$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa File: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (raw, json) Hash identifier: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw= Subject key identifier: A4:67:49:0B:97:31:7D:BA:54:E4:EB:87:7A:10:FD:5B:BB:FA:42:B4 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 02 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa Signing time: Sun 01 Dec 2024 08:43:41 +0000 ROA not before: Sun 01 Dec 2024 08:43:41 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153391 IP address blocks: 2401:d320::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5 Validity Not Before: Dec 1 08:43:41 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674c21bc-66a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:2f:86:da:ae:e8:82:41:24:c9:0a:d5:2e: b7:08:96:ef:98:2d:19:aa:64:77:04:39:47:10:a6: 81:28:5d:06:2c:23:05:35:18:25:a4:91:05:0e:da: 97:f3:9e:0f:48:b6:f5:6a:b4:24:f9:d0:fc:9a:e3: 51:dc:7f:36:41:4e:3c:cb:04:11:da:26:bd:69:fa: d1:f7:c9:c0:64:eb:b5:c1:ce:db:76:0e:7a:98:35: 75:1c:2b:36:aa:f9:5a:f9:49:37:c3:c4:b2:9a:77: 1f:ce:f3:01:b4:63:da:8a:be:5b:45:00:2a:aa:78: 30:85:54:36:cd:8d:4a:ce:7d:8c:c1:b7:6d:93:df: fc:58:b3:74:bf:d1:84:be:1e:9d:a3:e9:4a:04:39: e9:bf:b4:3f:a9:dc:0c:7f:17:1e:47:d6:5b:6d:86: 26:4b:d5:de:00:be:41:80:e8:b6:49:12:b3:c3:7f: 82:e6:ec:56:00:e1:5e:e2:ee:f0:f0:4a:a9:5f:c0: 35:f0:e2:0b:40:ee:dd:54:ae:a0:30:b4:b0:5f:79: 7a:a8:ce:0c:9f:42:85:26:22:26:0c:71:7d:43:dd: 00:e8:ee:d0:07:f2:44:44:c7:72:9b:dc:69:64:8e: 20:c6:fe:29:fd:19:36:58:21:0a:ae:0f:87:21:0a: a0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:67:49:0B:97:31:7D:BA:54:E4:EB:87:7A:10:FD:5B:BB:FA:42:B4 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d320::/32 Signature Algorithm: sha256WithRSAEncryption 5d:ff:42:f3:c0:97:3f:91:78:de:6c:2f:42:e6:9f:1c:84:23: 92:b9:13:cd:71:56:81:7a:8e:d9:ca:f4:62:29:46:50:96:56: 47:7a:67:5c:84:20:0a:4c:46:00:57:3e:77:11:35:b9:be:35: e4:5f:84:24:61:39:e8:a7:ac:a0:6d:f1:34:b7:6d:73:30:9f: 98:7d:d9:29:b0:34:6b:d2:75:5e:87:a6:c4:24:a1:08:84:2b: 17:c1:26:ed:50:fb:6b:76:9c:eb:11:5d:6d:8f:0e:48:e9:17: bd:e1:49:0d:f6:63:3e:73:0f:44:0d:a0:c4:cb:4e:2f:7d:0f: 9f:d6:e4:f2:e0:0f:6c:3c:70:b9:56:c6:9f:43:b3:94:9c:c2: d7:ce:bf:b2:ee:bd:61:27:de:ec:4d:e5:a5:82:a7:8d:4e:95: e4:75:d0:50:55:e1:45:f7:f7:79:ac:7a:5a:d5:7b:69:2c:3d: 36:77:4c:73:f4:43:d0:dc:42:a0:60:1b:ba:9f:16:5f:7e:ae: e5:cd:fd:00:6e:1d:a3:17:47:75:b6:ae:5c:c7:c7:6b:26:2c: b3:6a:a8:e7:44:23:55:54:09:8c:2e:c7:e8:71:01:a8:14:9d: 89:73:24:b0:12:17:d8:88:04:67:95:f5:95:1a:e2:6b:33:25: 58:d2:ad:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNDEyMDEwODQzNDFaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGMyMWJjLTY2YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAkC+G2q7ogkEkyQrVLrcIlu+YLRmqZHcEOUcQpoEoXQYsIwU1GCWkkQUO2pfz ng9ItvVqtCT50Pya41HcfzZBTjzLBBHaJr1p+tH3ycBk67XBztt2DnqYNXUcKzaq +Vr5STfDxLKadx/O8wG0Y9qKvltFACqqeDCFVDbNjUrOfYzBt22T3/xYs3S/0YS+ Hp2j6UoEOem/tD+p3Ax/Fx5H1ltthiZL1d4AvkGA6LZJErPDf4Lm7FYA4V7i7vDw SqlfwDXw4gtA7t1UrqAwtLBfeXqozgyfQoUmIiYMcX1D3QDo7tAH8kREx3Kb3Glk jiDG/in9GTZYIQquD4chCqAXAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUpGdJC5cx fbpU5OuHehD9W7v6QrQwHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi81RDVDRURDRUFG QzAxMUVGQUEyRTM0NTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB0yAwDQYJKoZIhvcNAQELBQADggEBAF3/QvPAlz+ReN5s L0LmnxyEI5K5E81xVoF6jtnK9GIpRlCWVkd6Z1yEIApMRgBXPncRNbm+NeRfhCRh OeinrKBt8TS3bXMwn5h92SmwNGvSdV6HpsQkoQiEKxfBJu1Q+2t2nOsRXW2PDkjp F73hSQ32Yz5zD0QNoMTLTi99D5/W5PLgD2w8cLlWxp9Ds5ScwtfOv7LuvWEn3uxN 5aWCp41OleR10FBV4UX393mselrVe2ksPTZ3THP0Q9DcQqBgG7qfFl9+ruXN/QBu HaMXR3W2rlzHx2smLLNqqOdEI1VUCYwux+hxAagUnYlzJLASF9iIBGeV9ZUa4msz JVjSrYk= -----END CERTIFICATE-----Generated at Thu Feb 6 05:12:47 2025 by rpki-client