$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa File: 8B8856F4C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: 9pxxuNY/fuCdOuU7dA3COe6L1OGNmS3muKknh0X0O9M= Subject key identifier: 61:6D:D9:27:29:A1:72:92:69:5E:7B:44:FD:50:9A:76:9F:7C:D4:B9 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0A64 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa Signing time: Wed 26 Mar 2025 19:59:54 +0000 ROA not before: Wed 26 Mar 2025 19:59:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20940 IP address blocks: 2001:218:3004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493 Validity Not Before: Mar 26 19:59:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e45cba-2ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:83:50:17:b4:ab:73:70:28:37:cc:7f:52:b2: b8:21:78:75:48:d2:d7:34:a7:dc:39:bf:55:b4:f5: 0f:7d:96:e8:a3:97:d0:db:5e:bc:2e:d9:0e:06:dd: 5d:da:52:6a:e8:19:c3:1d:a9:48:d1:cb:e5:1f:a6: 54:f5:ee:2b:8c:0b:3b:65:f9:59:60:a8:45:a6:c3: 81:c0:b5:62:66:3a:8b:38:8b:4b:54:73:c2:41:72: c0:e6:a5:13:42:45:df:b5:ed:50:ce:11:85:46:28: bc:38:e0:8d:21:52:01:1e:1a:e2:20:ad:a7:d8:0e: cd:6d:27:8a:ac:03:0b:86:81:63:6e:d7:da:2e:0a: 10:e4:85:7e:10:cf:7d:ca:94:fb:a7:0c:2b:b1:ef: 4e:ec:35:a0:22:e6:61:71:ff:cf:4e:fa:3d:45:94: f3:ab:0d:ba:7e:c9:b4:90:c3:dc:25:a2:c2:b3:be: c7:15:b5:60:b3:98:37:cb:c2:69:0b:44:2d:4e:88: 7b:4c:4c:5b:9c:b2:0d:8a:85:8c:72:33:ef:62:37: e3:6e:35:5f:a3:82:a0:53:d7:eb:14:18:25:68:c0: 42:7e:97:85:33:b6:fb:b0:fe:de:aa:be:5f:20:bb: 82:1a:a7:b0:4c:cc:75:e2:3d:ff:39:af:88:11:d3: 35:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6D:D9:27:29:A1:72:92:69:5E:7B:44:FD:50:9A:76:9F:7C:D4:B9 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8B8856F4C9DC11EE8B24C55EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:3004::/48 Signature Algorithm: sha256WithRSAEncryption c0:db:88:bc:c0:e4:d1:69:6a:84:85:3b:98:bc:de:d9:6b:52: 90:7f:4b:34:a6:69:91:ae:9f:aa:3e:88:11:14:19:e7:89:93: e0:a0:f0:5b:82:a8:99:42:04:8f:78:b5:36:6e:81:73:b9:09: a3:3f:fa:22:72:70:17:af:e1:ec:8a:f2:f9:ae:be:b9:80:43: 6d:a8:2d:d0:88:44:5d:be:c6:9c:c4:98:63:fb:57:d3:61:0f: 45:06:78:6e:fe:30:b9:1c:4b:a5:17:45:ec:d5:75:2c:a0:33: c4:21:9b:b1:79:e7:29:3c:1e:b2:c6:0e:33:ba:e6:f9:52:fc: f2:cf:48:c3:db:ba:b8:fc:83:39:fa:8b:d9:14:08:b9:ef:40: fd:5a:8d:50:31:4e:e9:bf:8b:1c:44:9a:0f:90:5b:43:7d:d8: 60:39:b8:02:92:3a:6c:59:12:a6:5b:a2:1f:c4:ef:5c:1d:49: 79:c7:db:fd:c8:cf:96:7d:c0:fc:30:68:b9:a5:bf:12:da:25: 9f:f3:8d:82:3a:38:1e:9a:b5:a9:19:50:eb:3c:04:a0:9f:20: e0:da:36:0c:94:fe:0f:84:33:a6:bc:57:49:33:b1:9b:c0:1b: 78:ea:00:de:15:c8:e5:26:e7:cd:d0:55:f0:b8:a0:67:aa:9b: 13:58:00:de -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MTk1OTU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NWNiYS0yZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oNQF7Src3AoN8x/UrK4IXh1SNLXNKfcOb9VtPUPfZboo5fQ2168LtkOBt1d 2lJq6BnDHalI0cvlH6ZU9e4rjAs7ZflZYKhFpsOBwLViZjqLOItLVHPCQXLA5qUT QkXfte1QzhGFRii8OOCNIVIBHhriIK2n2A7NbSeKrAMLhoFjbtfaLgoQ5IV+EM99 ypT7pwwrse9O7DWgIuZhcf/PTvo9RZTzqw26fsm0kMPcJaLCs77HFbVgs5g3y8Jp C0QtToh7TExbnLINioWMcjPvYjfjbjVfo4KgU9frFBglaMBCfpeFM7b7sP7eqr5f ILuCGqewTMx14j3/Oa+IEdM1rwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGFt2Scp oXKSaV57RP1QmnaffNS5MB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEI4ODU2RjRD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQIYMAQwDQYJKoZIhvcNAQELBQADggEBAMDbiLzA5NFp aoSFO5i83tlrUpB/SzSmaZGun6o+iBEUGeeJk+Cg8FuCqJlCBI94tTZugXO5CaM/ +iJycBev4eyK8vmuvrmAQ22oLdCIRF2+xpzEmGP7V9NhD0UGeG7+MLkcS6UXRezV dSygM8Qhm7F55yk8HrLGDjO65vlS/PLPSMPburj8gzn6i9kUCLnvQP1ajVAxTum/ ixxEmg+QW0N92GA5uAKSOmxZEqZboh/E71wdSXnH2/3Iz5Z9wPwwaLmlvxLaJZ/z jYI6OB6atakZUOs8BKCfIODaNgyU/g+EM6a8V0kzsZvAG3jqAN4VyOUm583QVfC4 oGeqmxNYAN4= -----END CERTIFICATE-----Generated at Sat Apr 5 06:15:24 2025 by rpki-client