$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa File: 2EFBFF901C0611EF883D807CC4F9AE02.roa (raw, json) Hash identifier: UX1cRz51Yc/EPgI7Avdxh/+oTCoX8i2QidlgdW8Epmk= Subject key identifier: 40:4C:60:CC:FF:70:56:F2:67:97:2A:94:31:C4:76:A2:C5:93:2E:68 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: C8 Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa Signing time: Wed 29 Jan 2025 05:08:49 +0000 ROA not before: Wed 29 Jan 2025 05:08:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 14618 IP address blocks: 2400:3d20:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0 Validity Not Before: Jan 29 05:08:49 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6799b7e1-3671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3b:97:95:8c:de:4b:96:8c:04:84:38:16:76: ac:3c:09:98:01:75:f4:60:1c:6e:2f:b0:83:07:d6: 62:43:de:e9:46:15:b7:2c:6f:40:d1:82:bb:f4:5d: d6:7c:6c:84:6b:f8:28:84:2c:b2:f7:64:9f:13:ce: 57:48:32:b8:e0:e4:d4:51:42:3e:5a:fc:9b:86:05: 2d:53:3b:61:71:72:cd:27:39:09:57:fb:a7:90:3b: 54:b0:c6:eb:fa:2b:6f:34:da:71:81:91:2b:fd:d2: b9:fc:81:46:65:bf:7d:74:77:25:99:7c:f0:81:d1: db:73:e6:c9:98:1e:5c:25:b0:89:85:e3:fe:c0:fc: 29:e4:d3:f8:0c:73:da:9c:39:b5:60:3e:b0:db:15: 9a:ee:95:08:4f:92:39:a2:5c:c9:22:30:d5:23:19: a4:83:f8:40:41:88:fd:c7:08:de:bf:d5:fe:cb:61: 74:a6:1d:75:05:91:e1:1c:0e:1b:72:23:3c:70:18: e7:a4:04:ae:3b:c8:ed:43:fb:21:06:27:12:de:7f: 73:aa:ef:cc:0b:db:19:b1:f3:d5:97:dd:54:88:ad: 84:1b:97:24:af:22:b8:72:62:a5:a6:d6:bb:fb:e8: 2c:4c:ee:89:2b:af:21:92:1a:d6:02:57:8c:fb:d9: 1d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:60:CC:FF:70:56:F2:67:97:2A:94:31:C4:76:A2:C5:93:2E:68 X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:3d20:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3a:9e:fe:3e:b9:77:55:39:b5:88:b2:4b:60:2f:2c:34:eb:e3: c3:02:71:59:a3:f9:2f:11:53:4f:fe:d7:9a:86:77:1d:22:ce: d2:cb:5c:c7:ba:7c:1d:9d:69:1a:1c:b8:fb:c3:0f:8e:f7:7f: c8:0d:b1:78:0f:ca:83:0f:f7:55:1d:a3:44:ff:b8:1f:ed:0b: 0c:8a:7a:53:a3:1c:f6:fd:0d:df:3a:71:fe:ac:eb:66:dc:87: 00:1f:7a:46:6c:a4:a8:3c:ee:d1:92:17:39:b7:90:8b:9e:a4: f5:09:a2:9f:72:0f:1d:1a:e8:0b:88:aa:ea:e9:b8:2d:56:f6: aa:de:bb:4a:49:7d:ac:2e:f6:7e:c3:e3:99:20:7c:14:f7:b5: 15:21:e0:2d:c0:45:03:51:e1:d0:b0:f5:35:f8:5f:f7:49:7e: d4:22:6d:b6:39:f1:0b:80:7d:fc:a9:7b:69:68:2b:2f:85:cd: 9d:65:b5:fd:8b:5c:c4:54:db:c9:6a:23:e8:81:58:39:8c:18: 23:2f:6c:ef:a7:c4:d5:05:5a:3e:06:07:49:6c:84:95:9b:fa: 6e:5e:e3:8b:b6:3a:45:25:83:69:a4:40:7a:e1:a8:69:2e:b5: da:3f:86:6e:58:e7:d0:35:de:e1:fe:f6:9a:b5:ed:68:a7:56: 85:52:a3:e8 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjUwMTI5MDUwODQ5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5YjdlMS0zNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjuXlYzeS5aMBIQ4FnasPAmYAXX0YBxuL7CDB9ZiQ97pRhW3LG9A0YK79F3W fGyEa/gohCyy92SfE85XSDK44OTUUUI+WvybhgUtUzthcXLNJzkJV/unkDtUsMbr +itvNNpxgZEr/dK5/IFGZb99dHclmXzwgdHbc+bJmB5cJbCJheP+wPwp5NP4DHPa nDm1YD6w2xWa7pUIT5I5olzJIjDVIxmkg/hAQYj9xwjev9X+y2F0ph11BZHhHA4b ciM8cBjnpASuO8jtQ/shBicS3n9zqu/MC9sZsfPVl91UiK2EG5ckryK4cmKlpta7 ++gsTO6JK68hkhrWAleM+9kdQwIDAQABo4IClzCCApMwHQYDVR0OBBYEFEBMYMz/ cFbyZ5cqlDHEdqLFky5oMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRGQjAvMDU4Q0VDMTQxOUJEMTFFRkJEMzNFMDgyQzRGOUFFMDIvMkVGQkZGOTAx QzA2MTFFRjg4M0Q4MDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAD0gEDANBgkqhkiG9w0BAQsFAAOCAQEAOp7+Prl3VTm1 iLJLYC8sNOvjwwJxWaP5LxFTT/7XmoZ3HSLO0stcx7p8HZ1pGhy4+8MPjvd/yA2x eA/Kgw/3VR2jRP+4H+0LDIp6U6Mc9v0N3zpx/qzrZtyHAB96RmykqDzu0ZIXObeQ i56k9Qmin3IPHRroC4iq6um4LVb2qt67Skl9rC72fsPjmSB8FPe1FSHgLcBFA1Hh 0LD1Nfhf90l+1CJttjnxC4B9/Kl7aWgrL4XNnWW1/YtcxFTbyWoj6IFYOYwYIy9s 76fE1QVaPgYHSWyElZv6bl7ji7Y6RSWDaaRAeuGoaS612j+Gbljn0DXe4f72mrXt aKdWhVKj6A== -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:15 2025 by rpki-client