$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/1DD3ED16BDB611EF8F65515FC4F9AE02.roa File: 1DD3ED16BDB611EF8F65515FC4F9AE02.roa (raw, json) Hash identifier: NYziG9pEfTMgU56vyqT4ECUx0+xGwWZL89cQ95occgk= Subject key identifier: 06:D8:25:74:F4:2A:C1:AD:2D:CA:65:D9:DA:A2:FA:DC:CD:86:F6:05 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 017F Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/1DD3ED16BDB611EF8F65515FC4F9AE02.roa Signing time: Thu 19 Dec 2024 03:05:35 +0000 ROA not before: Thu 19 Dec 2024 03:05:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152187 IP address blocks: 2401:b60:fe00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B Validity Not Before: Dec 19 03:05:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67638d7f-3441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:61:89:a1:d9:a8:b1:34:f0:bb:17:85:62:75: df:ef:d6:9e:63:62:c4:36:52:f4:ed:30:03:c8:46: 59:fc:d7:72:60:91:fe:0d:51:b8:18:99:d5:0b:78: af:75:76:65:68:89:51:fe:b9:1d:c0:77:3a:bc:ae: 22:a3:4c:43:6f:83:d4:c2:3c:7d:d7:70:2c:45:38: 58:67:74:b2:5c:6c:34:88:c9:36:c7:0f:9f:bb:b1: f5:dc:6d:97:ff:93:13:fd:37:a6:38:9b:48:48:8c: 54:10:0a:a4:d2:6d:83:cc:ad:ac:ec:84:b0:6b:3d: 59:3e:0f:1e:8f:8f:b4:b2:f7:6f:13:3e:84:dd:9b: b1:b5:e8:ed:c1:22:bc:82:09:8d:d3:b6:ba:68:1c: b3:ba:aa:c5:00:a3:ef:11:7b:9b:b7:b6:da:6d:81: 6b:fb:d8:a4:f3:6c:63:50:4f:90:15:d1:f6:f0:9e: 1a:5a:64:ad:fa:bb:2d:bf:64:c0:d1:44:91:ee:04: 38:c8:62:41:82:7a:29:de:7c:f1:75:69:70:6a:b5: bc:77:f7:fa:88:56:50:53:63:68:fb:ab:c5:c7:1e: f4:cf:d5:7e:56:fb:62:61:a9:2c:75:fd:6d:d6:ad: d9:39:cd:85:42:c6:75:01:86:0c:ec:f4:26:02:87: 68:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D8:25:74:F4:2A:C1:AD:2D:CA:65:D9:DA:A2:FA:DC:CD:86:F6:05 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/1DD3ED16BDB611EF8F65515FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:fe00::/40 Signature Algorithm: sha256WithRSAEncryption 03:61:2d:cd:84:a6:00:03:a5:e7:7e:f5:d3:7d:3e:0c:a3:8f: 97:00:db:4e:66:b3:40:cf:85:a2:6b:36:aa:57:b2:38:08:36: f9:03:ae:88:b2:fd:6b:38:c7:cf:c2:bc:7c:1d:9c:af:a1:19: 24:70:59:5f:07:f4:2c:48:59:f1:d3:1f:42:4f:e2:a1:a8:3f: da:fb:e1:a7:ce:29:51:8e:e3:63:b7:dc:d4:56:8a:34:cc:21: c7:59:0e:3f:cd:44:bd:84:75:b0:7c:9c:a4:e7:b3:38:98:20: 92:e0:b0:ef:07:9b:c2:71:13:fe:5b:17:17:bb:c6:be:f6:cd: d2:3e:5b:ff:e1:f2:e1:e3:a2:9d:a1:53:63:b2:40:e9:6d:e5: b0:df:c8:5d:c3:cb:d4:7d:47:4c:66:29:a0:1c:b2:ee:c2:b6: 7c:37:be:56:a5:9d:22:7f:ec:71:13:87:00:13:31:c4:2c:b2: a4:9c:11:53:27:bb:48:a0:5b:32:20:99:a0:7e:7f:e8:a8:90: 10:0d:ac:35:6b:57:6c:a3:00:54:b1:db:55:65:41:9d:98:6e: 62:62:b4:3b:0a:ae:bb:9c:26:b5:8c:0e:55:13:3b:fb:33:cd: 84:92:d1:76:07:d5:7f:dd:0d:37:94:76:ac:dd:0d:da:1a:a3: e7:79:b0:0c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQxMjE5MDMwNTM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzOGQ3Zi0zNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGGJodmosTTwuxeFYnXf79aeY2LENlL07TADyEZZ/NdyYJH+DVG4GJnVC3iv dXZlaIlR/rkdwHc6vK4io0xDb4PUwjx913AsRThYZ3SyXGw0iMk2xw+fu7H13G2X /5MT/TemOJtISIxUEAqk0m2DzK2s7ISwaz1ZPg8ej4+0svdvEz6E3ZuxtejtwSK8 ggmN07a6aByzuqrFAKPvEXubt7babYFr+9ik82xjUE+QFdH28J4aWmSt+rstv2TA 0USR7gQ4yGJBgnop3nzxdWlwarW8d/f6iFZQU2No+6vFxx70z9V+VvtiYaksdf1t 1q3ZOc2FQsZ1AYYM7PQmAodolQIDAQABo4IClzCCApMwHQYDVR0OBBYEFAbYJXT0 KsGtLcpl2dqi+tzNhvYFMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMUREM0VEMTZC REI2MTFFRjhGNjU1MTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAQtg/jANBgkqhkiG9w0BAQsFAAOCAQEAA2EtzYSmAAOl 5371030+DKOPlwDbTmazQM+Foms2qleyOAg2+QOuiLL9azjHz8K8fB2cr6EZJHBZ Xwf0LEhZ8dMfQk/ioag/2vvhp84pUY7jY7fc1FaKNMwhx1kOP81EvYR1sHycpOez OJggkuCw7webwnET/lsXF7vGvvbN0j5b/+Hy4eOinaFTY7JA6W3lsN/IXcPL1H1H TGYpoByy7sK2fDe+VqWdIn/scROHABMxxCyypJwRUye7SKBbMiCZoH5/6KiQEA2s NWtXbKMAVLHbVWVBnZhuYmK0Owquu5wmtYwOVRM7+zPNhJLRdgfVf90NN5R2rN0N 2hqj53mwDA== -----END CERTIFICATE-----Generated at Wed Feb 19 21:56:51 2025 by rpki-client