$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/2178DCD2FF3E11EF8D834053C4F9AE02.roa File: 2178DCD2FF3E11EF8D834053C4F9AE02.roa (raw, json) Hash identifier: JSwC8LvkFFx+csBawa+WzjqR/g3wGIngxuIt67ID3sc= Subject key identifier: 62:61:4A:61:9F:10:5C:FA:1C:33:7B:61:F2:27:B6:22:8B:20:F3:02 Certificate issuer: /CN=A91EA80C/serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Certificate serial: 0A Authority key identifier: 31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/2178DCD2FF3E11EF8D834053C4F9AE02.roa Signing time: Wed 12 Mar 2025 12:32:59 +0000 ROA not before: Wed 12 Mar 2025 12:32:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 49304 IP address blocks: 2401:f460:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 12:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA80C Validity Not Before: Mar 12 12:32:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67d17efa-4778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:06:ff:ff:0a:61:ff:3b:62:79:df:b1:6c: b8:e0:12:56:34:b4:9c:2b:00:56:ed:51:40:ea:a2: 99:22:e6:e0:65:27:e1:ee:c6:d8:61:13:93:9c:0b: 6c:8e:89:55:0b:73:25:15:a4:29:0c:e5:7c:21:b3: 61:b8:4c:00:53:8f:9e:41:4d:eb:d7:0f:3f:6c:41: 9d:75:4f:41:b7:7d:ab:1c:5c:43:f0:f3:8d:f5:de: ff:49:52:49:27:5a:ba:9d:b4:e3:22:9b:a9:8e:6f: a6:91:c4:54:45:f4:5a:14:bf:13:e2:e1:7d:4b:65: a6:02:68:dc:44:09:da:5a:0a:28:29:96:7e:08:35: fa:a7:d2:10:66:8c:ba:fc:b5:b1:80:1a:ec:ec:f8: c0:93:33:fc:f0:3f:a3:63:44:6d:27:74:7a:3c:b8: da:96:93:b3:3c:c0:f4:87:9d:e1:71:06:13:cf:32: b5:64:2a:8a:6c:a2:65:2f:1b:c2:3c:a9:de:1d:68: da:e1:13:57:fd:79:e0:7a:c6:c2:68:14:d1:9e:31: 88:28:05:56:76:d1:4f:68:59:a4:cf:36:27:a3:eb: a4:db:4d:97:ef:82:06:56:ce:3c:46:f5:74:c7:fd: ce:59:6d:a2:71:bf:00:c1:e4:dd:d1:e6:75:0b:01: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:61:4A:61:9F:10:5C:FA:1C:33:7B:61:F2:27:B6:22:8B:20:F3:02 X509v3 Authority Key Identifier: keyid:31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/2178DCD2FF3E11EF8D834053C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f460:1000::/40 Signature Algorithm: sha256WithRSAEncryption 52:04:41:c2:6c:1e:45:9d:8b:de:00:c9:60:25:71:cb:d5:e2: c4:9a:f9:16:7f:c7:47:6c:6e:20:83:b9:da:fc:2b:97:e8:1f: 8f:32:45:75:49:f8:43:77:c5:ea:1d:4b:a9:2f:4d:02:24:a6: bd:e5:4e:57:ea:7f:3f:bc:1d:5a:1c:1e:68:45:35:a7:2b:64: e5:7f:42:87:5c:97:72:e3:09:b2:04:6f:6b:3e:0d:e3:eb:19: 7e:2b:9f:0e:97:7c:68:46:d0:e6:01:5c:54:77:58:55:3f:89: 63:bc:b8:da:fd:e5:9d:ea:c5:7b:67:67:86:1b:3f:14:a4:95: 21:0a:a6:fc:b0:7d:c2:64:9a:7c:c8:cd:ae:dd:d9:5f:5f:f9: 1c:f7:b6:5c:8d:8c:fd:6c:c4:80:8c:47:ca:fd:67:5b:cf:d1: 72:9e:b8:01:6f:cb:e4:cf:26:22:cd:3c:c1:52:bb:41:46:84: 4c:13:83:67:ed:28:d5:e0:b5:a2:0b:36:61:d5:90:1a:ae:06: cb:62:14:c6:3d:79:96:a2:cf:29:1e:4a:8b:b5:d3:79:ae:97: b3:7a:ae:41:1c:0a:ba:e6:fd:7d:24:fe:05:96:2e:a5:6d:e9: 8d:37:40:ea:ea:f3:5a:6f:b3:8d:b2:44:a7:02:1d:d6:56:c9: dc:7f:06:d5 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTgwQzExMC8GA1UEBRMoMzEyNDQwMjAxQjJFRjc0QjdDQUM2QzMxRkI4NUY0MUU5 QzQ2ODZBMDAeFw0yNTAzMTIxMjMyNTlaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDE3ZWZhLTQ3NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfHgb//wph/ztied+xbLjgElY0tJwrAFbtUUDqopki5uBlJ+HuxthhE5OcC2yO iVULcyUVpCkM5Xwhs2G4TABTj55BTevXDz9sQZ11T0G3fascXEPw84313v9JUkkn WrqdtOMim6mOb6aRxFRF9FoUvxPi4X1LZaYCaNxECdpaCigpln4INfqn0hBmjLr8 tbGAGuzs+MCTM/zwP6NjRG0ndHo8uNqWk7M8wPSHneFxBhPPMrVkKopsomUvG8I8 qd4daNrhE1f9eeB6xsJoFNGeMYgoBVZ20U9oWaTPNiej66TbTZfvggZWzjxG9XTH /c5ZbaJxvwDB5N3R5nULAQ1VAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUYmFKYZ8Q XPocM3th8ie2Iosg8wIwHwYDVR0jBBgwFoAUMSRAIBsu90t8rGwx+4X0HpxGhqAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBODBDL0RFOThFQUYwRkI2 NTExRUZBMzc2RTQ0OUM0RjlBRTAyL01TUkFJQnN1OTB0OHJHd3gtNFgwSHB4R2hx QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVNSQUlCc3U5MHQ4ckd3eC00WDBIcHhHaHFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTgwQy9ERTk4RUFGMEZCNjUxMUVGQTM3NkU0NDlDNEY5QUUwMi8yMTc4RENEMkZG M0UxMUVGOEQ4MzQwNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGACQB9GAQMA0GCSqGSIb3DQEBCwUAA4IBAQBSBEHCbB5FnYve AMlgJXHL1eLEmvkWf8dHbG4gg7na/CuX6B+PMkV1SfhDd8XqHUupL00CJKa95U5X 6n8/vB1aHB5oRTWnK2Tlf0KHXJdy4wmyBG9rPg3j6xl+K58Ol3xoRtDmAVxUd1hV P4ljvLja/eWd6sV7Z2eGGz8UpJUhCqb8sH3CZJp8yM2u3dlfX/kc97ZcjYz9bMSA jEfK/Wdbz9FynrgBb8vkzyYizTzBUrtBRoRME4Nn7SjV4LWiCzZh1ZAargbLYhTG PXmWos8pHkqLtdN5rpezeq5BHAq65v19JP4Fli6lbemNN0Dq6vNab7ONskSnAh3W VsncfwbV -----END CERTIFICATE-----Generated at Thu Mar 13 06:55:27 2025 by rpki-client