$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A07678D893DD11ED8CA1B551C4F9AE02.roa File: A07678D893DD11ED8CA1B551C4F9AE02.roa (raw, json) Hash identifier: qkkPmiKCotm8xDRLsYOYAa7+VqT8w5zL4Yd9LFXCYYg= Subject key identifier: B8:DB:E0:FE:72:3F:26:FA:DE:55:4B:6E:C8:7E:F2:6F:8E:41:42:93 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 0473 Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A07678D893DD11ED8CA1B551C4F9AE02.roa Signing time: Sat 25 Jan 2025 00:13:32 +0000 ROA not before: Sat 25 Jan 2025 00:13:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 203472 IP address blocks: 2407:9240:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC Validity Not Before: Jan 25 00:13:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67942cab-7d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bb:58:f8:b7:89:76:7b:52:95:38:93:58:e2: 71:45:e3:5a:fd:fd:28:4d:1e:f9:99:b7:b4:f5:fb: 18:b5:a7:dc:29:e1:56:5c:ee:79:00:42:79:10:4a: 47:a4:e4:eb:db:22:cc:85:f4:9f:4b:5d:68:d6:5f: 00:9d:07:d4:b0:7b:9e:7a:f2:bb:51:c2:5b:f2:c1: c4:8c:bf:6f:84:7c:76:f4:4b:7b:34:a9:68:60:a8: d2:aa:a6:d9:3e:46:74:3e:1c:7c:25:66:c7:23:f6: 6a:7a:12:31:d4:e2:72:6c:9e:5c:4c:65:a2:00:ec: 97:a8:b6:6a:ed:f0:e7:97:46:61:5f:aa:c8:bc:e5: c1:ad:e8:65:bc:1a:56:b7:92:d4:bb:54:4f:eb:55: 30:a2:c6:b8:2a:a7:65:58:e0:98:b1:44:2e:2f:54: 27:14:ac:30:da:6d:37:a1:7a:20:ac:02:0b:a6:bf: da:cd:c5:52:a4:c7:89:e7:77:8f:a1:37:45:73:bc: e0:cd:49:47:d9:cf:5b:b3:4c:70:b8:46:74:0f:6b: 19:75:bf:fe:68:06:93:be:70:79:d4:3e:94:18:84: 30:f8:8e:f3:f8:91:e8:8b:7c:a8:cc:3d:4d:cb:ef: e8:18:d5:e0:9b:f9:ff:78:cf:12:b6:28:5c:5c:64: c6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DB:E0:FE:72:3F:26:FA:DE:55:4B:6E:C8:7E:F2:6F:8E:41:42:93 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/A07678D893DD11ED8CA1B551C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:1001::/48 Signature Algorithm: sha256WithRSAEncryption 1d:f8:ca:42:cf:73:6d:4f:21:c4:f5:25:63:df:74:c4:ca:ea: 71:03:5d:8c:bb:b1:ad:ff:b7:5e:b5:0a:2f:b0:fd:83:a6:7f: d0:c2:58:be:7d:26:8d:3a:60:3e:c2:a4:c1:f0:da:74:5a:be: 01:7a:c5:d2:47:87:53:c7:49:61:b5:9d:03:6d:0a:35:e5:ca: 19:61:5a:0c:4b:b9:fc:7c:47:ea:14:22:bc:1e:7f:30:77:62: c4:02:9a:cd:0a:53:0b:e5:bd:00:ba:bf:f2:23:f9:52:94:a7: d6:15:9d:54:ed:f0:b2:32:5d:0d:f1:e0:3c:6f:92:b4:00:38: 15:6f:1a:98:c7:a5:5e:78:f7:15:7b:1c:c8:06:a6:c8:4e:e2: aa:6f:23:f6:a7:b2:75:7d:81:50:4f:05:01:b8:8c:47:bb:ab: 3f:d2:93:9e:0e:6f:40:1f:29:a3:a7:56:19:6c:de:6c:53:a5: f2:09:a0:3b:dd:56:66:a2:d1:7f:3e:29:df:98:0c:71:7d:73: db:23:6b:7b:69:94:69:0a:21:42:eb:ca:78:7d:ad:23:f2:1b: fa:0a:74:ac:4d:4b:13:d2:d2:42:43:27:35:57:bc:22:fb:42: 1d:02:13:35:93:f8:51:6a:d9:40:f3:42:4b:b0:79:bb:0b:9e: a7:0d:fd:37 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjUwMTI1MDAxMzMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MmNhYi03ZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7tY+LeJdntSlTiTWOJxReNa/f0oTR75mbe09fsYtafcKeFWXO55AEJ5EEpH pOTr2yLMhfSfS11o1l8AnQfUsHueevK7UcJb8sHEjL9vhHx29Et7NKloYKjSqqbZ PkZ0Phx8JWbHI/ZqehIx1OJybJ5cTGWiAOyXqLZq7fDnl0ZhX6rIvOXBrehlvBpW t5LUu1RP61Uwosa4KqdlWOCYsUQuL1QnFKww2m03oXogrAILpr/azcVSpMeJ53eP oTdFc7zgzUlH2c9bs0xwuEZ0D2sZdb/+aAaTvnB51D6UGIQw+I7z+JHoi3yozD1N y+/oGNXgm/n/eM8StihcXGTGdwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLjb4P5y Pyb63lVLbsh+8m+OQUKTMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvQTA3Njc4RDg5 M0REMTFFRDhDQTFCNTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkB5JAEAEwDQYJKoZIhvcNAQELBQADggEBAB34ykLPc21P IcT1JWPfdMTK6nEDXYy7sa3/t161Ci+w/YOmf9DCWL59Jo06YD7CpMHw2nRavgF6 xdJHh1PHSWG1nQNtCjXlyhlhWgxLufx8R+oUIrwefzB3YsQCms0KUwvlvQC6v/Ij +VKUp9YVnVTt8LIyXQ3x4DxvkrQAOBVvGpjHpV549xV7HMgGpshO4qpvI/ansnV9 gVBPBQG4jEe7qz/Sk54Ob0AfKaOnVhls3mxTpfIJoDvdVmai0X8+Kd+YDHF9c9sj a3tplGkKIULrynh9rSPyG/oKdKxNSxPS0kJDJzVXvCL7Qh0CEzWT+FFq2UDzQkuw ebsLnqcN/Tc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:28 2025 by rpki-client