$ rpki-client -vvf rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa File: 417DA2566D5E11EE831C802AC4F9AE02.roa (raw, json) Hash identifier: N73Qn6fYVAUW9KUPlhOzNYAivlJPaPply2UAI5lOlWg= Subject key identifier: FD:E9:96:9F:CE:30:57:4A:64:F3:5B:60:C5:9C:2A:00:B1:CF:00:E6 Certificate issuer: /CN=A911BE38/serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Certificate serial: 0195 Authority key identifier: B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa Signing time: Tue 03 Dec 2024 02:25:55 +0000 ROA not before: Tue 03 Dec 2024 02:25:55 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132857 IP address blocks: 2001:df3:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BE38, serialNumber=B18C43743466921DB0425E7367D55C28EE4AF1CD Validity Not Before: Dec 3 02:25:55 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674e6c33-4d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:12:8b:d3:d3:99:a5:c2:e3:ae:65:c3:4f: 62:d9:ab:f3:6c:71:d5:3b:dc:46:a5:94:53:45:3a: a2:4e:4d:b8:61:4d:47:5e:e7:24:6c:05:b9:6b:02: 4d:0b:8c:2d:fd:9e:db:4e:d0:b2:a0:11:1f:4c:48: 35:24:33:88:7a:69:0b:46:d6:c6:d5:3d:69:b0:bd: 37:3d:fa:7b:cf:c6:28:9b:04:2f:cd:cf:a7:9d:bb: 69:72:6b:d4:35:fe:0e:89:b7:6a:19:2b:b0:a4:8f: 37:33:90:f9:33:02:a0:86:40:23:44:33:50:5b:af: 2a:3a:ad:11:9d:b4:02:6a:7b:d6:b1:85:ea:e7:b7: 03:e5:d2:d0:d0:4f:38:5d:21:94:3f:43:99:86:70: 76:03:d0:a3:95:30:2e:c6:67:86:45:e0:bc:d8:a8: 25:c0:35:23:f0:f6:55:30:31:97:c9:68:b8:6b:2c: bc:96:1a:07:a0:b8:8c:3d:49:89:2a:dd:61:02:97: cd:5b:7a:c4:9c:c4:08:ee:99:f4:f1:25:d1:a5:15: 8d:ee:99:cf:40:de:84:e6:f3:15:49:f7:e3:51:3b: 40:ad:59:2d:74:88:b6:1b:7c:9b:b6:fa:50:6c:c5: 71:3b:c7:35:e6:a5:3e:0e:e7:2f:86:ca:e5:c6:66: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E9:96:9F:CE:30:57:4A:64:F3:5B:60:C5:9C:2A:00:B1:CF:00:E6 X509v3 Authority Key Identifier: keyid:B1:8C:43:74:34:66:92:1D:B0:42:5E:73:67:D5:5C:28:EE:4A:F1:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYxDdDRmkh2wQl5zZ9VcKO5K8c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BE38/6DA2D9B2541B11EDBEBA4A50C4F9AE02/417DA2566D5E11EE831C802AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:7c0::/48 Signature Algorithm: sha256WithRSAEncryption 26:fc:e7:c7:49:7a:77:80:82:be:f4:22:42:72:d1:df:38:de: 64:1c:4c:87:e8:90:15:59:e5:4f:21:b4:f5:6b:9e:dd:67:74: 51:92:62:bd:45:f7:77:d7:a4:13:02:bc:f5:76:eb:7b:6b:58: 36:02:e0:76:ee:ab:1c:52:6e:5c:cb:4d:ac:81:15:6d:87:2f: 6e:9b:c1:4a:e4:af:c4:91:82:1d:71:3e:6e:21:89:43:e2:56: 80:9a:82:3d:5f:3b:97:d1:6d:5f:c3:33:86:71:4f:36:ce:a8: 52:2a:bd:aa:7b:95:ee:01:df:d2:36:2c:95:70:02:14:6f:f0: 54:5f:50:6f:07:50:8f:8a:aa:b4:c7:6f:c5:91:7f:93:9d:bf: 26:14:9c:5b:6d:fb:01:af:54:75:c1:50:ac:7d:ba:65:0f:00: ae:61:e7:55:70:15:05:36:76:55:02:0b:48:5e:70:9b:b1:fa: 40:17:d4:5a:17:9b:c3:e8:e4:9f:2b:81:44:f9:c7:f3:40:3e: 97:8d:3c:2d:8b:a0:ee:9c:77:e5:33:18:59:dd:47:7e:4c:f5: 07:b5:2f:12:01:81:3c:1a:5c:97:d2:ae:d0:60:5c:53:8f:ca: b6:31:68:8b:13:4f:b4:3e:a1:02:4d:59:58:0b:9d:d5:7a:37: ec:6a:9c:be -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFMzgxMTAvBgNVBAUTKEIxOEM0Mzc0MzQ2NjkyMURCMDQyNUU3MzY3RDU1QzI4 RUU0QUYxQ0QwHhcNMjQxMjAzMDIyNTU1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlNmMzMy00ZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUQSi9PTmaXC465lw09i2avzbHHVO9xGpZRTRTqiTk24YU1HXuckbAW5awJN C4wt/Z7bTtCyoBEfTEg1JDOIemkLRtbG1T1psL03Pfp7z8YomwQvzc+nnbtpcmvU Nf4OibdqGSuwpI83M5D5MwKghkAjRDNQW68qOq0RnbQCanvWsYXq57cD5dLQ0E84 XSGUP0OZhnB2A9CjlTAuxmeGReC82KglwDUj8PZVMDGXyWi4ayy8lhoHoLiMPUmJ Kt1hApfNW3rEnMQI7pn08SXRpRWN7pnPQN6E5vMVSffjUTtArVktdIi2G3ybtvpQ bMVxO8c15qU+DucvhsrlxmYCFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP3plp/O MFdKZPNbYMWcKgCxzwDmMB8GA1UdIwQYMBaAFLGMQ3Q0ZpIdsEJec2fVXCjuSvHN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkUzOC82REEyRDlCMjU0 MUIxMUVEQkVCQTRBNTBDNEY5QUUwMi9zWXhEZERSbWtoMndRbDV6WjlWY0tPNUs4 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZeERkRFJta2gyd1FsNXpaOVZjS081SzhjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJFMzgvNkRBMkQ5QjI1NDFCMTFFREJFQkE0QTUwQzRGOUFFMDIvNDE3REEyNTY2 RDVFMTFFRTgzMUM4MDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zB8AwDQYJKoZIhvcNAQELBQADggEBACb858dJeneA gr70IkJy0d843mQcTIfokBVZ5U8htPVrnt1ndFGSYr1F93fXpBMCvPV263trWDYC 4HbuqxxSblzLTayBFW2HL26bwUrkr8SRgh1xPm4hiUPiVoCagj1fO5fRbV/DM4Zx TzbOqFIqvap7le4B39I2LJVwAhRv8FRfUG8HUI+KqrTHb8WRf5OdvyYUnFtt+wGv VHXBUKx9umUPAK5h51VwFQU2dlUCC0hecJux+kAX1FoXm8Po5J8rgUT5x/NAPpeN PC2LoO6cd+UzGFndR35M9Qe1LxIBgTwaXJfSrtBgXFOPyrYxaIsTT7Q+oQJNWVgL ndV6N+xqnL4= -----END CERTIFICATE-----Generated at Sat Apr 26 07:57:14 2025 by rpki-client