$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa File: 9C2A80FA099011F08EA9F20BC4F9AE02.roa (raw, json) Hash identifier: 8UeD7xVuiaZEguXUzwGee22sKXGwroUdcoZk4gM91pw= Subject key identifier: 87:5F:60:E3:D7:80:66:09:55:64:E0:E9:9C:3A:94:86:23:5C:28:96 Certificate issuer: /CN=A915BC98/serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA Certificate serial: 2D Authority key identifier: FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa Signing time: Tue 25 Mar 2025 15:48:35 +0000 ROA not before: Tue 25 Mar 2025 15:48:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215750 IP address blocks: 2401:f860::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC98 Validity Not Before: Mar 25 15:48:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67e2d053-fa42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:45:f3:a7:33:20:f4:f3:76:c2:ba:19:a7: 4f:c9:98:ac:0e:3a:92:5b:3b:69:7c:5d:2b:fc:ec: 53:eb:47:20:c0:97:79:ca:4a:f0:5d:f5:85:ae:e5: a9:1d:70:ca:ff:e5:c6:1c:c1:3a:84:85:af:41:03: 0d:a7:03:9b:9a:b0:19:2c:45:e3:c4:39:57:95:0a: 76:cf:aa:60:17:74:4f:ef:51:02:d4:ef:30:f8:e3: cf:79:e7:7b:14:bb:26:ab:9a:a2:93:c0:e2:3f:0f: c5:09:68:99:fb:ae:16:53:72:8f:61:2a:6c:ad:93: b7:44:c8:69:67:f8:9b:ab:6b:60:41:1c:e9:86:8d: 27:28:c7:99:77:52:92:8e:78:7d:29:d1:ef:d0:9c: cf:62:16:0f:2c:78:82:cf:3b:8e:a0:55:92:57:bc: cc:b4:4b:d6:a0:28:41:6a:93:7e:10:cd:c6:b3:41: 5d:78:50:ee:ff:87:3d:f1:19:07:7e:59:e0:cf:ef: 02:65:ef:8e:f4:f4:31:a4:71:b8:ed:10:a2:8a:37: 07:f3:80:4a:09:a2:b8:ef:b1:9e:76:9e:51:e8:80: ff:75:80:08:34:60:f7:75:70:99:58:ef:31:5a:c7: e7:49:35:98:2d:65:2e:69:af:7a:9d:50:ab:3c:f1: 40:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5F:60:E3:D7:80:66:09:55:64:E0:E9:9C:3A:94:86:23:5C:28:96 X509v3 Authority Key Identifier: keyid:FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f860::/44 Signature Algorithm: sha256WithRSAEncryption 63:f6:e0:ee:c9:96:9c:af:35:0d:cb:72:e9:87:d2:28:55:a5: 80:81:e0:6e:99:2b:b3:c5:70:20:2d:af:50:17:32:e8:1f:3d: 72:6d:3b:62:40:4b:8e:ef:d4:61:b8:54:9b:0c:86:25:87:28: 0c:23:15:6c:6d:5d:39:99:48:84:25:96:d3:3a:43:97:97:33: 1b:f2:3b:2a:11:a8:33:ca:a1:ac:f5:ee:6c:a7:9f:8c:67:41: b8:d9:2d:bf:9d:ea:52:f1:a8:72:41:88:42:93:49:09:27:23: b9:80:5e:36:6a:fe:d1:de:ff:cb:7f:0b:3b:ee:66:58:66:f7: 79:e2:36:bd:fc:89:bc:08:f8:d6:59:50:99:17:01:38:dc:81: 0b:20:6f:b0:cf:70:57:15:f3:eb:61:50:35:1e:ab:b9:58:9a: 5b:a6:e7:a7:1e:d1:ec:3e:f4:b3:1b:e3:77:10:11:ee:ff:f8: 23:00:ed:b7:6f:71:bb:26:f9:9b:60:a3:be:0d:fe:47:75:4a: 1d:04:b8:bf:8e:50:f1:b8:8b:26:bf:a7:00:c1:95:77:cb:97: 32:c7:9f:de:44:85:d5:db:2c:7f:f8:25:85:1d:cf:ef:ef:0d: 58:de:fe:d0:26:30:7a:17:9b:de:15:03:57:79:8f:c4:96:3f: a2:87:08:6b -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QkM5ODExMC8GA1UEBRMoRkY4Q0NCRTYxODc1NUExRjUxOTlCRDBDODI3NjBFOEVE QjhGODVCQTAeFw0yNTAzMjUxNTQ4MzVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTJkMDUzLWZhNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9eUXzpzMg9PN2wroZp0/JmKwOOpJbO2l8XSv87FPrRyDAl3nKSvBd9YWu5akd cMr/5cYcwTqEha9BAw2nA5uasBksRePEOVeVCnbPqmAXdE/vUQLU7zD4489553sU uyarmqKTwOI/D8UJaJn7rhZTco9hKmytk7dEyGln+Jura2BBHOmGjScox5l3UpKO eH0p0e/QnM9iFg8seILPO46gVZJXvMy0S9agKEFqk34QzcazQV14UO7/hz3xGQd+ WeDP7wJl74709DGkcbjtEKKKNwfzgEoJorjvsZ52nlHogP91gAg0YPd1cJlY7zFa x+dJNZgtZS5pr3qdUKs88UB5AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUh19g49eA ZglVZODpnDqUhiNcKJYwHwYDVR0jBBgwFoAU/4zL5hh1Wh9Rmb0MgnYOjtuPhbow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCQzk4L0FCQUZGNUVBMDYx MjExRjA4RTlBRTUyOUM0RjlBRTAyL180ekw1aGgxV2g5Um1iME1nbllPanR1UGhi by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzR6TDVoaDFXaDlSbWIwTWduWU9qdHVQaGJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkM5OC9BQkFGRjVFQTA2MTIxMUYwOEU5QUU1MjlDNEY5QUUwMi85QzJBODBGQTA5 OTAxMUYwOEVBOUYyMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBCQB+GAAADANBgkqhkiG9w0BAQsFAAOCAQEAY/bg7smWnK81 Dcty6YfSKFWlgIHgbpkrs8VwIC2vUBcy6B89cm07YkBLju/UYbhUmwyGJYcoDCMV bG1dOZlIhCWW0zpDl5czG/I7KhGoM8qhrPXubKefjGdBuNktv53qUvGockGIQpNJ CScjuYBeNmr+0d7/y38LO+5mWGb3eeI2vfyJvAj41llQmRcBONyBCyBvsM9wVxXz 62FQNR6ruViaW6bnpx7R7D70sxvjdxAR7v/4IwDtt29xuyb5m2Cjvg3+R3VKHQS4 v45Q8biLJr+nAMGVd8uXMsef3kSF1dssf/glhR3P7+8NWN7+0CYweheb3hUDV3mP xJY/oocIaw== -----END CERTIFICATE-----Generated at Sat Apr 5 21:00:49 2025 by rpki-client