$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa File: 1597CAC6B00711EF863A582EC4F9AE02.roa (raw, json) Hash identifier: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o= Subject key identifier: 52:35:60:95:4D:77:21:AB:03:E9:06:E3:73:F7:34:E6:33:6B:03:2B Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 04 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa Signing time: Sun 01 Dec 2024 17:09:55 +0000 ROA not before: Sun 01 Dec 2024 17:09:55 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 399861 IP address blocks: 2401:d320::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5 Validity Not Before: Dec 1 17:09:55 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674c9862-cbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:4c:99:c4:19:3d:5b:79:9d:62:6e:a0:e1: 3a:e4:66:f6:96:8c:14:42:2f:85:8c:85:3e:9c:60: 8a:9d:07:fc:bd:63:91:4c:f6:e3:87:8d:24:21:0b: 24:96:d4:70:bb:16:20:e9:69:a5:90:64:00:25:e0: f1:23:c2:f9:f3:9c:a9:f4:05:43:93:1b:30:90:89: da:fa:16:5f:dd:1a:30:0c:ce:9f:e3:9a:e8:f0:49: ce:bd:47:dc:41:ab:0b:84:a6:7c:33:13:74:a3:07: a5:63:1e:90:dc:ae:df:32:91:dd:e4:db:ca:b4:13: 48:4c:b4:87:f9:d6:2a:e7:7a:e2:93:5d:36:18:ce: da:ca:92:c6:6c:d9:85:be:31:da:56:ff:85:f4:ab: 9b:67:fb:99:8d:03:9b:9d:d8:e9:2a:d4:81:47:db: 1f:16:f5:e2:21:49:77:cf:f7:89:e5:f6:d4:5b:53: a9:25:8c:81:e9:6a:81:64:89:c2:97:20:0a:a3:bb: 43:31:3c:b9:6a:66:ad:f9:c4:7f:55:e9:99:9e:75: 79:45:91:2f:70:3c:52:8b:72:c7:69:bb:5d:0e:5e: 1d:f7:4a:82:c0:52:65:ed:2c:28:ec:b6:6d:25:22: a6:69:af:23:d3:66:d0:74:a8:b2:30:50:dd:3f:d5: 36:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:35:60:95:4D:77:21:AB:03:E9:06:E3:73:F7:34:E6:33:6B:03:2B X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d320::/32 Signature Algorithm: sha256WithRSAEncryption a0:85:2d:19:f6:b3:62:6c:6e:9c:27:7e:84:12:fe:d0:e3:02: 87:cf:72:95:75:c6:6f:d1:2b:4e:cc:b8:c7:09:08:13:d1:cf: 1d:95:d1:3e:fd:9d:ae:44:0b:55:b7:95:dd:b9:9c:2f:72:3c: 77:ba:32:aa:86:a5:e4:11:05:bd:0b:7c:0f:17:85:45:9d:e7: d1:cc:86:1a:fb:2b:84:cd:0c:11:f4:0f:29:f3:55:12:35:6e: a5:85:9e:f5:22:d9:9b:5a:a0:c4:7f:3e:a3:fa:2e:4a:2e:94: 54:b7:ff:7b:b7:ec:17:62:de:cc:d0:04:90:9e:1d:6f:bb:34: 1e:e3:c7:b9:b5:e2:36:e8:cf:a5:2b:27:db:b3:bd:cb:c8:82: 40:e5:26:c3:4a:c1:e2:15:84:fb:e8:a5:9b:fd:1a:69:8d:f8: 0c:ba:2d:d4:a7:9d:8b:f3:22:3e:c4:f0:44:87:5a:36:0a:31: 0f:e1:7d:17:80:54:72:2a:18:21:7d:76:95:6e:b1:62:e5:7d: 1e:8a:c4:a3:9c:f0:d1:3e:59:58:d6:60:61:78:46:7a:31:a2: c4:1c:07:14:a0:57:fc:7f:06:e1:69:3c:01:6c:7b:d5:20:1c: 6d:25:c9:89:ab:b8:4c:64:59:a1:5d:18:e2:d8:1e:4b:fc:42: 42:53:17:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNDEyMDExNzA5NTVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGM5ODYyLWNiZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH0UyZxBk9W3mdYm6g4TrkZvaWjBRCL4WMhT6cYIqdB/y9Y5FM9uOHjSQhCySW 1HC7FiDpaaWQZAAl4PEjwvnznKn0BUOTGzCQidr6Fl/dGjAMzp/jmujwSc69R9xB qwuEpnwzE3SjB6VjHpDcrt8ykd3k28q0E0hMtIf51irneuKTXTYYztrKksZs2YW+ MdpW/4X0q5tn+5mNA5ud2Okq1IFH2x8W9eIhSXfP94nl9tRbU6kljIHpaoFkicKX IAqju0MxPLlqZq35xH9V6ZmedXlFkS9wPFKLcsdpu10OXh33SoLAUmXtLCjstm0l IqZpryPTZtB0qLIwUN0/1TaNAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUUjVglU13 IasD6Qbjc/c05jNrAyswHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi8xNTk3Q0FDNkIw MDcxMUVGODYzQTU4MkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB0yAwDQYJKoZIhvcNAQELBQADggEBAKCFLRn2s2Jsbpwn foQS/tDjAofPcpV1xm/RK07MuMcJCBPRzx2V0T79na5EC1W3ld25nC9yPHe6MqqG peQRBb0LfA8XhUWd59HMhhr7K4TNDBH0DynzVRI1bqWFnvUi2ZtaoMR/PqP6Lkou lFS3/3u37Bdi3szQBJCeHW+7NB7jx7m14jboz6UrJ9uzvcvIgkDlJsNKweIVhPvo pZv9GmmN+Ay6LdSnnYvzIj7E8ESHWjYKMQ/hfReAVHIqGCF9dpVusWLlfR6KxKOc 8NE+WVjWYGF4RnoxosQcBxSgV/x/BuFpPAFse9UgHG0lyYmruExkWaFdGOLYHkv8 QkJTF1I= -----END CERTIFICATE-----Generated at Thu Feb 6 04:56:19 2025 by rpki-client