$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/FDD39BD607B811F0AB98B333C4F9AE02.roa File: FDD39BD607B811F0AB98B333C4F9AE02.roa (raw, json) Hash identifier: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU= Subject key identifier: 4C:47:AC:AA:D2:CF:F6:13:BD:C1:82:94:BD:68:E9:C2:AC:B3:78:E9 Certificate issuer: /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Certificate serial: 11 Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/FDD39BD607B811F0AB98B333C4F9AE02.roa Signing time: Sun 23 Mar 2025 07:32:36 +0000 ROA not before: Sun 23 Mar 2025 07:32:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153654 IP address blocks: 2001:df5:2e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Validity Not Before: Mar 23 07:32:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dfb914-463a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d0:36:e6:6d:ab:71:b2:1f:0e:3c:ad:58:fd: d2:c2:1f:f5:66:44:57:71:67:70:3c:be:d6:8e:d9: dd:4f:2e:7c:5d:96:38:3c:0d:eb:26:83:10:e4:b8: 69:4f:df:64:1c:02:b9:ca:6a:9f:7a:97:1c:c5:a5: 35:44:9d:dc:b1:b4:7e:13:30:72:28:bf:98:fb:2d: 8d:05:00:6c:75:c9:5c:90:7d:56:36:1e:62:b3:82: 6e:7f:c8:76:38:2a:31:8e:88:eb:08:fe:93:37:a5: 4f:c8:88:4b:41:a4:b9:ea:b2:f1:c9:b5:f4:9d:8b: d9:22:b4:6f:24:2c:41:40:96:9b:30:3a:81:cf:5b: 69:7e:e5:c8:40:13:18:02:e0:f8:06:40:42:15:25: 7e:2f:e7:b1:1d:0b:45:c2:ea:82:fc:14:b6:69:28: d3:2e:d7:e1:91:69:ae:af:08:ff:8b:2b:da:03:4c: 3d:3d:c7:7c:3e:7e:85:e8:bf:10:9d:b7:9a:d9:f3: 3e:8f:1a:43:64:95:93:9a:26:40:c6:e1:c9:b8:eb: 1b:95:27:0b:ed:0b:e1:8b:ef:84:18:cd:9a:9c:6f: ab:84:44:5e:c9:d8:e2:51:82:1f:2d:09:b3:ce:b4: 9c:c6:f3:3d:6e:52:18:0f:4e:d0:a3:75:4b:64:5e: f1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:47:AC:AA:D2:CF:F6:13:BD:C1:82:94:BD:68:E9:C2:AC:B3:78:E9 X509v3 Authority Key Identifier: keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/FDD39BD607B811F0AB98B333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:2e40::/48 Signature Algorithm: sha256WithRSAEncryption 68:96:e2:19:32:15:ed:02:81:7a:ce:ea:57:1d:79:c9:90:29: 20:8e:ba:68:5d:ac:e3:66:f1:2c:48:ab:b5:4a:9a:fa:d5:f5: 98:bb:62:db:02:2e:d6:e7:2f:f7:f7:6b:ca:94:90:0d:e6:fd: ae:68:94:2e:ec:54:14:0b:46:7a:9a:99:d4:d5:86:c8:ab:73: c0:6e:c1:6e:43:02:b6:4e:1e:44:55:06:81:ba:ab:6f:10:5c: c8:c6:16:5d:97:73:c6:fd:a6:e4:f6:fa:2b:eb:73:37:23:d0: c8:ba:ad:19:e5:4d:e8:71:2b:2a:35:01:25:43:91:0f:82:cb: 1b:b6:c4:79:59:a3:a8:52:10:f8:5d:3b:03:ca:d5:88:8d:ed: 38:ab:7b:c7:2e:1b:60:8b:47:d0:3b:e4:f5:57:5e:28:7a:23: 1f:2e:ff:b4:26:db:06:90:c4:01:46:ad:fe:a0:a8:b4:fc:b1: 41:36:8c:f2:ae:dc:d1:8f:b8:ae:b9:2a:97:a4:97:50:2f:74: fb:e2:48:78:42:42:87:85:64:b6:15:32:41:e8:ae:41:7b:db: 53:49:4c:6b:5e:84:f6:db:21:5f:63:bf:15:57:93:a0:69:06: 8c:0d:92:75:8c:da:79:03:ce:c5:3d:57:c7:91:b5:5a:b9:b8: 06:d2:6f:db -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0ZDOTExMC8GA1UEBRMoMDZCRDQ0MTU0NzlEMkM3NTA4MzdDNUM5NDMzNjEzQkIy NTg4QUVCODAeFw0yNTAzMjMwNzMyMzZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZGZiOTE0LTQ2M2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC70Dbmbatxsh8OPK1Y/dLCH/VmRFdxZ3A8vtaO2d1PLnxdljg8DesmgxDkuGlP 32QcArnKap96lxzFpTVEndyxtH4TMHIov5j7LY0FAGx1yVyQfVY2HmKzgm5/yHY4 KjGOiOsI/pM3pU/IiEtBpLnqsvHJtfSdi9kitG8kLEFAlpswOoHPW2l+5chAExgC 4PgGQEIVJX4v57EdC0XC6oL8FLZpKNMu1+GRaa6vCP+LK9oDTD09x3w+foXovxCd t5rZ8z6PGkNklZOaJkDG4cm46xuVJwvtC+GL74QYzZqcb6uERF7J2OJRgh8tCbPO tJzG8z1uUhgPTtCjdUtkXvE5AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUTEesqtLP 9hO9wYKUvWjpwqyzeOkwHwYDVR0jBBgwFoAUBr1EFUedLHUIN8XJQzYTuyWIrrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RkM5L0YzQ0JGNTUwMDc1 MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhVSU44WEpRellUdXlXSXJy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQnIxRUZVZWRMSFVJTjhYSlF6WVR1eVdJcnJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0ZDOS9GM0NCRjU1MDA3NTExMUYwODE4QTU0MzNDNEY5QUUwMi9GREQzOUJENjA3 QjgxMUYwQUI5OEIzMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfUuQDANBgkqhkiG9w0BAQsFAAOCAQEAaJbiGTIV7QKB es7qVx15yZApII66aF2s42bxLEirtUqa+tX1mLti2wIu1ucv9/drypSQDeb9rmiU LuxUFAtGepqZ1NWGyKtzwG7BbkMCtk4eRFUGgbqrbxBcyMYWXZdzxv2m5Pb6K+tz NyPQyLqtGeVN6HErKjUBJUORD4LLG7bEeVmjqFIQ+F07A8rViI3tOKt7xy4bYItH 0Dvk9VdeKHojHy7/tCbbBpDEAUat/qCotPyxQTaM8q7c0Y+4rrkql6SXUC90++JI eEJCh4VkthUyQeiuQXvbU0lMa16E9tshX2O/FVeToGkGjA2SdYzaeQPOxT1Xx5G1 Wrm4BtJv2w== -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:44 2025 by rpki-client