$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/CA9C62B6011911F0A7636250C4F9AE02.roa File: CA9C62B6011911F0A7636250C4F9AE02.roa (raw, json) Hash identifier: TkFlKbRc5DRwjd6c06mswpd/RwtK/5VG1Y75IO7usZE= Subject key identifier: 87:EB:B3:9E:DC:EF:98:3D:7E:9C:27:ED:DD:21:E9:B3:18:53:D3:D5 Certificate issuer: /CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Certificate serial: 0B21 Authority key identifier: 58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/CA9C62B6011911F0A7636250C4F9AE02.roa Signing time: Fri 14 Mar 2025 21:17:53 +0000 ROA not before: Fri 14 Mar 2025 21:17:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55569 IP address blocks: 2400:8800:1002::/48 maxlen: 48 2400:8800:1003::/48 maxlen: 48 2400:8800:1004::/48 maxlen: 48 2400:8800:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9 Validity Not Before: Mar 14 21:17:53 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67d49d01-7ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6d:5f:f5:9d:fc:b1:81:2e:c1:c6:f6:ac:a2: 87:96:a6:1a:29:a4:aa:db:5c:5d:e3:a0:06:f0:ee: 32:44:26:80:96:0a:96:d5:a8:91:7d:c4:e8:b6:05: 27:a6:cc:ff:5e:44:62:ee:c6:ac:ad:5a:41:e9:5f: 82:1d:55:c1:09:05:17:2d:d3:77:4b:2e:9d:8a:e3: 9e:0c:28:e8:a7:0b:a1:e1:29:5f:79:a9:da:b5:fa: 33:dc:84:86:ed:c7:d1:be:0d:20:66:b5:54:83:88: ae:36:37:c0:02:4b:57:f8:d0:33:66:6f:c5:3b:ce: d8:07:b8:03:ab:39:0d:bb:e2:fb:18:d9:9b:15:9e: 34:a1:ca:b1:f7:02:86:a2:69:f8:9c:d1:ef:a2:e8: 2f:19:99:06:9c:d8:54:34:69:3f:3b:41:7c:7a:aa: 01:87:89:bb:bc:3d:da:7c:f5:46:be:c3:8d:dd:f4: b5:a7:8a:bd:93:75:4b:77:9a:56:7b:fb:e9:3d:0c: c7:e5:33:34:bf:28:b3:4a:34:61:e0:24:8e:c6:1b: 1d:14:fe:f0:ee:39:17:48:79:35:e9:35:7a:89:ce: 4a:7b:28:dc:59:ce:87:80:e6:e8:7f:d0:0a:37:3d: 0f:a3:1b:26:9a:c8:75:b2:fd:7e:80:d2:d7:5f:d0: 09:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EB:B3:9E:DC:EF:98:3D:7E:9C:27:ED:DD:21:E9:B3:18:53:D3:D5 X509v3 Authority Key Identifier: keyid:58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/CA9C62B6011911F0A7636250C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8800:1002::-2400:8800:1005:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 20:b6:c8:e4:01:1f:46:5e:95:39:ec:76:1e:48:15:8b:b4:83: a9:99:6b:e9:7e:3a:ba:00:fa:1f:68:af:6e:53:23:4e:65:35: d1:0f:c8:ba:c4:f7:19:ea:09:58:c7:ae:46:8a:3b:d2:57:a0: 05:8e:db:29:c4:ae:81:54:d3:e3:b4:74:ee:ef:e0:bc:c8:9a: 47:f7:9d:df:69:64:54:cc:45:e4:fd:70:de:31:37:c7:db:2b: b4:63:d4:66:f5:ca:1e:9a:3f:53:f6:34:b7:d1:64:d2:fb:9b: d4:56:47:d5:11:45:32:2a:d5:42:09:fc:37:1c:15:b7:ec:17: 11:6c:2e:cc:09:df:70:7b:16:43:30:e0:0f:f6:0c:aa:a6:18: 15:32:2c:89:5a:91:b8:ea:b7:a6:36:9b:39:6b:c7:03:4d:d7: 04:be:2d:e9:f5:cf:20:1e:a9:62:7c:38:73:ef:2c:fe:48:0a: 2b:c7:a0:56:9e:09:3d:82:b0:ea:b0:60:6d:0a:91:42:85:51: 10:23:71:e9:d6:87:da:ab:a9:a8:01:9b:1e:16:89:57:76:51: 78:8f:09:6d:3a:27:1f:03:e7:6e:93:d6:88:51:ea:f3:50:c5: 76:c6:ab:42:8e:dd:8c:4c:cd:cd:80:45:ff:8e:88:13:0d:a3: 43:80:ba:ce -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA0QTkxMTAvBgNVBAUTKDU4MDU1M0I4ODNERUMzRERCMjRGNjg4RTZDMkQxQkZB OTNDMjYzQUEwHhcNMjUwMzE0MjExNzUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0OWQwMS03ZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnG1f9Z38sYEuwcb2rKKHlqYaKaSq21xd46AG8O4yRCaAlgqW1aiRfcTotgUn psz/XkRi7sasrVpB6V+CHVXBCQUXLdN3Sy6diuOeDCjopwuh4Slfeanatfoz3ISG 7cfRvg0gZrVUg4iuNjfAAktX+NAzZm/FO87YB7gDqzkNu+L7GNmbFZ40ocqx9wKG omn4nNHvougvGZkGnNhUNGk/O0F8eqoBh4m7vD3afPVGvsON3fS1p4q9k3VLd5pW e/vpPQzH5TM0vyizSjRh4CSOxhsdFP7w7jkXSHk16TV6ic5KeyjcWc6HgObof9AK Nz0Poxsmmsh1sv1+gNLXX9AJ8QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIfrs57c 75g9fpwn7d0h6bMYU9PVMB8GA1UdIwQYMBaAFFgFU7iD3sPdsk9ojmwtG/qTwmOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDRBOS9BMzc0QTFCNjQ2 NzExMUVBODFBQkIyNUZDNEY5QUUwMi9XQVZUdUlQZXc5MnlUMmlPYkMwYi1wUENZ Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBVlR1SVBldzkyeVQyaU9iQzBiLXBQQ1k2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA0QTkvQTM3NEExQjY0NjcxMTFFQTgxQUJCMjVGQzRGOUFFMDIvQ0E5QzYyQjYw MTE5MTFGMEE3NjM2MjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHASQAiAAQAgMHASQAiAAQBDANBgkqhkiG9w0BAQsFAAOC AQEAILbI5AEfRl6VOex2HkgVi7SDqZlr6X46ugD6H2ivblMjTmU10Q/IusT3GeoJ WMeuRoo70legBY7bKcSugVTT47R07u/gvMiaR/ed32lkVMxF5P1w3jE3x9srtGPU ZvXKHpo/U/Y0t9Fk0vub1FZH1RFFMirVQgn8NxwVt+wXEWwuzAnfcHsWQzDgD/YM qqYYFTIsiVqRuOq3pjabOWvHA03XBL4t6fXPIB6pYnw4c+8s/kgKK8egVp4JPYKw 6rBgbQqRQoVRECNx6daH2qupqAGbHhaJV3ZReI8JbTonHwPnbpPWiFHq81DFdsar Qo7djEzNzYBF/46IEw2jQ4C6zg== -----END CERTIFICATE-----Generated at Sun Apr 6 12:25:59 2025 by rpki-client