$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa File: 401EA996B5B511EABB640052C4F9AE02.roa (raw, json) Hash identifier: rjAdNfdV9AdfawHfPlvLtufzt08XjVklPQmY9MfBrEE= Subject key identifier: E4:30:4F:9D:BB:B4:4D:76:E4:26:F1:1D:D7:B1:3B:A0:21:B5:61:88 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 0971 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa Signing time: Tue 31 Dec 2024 19:58:49 +0000 ROA not before: Tue 31 Dec 2024 19:58:49 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 14061 IP address blocks: 139.59.0.0/16 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2417 (0x971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D, serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Validity Not Before: Dec 31 19:58:49 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67744cf9-5fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:04:65:b6:29:87:35:df:7a:06:e7:8b:11: 58:30:f6:1c:27:29:95:94:52:1f:c6:50:60:c6:7c: cf:89:e0:19:ef:02:38:65:70:d1:da:f8:13:62:b5: 82:71:8f:51:60:be:a9:8c:29:0f:51:1a:2a:59:9f: 11:e7:8c:54:e9:ab:81:bb:d5:5b:5a:51:aa:41:b0: f1:53:42:0a:86:aa:82:81:a7:3a:3c:04:f9:fc:ec: 71:7f:05:ec:09:76:dc:11:35:7c:f0:c8:25:8f:6a: ee:a4:d3:e8:49:86:39:11:e6:0d:f4:0d:4f:e4:4f: de:20:59:a2:b4:6e:c0:e6:44:ad:56:57:45:53:2c: 26:65:3b:9c:f1:c6:80:00:7d:74:b0:74:64:a4:10: 82:03:38:83:c5:43:65:b1:0f:2a:61:42:51:3e:ab: 18:1c:db:c7:1b:3f:ef:e4:b2:2d:38:29:b8:d5:2a: a8:87:b3:81:05:2e:74:e5:de:48:ee:81:e3:f7:c5: 53:26:36:03:e9:86:cd:95:a8:ca:bf:5c:57:87:54: 2a:6c:20:c3:31:c6:a0:c7:31:13:90:ec:42:d7:18: 7b:e3:1d:1d:f6:01:5f:47:fb:7b:3f:c6:ea:21:8e: cb:1a:44:39:95:32:0a:33:32:8a:ed:c4:1f:06:32: 2e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:30:4F:9D:BB:B4:4D:76:E4:26:F1:1D:D7:B1:3B:A0:21:B5:61:88 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:25:c5:5a:1f:d2:fe:35:4d:7e:ce:d3:09:26:84:95:18:6a: bb:28:e5:65:e9:72:6d:41:c4:a9:ff:6e:95:19:61:d1:5c:fe: b7:a4:a4:4a:0d:40:d8:45:46:00:ad:df:ca:09:54:51:1f:7c: 86:39:c5:04:3d:71:2a:90:a1:35:90:92:83:46:17:61:3a:cd: 38:d8:35:3b:13:70:27:a7:04:b8:d2:6f:19:4b:ef:98:b7:6c: 85:f4:0a:86:aa:88:d4:de:a6:96:60:ee:ab:c9:2b:ae:f5:21: 49:4e:aa:3d:ab:58:fb:cf:c8:85:58:35:8b:0f:8c:cf:bf:39: 36:85:d9:e0:31:91:47:e4:48:5e:d0:bb:aa:50:a8:e1:e0:fb: 41:2a:14:de:56:40:35:39:d0:32:c9:11:28:82:1d:33:63:32: 77:47:34:fa:89:12:6c:84:58:32:05:67:69:11:c7:ff:c2:d0: df:b2:6c:bb:03:58:93:96:22:d8:46:6c:c8:92:24:75:cb:46: ee:4b:aa:46:ad:79:96:0e:f7:37:df:51:54:a8:4a:c5:c1:b1: 5c:6b:1a:6a:6f:ee:48:18:65:c8:57:55:e9:8f:c1:4d:fe:e6: 81:09:16:0c:14:27:96:5b:d5:0c:73:c1:52:40:b8:a3:67:7b: e8:e7:61:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjQxMjMxMTk1ODQ5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0NGNmOS01ZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdoEZbYphzXfegbnixFYMPYcJymVlFIfxlBgxnzPieAZ7wI4ZXDR2vgTYrWC cY9RYL6pjCkPURoqWZ8R54xU6auBu9VbWlGqQbDxU0IKhqqCgac6PAT5/OxxfwXs CXbcETV88Mglj2rupNPoSYY5EeYN9A1P5E/eIFmitG7A5kStVldFUywmZTuc8caA AH10sHRkpBCCAziDxUNlsQ8qYUJRPqsYHNvHGz/v5LItOCm41Sqoh7OBBS505d5I 7oHj98VTJjYD6YbNlajKv1xXh1QqbCDDMcagxzETkOxC1xh74x0d9gFfR/t7P8bq IY7LGkQ5lTIKMzKK7cQfBjIuiQIDAQABo4IClDCCApAwHQYDVR0OBBYEFOQwT527 tE125CbxHdexO6AhtWGIMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZFN0QvMTc1OUU0Qzg4MzgxMTFFQUFDQjlCQzMwQzRGOUFFMDIvNDAxRUE5OTZC NUI1MTFFQUJCNjQwMDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCLOzANBgkqhkiG9w0BAQsFAAOCAQEAVyXFWh/S/jVNfs7T CSaElRhquyjlZelybUHEqf9ulRlh0Vz+t6SkSg1A2EVGAK3fyglUUR98hjnFBD1x KpChNZCSg0YXYTrNONg1OxNwJ6cEuNJvGUvvmLdshfQKhqqI1N6mlmDuq8krrvUh SU6qPatY+8/IhVg1iw+Mz785NoXZ4DGRR+RIXtC7qlCo4eD7QSoU3lZANTnQMskR KIIdM2Myd0c0+okSbIRYMgVnaRHH/8LQ37JsuwNYk5Yi2EZsyJIkdctG7kuqRq15 lg73N99RVKhKxcGxXGsaam/uSBhlyFdV6Y/BTf7mgQkWDBQnllvVDHPBUkC4o2d7 6OdhtQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:25 2025 by rpki-client