$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa File: B370AF6CD18411EF960DE726C4F9AE02.roa (raw, json) Hash identifier: 9iKSHz86/EIZlRAE/OwM+VXopdTWIKeDLhef41MF2CA= Subject key identifier: 87:F8:0C:70:E5:62:30:8A:D5:D2:DB:26:A0:5F:E8:0A:35:B1:7B:12 Certificate issuer: /CN=A91E3B1D/serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Certificate serial: 02AA Authority key identifier: 5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa Signing time: Mon 13 Jan 2025 08:02:15 +0000 ROA not before: Mon 13 Jan 2025 08:02:15 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149857 IP address blocks: 2400:83e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B1D Validity Not Before: Jan 13 08:02:15 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6784c887-cd53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f6:dd:2e:af:a4:fa:3f:b3:26:12:c0:b1:74: 9c:42:4a:a2:bb:17:22:e7:16:bf:80:e0:d1:a5:5c: 7d:3e:e0:43:5d:a2:a7:13:c9:b6:18:08:f6:66:73: 82:a8:2f:b6:27:cf:c3:ad:72:18:46:b0:6e:e9:6c: 34:ba:0b:70:2b:1a:c4:af:93:95:3f:4b:70:9c:c1: 6d:4c:62:94:fc:ec:b0:29:e1:48:b1:3a:dd:74:d7: 3b:9a:5a:ca:e3:23:56:0e:9f:c2:0b:d2:61:5f:97: 90:3b:98:bb:a2:6b:2e:51:33:61:9e:76:c6:fd:bf: 85:af:d6:42:c6:4b:f2:55:68:c5:6c:7f:ae:17:bd: 7a:cc:ac:c3:0d:7a:03:05:b9:8e:57:49:78:98:ed: 5b:6b:b0:7d:59:da:18:61:53:7b:aa:90:6b:38:3a: 62:88:76:32:6d:15:04:55:32:ae:e9:81:a6:c9:49: cc:fa:0b:b7:1c:a5:7b:f5:de:d2:ed:1c:0f:2b:c4: 42:c8:09:74:f9:f1:bc:eb:04:f4:90:d8:ab:cd:98: 9a:48:72:15:15:08:6b:cb:db:d6:eb:32:ea:6e:99: 24:c2:0f:55:1f:97:62:19:30:1b:47:6b:6b:41:88: 37:9e:cd:d4:d0:c3:78:c8:53:ce:15:73:1a:51:9b: fe:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:0C:70:E5:62:30:8A:D5:D2:DB:26:A0:5F:E8:0A:35:B1:7B:12 X509v3 Authority Key Identifier: keyid:5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:83e0::/32 Signature Algorithm: sha256WithRSAEncryption 29:79:3b:f3:5a:3d:81:1c:5f:3e:2a:51:fe:0f:51:ce:95:37: 3d:96:0a:41:9b:99:50:4f:17:d8:51:e2:f2:25:80:a7:10:b5: 7d:4e:f0:5a:86:96:4e:e1:5d:67:fe:ef:05:b8:9a:bd:59:c1: 6c:72:54:cf:30:f8:16:f0:f4:9d:17:87:83:77:5b:3f:9c:93: 34:45:4e:cc:2f:c4:48:12:e4:bc:0f:e2:6a:af:2d:e9:57:00: 32:4e:59:21:39:69:5a:1c:7c:4c:4b:01:33:9f:c1:3a:25:7a: 16:11:2b:b2:22:50:b9:3c:5b:34:bc:b4:f7:38:98:2e:3d:19: f3:0c:23:cc:2a:1f:5f:9d:a6:a7:90:8a:ee:af:df:35:4c:fa: 11:d3:82:05:a1:aa:7e:4d:6e:78:68:cc:11:d9:ec:ac:fe:9e: 84:6d:55:a0:d2:2f:bd:0a:27:14:99:27:60:4e:12:95:f9:ac: 94:30:81:15:a9:ae:54:bc:56:ee:15:3f:0d:f8:c3:a0:5d:5d: 4e:40:32:49:71:d7:04:b9:1a:ea:72:17:a8:b5:5b:8b:d8:6d: fa:af:b7:58:db:6d:20:04:fc:58:f2:36:38:fb:52:00:81:4c: 9e:c4:57:96:7f:ac:f3:63:8a:4c:74:85:fb:7e:4c:28:eb:50: e6:2a:b0:81 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMUQxMTAvBgNVBAUTKDVBOTlCMDI3NjcxOUQzQTgzNzcwRkFBRTE0RDc1NzVD QzY2NjQ4OEQwHhcNMjUwMTEzMDgwMjE1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg0Yzg4Ny1jZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/bdLq+k+j+zJhLAsXScQkqiuxci5xa/gODRpVx9PuBDXaKnE8m2GAj2ZnOC qC+2J8/DrXIYRrBu6Ww0ugtwKxrEr5OVP0twnMFtTGKU/OywKeFIsTrddNc7mlrK 4yNWDp/CC9JhX5eQO5i7omsuUTNhnnbG/b+Fr9ZCxkvyVWjFbH+uF716zKzDDXoD BbmOV0l4mO1ba7B9WdoYYVN7qpBrODpiiHYybRUEVTKu6YGmyUnM+gu3HKV79d7S 7RwPK8RCyAl0+fG86wT0kNirzZiaSHIVFQhry9vW6zLqbpkkwg9VH5diGTAbR2tr QYg3ns3U0MN4yFPOFXMaUZv+owIDAQABo4ICljCCApIwHQYDVR0OBBYEFIf4DHDl YjCK1dLbJqBf6Ao1sXsSMB8GA1UdIwQYMBaAFFqZsCdnGdOoN3D6rhTXV1zGZkiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IxRC9CQTY0RDA2NkUz MzcxMUVDOTczMEVCM0RDNEY5QUUwMi9XcG13SjJjWjA2ZzNjUHF1Rk5kWFhNWm1T STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwbXdKMmNaMDZnM2NQcXVGTmRYWE1abVNJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCMUQvQkE2NEQwNjZFMzM3MTFFQzk3MzBFQjNEQzRGOUFFMDIvQjM3MEFGNkNE MTg0MTFFRjk2MERFNzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAIPgMA0GCSqGSIb3DQEBCwUAA4IBAQApeTvzWj2BHF8+ KlH+D1HOlTc9lgpBm5lQTxfYUeLyJYCnELV9TvBahpZO4V1n/u8FuJq9WcFsclTP MPgW8PSdF4eDd1s/nJM0RU7ML8RIEuS8D+Jqry3pVwAyTlkhOWlaHHxMSwEzn8E6 JXoWESuyIlC5PFs0vLT3OJguPRnzDCPMKh9fnaankIrur981TPoR04IFoap+TW54 aMwR2eys/p6EbVWg0i+9CicUmSdgThKV+ayUMIEVqa5UvFbuFT8N+MOgXV1OQDJJ cdcEuRrqcheotVuL2G36r7dY220gBPxY8jY4+1IAgUyexFeWf6zzY4pMdIX7fkwo 61DmKrCB -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:37 2025 by rpki-client