$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa File: D756DF180BF411ECB17CCF3AC4F9AE02.roa (raw, json) Hash identifier: Ta4xFyi9glY4xr2WHsXG6St6wnwO3U134/DYeOjCkmc= Subject key identifier: 16:B4:01:BB:DF:4E:51:B6:78:EF:7D:D3:C0:0E:D2:79:ED:D6:A0:FF Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 0585 Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa Signing time: Thu 28 Nov 2024 23:13:27 +0000 ROA not before: Thu 28 Nov 2024 23:13:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 12189 IP address blocks: 2401:bc40::/32 maxlen: 32 2401:bc40::/35 maxlen: 35 2401:bc40:100::/40 maxlen: 40 2401:bc40:300::/40 maxlen: 40 2401:bc40:500::/40 maxlen: 40 2401:bc40:6000::/35 maxlen: 35 2401:bc40:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 23:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C, serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Validity Not Before: Nov 28 23:13:27 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748f917-8317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:63:c1:0b:76:b9:6e:61:eb:ae:ea:4f:e6: f2:61:b6:7b:5d:48:87:b7:7e:39:77:fe:95:46:41: 85:f7:a3:d6:87:75:6c:9d:c6:f8:6c:33:37:16:a2: 2e:bb:ba:cd:86:20:0a:68:ec:c9:f3:2f:8b:0b:86: be:6d:23:08:af:41:f8:0c:91:da:91:c2:86:3b:0c: 5a:4b:78:d2:80:25:2b:7f:62:87:2e:1c:0e:d7:31: 70:1b:5a:3b:91:a2:a5:0f:be:6c:5f:8b:ca:f8:3c: e6:1c:5f:ba:f2:1a:1b:db:b9:29:f8:96:c4:70:6b: 04:03:df:4e:50:63:34:8f:d0:8a:0e:ac:ba:83:7c: ed:f0:40:05:a3:27:86:fc:36:08:f9:25:26:b2:c7: 50:6e:de:d7:99:32:51:50:79:30:11:59:8b:00:11: e3:19:cd:05:30:ec:26:81:53:06:61:b9:bc:af:d0: 4d:32:d7:0a:4d:9a:f5:70:a5:39:42:51:c7:91:93: e9:f2:40:12:b6:f9:17:2b:d0:07:d8:42:31:20:1b: fb:dc:fd:9f:bc:7b:1a:9a:62:ea:b2:80:e7:98:de: e8:5b:d3:1a:c2:59:c5:3d:06:4d:21:0a:15:fc:31: e1:c9:f4:9e:a3:11:74:e8:a2:57:36:f3:73:e2:d8: 0d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B4:01:BB:DF:4E:51:B6:78:EF:7D:D3:C0:0E:D2:79:ED:D6:A0:FF X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/D756DF180BF411ECB17CCF3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bc40::/32 Signature Algorithm: sha256WithRSAEncryption 59:52:c3:d4:03:2d:70:86:59:f6:bd:f8:03:1e:f9:f7:e2:65: b5:a6:2b:18:36:9e:8c:6f:1e:d3:50:f8:fc:26:8c:81:ee:8b: 16:bc:d7:5f:7f:d7:53:12:c9:ca:83:2f:3f:60:2b:80:26:0e: 1e:b8:81:1c:0e:52:94:3f:64:54:83:69:a7:e4:00:be:b3:d7: cd:a1:81:1d:7b:df:1f:8a:e8:10:82:c4:08:5a:41:d0:33:f6: 93:4e:1d:e4:c4:f1:03:ea:24:41:a2:c4:2a:4c:20:fa:c9:f4: 60:fb:eb:53:e6:84:7f:7c:ce:44:5c:d4:f6:17:22:08:20:d5: 3e:6e:27:39:ee:d9:89:4a:1d:4b:c5:67:35:2d:58:cc:46:9a: aa:5c:ad:c5:f6:23:ce:e3:ab:a6:a6:94:0a:fd:1e:2f:6f:1f: 9e:79:42:50:ce:4e:37:a0:a5:3c:10:51:c2:40:50:9b:61:f9: 1d:06:ac:ed:61:8a:ff:e8:d8:f9:b3:65:40:7b:ea:d1:35:01: 77:65:ae:e7:f3:74:20:ed:80:21:e7:de:87:2f:53:46:11:4e: fc:86:a3:4a:99:e0:95:b2:8e:b1:91:85:cd:aa:0f:7e:0e:3a: 04:96:d8:87:a8:d0:33:16:92:1d:d3:a9:67:de:ca:dc:ff:44: 88:9c:21:9c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjQxMTI4MjMxMzI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZjkxNy04MzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0ljwQt2uW5h667qT+byYbZ7XUiHt345d/6VRkGF96PWh3Vsncb4bDM3FqIu u7rNhiAKaOzJ8y+LC4a+bSMIr0H4DJHakcKGOwxaS3jSgCUrf2KHLhwO1zFwG1o7 kaKlD75sX4vK+DzmHF+68hob27kp+JbEcGsEA99OUGM0j9CKDqy6g3zt8EAFoyeG /DYI+SUmssdQbt7XmTJRUHkwEVmLABHjGc0FMOwmgVMGYbm8r9BNMtcKTZr1cKU5 QlHHkZPp8kAStvkXK9AH2EIxIBv73P2fvHsammLqsoDnmN7oW9MawlnFPQZNIQoV /DHhyfSeoxF06KJXNvNz4tgNwwIDAQABo4ICljCCApIwHQYDVR0OBBYEFBa0Abvf TlG2eO9908AO0nnt1qD/MB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvRDc1NkRGMTgw QkY0MTFFQ0IxN0NDRjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAbxAMA0GCSqGSIb3DQEBCwUAA4IBAQBZUsPUAy1whln2 vfgDHvn34mW1pisYNp6Mbx7TUPj8JoyB7osWvNdff9dTEsnKgy8/YCuAJg4euIEc DlKUP2RUg2mn5AC+s9fNoYEde98fiugQgsQIWkHQM/aTTh3kxPED6iRBosQqTCD6 yfRg++tT5oR/fM5EXNT2FyIIINU+bic57tmJSh1LxWc1LVjMRpqqXK3F9iPO46um ppQK/R4vbx+eeUJQzk43oKU8EFHCQFCbYfkdBqztYYr/6Nj5s2VAe+rRNQF3Za7n 83Qg7YAh596HL1NGEU78hqNKmeCVso6xkYXNqg9+DjoEltiHqNAzFpId06ln3src /0SInCGc -----END CERTIFICATE-----Generated at Wed Apr 23 04:14:36 2025 by rpki-client on console.sobornost.net