$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa File: 0B725F44496D11EF9F7F2116C4F9AE02.roa (raw, json) Hash identifier: cLMsRe3bjQqt9KTlSv77ZsvirHU5HvmwxB64rB3nwQc= Subject key identifier: A4:91:46:5B:B7:82:22:C3:6A:4D:D9:10:F9:30:FA:D2:A1:8B:D5:75 Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: 0B Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa Signing time: Wed 24 Jul 2024 03:30:16 +0000 ROA not before: Wed 24 Jul 2024 03:30:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152919 IP address blocks: 2401:a8e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 07:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604 Validity Not Before: Jul 24 03:30:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a07548-99aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dc:15:8d:2d:a7:09:6b:12:20:d7:0b:65:08: d8:ed:05:b7:30:d1:88:e4:0d:ad:ba:c0:02:5f:cf: 52:ff:24:08:d5:36:b4:c4:22:7e:c6:18:c7:89:b2: 75:33:20:58:8f:a0:e2:15:58:ce:4c:51:77:3a:6e: 16:38:2f:55:77:76:4a:10:9b:e6:ed:d3:b7:0e:bc: 7f:9f:16:94:36:e3:bd:92:a1:7b:5b:d6:e3:99:9a: 52:d5:c7:7c:0b:7e:a0:6b:f4:97:b3:96:a0:c0:9f: d6:a2:b5:c0:fe:43:32:40:2f:71:5d:3a:c0:89:55: af:cc:c3:34:32:4b:8b:4e:e1:dc:89:b0:03:fd:8a: d0:1d:0d:a2:9e:c3:c3:0d:63:43:8d:e8:fb:5f:6f: 5d:8b:91:90:1c:f7:1a:16:78:84:cb:eb:6c:0d:ff: f5:37:72:eb:7a:a6:53:fb:7a:f7:c3:95:bb:7a:eb: cd:b7:c3:bd:64:80:cc:4a:a7:67:a8:f0:55:11:8b: 67:3c:c2:57:9c:a8:db:7b:1a:95:07:70:91:ee:24: 08:66:36:78:42:19:cc:f8:b4:ac:0a:63:92:b5:d5: 0f:c0:14:c4:d2:9f:09:11:69:5a:cf:7e:99:e5:34: 1a:ab:6f:e7:55:17:10:ce:71:d5:1f:e2:67:66:e7: 3c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:91:46:5B:B7:82:22:C3:6A:4D:D9:10:F9:30:FA:D2:A1:8B:D5:75 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a8e0::/32 Signature Algorithm: sha256WithRSAEncryption 93:06:2d:3b:c6:a1:dd:61:df:6f:96:b2:79:81:43:90:62:d0: 5d:c9:77:40:86:de:c9:4b:dd:11:4f:f1:3a:66:34:42:16:8d: 19:3e:c7:2d:f5:90:a8:89:69:ae:ab:34:48:e7:9f:4b:a3:82: 8f:cc:91:ab:51:1c:88:2e:52:ce:c8:54:e3:0f:37:b1:33:05: 40:0c:43:e5:87:7c:5a:85:08:5e:3a:cb:0e:d1:62:b2:9b:3e: 3f:4e:03:eb:80:9e:76:71:e3:8e:b3:c9:38:b3:1c:63:eb:13: 77:7c:87:79:40:0e:67:50:a9:a6:d3:72:e6:65:2c:87:62:d3: 8b:68:bc:e7:d6:ab:11:db:41:d4:86:06:3c:bf:2d:05:18:c7: 7f:fb:63:76:16:01:7a:b9:92:76:6c:9e:4f:8f:e5:1e:66:11: 6e:78:13:24:5a:7e:4e:d6:95:6d:6c:e4:b1:1a:da:36:77:1c: a7:7f:3f:03:3b:f6:c7:2a:63:04:61:c3:82:a0:ba:cb:94:a5: d8:b5:97:b4:1a:38:e6:a5:00:76:40:df:da:e6:f1:ba:61:4a: 87:1a:e5:91:52:74:bb:65:4d:46:8c:bd:6a:de:a8:d4:b4:19: ef:29:73:88:e1:ff:35:90:66:ee:c4:b1:20:d6:fc:e7:d3:ce: db:9f:5b:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTYwNDExMC8GA1UEBRMoRTJGMTc3MzdCODRDMUY2Nzg2OUMwM0E0N0Y4QzQxOUZE NDIwMDE2QzAeFw0yNDA3MjQwMzMwMTZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTA3NTQ4LTk5YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs3BWNLacJaxIg1wtlCNjtBbcw0YjkDa26wAJfz1L/JAjVNrTEIn7GGMeJsnUz IFiPoOIVWM5MUXc6bhY4L1V3dkoQm+bt07cOvH+fFpQ2472SoXtb1uOZmlLVx3wL fqBr9JezlqDAn9aitcD+QzJAL3FdOsCJVa/MwzQyS4tO4dyJsAP9itAdDaKew8MN Y0ON6Ptfb12LkZAc9xoWeITL62wN//U3cut6plP7evfDlbt66823w71kgMxKp2eo 8FURi2c8wlecqNt7GpUHcJHuJAhmNnhCGcz4tKwKY5K11Q/AFMTSnwkRaVrPfpnl NBqrb+dVFxDOcdUf4mdm5zz5AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUpJFGW7eC IsNqTdkQ+TD60qGL1XUwHwYDVR0jBBgwFoAU4vF3N7hMH2eGnAOkf4xBn9QgAWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNjA0LzEyMEMyQzc0M0NF QjExRUY5NEUyNEY1OUM0RjlBRTAyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNHZGM043aE1IMmVHbkFPa2Y0eEJuOVFnQVd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi8wQjcyNUY0NDQ5 NkQxMUVGOUY3RjIxMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBqOAwDQYJKoZIhvcNAQELBQADggEBAJMGLTvGod1h32+W snmBQ5Bi0F3Jd0CG3slL3RFP8TpmNEIWjRk+xy31kKiJaa6rNEjnn0ujgo/MkatR HIguUs7IVOMPN7EzBUAMQ+WHfFqFCF46yw7RYrKbPj9OA+uAnnZx446zyTizHGPr E3d8h3lADmdQqabTcuZlLIdi04tovOfWqxHbQdSGBjy/LQUYx3/7Y3YWAXq5knZs nk+P5R5mEW54EyRafk7WlW1s5LEa2jZ3HKd/PwM79scqYwRhw4KgusuUpdi1l7Qa OOalAHZA39rm8bphSoca5ZFSdLtlTUaMvWreqNS0Ge8pc4jh/zWQZu7EsSDW/OfT ztufW4I= -----END CERTIFICATE-----Generated at Fri Feb 21 13:01:43 2025 by rpki-client