$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa File: 9CEB71A45BA811ED875C2452C4F9AE02.roa (raw, json) Hash identifier: w7apuGkBrd33vO4iaNCejeb+aGRR6IgdY/JRsgg6JxE= Subject key identifier: 07:8A:71:99:F1:F2:E1:BF:9C:82:4F:CB:36:EC:11:D9:76:2A:24:E0 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 046F Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa Signing time: Sat 25 Jan 2025 00:13:28 +0000 ROA not before: Sat 25 Jan 2025 00:13:28 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138181 IP address blocks: 2407:9240:3200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC Validity Not Before: Jan 25 00:13:28 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67942ca8-deed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:13:d9:ef:28:ea:f7:e9:6f:11:71:2c:79: 12:1d:d8:05:b7:78:40:51:d7:cf:4f:d6:0d:18:4f: 06:44:56:ae:96:f6:f2:e6:59:3c:2e:3b:7a:f1:e6: cc:12:2b:0f:79:f8:62:58:50:04:8f:de:e3:20:3a: 86:8d:fe:cc:46:ab:f3:7a:8e:ab:77:c7:35:28:88: f7:15:ca:d5:c9:74:df:88:c6:40:c4:a8:a4:2f:8b: 8c:1b:b1:0f:b8:a8:b5:9e:d2:d9:05:20:19:b2:28: 68:91:7f:84:ec:3a:99:a6:73:c6:0f:80:e1:70:1f: 0c:a6:8e:ff:e0:ea:12:4d:0f:3e:1d:d2:01:75:98: 9a:54:df:75:18:26:2b:d9:0b:1b:03:82:51:87:98: 6e:33:9f:54:e3:92:50:47:7b:ed:c6:b5:22:a0:05: 78:56:3f:97:f5:cf:8b:bc:71:db:8e:11:7d:aa:9e: 77:60:57:c7:df:83:8b:e8:59:78:19:b8:6e:34:f1: 15:6c:4e:2b:f6:65:1d:bf:ac:5e:c5:0b:67:11:a3: b9:ea:ae:5d:3d:78:57:60:d3:60:43:42:d2:53:bf: 0d:9c:7f:d5:a9:b2:44:a6:a1:4c:aa:13:84:50:39: 4c:10:b7:13:fb:e0:2d:1f:45:3b:93:b7:97:6c:2d: fe:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8A:71:99:F1:F2:E1:BF:9C:82:4F:CB:36:EC:11:D9:76:2A:24:E0 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/9CEB71A45BA811ED875C2452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:3200::/40 Signature Algorithm: sha256WithRSAEncryption 96:fe:a9:2e:16:7e:38:ad:06:57:dc:e3:68:a7:81:2f:bd:40: 15:88:fa:45:c1:d8:74:fc:58:40:c2:f6:56:e9:5f:78:bc:d7: 68:5a:ae:fa:24:94:7c:99:19:c9:4c:a6:f9:bd:05:7e:12:08: b1:ab:18:bc:1a:3a:2a:74:bb:53:7b:d0:bb:ab:37:8c:c9:c2: e2:e2:89:02:c3:eb:d8:7b:8d:bb:ea:00:05:55:74:10:16:f8: 48:3d:5c:df:03:04:f2:95:55:c0:37:38:28:ce:8e:6e:cd:00: ea:5f:e2:c8:da:28:ef:7c:08:07:58:ec:e1:5b:ee:32:12:c8: a3:9f:11:25:01:f4:58:90:f4:2c:59:95:1e:b7:5a:48:6d:90: a6:dd:28:d6:75:9f:ac:25:95:11:7a:5e:f1:8f:74:b2:72:da: a1:08:29:d1:81:70:0e:2a:44:76:16:43:92:4f:5e:ef:54:cc: 78:2e:6e:64:92:46:e4:b2:c8:fc:07:2a:a3:85:b9:da:5b:5d: 2d:18:3c:57:f5:f2:20:cf:c8:39:e9:b1:98:d8:d8:89:bd:19: 05:df:83:c5:32:8c:4c:6c:35:f8:41:bf:42:86:1f:cd:1f:e3: b9:6f:0d:e1:29:0a:01:d2:82:8e:79:da:e1:85:cc:df:f2:91: 48:2c:46:86 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjUwMTI1MDAxMzI4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MmNhOC1kZWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA0T2e8o6vfpbxFxLHkSHdgFt3hAUdfPT9YNGE8GRFaulvby5lk8Ljt68ebM EisPefhiWFAEj97jIDqGjf7MRqvzeo6rd8c1KIj3FcrVyXTfiMZAxKikL4uMG7EP uKi1ntLZBSAZsihokX+E7DqZpnPGD4DhcB8Mpo7/4OoSTQ8+HdIBdZiaVN91GCYr 2QsbA4JRh5huM59U45JQR3vtxrUioAV4Vj+X9c+LvHHbjhF9qp53YFfH34OL6Fl4 GbhuNPEVbE4r9mUdv6xexQtnEaO56q5dPXhXYNNgQ0LSU78NnH/VqbJEpqFMqhOE UDlMELcT++AtH0U7k7eXbC3+vQIDAQABo4IClzCCApMwHQYDVR0OBBYEFAeKcZnx 8uG/nIJPyzbsEdl2KiTgMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvOUNFQjcxQTQ1 QkE4MTFFRDg3NUMyNDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAMjANBgkqhkiG9w0BAQsFAAOCAQEAlv6pLhZ+OK0G V9zjaKeBL71AFYj6RcHYdPxYQML2VulfeLzXaFqu+iSUfJkZyUym+b0FfhIIsasY vBo6KnS7U3vQu6s3jMnC4uKJAsPr2HuNu+oABVV0EBb4SD1c3wME8pVVwDc4KM6O bs0A6l/iyNoo73wIB1js4VvuMhLIo58RJQH0WJD0LFmVHrdaSG2Qpt0o1nWfrCWV EXpe8Y90snLaoQgp0YFwDipEdhZDkk9e71TMeC5uZJJG5LLI/Acqo4W52ltdLRg8 V/XyIM/IOemxmNjYib0ZBd+DxTKMTGw1+EG/QoYfzR/juW8N4SkKAdKCjnna4YXM 3/KRSCxGhg== -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:03 2025 by rpki-client