$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa File: D2DF3ACCE25911EF9C741573C4F9AE02.roa (raw, json) Hash identifier: mzsLMpqKZHnpS1jxQCrwB8rjSWZK0J6cgj7y6Sy2ob0= Subject key identifier: 39:A1:B1:3F:A4:04:6D:73:16:1C:3F:0F:F8:A5:7C:ED:CB:10:6C:90 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 019F Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa Signing time: Mon 03 Feb 2025 18:08:09 +0000 ROA not before: Mon 03 Feb 2025 18:08:09 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 53835 IP address blocks: 2401:b60:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 05:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B Validity Not Before: Feb 3 18:08:09 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a10609-c3b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:71:60:36:67:63:2b:55:08:37:4f:62:ca: 2d:47:aa:d6:90:82:34:f3:19:bd:44:c2:50:bd:0c: 14:9e:16:b1:3d:93:f6:b0:35:3a:7c:a0:56:71:e2: 85:c5:f5:18:8b:ef:78:a2:2f:d3:41:94:76:25:4a: a4:26:b7:eb:fa:73:b0:42:86:25:8f:13:71:bb:39: cb:ac:07:9a:c0:53:c2:49:b9:1d:f0:05:d2:a0:70: c1:8b:e5:92:57:ee:a0:76:53:5d:0e:94:bc:23:f4: bb:d1:5b:7c:48:59:b2:80:54:a5:9d:55:60:4e:26: f4:44:f2:ad:0e:d6:76:45:b6:68:38:50:e4:42:fa: 22:bd:2e:7b:af:81:f7:1f:fd:00:aa:76:26:4e:05: 5c:86:b4:17:f6:0e:ab:86:95:be:7c:6e:c1:37:84: d6:8b:56:37:80:c0:df:f2:85:29:1c:bf:95:ef:c3: 9a:01:52:76:91:e7:55:cc:1f:70:68:78:87:27:02: 63:83:bd:09:7e:c2:f8:49:21:f3:23:d8:b8:45:f6: 20:bb:6c:df:31:44:08:25:b2:af:0d:a0:b3:12:80: 91:72:53:9e:74:a9:0c:6d:1a:75:08:ec:c9:3e:8d: ea:cf:b7:ab:ad:bd:a1:a7:59:59:41:c1:0b:7e:bc: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A1:B1:3F:A4:04:6D:73:16:1C:3F:0F:F8:A5:7C:ED:CB:10:6C:90 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:e100::/40 Signature Algorithm: sha256WithRSAEncryption 6b:69:a3:17:05:52:1a:24:55:ec:2f:2c:7d:e7:5b:ba:8c:be: 8f:74:a7:a0:47:b4:c8:da:03:11:d1:cb:96:28:21:e4:bc:af: d1:f3:17:f0:83:a9:84:39:f0:43:19:15:c6:a5:7f:26:b7:3f: fd:a2:d0:71:54:c4:70:d0:45:4f:76:df:ac:14:73:75:0a:f2: 01:4f:c3:46:cc:2c:f1:df:53:62:b5:c4:87:76:ba:7d:e2:6a: 4a:9a:91:be:a4:cf:ec:e0:ab:03:cb:4f:8b:f1:d2:f3:d4:ce: e9:ad:2d:2f:48:c8:dd:3b:46:cf:f5:3e:ee:e6:32:6d:b5:53: 18:bf:2e:d6:75:e4:04:e2:df:bc:ac:cd:c7:91:e0:e0:c7:d3: db:24:79:c9:0a:e2:f5:52:4b:68:4b:50:a1:e2:2b:4f:6f:20: 1d:61:bf:c7:52:41:42:fb:e4:ad:b7:27:ac:2c:2a:d3:80:74: 07:16:27:91:cc:32:2a:a0:7e:5f:24:97:41:aa:2f:2a:99:fb: 46:2b:aa:d7:92:9a:de:fb:29:95:86:29:89:25:cc:d2:bf:8c: 98:e5:5b:0b:83:31:93:d7:ac:47:a8:87:0f:d8:cc:16:eb:50: 41:be:62:c3:a1:71:98:78:e1:af:30:4f:af:0e:66:a1:5c:ad: 62:b4:99:c3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwMjAzMTgwODA5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ExMDYwOS1jM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HpxYDZnYytVCDdPYsotR6rWkII08xm9RMJQvQwUnhaxPZP2sDU6fKBWceKF xfUYi+94oi/TQZR2JUqkJrfr+nOwQoYljxNxuznLrAeawFPCSbkd8AXSoHDBi+WS V+6gdlNdDpS8I/S70Vt8SFmygFSlnVVgTib0RPKtDtZ2RbZoOFDkQvoivS57r4H3 H/0AqnYmTgVchrQX9g6rhpW+fG7BN4TWi1Y3gMDf8oUpHL+V78OaAVJ2kedVzB9w aHiHJwJjg70JfsL4SSHzI9i4RfYgu2zfMUQIJbKvDaCzEoCRclOedKkMbRp1COzJ Po3qz7errb2hp1lZQcELfrzSowIDAQABo4IClzCCApMwHQYDVR0OBBYEFDmhsT+k BG1zFhw/D/ilfO3LEGyQMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvRDJERjNBQ0NF MjU5MTFFRjlDNzQxNTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAQtg4TANBgkqhkiG9w0BAQsFAAOCAQEAa2mjFwVSGiRV 7C8sfedbuoy+j3SnoEe0yNoDEdHLligh5Lyv0fMX8IOphDnwQxkVxqV/Jrc//aLQ cVTEcNBFT3bfrBRzdQryAU/DRsws8d9TYrXEh3a6feJqSpqRvqTP7OCrA8tPi/HS 89TO6a0tL0jI3TtGz/U+7uYybbVTGL8u1nXkBOLfvKzNx5Hg4MfT2yR5yQri9VJL aEtQoeIrT28gHWG/x1JBQvvkrbcnrCwq04B0BxYnkcwyKqB+XySXQaovKpn7Riuq 15Ka3vsplYYpiSXM0r+MmOVbC4Mxk9esR6iHD9jMFutQQb5iw6FxmHjhrzBPrw5m oVytYrSZww== -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:21 2025 by rpki-client