$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E7DC24BCC4C211EF8670983EC4F9AE02.roa File: E7DC24BCC4C211EF8670983EC4F9AE02.roa (raw, json) Hash identifier: uEWJ7/SbDN/8MDuGUTA/PUoegQuUTtnZid1qI1+pgB0= Subject key identifier: 4C:36:2E:F3:CE:18:90:94:8F:08:B9:83:20:06:A2:B3:AC:0E:F4:F4 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0189 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E7DC24BCC4C211EF8670983EC4F9AE02.roa Signing time: Sat 28 Dec 2024 02:24:46 +0000 ROA not before: Sat 28 Dec 2024 02:24:46 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 401434 IP address blocks: 2401:b60:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 05:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B Validity Not Before: Dec 28 02:24:46 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=676f616e-f68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:86:db:19:76:0d:f4:72:86:c2:a9:b6:fd: d1:93:2e:56:07:ab:8d:aa:ad:47:9a:a7:33:46:3e: 16:65:f3:83:47:e7:6b:64:68:d6:ec:1b:c4:ce:08: 6b:ba:68:73:41:d0:96:2a:c0:ea:a6:18:ab:18:4c: b6:b6:f9:46:a5:cc:e8:9a:ef:64:9b:2a:40:9f:12: 04:3d:44:e6:c1:7f:3a:51:89:ad:c8:bd:2c:49:53: f1:30:7b:96:d9:df:1f:a3:33:58:54:b3:a7:ac:0e: 25:45:4f:c2:96:b5:ab:52:9a:9a:cf:d2:d9:b1:07: 13:ee:da:c9:df:cf:a4:d0:f0:ec:16:71:5b:23:26: 91:23:4b:97:cc:73:2c:f9:96:f5:3b:4b:8b:4c:f0: 41:1b:08:ea:d7:28:52:de:bc:53:93:b4:72:91:a7: 6f:87:ff:c0:26:49:bc:a1:58:e9:9b:f5:69:50:19: 83:13:46:e5:55:c5:5d:92:a7:fe:14:a3:56:8b:3f: 2f:05:94:56:63:01:44:be:66:2e:ee:ab:a5:f0:01: 76:61:18:51:e3:35:77:0e:9f:d5:4b:83:95:0a:79: 52:d0:2b:b2:f6:58:b6:65:a4:15:2e:13:85:22:e7: c3:92:84:9c:ea:6b:21:fe:d7:06:ff:54:65:b3:98: a5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:36:2E:F3:CE:18:90:94:8F:08:B9:83:20:06:A2:B3:AC:0E:F4:F4 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E7DC24BCC4C211EF8670983EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 24:d3:8f:3f:30:74:11:56:96:aa:9c:65:70:48:2b:e0:46:8b: 6f:78:a3:7b:ed:00:a8:89:ad:b9:cc:3d:ac:c8:6e:18:77:69: e4:c2:73:f9:b2:62:2d:b3:68:fa:39:7b:9e:37:51:5a:61:fd: ff:82:29:c1:6a:8a:6b:5b:bf:39:dc:78:15:f8:ff:52:9f:ac: 83:2b:ec:e5:ae:26:4b:53:02:87:9a:5a:a3:ee:97:4a:15:7e: 26:9e:de:32:f6:d9:c2:79:8e:04:b8:e6:c9:81:85:11:31:bb: a8:1e:73:00:c9:a9:44:73:23:be:3b:2b:40:fd:31:1c:76:e4: 1e:7d:78:f0:b8:f8:2e:ad:f6:f0:a9:bb:f7:e9:3d:37:5d:f3: 72:1b:1b:87:ef:9d:21:c6:f7:05:e4:c5:42:73:27:d0:44:fd: d1:e2:1c:df:1b:ef:74:40:70:92:4b:29:9a:d8:ed:a7:8c:79: c5:63:c3:7d:57:d7:28:a1:43:27:95:1e:f7:1e:53:be:58:c0: e1:6f:7f:ee:06:c8:57:00:8c:35:ef:a6:42:3e:ee:d2:90:4a: 10:77:74:86:43:70:cc:c9:6d:74:25:86:ff:3b:74:49:a3:e8: 60:a2:93:57:a8:88:1d:72:aa:b5:6c:0f:87:93:ed:a7:93:19: ad:8f:e6:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQxMjI4MDIyNDQ2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZmNjE2ZS1mNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8yG2xl2DfRyhsKptv3Rky5WB6uNqq1HmqczRj4WZfODR+drZGjW7BvEzghr umhzQdCWKsDqphirGEy2tvlGpczomu9kmypAnxIEPUTmwX86UYmtyL0sSVPxMHuW 2d8fozNYVLOnrA4lRU/ClrWrUpqaz9LZsQcT7trJ38+k0PDsFnFbIyaRI0uXzHMs +Zb1O0uLTPBBGwjq1yhS3rxTk7Rykadvh//AJkm8oVjpm/VpUBmDE0blVcVdkqf+ FKNWiz8vBZRWYwFEvmYu7qul8AF2YRhR4zV3Dp/VS4OVCnlS0Cuy9li2ZaQVLhOF IufDkoSc6msh/tcG/1Rls5ilsQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEw2LvPO GJCUjwi5gyAGorOsDvT0MB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvRTdEQzI0QkND NEMyMTFFRjg2NzA5ODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAQtg//wwDQYJKoZIhvcNAQELBQADggEBACTTjz8wdBFW lqqcZXBIK+BGi294o3vtAKiJrbnMPazIbhh3aeTCc/myYi2zaPo5e543UVph/f+C KcFqimtbvznceBX4/1KfrIMr7OWuJktTAoeaWqPul0oVfiae3jL22cJ5jgS45smB hRExu6gecwDJqURzI747K0D9MRx25B59ePC4+C6t9vCpu/fpPTdd83IbG4fvnSHG 9wXkxUJzJ9BE/dHiHN8b73RAcJJLKZrY7aeMecVjw31X1yihQyeVHvceU75YwOFv f+4GyFcAjDXvpkI+7tKQShB3dIZDcMzJbXQlhv87dEmj6GCik1eoiB1yqrVsD4eT 7aeTGa2P5oU= -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:14 2025 by rpki-client