$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5CAAB66A91B211EC838CA523C4F9AE02.roa File: 5CAAB66A91B211EC838CA523C4F9AE02.roa (raw, json) Hash identifier: bhzzba09CTE3+5Ci3mIR3nBjvndFl9JG79VoVnViei8= Subject key identifier: 41:96:D4:4B:80:3E:A9:36:50:77:34:33:53:14:F5:88:5B:7F:93:86 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 0479 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5CAAB66A91B211EC838CA523C4F9AE02.roa Signing time: Sat 25 Jan 2025 00:13:36 +0000 ROA not before: Sat 25 Jan 2025 00:13:36 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 212425 IP address blocks: 2407:9240:2100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC Validity Not Before: Jan 25 00:13:36 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67942cb0-25b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bb:7d:ca:ea:fa:a0:35:7c:4f:1a:0d:fb:3f: 32:d3:55:1e:a2:6d:bc:9a:df:d9:47:25:79:55:23: b2:1a:ce:b8:98:d2:b2:b0:47:4f:cf:92:06:60:f0: dd:74:c0:30:13:e0:94:bc:2c:63:8d:60:1b:af:ca: df:1e:74:34:8d:bf:e8:da:74:9c:02:8a:4e:9d:1f: 59:c4:26:2d:20:8f:75:1c:ad:20:25:06:0b:27:45: 27:38:2e:1a:ac:1e:78:26:ca:6f:e7:11:f4:db:64: 73:99:2c:ae:94:19:9d:7e:05:d2:3d:49:19:1e:0c: 38:a5:96:ae:bc:3e:e8:a3:ce:da:cf:c2:d3:5c:50: 95:9c:d0:bd:7c:92:9e:6e:5a:ea:e0:00:1e:f2:21: 3f:74:af:75:5d:9f:2e:3e:5c:41:ca:b4:95:85:ec: 25:52:f7:5c:a0:61:13:e7:be:15:97:50:72:f2:cb: c8:bb:e8:4b:37:bb:3b:21:09:46:3d:58:b5:71:11: cd:dc:e6:44:39:35:35:db:20:45:8a:6f:f4:fa:7a: 8e:ee:cc:20:e3:a5:bb:41:97:09:f1:6d:4c:d1:43: 67:0e:33:c7:4c:41:18:bb:19:37:b4:96:d9:ce:21: fe:56:d3:f1:f9:8d:c0:2a:27:66:f0:e8:64:33:ad: 8c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:96:D4:4B:80:3E:A9:36:50:77:34:33:53:14:F5:88:5B:7F:93:86 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/5CAAB66A91B211EC838CA523C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:2100::/40 Signature Algorithm: sha256WithRSAEncryption 89:4b:04:2e:f7:7e:73:a8:38:5b:66:c7:b4:6f:06:b8:08:38: 98:ff:f5:f9:f7:74:37:d8:61:12:bc:39:92:8c:5d:2f:c8:75: 00:0c:0f:21:0e:54:f4:3e:74:7e:94:de:03:1e:dd:9a:bf:eb: 6c:40:e2:68:1f:25:b0:c0:62:f0:92:55:64:72:8f:20:79:ed: 37:24:11:d1:62:6f:4f:c3:04:4a:13:74:09:70:7a:1f:27:2b: ae:3f:00:44:b5:50:2f:4e:28:85:e9:9c:f9:7b:b6:ae:0d:2a: fd:42:4c:38:35:41:78:c2:f3:dc:1f:93:e9:12:f7:07:c8:cf: a7:27:b5:82:73:9e:8f:91:0c:d8:0b:d2:ae:4b:66:39:61:50: 24:a2:f0:eb:d2:f7:97:9a:4e:28:7c:dc:fa:59:21:32:66:dd: e4:03:b0:55:60:f5:8c:4f:a9:f4:d7:20:cd:1a:18:bc:91:b1: 1e:e9:da:95:8c:85:eb:c5:be:aa:4c:0e:82:fc:5a:a7:07:bc: 9f:db:dd:e1:2d:93:f4:0f:01:51:d0:4a:e3:4a:79:47:d3:a5: 29:69:2b:90:7a:cb:4f:bd:ef:83:6b:d2:2e:5e:11:0b:3a:75: 3a:f4:3c:1d:5b:99:87:b0:7b:b7:db:cb:5c:00:f4:a7:a4:7e: 5c:22:aa:62 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjUwMTI1MDAxMzM2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MmNiMC0yNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bt9yur6oDV8TxoN+z8y01Ueom28mt/ZRyV5VSOyGs64mNKysEdPz5IGYPDd dMAwE+CUvCxjjWAbr8rfHnQ0jb/o2nScAopOnR9ZxCYtII91HK0gJQYLJ0UnOC4a rB54Jspv5xH022RzmSyulBmdfgXSPUkZHgw4pZauvD7oo87az8LTXFCVnNC9fJKe blrq4AAe8iE/dK91XZ8uPlxByrSVhewlUvdcoGET574Vl1By8svIu+hLN7s7IQlG PVi1cRHN3OZEOTU12yBFim/0+nqO7swg46W7QZcJ8W1M0UNnDjPHTEEYuxk3tJbZ ziH+VtPx+Y3AKidm8OhkM62M8wIDAQABo4IClzCCApMwHQYDVR0OBBYEFEGW1EuA Pqk2UHc0M1MU9Yhbf5OGMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNUNBQUI2NkE5 MUIyMTFFQzgzOENBNTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAITANBgkqhkiG9w0BAQsFAAOCAQEAiUsELvd+c6g4 W2bHtG8GuAg4mP/1+fd0N9hhErw5koxdL8h1AAwPIQ5U9D50fpTeAx7dmr/rbEDi aB8lsMBi8JJVZHKPIHntNyQR0WJvT8MEShN0CXB6Hycrrj8ARLVQL04ohemc+Xu2 rg0q/UJMODVBeMLz3B+T6RL3B8jPpye1gnOej5EM2AvSrktmOWFQJKLw69L3l5pO KHzc+lkhMmbd5AOwVWD1jE+p9NcgzRoYvJGxHunalYyF68W+qkwOgvxapwe8n9vd 4S2T9A8BUdBK40p5R9OlKWkrkHrLT73vg2vSLl4RCzp1OvQ8HVuZh7B7t9vLXAD0 p6R+XCKqYg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:40 2025 by rpki-client