$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9772767EB69A11EFBEB6CE0CC4F9AE02.roa File: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (raw, json) Hash identifier: OTItAaxPPemMiPzq6xmShyEDu1glCIdZDgb+Zo6pNyA= Subject key identifier: 92:D4:BF:93:33:6F:F5:43:AA:17:59:62:A7:8B:C9:F4:34:AD:8F:77 Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0150 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9772767EB69A11EFBEB6CE0CC4F9AE02.roa Signing time: Tue 10 Dec 2024 02:00:55 +0000 ROA not before: Tue 10 Dec 2024 02:00:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 54994 IP address blocks: 2403:1cc0:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 05:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2 Validity Not Before: Dec 10 02:00:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6757a0d7-6e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:17:5c:80:1c:0e:38:c2:46:8a:f4:f4:57:1f: 6f:f9:21:3c:8b:e1:7d:ca:dd:cb:42:7b:8f:70:cf: 4a:5c:ce:77:26:42:5d:31:f0:fc:36:f8:17:20:de: d6:5e:bb:67:c4:ce:97:cf:0a:7f:17:cf:6c:e9:d2: 0d:4b:54:d7:a9:8c:eb:d7:4f:c9:a3:9b:db:2d:14: a7:9c:b8:57:88:f8:01:c2:33:eb:33:17:3b:7e:da: 02:91:74:aa:74:46:81:1d:55:fc:66:fa:1e:77:9a: b6:65:b3:0b:cd:44:42:29:47:3b:78:ae:12:af:ed: 84:be:28:f5:e9:61:9e:fb:61:8f:c7:91:62:5c:50: 12:cd:fe:ed:99:db:d0:c3:48:5c:e4:4b:9b:0d:5b: 6c:d5:1f:2e:0e:50:47:fa:87:5a:44:ea:86:9f:0f: 8f:15:13:83:75:27:7f:40:40:57:fe:36:11:5f:07: 75:b4:a0:0b:e5:24:b5:07:5b:f9:50:f7:cb:b8:78: a7:ba:d1:67:26:e9:b1:5b:bf:09:1b:9e:7f:75:ee: 54:00:95:f4:f6:4b:be:ea:1e:55:e2:7d:e5:1b:ed: 55:c1:e0:17:26:76:e5:60:23:b7:7c:03:73:99:7c: 35:55:34:85:e0:38:a6:24:7d:81:1a:5d:f9:15:fd: 44:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D4:BF:93:33:6F:F5:43:AA:17:59:62:A7:8B:C9:F4:34:AD:8F:77 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9772767EB69A11EFBEB6CE0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:1cc0:1005::/48 Signature Algorithm: sha256WithRSAEncryption 57:44:39:ae:d3:99:74:9c:ae:f7:c9:96:82:ea:56:f9:1f:70: 33:a2:60:61:c4:ce:f9:90:75:0e:bf:d2:20:20:4e:a7:cf:9a: f4:3d:f2:b3:8a:b2:2f:05:f2:18:1d:b9:14:4a:d6:03:0d:b4: 0b:07:09:6c:07:67:c2:f0:45:e3:64:0b:27:a7:cf:18:ec:4d: 0a:74:20:98:05:3a:e1:d1:ba:e4:de:ea:a2:fa:c7:a8:74:18: fd:cb:95:17:4b:bd:b1:08:ad:9e:49:49:b8:cf:10:f3:1f:2b: 95:30:92:9b:c8:27:43:37:0e:a2:ab:59:a5:19:2f:2c:3d:af: f1:70:25:67:9a:62:a3:ee:e8:63:c1:9c:3d:2f:07:60:cb:73: d6:d0:bb:91:9f:ed:b0:bb:60:fd:9b:88:b4:66:ad:09:fc:a3: 8b:68:9a:d6:45:5d:a5:c5:8b:22:06:71:10:f6:79:ab:7b:ea: 5a:02:67:0b:97:55:90:21:03:f1:10:ab:2f:d0:13:42:ea:01: 16:41:9d:6b:40:24:81:82:27:d3:a8:ed:be:e4:0f:f6:01:07: 39:a2:3a:09:8b:ef:76:4f:20:c2:6e:13:7e:6c:41:e8:d4:7e: 0e:70:42:c2:ea:a0:d0:70:92:a2:03:28:e3:7e:46:15:6e:24: d4:22:f1:80 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjQxMjEwMDIwMDU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU3YTBkNy02ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RdcgBwOOMJGivT0Vx9v+SE8i+F9yt3LQnuPcM9KXM53JkJdMfD8NvgXIN7W XrtnxM6Xzwp/F89s6dINS1TXqYzr10/Jo5vbLRSnnLhXiPgBwjPrMxc7ftoCkXSq dEaBHVX8Zvoed5q2ZbMLzURCKUc7eK4Sr+2Evij16WGe+2GPx5FiXFASzf7tmdvQ w0hc5EubDVts1R8uDlBH+odaROqGnw+PFRODdSd/QEBX/jYRXwd1tKAL5SS1B1v5 UPfLuHinutFnJumxW78JG55/de5UAJX09ku+6h5V4n3lG+1VweAXJnblYCO3fANz mXw1VTSF4DimJH2BGl35Ff1EGQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJLUv5Mz b/VDqhdZYqeLyfQ0rY93MB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4RTIvOTUyRkE2MzJEMkU2MTFFRDlBNTJENTVBQzRGOUFFMDIvOTc3Mjc2N0VC NjlBMTFFRkJFQjZDRTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAxzAEAUwDQYJKoZIhvcNAQELBQADggEBAFdEOa7TmXSc rvfJloLqVvkfcDOiYGHEzvmQdQ6/0iAgTqfPmvQ98rOKsi8F8hgduRRK1gMNtAsH CWwHZ8LwReNkCyenzxjsTQp0IJgFOuHRuuTe6qL6x6h0GP3LlRdLvbEIrZ5JSbjP EPMfK5UwkpvIJ0M3DqKrWaUZLyw9r/FwJWeaYqPu6GPBnD0vB2DLc9bQu5Gf7bC7 YP2biLRmrQn8o4tomtZFXaXFiyIGcRD2eat76loCZwuXVZAhA/EQqy/QE0LqARZB nWtAJIGCJ9Oo7b7kD/YBBzmiOgmL73ZPIMJuE35sQejUfg5wQsLqoNBwkqIDKON+ RhVuJNQi8YA= -----END CERTIFICATE-----Generated at Thu Feb 20 02:39:21 2025 by rpki-client