$ rpki-client -vvf rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/B1F01F2A025C11F0BCAB0F12C4F9AE02.roa File: B1F01F2A025C11F0BCAB0F12C4F9AE02.roa (raw, json) Hash identifier: wNl2vPAfQOmVBCkud9vffEnTL87IbN3lfDYFsp2wc4c= Subject key identifier: AF:75:B4:2C:60:97:86:C1:90:23:55:51:31:1B:3E:08:EF:98:52:91 Certificate issuer: /CN=A912963D/serialNumber=F221E9432A19F28507831B12ED86BC4BB5963981 Certificate serial: 0F4A Authority key identifier: F2:21:E9:43:2A:19:F2:85:07:83:1B:12:ED:86:BC:4B:B5:96:39:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/B1F01F2A025C11F0BCAB0F12C4F9AE02.roa Signing time: Sun 16 Mar 2025 12:51:32 +0000 ROA not before: Sun 16 Mar 2025 12:51:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153038 IP address blocks: 2403:21c0::/32 maxlen: 32 2403:21c0::/36 maxlen: 36 2403:21c0:1000::/36 maxlen: 36 2403:21c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.crl rsync://rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3914 (0xf4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912963D Validity Not Before: Mar 16 12:51:32 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67d6c953-dc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:a9:a8:a2:6f:50:d9:28:1b:09:fd:26:b5: 81:bb:5b:42:59:a5:76:d6:73:20:84:3c:f0:34:30: 96:b1:62:1a:57:e6:4f:a1:9a:3f:53:7f:68:9f:04: 06:e9:c6:70:f6:7d:5b:48:7c:44:f1:d7:29:93:11: 50:c5:bd:c4:d0:ab:a6:ad:c0:17:63:25:80:49:8b: f8:e2:9e:14:90:4d:54:b4:dc:56:79:d4:03:40:db: 1c:42:78:a2:6d:d6:36:12:3c:0a:50:0c:c2:e8:10: f8:55:16:d4:74:8a:1e:ae:93:82:44:b8:0c:96:a6: ab:31:f8:2a:c7:34:1b:5d:52:01:a1:0f:42:87:02: 3e:da:30:a9:bf:c4:7e:7a:2e:3a:49:0c:26:db:70: 87:a9:f0:42:f0:5c:2f:75:0f:ab:95:45:44:ab:50: ee:90:ad:38:3d:cc:bc:08:a5:bf:92:fd:8f:47:28: f4:a9:f4:59:e1:e3:1e:4b:c2:d9:3c:79:6a:d1:73: bd:8a:d9:b2:b4:ab:00:cf:92:7e:a5:07:1a:b3:a4: 79:6d:4c:06:41:e2:75:42:4d:0f:3b:15:ed:b9:35: 3f:25:f5:8a:10:07:e1:e7:cc:38:30:16:71:81:f3: 02:79:ec:1b:23:29:27:4a:83:b3:f3:8b:d5:88:c0: d3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:75:B4:2C:60:97:86:C1:90:23:55:51:31:1B:3E:08:EF:98:52:91 X509v3 Authority Key Identifier: keyid:F2:21:E9:43:2A:19:F2:85:07:83:1B:12:ED:86:BC:4B:B5:96:39:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8iHpQyoZ8oUHgxsS7Ya8S7WWOYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912963D/F9C9766C726511E98B71BB34C4F9AE02/B1F01F2A025C11F0BCAB0F12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 94:28:bc:b1:78:2a:27:82:5d:82:7b:6a:8c:31:67:98:38:c4: 8a:4b:05:6e:c1:56:e5:9c:28:2b:68:97:04:ec:50:8d:94:d2: ee:d8:c6:db:26:19:9c:1e:13:24:27:7e:4c:32:c6:7f:88:8a: d0:65:fa:d1:d6:bc:de:ed:4f:89:53:6b:b8:36:cb:5a:58:77: 13:90:ca:b1:13:44:d3:6c:a2:6b:6f:69:6a:43:0f:8c:b5:08: 1c:aa:b1:b0:d3:fa:dd:d2:75:7e:c9:9b:97:ee:1c:62:96:58: 90:62:0c:4f:7e:ce:44:53:2f:5c:f3:de:09:0e:a5:12:02:14: aa:ba:fa:25:1c:fa:5c:83:ba:e5:0d:a9:b9:e6:3a:c1:04:67: 7f:1c:57:ab:a8:10:3f:de:34:93:85:e1:90:e6:12:82:fa:5a: c0:f7:99:a3:2f:16:ec:73:e8:b1:2d:dd:7f:ab:9a:2e:90:0b: 4c:ee:50:7f:cf:e0:0d:a0:17:65:39:7c:74:ee:c4:a4:92:c8: 4a:e8:0a:77:95:15:33:19:16:3a:57:b8:c5:0e:0a:b7:75:95: c4:52:b5:84:3f:11:74:73:d4:93:ef:9b:7b:2b:1a:0b:e7:8e: bc:77:2f:c0:37:43:68:82:6f:2c:dd:6d:1c:87:37:f8:e6:72: 60:1d:d6:b3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICD0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk2M0QxMTAvBgNVBAUTKEYyMjFFOTQzMkExOUYyODUwNzgzMUIxMkVEODZCQzRC QjU5NjM5ODEwHhcNMjUwMzE2MTI1MTMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q2Yzk1My1kYzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw6pqKJvUNkoGwn9JrWBu1tCWaV21nMghDzwNDCWsWIaV+ZPoZo/U39onwQG 6cZw9n1bSHxE8dcpkxFQxb3E0KumrcAXYyWASYv44p4UkE1UtNxWedQDQNscQnii bdY2EjwKUAzC6BD4VRbUdIoerpOCRLgMlqarMfgqxzQbXVIBoQ9ChwI+2jCpv8R+ ei46SQwm23CHqfBC8FwvdQ+rlUVEq1DukK04Pcy8CKW/kv2PRyj0qfRZ4eMeS8LZ PHlq0XO9itmytKsAz5J+pQcas6R5bUwGQeJ1Qk0POxXtuTU/JfWKEAfh58w4MBZx gfMCeewbIyknSoOz84vViMDTmwIDAQABo4ICljCCApIwHQYDVR0OBBYEFK91tCxg l4bBkCNVUTEbPgjvmFKRMB8GA1UdIwQYMBaAFPIh6UMqGfKFB4MbEu2GvEu1ljmB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTYzRC9GOUM5NzY2Qzcy NjUxMUU5OEI3MUJCMzRDNEY5QUUwMi84aUhwUXlvWjhvVUhneHNTN1lhOFM3V1dP WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhpSHBReW9aOG9VSGd4c1M3WWE4UzdXV09ZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk2M0QvRjlDOTc2NkM3MjY1MTFFOThCNzFCQjM0QzRGOUFFMDIvQjFGMDFGMkEw MjVDMTFGMEJDQUIwRjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAyHAMA0GCSqGSIb3DQEBCwUAA4IBAQCUKLyxeCongl2C e2qMMWeYOMSKSwVuwVblnCgraJcE7FCNlNLu2MbbJhmcHhMkJ35MMsZ/iIrQZfrR 1rze7U+JU2u4NstaWHcTkMqxE0TTbKJrb2lqQw+MtQgcqrGw0/rd0nV+yZuX7hxi lliQYgxPfs5EUy9c894JDqUSAhSquvolHPpcg7rlDam55jrBBGd/HFerqBA/3jST heGQ5hKC+lrA95mjLxbsc+ixLd1/q5oukAtM7lB/z+ANoBdlOXx07sSkkshK6Ap3 lRUzGRY6V7jFDgq3dZXEUrWEPxF0c9ST75t7KxoL5468dy/AN0Nogm8s3W0chzf4 5nJgHdaz -----END CERTIFICATE-----Generated at Sun Apr 6 05:43:32 2025 by rpki-client