQzcxMTAvBgNVBAUTKEJBODkwMTRFQkM0OTRCNjdGRDhCM0Y4MkU4QjM4RUY2 RjZDNTcyNEQwHhcNMjQxMjExMDQ0ODI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MTk5Yy04YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz+rSo4N21bELi7tMPgi7tnUD8kCubXusgsRaWsLT2I0R1dlUaQ/WMQs4/sh 4HgYZH6R6d+7ykBFRWWDKpugwTY6tSMZGEHhfnEYHoiX8NEWI0DjJfxDPtuoiJ2N jaf3Uzv1LfarM5Gtom4MndpPDuEyAeH/QhEQWFidNPg6m92JgagwF9fBYhtGD6gk QNNZXqDDN/t/HxheCoQivv87Z5MFqIyLpWYkbSBHB6N8xmXMdl/Sib4iBj5I0epm lzY7nlv87CFnlFzq63Q9V2cABkg4GTmTvOokCc3QASNP5bfmnW+GWgl50YJY+qsH vmHrsUvHMB2bmjsVl6wkGkfRhwIDAQABo4ICljCCApIwHQYDVR0OBBYEFFMCv/mo jfoMwLSxPxvVh/YD4mbfMB8GA1UdIwQYMBaAFLqJAU68SUtn/Ys/guizjvb2xXJN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEVDNy83NTc1Nzg3MEJG RTUxMUVFQUFDRTQzMTJDNEY5QUUwMi91b2tCVHJ4SlMyZjlpei1DNkxPTzl2YkZj azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vva0JUcnhKUzJmOWl6LUM2TE9POXZiRmNrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRFQzcvNzU3NTc4NzBCRkU1MTFFRUFBQ0U0MzEyQzRGOUFFMDIvRUQzNTJBQUVC RkU1MTFFRUJCM0I0RDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQEkAVqgMA0GCSqGSIb3DQEBCwUAA4IBAQBEYxYcxuB3Mxse 6AgP7NnibMdef2ps4px4eQWgrsROnDbExWExA2QDZ+jL2ZXodPwW5GxJZSEUK89N P3BlDHB4FIMrAlPCaqc7uoLYcTIJf4KgjqTVbDtBk5/7ExjJfyDOp8RBUtRMJvnk fCLsmNmFHbVuw5246PjFV3B1e/ak5PIz3qX0aaYSFx9vIq942gzLmT82/LGJpH4/ xILkC68ZR6rTexv8dRJps5oqBeDwGRB8tHIq4i55RgjcP4gFD4+Oux3bLC+PtgZ1 p2jgtAWpaFkqxwJYrtkNSSW6dRYZuySuywDeY54lm0gWlVbGT9DOCX9OxRPdGadK FpwDlbjC -----END CERTIFICATE-----Generated at Sun Feb 16 15:40:02 2025 by rpki-client