$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa File: 4B58FDE05DDC11ECBEA38D83C4F9AE02.roa (raw, json) Hash identifier: 2CLv+ACMT3yLQgrQNEcW3dbGHb9Mc5rQuuD0ayJCAqA= Subject key identifier: A2:F0:1F:16:30:CC:91:C6:79:D7:6C:CC:F3:AE:A5:94:B4:65:4B:3D Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 047C Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa Signing time: Sat 25 Jan 2025 00:13:39 +0000 ROA not before: Sat 25 Jan 2025 00:13:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 51044 IP address blocks: 2407:9240:2500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC Validity Not Before: Jan 25 00:13:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67942cb3-12dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:44:d4:8c:1e:8a:8e:be:1e:c5:ef:29:b3:83: 0f:88:ca:63:43:06:e8:d6:f9:cd:8c:0d:a7:f3:cf: 22:c5:41:7d:52:e5:ac:4b:fd:04:55:68:cc:e9:62: 06:8b:25:3c:be:41:a2:d0:87:22:25:4a:ab:38:8d: 1d:a7:30:08:b7:43:0f:f3:3e:dd:83:7d:16:68:77: c2:75:26:a0:6e:93:08:8a:c1:00:ed:68:4c:d3:f0: ad:35:8e:f5:64:80:26:1f:6a:75:5b:1d:88:6a:66: 96:be:8e:44:a5:ee:cd:d7:2e:f6:10:c5:05:13:ea: 58:a0:31:50:89:42:d2:22:d1:84:7c:2c:29:ec:a9: 55:61:57:58:da:c9:f1:60:44:aa:75:6d:e2:c3:12: 1f:78:64:15:bf:e5:f1:5e:85:b8:12:86:f1:c4:3b: 6a:fc:f8:44:e9:3e:39:58:51:0c:ac:eb:db:c3:56: 2f:9c:8a:38:3b:ec:0f:00:a9:de:cf:fe:c9:fc:d7: 2c:87:1d:31:71:ff:25:c8:b5:35:19:a1:84:2a:d2: a8:3c:40:af:25:17:6e:ae:17:98:77:5d:c3:cd:2e: 17:a3:63:03:2c:93:2f:0e:d0:28:5c:76:60:c1:65: 60:24:79:d9:03:a0:29:1f:f7:23:b6:af:b6:48:52: f3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F0:1F:16:30:CC:91:C6:79:D7:6C:CC:F3:AE:A5:94:B4:65:4B:3D X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/4B58FDE05DDC11ECBEA38D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:2500::/40 Signature Algorithm: sha256WithRSAEncryption ab:ce:af:0a:11:10:2f:30:23:00:55:59:ef:fb:3f:71:d9:f0: f2:12:21:b1:1b:cc:2a:45:79:e7:2c:c5:fb:41:74:0a:ea:95: 9e:4b:c7:a0:2e:dc:0e:ae:68:f2:ff:24:d4:6e:87:52:ca:a4: 8f:6a:f8:b1:40:9f:16:67:10:47:05:87:e7:e1:f6:93:c1:5d: 63:12:61:7a:a7:1f:df:43:e6:9f:ea:02:d8:32:0e:9f:6a:59: 3f:8b:b8:cc:bf:e5:96:55:42:c6:ae:68:14:50:cb:03:71:9c: 50:6b:07:03:13:3c:4c:e6:09:36:03:99:1c:95:be:c1:af:7c: 08:c3:34:e9:07:18:61:4b:72:fd:58:37:5c:ce:9f:58:10:05: 5b:07:3f:98:d4:3e:3b:66:83:80:41:16:5d:5a:4a:c0:ab:e7: e9:83:bc:36:eb:5a:7c:df:fc:50:b4:b7:22:e6:cd:e4:20:82: ad:d1:13:ca:b1:8c:e0:ee:27:d3:e9:06:6b:40:2c:b3:c6:bd: 50:29:24:84:a7:98:81:2f:30:de:be:ae:bd:55:1e:05:4a:48: 77:08:39:d4:82:0a:00:c5:48:d3:dc:ee:57:21:24:07:d4:66: 24:00:1b:ab:6c:57:6d:1b:6f:58:18:f4:10:8f:f7:70:52:0e: 3d:f9:d0:7d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjUwMTI1MDAxMzM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MmNiMy0xMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00TUjB6Kjr4exe8ps4MPiMpjQwbo1vnNjA2n888ixUF9UuWsS/0EVWjM6WIG iyU8vkGi0IciJUqrOI0dpzAIt0MP8z7dg30WaHfCdSagbpMIisEA7WhM0/CtNY71 ZIAmH2p1Wx2IamaWvo5Epe7N1y72EMUFE+pYoDFQiULSItGEfCwp7KlVYVdY2snx YESqdW3iwxIfeGQVv+XxXoW4EobxxDtq/PhE6T45WFEMrOvbw1YvnIo4O+wPAKne z/7J/Ncshx0xcf8lyLU1GaGEKtKoPECvJRdurheYd13DzS4Xo2MDLJMvDtAoXHZg wWVgJHnZA6ApH/cjtq+2SFLzVQIDAQABo4IClzCCApMwHQYDVR0OBBYEFKLwHxYw zJHGeddszPOupZS0ZUs9MB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNEI1OEZERTA1 RERDMTFFQ0JFQTM4RDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAJTANBgkqhkiG9w0BAQsFAAOCAQEAq86vChEQLzAj AFVZ7/s/cdnw8hIhsRvMKkV55yzF+0F0CuqVnkvHoC7cDq5o8v8k1G6HUsqkj2r4 sUCfFmcQRwWH5+H2k8FdYxJheqcf30Pmn+oC2DIOn2pZP4u4zL/lllVCxq5oFFDL A3GcUGsHAxM8TOYJNgOZHJW+wa98CMM06QcYYUty/Vg3XM6fWBAFWwc/mNQ+O2aD gEEWXVpKwKvn6YO8NutafN/8ULS3IubN5CCCrdETyrGM4O4n0+kGa0Ass8a9UCkk hKeYgS8w3r6uvVUeBUpIdwg51IIKAMVI09zuVyEkB9RmJAAbq2xXbRtvWBj0EI/3 cFIOPfnQfQ== -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:49 2025 by rpki-client