$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa File: 863670328FD011EEB6FFC636C4F9AE02.roa (raw, json) Hash identifier: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk= Subject key identifier: 8B:7B:1E:6F:3F:1B:A0:BE:FE:7A:EE:F5:96:C1:9E:18:7B:D8:15:00 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 08E1 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa Signing time: Fri 28 Mar 2025 21:13:50 +0000 ROA not before: Fri 28 Mar 2025 21:13:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 398791 IP address blocks: 2407:1c00:6200::/40 maxlen: 40 2407:1c00:6300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0 Validity Not Before: Mar 28 21:13:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e7110e-15d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9c:9d:dd:96:9c:33:c3:8e:93:a8:a4:c3:4f: 8e:a5:93:14:79:53:47:77:0b:65:08:30:f6:f7:43: 3e:0b:55:cd:44:0d:52:3c:9d:1e:e9:10:09:8e:d8: a9:8d:c9:78:38:1c:b4:f5:40:a9:d5:f9:13:fe:24: 3b:4c:11:7a:2a:62:ae:44:58:53:9e:32:4f:1d:43: 4f:f1:ef:57:bb:3d:94:f7:20:b8:2f:ce:83:9d:93: f3:08:5c:92:87:2c:50:6a:6d:9c:74:1b:30:29:0c: ec:0c:19:14:11:63:db:5a:55:5d:50:f8:5e:2e:ff: 47:3c:20:a4:0c:6b:25:db:8e:f0:fa:79:4b:a5:00: 14:6b:ab:3c:67:54:84:49:1e:09:28:01:45:05:d4: d8:a9:33:c9:7f:f7:be:59:5b:89:32:56:1a:83:7c: 51:b5:60:df:9d:a2:e6:26:7c:2c:55:6c:34:3b:a2: 4d:9f:c6:48:15:cc:5c:92:db:ac:00:70:23:9b:49: 82:5c:9f:05:55:80:7c:a6:7d:ad:fe:36:4c:5e:77: 51:fb:73:30:48:5e:71:78:0a:8b:f1:9d:34:b0:b2: 8e:e0:7e:0e:ff:5e:7e:88:f4:2c:e9:8b:a3:1f:51: d6:aa:5d:c9:ec:f3:d6:27:d1:b1:49:15:e8:10:86: 1d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7B:1E:6F:3F:1B:A0:BE:FE:7A:EE:F5:96:C1:9E:18:7B:D8:15:00 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:1c00:6200::/39 Signature Algorithm: sha256WithRSAEncryption 57:81:d1:7a:31:d2:27:1f:59:31:8f:06:af:5c:0a:f1:15:8b: 3c:86:f8:63:67:c2:d1:d0:b8:13:10:6f:62:a2:95:a1:a9:c1: a1:46:72:fa:33:f7:42:c0:21:9d:23:31:96:7e:a2:2d:eb:09: 5a:c2:28:32:35:52:6f:48:d7:8d:16:80:23:38:0a:1a:ed:cd: 1c:5e:b4:d4:2d:0d:46:82:9c:13:92:5e:dc:c2:6f:d7:db:c4: 4c:8e:a9:52:6d:36:a5:72:34:52:d5:41:d7:5b:d7:0b:19:f0: 54:ff:48:64:8a:57:88:1e:df:a9:c4:5f:f4:f4:01:b2:90:e7: 87:ec:76:6d:ea:8c:4d:f3:e3:5c:e0:c5:d3:16:f5:d2:a2:f2: cd:57:60:1c:43:6a:d9:0b:f4:b7:b9:77:99:8f:80:6c:ac:d5: 61:07:1a:3d:15:fd:d9:83:a2:ca:27:f1:1b:6b:a4:fb:c6:65: 4d:92:4a:93:4e:9b:47:ed:ea:bf:c8:aa:ed:85:16:17:18:2c: 57:8c:ce:dd:f1:97:0e:03:90:7e:b6:f8:0d:36:75:7f:7d:8f: 34:d7:2b:c7:4c:03:42:57:c7:5e:60:d4:f7:cf:4f:9b:9d:d0: 98:51:6f:86:b0:f2:86:de:9a:11:f7:49:37:ba:ab:eb:86:c1: 58:7a:18:5f -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMzI4MjExMzUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MTEwZS0xNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pyd3ZacM8OOk6ikw0+OpZMUeVNHdwtlCDD290M+C1XNRA1SPJ0e6RAJjtip jcl4OBy09UCp1fkT/iQ7TBF6KmKuRFhTnjJPHUNP8e9Xuz2U9yC4L86DnZPzCFyS hyxQam2cdBswKQzsDBkUEWPbWlVdUPheLv9HPCCkDGsl247w+nlLpQAUa6s8Z1SE SR4JKAFFBdTYqTPJf/e+WVuJMlYag3xRtWDfnaLmJnwsVWw0O6JNn8ZIFcxcktus AHAjm0mCXJ8FVYB8pn2t/jZMXndR+3MwSF5xeAqL8Z00sLKO4H4O/15+iPQs6Yuj H1HWql3J7PPWJ9GxSRXoEIYdhQIDAQABo4IClzCCApMwHQYDVR0OBBYEFIt7Hm8/ G6C+/nru9ZbBnhh72BUAMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvODYzNjcwMzI4 RkQwMTFFRUI2RkZDNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgEkBxwAYjANBgkqhkiG9w0BAQsFAAOCAQEAV4HRejHSJx9Z MY8Gr1wK8RWLPIb4Y2fC0dC4ExBvYqKVoanBoUZy+jP3QsAhnSMxln6iLesJWsIo MjVSb0jXjRaAIzgKGu3NHF601C0NRoKcE5Je3MJv19vETI6pUm02pXI0UtVB11vX CxnwVP9IZIpXiB7fqcRf9PQBspDnh+x2beqMTfPjXODF0xb10qLyzVdgHENq2Qv0 t7l3mY+AbKzVYQcaPRX92YOiyifxG2uk+8ZlTZJKk06bR+3qv8iq7YUWFxgsV4zO 3fGXDgOQfrb4DTZ1f32PNNcrx0wDQlfHXmDU989Pm53QmFFvhrDyht6aEfdJN7qr 64bBWHoYXw== -----END CERTIFICATE-----Generated at Sun Apr 6 02:28:34 2025 by rpki-client