$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa File: B579952EEBB311EEAF9E7718C4F9AE02.roa (raw, json) Hash identifier: C2NxU1lQlZ2n08P5tKs8DPYPsdJ1g4kb+eI8Iuan3ac= Subject key identifier: C7:A4:67:8B:2C:FD:B8:3D:99:E2:81:1E:B7:D9:1A:FF:8B:08:90:E6 Certificate issuer: /CN=A91CF83F/serialNumber=929889BB5D34E860ACBF70894337A462C1D6AC2E Certificate serial: 0CA3 Authority key identifier: 92:98:89:BB:5D:34:E8:60:AC:BF:70:89:43:37:A4:62:C1:D6:AC:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa Signing time: Sun 02 Mar 2025 19:06:38 +0000 ROA not before: Sun 02 Mar 2025 19:06:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135019 IP address blocks: 2400:b140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.crl rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF83F Validity Not Before: Mar 2 19:06:38 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67c4ac3e-cc18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4e:9e:80:c3:47:37:b0:40:be:78:01:8e:2c: 54:8b:15:4f:39:eb:41:58:0a:b3:36:e8:4e:b5:bf: a6:06:4d:f2:7e:db:ca:93:17:3b:00:9b:c0:0c:74: 9f:e0:e3:f2:ca:70:69:52:b6:e5:6c:ea:a2:94:9f: 08:20:a6:f0:d1:36:a0:09:18:43:8d:b0:27:81:05: 7d:13:d9:3d:a0:07:cd:28:36:c0:0c:4f:1e:d6:67: d2:e5:5d:5e:f9:b6:f5:6d:73:ec:96:8d:1d:72:f2: 15:03:b9:03:54:23:13:a2:ad:e1:4f:25:2e:75:34: bd:f9:66:2e:8c:24:8c:b5:bb:ed:ab:79:d2:15:0b: f5:36:e1:70:7d:d7:b2:3d:33:6e:9f:7c:11:bd:33: 93:69:e3:52:dc:b0:fd:95:1b:39:5b:93:c7:77:8a: 4c:a5:c0:ec:d8:7d:de:9f:3d:4d:ea:ba:62:d1:dd: 17:4b:c9:ba:bd:f8:12:e5:b0:ae:f8:49:a1:9e:84: 99:44:a1:b0:e5:52:53:fd:44:f2:c3:dc:3c:8f:cf: 5c:eb:71:d1:44:c1:98:5c:ea:f4:d0:43:30:77:82: bf:10:dd:fd:27:a3:51:22:c9:73:b2:8f:aa:35:e5: 60:ab:9d:f5:5a:12:ca:b0:07:eb:2f:93:0c:69:48: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A4:67:8B:2C:FD:B8:3D:99:E2:81:1E:B7:D9:1A:FF:8B:08:90:E6 X509v3 Authority Key Identifier: keyid:92:98:89:BB:5D:34:E8:60:AC:BF:70:89:43:37:A4:62:C1:D6:AC:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b140::/32 Signature Algorithm: sha256WithRSAEncryption 2e:42:23:6e:57:65:61:45:fe:54:57:45:42:a7:13:c9:7d:24: e7:9b:8f:f2:bc:6d:94:ad:b7:6c:11:50:3c:17:5d:0b:b8:32: 5d:69:03:a1:8a:07:e7:9c:80:20:0b:43:79:3b:d8:08:b0:d5: ea:e9:d7:ad:eb:b3:00:16:47:aa:a4:b3:9d:c3:77:87:56:61: c6:74:5c:e9:ac:46:18:72:8f:12:0c:67:79:ca:fa:db:47:d9: 45:36:a2:b1:01:1e:ae:bd:1a:86:ec:55:5c:41:a2:8e:81:59: 7b:eb:de:3e:1c:44:fd:26:8f:f9:3a:51:86:c1:f3:a1:8b:b4: 95:14:59:c0:1a:3f:82:9d:40:e5:6a:62:1c:8a:ef:ed:67:2d: de:13:41:b4:f5:7a:3d:01:6e:a5:9f:84:de:93:b4:4d:c6:e0: 81:3e:81:57:e3:9e:ab:d3:ab:ea:cc:31:48:d0:d3:88:48:0c: f8:ba:ad:ee:9b:31:b5:cf:54:bf:81:2c:80:99:0d:6f:ba:52: 42:bf:71:41:54:43:1d:31:6e:25:95:c8:41:28:4a:4e:27:32: 07:71:05:72:2e:ff:08:90:cc:50:ae:86:8e:2c:d3:2c:74:43: da:53:e4:f5:02:e4:87:ff:08:49:a4:2f:aa:4a:10:f9:07:31: 62:c1:e0:6c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4M0YxMTAvBgNVBAUTKDkyOTg4OUJCNUQzNEU4NjBBQ0JGNzA4OTQzMzdBNDYy QzFENkFDMkUwHhcNMjUwMzAyMTkwNjM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0YWMzZS1jYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE6egMNHN7BAvngBjixUixVPOetBWAqzNuhOtb+mBk3yftvKkxc7AJvADHSf 4OPyynBpUrblbOqilJ8IIKbw0TagCRhDjbAngQV9E9k9oAfNKDbADE8e1mfS5V1e +bb1bXPslo0dcvIVA7kDVCMToq3hTyUudTS9+WYujCSMtbvtq3nSFQv1NuFwfdey PTNun3wRvTOTaeNS3LD9lRs5W5PHd4pMpcDs2H3enz1N6rpi0d0XS8m6vfgS5bCu +EmhnoSZRKGw5VJT/UTyw9w8j89c63HRRMGYXOr00EMwd4K/EN39J6NRIslzso+q NeVgq531WhLKsAfrL5MMaUhYBQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMekZ4ss /bg9meKBHrfZGv+LCJDmMB8GA1UdIwQYMBaAFJKYibtdNOhgrL9wiUM3pGLB1qwu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjgzRi84OTIzOEVDQ0VG NEYxMUU5OURFNDdGMENDNEY5QUUwMi9rcGlKdTEwMDZHQ3N2M0NKUXpla1lzSFdy QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2twaUp1MTAwNkdDc3YzQ0pRemVrWXNIV3JDNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y4M0YvODkyMzhFQ0NFRjRGMTFFOTlERTQ3RjBDQzRGOUFFMDIvQjU3OTk1MkVF QkIzMTFFRUFGOUU3NzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALFAMA0GCSqGSIb3DQEBCwUAA4IBAQAuQiNuV2VhRf5U V0VCpxPJfSTnm4/yvG2UrbdsEVA8F10LuDJdaQOhigfnnIAgC0N5O9gIsNXq6det 67MAFkeqpLOdw3eHVmHGdFzprEYYco8SDGd5yvrbR9lFNqKxAR6uvRqG7FVcQaKO gVl7694+HET9Jo/5OlGGwfOhi7SVFFnAGj+CnUDlamIciu/tZy3eE0G09Xo9AW6l n4Tek7RNxuCBPoFX456r06vqzDFI0NOISAz4uq3umzG1z1S/gSyAmQ1vulJCv3FB VEMdMW4llchBKEpOJzIHcQVyLv8IkMxQroaOLNMsdEPaU+T1AuSH/whJpC+qShD5 BzFiweBs -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:17 2025 by rpki-client