$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/01D6C542776C11EF9A0CEA56C4F9AE02.roa File: 01D6C542776C11EF9A0CEA56C4F9AE02.roa (raw, json) Hash identifier: yd/SOlvp9mrxaUSwn8FcZ74+WiXfNeapwvKAhRJ4Sx8= Subject key identifier: EC:54:02:E7:FA:08:84:8E:89:5D:48:7F:41:8F:A7:D8:6A:0F:2B:33 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0A60 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/01D6C542776C11EF9A0CEA56C4F9AE02.roa Signing time: Wed 26 Mar 2025 19:59:51 +0000 ROA not before: Wed 26 Mar 2025 19:59:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 131274 IP address blocks: 2001:218:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2656 (0xa60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493 Validity Not Before: Mar 26 19:59:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e45cb7-1619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0c:4d:ab:c8:fe:6f:20:f8:b9:46:67:f8:13: e2:9e:3f:87:c5:03:f6:40:2e:84:29:df:6f:5f:bb: 50:cb:50:ab:2a:60:05:d0:96:69:86:f3:b7:20:a6: d0:51:59:26:bd:0b:71:3e:15:b9:5d:ed:72:14:c9: 06:47:e8:f6:1e:c4:1a:06:5a:4a:55:f7:64:bb:6f: 57:f2:49:2e:70:4e:57:bb:25:7e:a9:fa:06:f0:b3: 42:08:5c:48:af:25:c2:6d:9f:8e:96:93:be:1e:c3: c4:ae:a1:dc:a9:60:88:ac:4b:bc:a9:f2:0f:e7:f0: 0e:d0:6c:6e:cc:c1:19:86:de:a1:7d:bc:ba:14:c2: 09:d8:0e:ea:bb:9b:a8:45:ab:9c:c8:1d:dc:ac:d3: 19:ab:b3:d0:91:63:c7:df:11:f1:8c:bc:50:0f:12: ef:02:2e:6e:28:07:28:97:a6:e8:c2:b8:ab:f4:6d: ab:28:5d:df:68:21:df:37:11:40:45:a1:5f:cc:77: 6f:ce:f0:80:b8:b9:0d:cc:cf:50:28:7d:6d:9c:ff: cf:c6:27:ef:33:ca:f7:1e:e2:e4:36:ed:64:7c:47: 44:e1:0f:9e:fd:99:8b:47:e8:50:75:86:81:de:69: 5c:23:7d:f5:01:a2:96:53:2f:3a:35:a1:9b:19:32: ef:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:54:02:E7:FA:08:84:8E:89:5D:48:7F:41:8F:A7:D8:6A:0F:2B:33 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/01D6C542776C11EF9A0CEA56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:2003::/48 Signature Algorithm: sha256WithRSAEncryption 1e:07:26:1c:4b:61:6d:aa:13:04:01:cf:7b:76:98:ec:05:b9: 06:9d:46:70:e9:a4:df:ff:0d:98:01:94:93:4e:ee:ee:fe:4c: fb:50:03:f9:f3:cc:7f:1a:82:04:5c:d5:cc:bc:90:9d:b1:0a: 88:a9:59:57:5e:3c:34:04:18:2e:90:cf:5d:0f:53:b9:b5:dd: 72:ec:7a:cc:25:02:dd:6b:3f:ea:d4:0d:0b:91:77:a9:8c:1b: 75:87:31:06:54:ec:b8:37:90:13:ac:e0:5d:74:06:e0:91:ed: 93:f7:b2:97:49:70:ca:31:32:55:04:aa:82:dc:f3:f7:01:74: e9:d7:c1:4f:27:dc:c4:60:55:00:51:b1:94:d9:ca:a5:27:06: b5:ec:52:9f:9a:cb:ac:ef:47:94:0b:34:7b:1c:ef:20:ff:05: b4:3c:28:d6:98:e8:2e:10:9e:b3:05:82:f0:b0:64:2b:6c:e4: e1:74:a2:ef:67:e3:9c:dc:a7:a9:b5:57:31:9b:bf:4d:9a:c5: 3b:d9:d5:e0:72:62:71:53:72:cb:16:e9:c1:72:8e:d7:5f:a8: e1:72:31:20:da:25:00:4e:ce:7d:18:90:5f:63:4a:ae:d9:ab: fa:27:a0:f8:c1:fe:8a:8d:d7:9a:21:1b:59:84:66:d8:df:f2: 39:3e:b0:ab -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MTk1OTUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NWNiNy0xNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAxNq8j+byD4uUZn+BPinj+HxQP2QC6EKd9vX7tQy1CrKmAF0JZphvO3IKbQ UVkmvQtxPhW5Xe1yFMkGR+j2HsQaBlpKVfdku29X8kkucE5XuyV+qfoG8LNCCFxI ryXCbZ+OlpO+HsPErqHcqWCIrEu8qfIP5/AO0GxuzMEZht6hfby6FMIJ2A7qu5uo RaucyB3crNMZq7PQkWPH3xHxjLxQDxLvAi5uKAcol6bowrir9G2rKF3faCHfNxFA RaFfzHdvzvCAuLkNzM9QKH1tnP/PxifvM8r3HuLkNu1kfEdE4Q+e/ZmLR+hQdYaB 3mlcI331AaKWUy86NaGbGTLv5QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOxUAuf6 CISOiV1If0GPp9hqDyszMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvMDFENkM1NDI3 NzZDMTFFRjlBMENFQTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQIYIAMwDQYJKoZIhvcNAQELBQADggEBAB4HJhxLYW2q EwQBz3t2mOwFuQadRnDppN//DZgBlJNO7u7+TPtQA/nzzH8aggRc1cy8kJ2xCoip WVdePDQEGC6Qz10PU7m13XLseswlAt1rP+rUDQuRd6mMG3WHMQZU7Lg3kBOs4F10 BuCR7ZP3spdJcMoxMlUEqoLc8/cBdOnXwU8n3MRgVQBRsZTZyqUnBrXsUp+ay6zv R5QLNHsc7yD/BbQ8KNaY6C4QnrMFgvCwZCts5OF0ou9n45zcp6m1VzGbv02axTvZ 1eByYnFTcssW6cFyjtdfqOFyMSDaJQBOzn0YkF9jSq7Zq/onoPjB/oqN15ohG1mE Ztjf8jk+sKs= -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:32 2025 by rpki-client