$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa File: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (raw, json) Hash identifier: wcQu6qDmYL8RSwTWQdHq8swDuqsLZ/b+WksTXiVZeUI= Subject key identifier: F1:FA:26:AC:87:A0:DA:BC:65:6D:98:88:22:22:BE:36:35:DC:E9:02 Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 17B2 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa Signing time: Sat 04 Jan 2025 16:34:34 +0000 ROA not before: Sat 04 Jan 2025 16:34:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132383 IP address blocks: 2401:f9c0:1111::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6066 (0x17b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E Validity Not Before: Jan 4 16:34:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6779631a-f57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:5a:59:60:fe:32:07:02:70:b1:17:63:f9: cc:1b:e0:7b:12:5c:97:68:be:70:73:b2:86:b6:84: e4:a5:a7:fa:6b:20:b8:ca:4a:83:01:61:f7:bd:a1: cc:a5:b7:b2:c7:74:89:dd:1d:1a:e8:1d:58:6d:c4: c4:66:43:51:d8:20:98:7d:ec:85:73:70:dd:23:54: 32:75:4c:2d:3f:26:ff:1a:d0:3b:de:67:fc:e2:8e: 9f:e3:5c:f0:de:23:56:bd:d9:76:fb:ba:a2:be:da: 2d:ae:f9:c1:d1:63:c4:de:00:e5:4f:5d:0d:bd:cd: 27:25:0d:80:47:a3:41:63:82:19:57:49:b0:df:b8: 50:63:09:e1:09:ee:ab:38:41:b5:36:55:f9:99:db: 8c:63:61:84:06:57:28:0e:54:a2:b4:2a:1f:8c:e6: a8:f2:ee:20:dc:18:18:4f:91:1d:0d:06:c8:8e:95: 82:3d:3d:d1:b6:78:82:8c:f9:8a:32:33:1a:1d:a2: 42:35:cc:6f:98:0a:c8:cd:d1:fb:d1:df:83:fd:4b: 56:58:25:41:d6:a1:77:e0:14:53:9c:73:16:4e:58: 19:11:f5:15:be:26:ee:b8:34:e5:61:cf:fd:cf:33: 72:39:0d:a5:1a:24:b1:d3:6d:18:3e:65:3b:89:ac: 85:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FA:26:AC:87:A0:DA:BC:65:6D:98:88:22:22:BE:36:35:DC:E9:02 X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/FA2CCDCCDE6111E88BFD7810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f9c0:1111::/48 Signature Algorithm: sha256WithRSAEncryption 18:7d:5e:34:cd:9a:2f:34:65:f8:bb:b3:f8:42:ee:49:fa:bb: 48:bc:f6:63:46:92:fc:58:e9:05:7f:42:03:21:10:5f:92:c0: 74:b5:1b:62:a1:dd:49:ef:9b:f0:0c:2d:7a:df:d8:ef:b0:ba: 80:31:d7:c3:d7:7d:db:25:f6:8c:75:b8:24:30:b4:df:cf:0b: 16:a0:6b:97:03:8c:8f:68:46:9f:95:d7:1a:5c:a7:f8:34:f2: bd:24:c3:fd:b6:8e:0b:c6:52:52:2e:1b:5f:1f:ba:b6:36:44: 73:ed:49:8e:ef:63:c6:6b:9a:92:c2:67:3f:b3:ee:8e:09:91: 97:3c:e3:57:a6:1a:9f:bf:68:4e:96:54:64:90:fb:e6:1f:39: 8f:a2:d0:a5:2d:cc:87:19:83:3e:1b:3b:1b:8b:e1:d0:c9:93: 71:1a:c5:aa:6a:49:ca:56:a7:3d:26:79:b9:06:5f:37:f2:66: ae:fb:54:c2:cd:e7:5c:4d:c2:cd:5b:51:53:8e:9e:f0:e9:ff: 76:65:e1:1b:94:61:91:e1:dc:60:ff:e0:f8:83:b3:be:47:51: b3:53:37:6c:ca:27:42:f2:02:a1:f3:d5:06:1c:62:a9:09:93: 77:bd:ed:e0:f9:6e:b9:55:67:3c:d8:ae:1c:4c:b6:41:37:4a: 01:b3:bf:72 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICF7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjUwMTA0MTYzNDM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5NjMxYS1mNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWNaWWD+MgcCcLEXY/nMG+B7ElyXaL5wc7KGtoTkpaf6ayC4ykqDAWH3vaHM pbeyx3SJ3R0a6B1YbcTEZkNR2CCYfeyFc3DdI1QydUwtPyb/GtA73mf84o6f41zw 3iNWvdl2+7qivtotrvnB0WPE3gDlT10Nvc0nJQ2AR6NBY4IZV0mw37hQYwnhCe6r OEG1NlX5mduMY2GEBlcoDlSitCofjOao8u4g3BgYT5EdDQbIjpWCPT3RtniCjPmK MjMaHaJCNcxvmArIzdH70d+D/UtWWCVB1qF34BRTnHMWTlgZEfUVvibuuDTlYc/9 zzNyOQ2lGiSx020YPmU7iayFiQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPH6JqyH oNq8ZW2YiCIivjY13OkCMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMUUvQzFGQTA4MkNDOENCMTFFNzkwQTg4MTM4QzRGOUFFMDIvRkEyQ0NEQ0NE RTYxMTFFODhCRkQ3ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAfnAEREwDQYJKoZIhvcNAQELBQADggEBABh9XjTNmi80 Zfi7s/hC7kn6u0i89mNGkvxY6QV/QgMhEF+SwHS1G2Kh3Unvm/AMLXrf2O+wuoAx 18PXfdsl9ox1uCQwtN/PCxaga5cDjI9oRp+V1xpcp/g08r0kw/22jgvGUlIuG18f urY2RHPtSY7vY8ZrmpLCZz+z7o4JkZc841emGp+/aE6WVGSQ++YfOY+i0KUtzIcZ gz4bOxuL4dDJk3EaxapqScpWpz0mebkGXzfyZq77VMLN51xNws1bUVOOnvDp/3Zl 4RuUYZHh3GD/4PiDs75HUbNTN2zKJ0LyAqHz1QYcYqkJk3e97eD5brlVZzzYrhxM tkE3SgGzv3I= -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:15 2025 by rpki-client