$ rpki-client -vvf rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa File: C3C5C43A0A2011EC8B517885C4F9AE02.roa (raw, json) Hash identifier: mmOf8E5cH5F9E51SwHybcc0hD3kIHBOrU1OwIH3yXaA= Subject key identifier: F8:CA:AA:BE:5A:23:C7:31:DA:84:1A:B1:5F:99:67:A3:7E:14:FF:23 Certificate issuer: /CN=A91A60A9/serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Certificate serial: 3451 Authority key identifier: 77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa Signing time: Thu 28 Nov 2024 14:30:24 +0000 ROA not before: Thu 28 Nov 2024 14:30:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 9676 IP address blocks: 210.208.72.0/21 maxlen: 21 2407:680::/33 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13393 (0x3451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A60A9, serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Validity Not Before: Nov 28 14:30:24 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67487e7f-c23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4e:72:ce:94:e2:63:b7:dd:18:92:0c:79:bd: 24:a9:fa:8c:e2:26:77:8b:49:bd:e5:62:53:6c:a7: 0d:6a:9c:44:f3:80:44:73:75:e5:f1:bb:57:d7:0f: 4a:b3:eb:e0:66:e6:37:0a:cc:12:6f:fd:ae:1e:b3: 2a:09:0d:63:7f:f0:f2:e1:aa:46:12:54:c0:96:7c: 98:e9:64:ad:8d:4b:58:43:97:0f:ac:6d:de:b1:9a: 3f:5c:45:c1:75:68:cb:2c:f7:cb:d4:f5:22:d6:32: bb:d4:a8:b1:f5:91:c3:ec:23:0e:78:e5:e8:9a:c5: c9:15:1c:a4:52:d8:51:43:dd:e4:a0:59:1f:09:18: a7:c4:d7:22:4b:ab:fd:a4:e0:93:ac:d2:f9:e2:c3: bb:00:4a:d8:d3:2b:eb:9b:2b:34:d5:91:0a:db:d3: be:4a:6a:21:a6:d6:d5:e7:e7:eb:e7:96:00:1a:7b: 57:b6:af:e8:c7:9c:bf:68:83:3e:56:86:44:e0:67: 1e:e0:ec:c2:1a:6d:ab:13:f7:53:b9:e7:24:98:83: 1f:62:9b:25:67:94:d0:c4:1e:0e:c5:73:13:8a:db: fa:40:90:62:14:57:e9:f8:61:d9:c8:bf:e7:e4:bd: 29:af:f7:b0:53:97:d7:b0:ca:fc:90:00:bf:01:42: 3d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CA:AA:BE:5A:23:C7:31:DA:84:1A:B1:5F:99:67:A3:7E:14:FF:23 X509v3 Authority Key Identifier: keyid:77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.208.72.0/21 IPv6: 2407:680::/33 Signature Algorithm: sha256WithRSAEncryption 81:8f:00:36:48:43:b1:94:df:21:0c:4f:61:b6:df:43:e0:5c: f3:d8:c4:34:96:5a:b1:a2:45:43:f0:50:0e:9f:8c:9f:80:d4: 71:0d:69:4c:a1:98:3e:7a:85:24:af:69:e4:a2:1a:7e:1f:57: 95:4d:b8:1a:cb:e0:5b:a7:94:e0:2b:45:75:29:cb:16:81:25: 2b:ba:27:d6:7a:c2:f4:59:bd:ab:cd:be:5f:1c:1c:ed:f2:a6: 1d:12:03:1c:f1:eb:38:52:ac:9a:50:59:b0:24:94:d8:ee:f4: cd:03:e2:f5:0f:53:fe:4e:57:2e:aa:6c:c5:39:65:f6:83:5c: 23:17:a2:2c:23:3e:82:7a:d8:77:58:72:12:81:c4:e9:83:c2: 38:6b:52:9d:7d:f2:53:dd:74:5b:aa:98:41:a5:3c:71:6d:34: ea:51:e9:9f:5c:30:e0:5f:46:2e:b9:e3:e0:bf:26:4d:7b:dd: a5:b2:54:a6:e2:2b:ce:cc:ed:c6:46:50:9d:32:57:57:23:2c: ba:d4:22:e6:bb:3f:4e:44:80:1d:00:c1:f4:c5:b0:2c:90:fe: bd:a0:c9:10:e5:ea:18:a9:2c:77:fc:b1:07:da:5d:1e:09:c7: 1d:89:91:40:15:1c:72:21:75:ab:26:3b:6b:ad:d9:33:ec:29: 4c:73:4f:72 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICNFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYwQTkxMTAvBgNVBAUTKDc3ODdGMUU1M0U5Qjc4MTMyREU5QTc4NzExMDg4MzE2 REQ2MDU1QjMwHhcNMjQxMTI4MTQzMDI0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4N2U3Zi1jMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5E5yzpTiY7fdGJIMeb0kqfqM4iZ3i0m95WJTbKcNapxE84BEc3Xl8btX1w9K s+vgZuY3CswSb/2uHrMqCQ1jf/Dy4apGElTAlnyY6WStjUtYQ5cPrG3esZo/XEXB dWjLLPfL1PUi1jK71Kix9ZHD7CMOeOXomsXJFRykUthRQ93koFkfCRinxNciS6v9 pOCTrNL54sO7AErY0yvrmys01ZEK29O+SmohptbV5+fr55YAGntXtq/ox5y/aIM+ VoZE4Gce4OzCGm2rE/dTueckmIMfYpslZ5TQxB4OxXMTitv6QJBiFFfp+GHZyL/n 5L0pr/ewU5fXsMr8kAC/AUI91QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPjKqr5a I8cx2oQasV+ZZ6N+FP8jMB8GA1UdIwQYMBaAFHeH8eU+m3gTLemnhxEIgxbdYFWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjBBOS82QkE4MDYxQTFE ODQxMUUyQjNBNTRGREEwOEIwMkNEMi9kNGZ4NVQ2YmVCTXQ2YWVIRVFpREZ0MWdW Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q0Zng1VDZiZUJNdDZhZUhFUWlERnQxZ1ZiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYwQTkvNkJBODA2MUExRDg0MTFFMkIzQTU0RkRBMDhCMDJDRDIvQzNDNUM0M0Ew QTIwMTFFQzhCNTE3ODg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAPS0EgwDgQCAAIwCAMGByQHBoAAMA0GCSqGSIb3DQEBCwUA A4IBAQCBjwA2SEOxlN8hDE9htt9D4Fzz2MQ0llqxokVD8FAOn4yfgNRxDWlMoZg+ eoUkr2nkohp+H1eVTbgay+Bbp5TgK0V1KcsWgSUruifWesL0Wb2rzb5fHBzt8qYd EgMc8es4UqyaUFmwJJTY7vTNA+L1D1P+TlcuqmzFOWX2g1wjF6IsIz6Ceth3WHIS gcTpg8I4a1KdffJT3XRbqphBpTxxbTTqUemfXDDgX0YuuePgvyZNe92lslSm4ivO zO3GRlCdMldXIyy61CLmuz9ORIAdAMH0xbAskP69oMkQ5eoYqSx3/LEH2l0eCccd iZFAFRxyIXWrJjtrrdkz7ClMc09y -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:45 2025 by rpki-client