$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/86131D8AEA5D11ED80641166C4F9AE02.roa File: 86131D8AEA5D11ED80641166C4F9AE02.roa (raw, json) Hash identifier: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0= Subject key identifier: 72:BF:06:E0:67:F7:49:80:17:FD:43:F1:5E:3F:82:E3:DC:19:8F:19 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 03FC Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/86131D8AEA5D11ED80641166C4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:00 +0000 ROA not before: Fri 07 Mar 2025 00:46:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139321 IP address blocks: 2400:54a0:2050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0 Validity Not Before: Mar 7 00:46:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41c8-d740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:88:b4:03:c6:a7:85:c7:2b:ea:9c:41:3e: b0:5b:c1:a7:81:ad:d3:ac:4a:2e:62:b1:0d:bc:6a: 29:a8:65:17:96:46:a9:fa:1b:53:8c:2f:9f:a4:e2: 18:b8:83:09:28:c8:d8:46:59:a9:7c:96:2a:3b:36: 51:38:35:11:22:b6:d6:ea:1c:17:00:fc:ad:a6:a6: e8:c7:0e:42:51:9a:63:bd:86:61:54:02:cf:54:1b: 14:4d:d1:7e:d3:ab:31:98:10:3e:14:72:a9:4c:f9: de:f6:0e:20:53:c6:17:6a:98:80:4e:95:ff:fe:07: b8:ae:f1:03:02:a2:62:4e:27:95:ad:f8:60:73:5b: 3c:0e:5c:dd:10:43:04:78:93:d4:80:de:61:c0:7f: e7:83:5f:5f:ad:9c:7e:4a:ca:80:59:da:83:0d:c1: 96:4a:e6:b7:c0:5c:72:f3:ba:70:16:6c:95:73:af: 16:45:20:e0:49:06:fb:a4:e3:26:5c:56:2c:bc:97: c7:10:e4:68:51:36:e4:aa:0a:d6:67:5e:13:e3:d5: a5:d5:59:97:cf:fa:48:6b:15:81:0e:5f:c6:f6:1b: 5e:95:01:85:5e:a1:9b:f9:a2:02:cc:76:23:1a:0e: 63:1e:58:8b:96:31:a7:57:89:5c:b9:bf:f0:ff:d6: 15:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BF:06:E0:67:F7:49:80:17:FD:43:F1:5E:3F:82:E3:DC:19:8F:19 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/86131D8AEA5D11ED80641166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:54a0:2050::/48 Signature Algorithm: sha256WithRSAEncryption 1a:93:ed:d3:26:3b:d7:47:bc:59:f1:1a:67:b8:bd:70:bc:08: fc:53:80:f3:d8:5d:54:e8:b9:08:29:6b:1d:a8:c6:36:ec:87: 85:d2:8f:31:35:4a:ac:50:68:8e:fa:dc:7f:3f:61:62:9f:9e: 01:c6:e9:0e:a0:a1:07:8d:6b:4a:e2:61:fd:a2:b7:e1:82:6d: 15:7c:63:06:ca:1b:14:03:36:28:66:a6:ca:82:83:a0:f1:bf: 22:c2:88:f8:1f:9a:12:f3:e1:7a:10:a1:39:7e:68:53:c1:b8: 75:82:75:ac:b6:7d:b6:ad:83:74:dc:7f:3f:48:ff:44:ce:b1: 5e:a5:21:de:89:ce:72:78:0c:0a:6a:16:81:b3:0b:48:97:e0: 0d:4c:a5:fe:db:7e:97:23:b6:0b:9c:ce:37:01:04:95:c1:61: 69:44:fc:aa:ae:1f:24:d4:37:2f:67:42:a7:d0:70:49:c2:f2: 3b:7d:79:a6:3f:2d:c0:9a:15:fc:fe:b9:62:a9:a2:66:83:39: d7:97:31:7d:ac:60:52:0b:1f:74:70:5c:ea:fb:ab:ba:9b:1c: f9:2b:4c:88:02:26:1a:72:bd:ff:82:8c:46:bf:3f:d3:83:d5: 02:96:0d:f3:ed:93:14:a6:a4:20:3b:bf:07:4d:d2:a2:92:96: 6f:ca:77:01 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwMzA3MDA0NjAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFjOC1kNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiCItAPGp4XHK+qcQT6wW8Gnga3TrEouYrENvGopqGUXlkap+htTjC+fpOIY uIMJKMjYRlmpfJYqOzZRODURIrbW6hwXAPytpqboxw5CUZpjvYZhVALPVBsUTdF+ 06sxmBA+FHKpTPne9g4gU8YXapiATpX//ge4rvEDAqJiTieVrfhgc1s8DlzdEEME eJPUgN5hwH/ng19frZx+SsqAWdqDDcGWSua3wFxy87pwFmyVc68WRSDgSQb7pOMm XFYsvJfHEORoUTbkqgrWZ14T49Wl1VmXz/pIaxWBDl/G9htelQGFXqGb+aICzHYj Gg5jHliLljGnV4lcub/w/9YV9wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHK/BuBn 90mAF/1D8V4/guPcGY8ZMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvODYxMzFEOEFF QTVEMTFFRDgwNjQxMTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFSgIFAwDQYJKoZIhvcNAQELBQADggEBABqT7dMmO9dH vFnxGme4vXC8CPxTgPPYXVTouQgpax2oxjbsh4XSjzE1SqxQaI763H8/YWKfngHG 6Q6goQeNa0riYf2it+GCbRV8YwbKGxQDNihmpsqCg6DxvyLCiPgfmhLz4XoQoTl+ aFPBuHWCday2fbatg3Tcfz9I/0TOsV6lId6JznJ4DApqFoGzC0iX4A1Mpf7bfpcj tguczjcBBJXBYWlE/KquHyTUNy9nQqfQcEnC8jt9eaY/LcCaFfz+uWKpomaDOdeX MX2sYFILH3RwXOr7q7qbHPkrTIgCJhpyvf+CjEa/P9OD1QKWDfPtkxSmpCA7vwdN 0qKSlm/KdwE= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:01 2025 by rpki-client