$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa File: 9C2A80FA099011F08EA9F20BC4F9AE02.roa (raw, json) Hash identifier: goFGLeo3cJQ5XXhESgnKHMy4NdQpSGyyQNhR1oIebe0= Subject key identifier: C6:A8:D4:1B:D9:6A:A2:3F:81:1D:C5:91:32:50:28:F1:28:64:09:C0 Certificate issuer: /CN=A915BC98/serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA Certificate serial: 54 Authority key identifier: FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa Signing time: Wed 16 Apr 2025 07:19:07 +0000 ROA not before: Wed 16 Apr 2025 07:19:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215750 IP address blocks: 2401:f860::/44 maxlen: 44 2401:f860:89::/48 maxlen: 48 2401:f860:90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC98, serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA Validity Not Before: Apr 16 07:19:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ff59eb-95c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b1:38:c9:75:94:af:e3:c4:d1:85:1e:37:c4: 9f:22:be:b6:dc:1a:bc:37:db:cd:44:0b:f8:fd:f6: 15:af:c3:5f:61:0a:4a:d1:46:8a:34:2d:2c:34:a2: b8:92:ea:80:0e:ff:f3:a0:d6:2a:d3:6d:09:31:67: 77:85:23:32:93:0f:1e:b5:3f:ce:78:71:eb:2c:62: a0:59:a0:e6:50:5f:43:50:42:c0:47:9e:a7:6e:62: 5d:e0:88:2c:1a:91:3a:f9:da:55:b6:52:ea:96:7c: 71:0a:f8:ef:35:f2:15:2c:da:56:de:9c:d1:c9:c9: c4:e0:77:a9:e3:ce:78:91:d7:f2:3d:0d:50:e3:5e: 19:23:83:14:77:93:81:c1:49:5a:c4:35:2a:ad:ce: c5:77:21:e6:ec:b2:f9:6a:27:15:08:2f:30:85:62: 39:42:85:fd:f9:e1:00:c9:fc:ed:a0:e3:3b:30:a9: 72:1b:9a:69:46:bf:25:4e:b7:fe:97:99:40:f1:ec: 32:fe:17:6f:0f:95:8f:65:0f:fe:a8:e5:f5:53:46: 9b:7f:ff:f2:c8:24:d5:ed:56:a8:dc:bf:f5:38:1c: c3:55:97:dd:85:10:37:5d:58:4e:51:21:d5:3d:c1: c1:29:47:bf:b3:9f:31:ec:a2:30:e1:1c:07:72:52: 54:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A8:D4:1B:D9:6A:A2:3F:81:1D:C5:91:32:50:28:F1:28:64:09:C0 X509v3 Authority Key Identifier: keyid:FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9C2A80FA099011F08EA9F20BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f860::/44 2401:f860:89::/48 2401:f860:90::/48 Signature Algorithm: sha256WithRSAEncryption c3:33:49:73:92:f0:6d:a9:66:04:8f:bb:d5:a8:56:11:11:47: 67:64:59:2c:ce:19:2a:cb:d3:30:ff:de:fc:92:6e:35:17:52: de:88:55:5d:f3:b0:bf:70:c9:54:85:8e:0f:7b:cb:20:64:9b: a2:0d:65:6f:07:9e:72:f2:48:ab:87:ef:ea:be:cc:3f:f9:76: a4:78:85:f7:d5:e5:98:05:12:fb:09:ca:d0:d3:62:dd:a7:21: 5e:c4:95:dc:ab:56:4f:54:d3:66:a8:9a:21:25:56:7d:02:ed: cf:d5:f3:ce:1e:87:e4:60:39:42:6c:04:00:24:f4:28:52:ba: f2:ba:f2:c9:6a:b3:7b:2f:ac:55:58:78:05:b3:42:ce:8b:72: 04:37:60:ef:ed:62:74:f9:ea:f8:df:94:49:71:40:92:5f:96: 55:30:78:c0:12:ba:ef:aa:e6:84:57:58:8c:37:fe:1d:1d:12: a7:5a:01:55:c8:c2:72:7f:85:54:35:d9:cd:c6:ac:89:b5:bd: 63:71:26:5a:51:20:a5:78:b2:ae:2b:43:95:ea:04:e4:70:15: c0:b9:30:a4:16:ea:3a:f7:3b:b9:da:20:65:51:f6:3f:92:fc: e3:55:4b:fd:9b:8d:48:08:21:fa:3f:63:96:34:bf:65:44:15: a5:a6:ee:ba -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QkM5ODExMC8GA1UEBRMoRkY4Q0NCRTYxODc1NUExRjUxOTlCRDBDODI3NjBFOEVE QjhGODVCQTAeFw0yNTA0MTYwNzE5MDdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmY1OWViLTk1YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcsTjJdZSv48TRhR43xJ8ivrbcGrw3281EC/j99hWvw19hCkrRRoo0LSw0oriS 6oAO//Og1irTbQkxZ3eFIzKTDx61P854cessYqBZoOZQX0NQQsBHnqduYl3giCwa kTr52lW2UuqWfHEK+O818hUs2lbenNHJycTgd6njzniR1/I9DVDjXhkjgxR3k4HB SVrENSqtzsV3IebssvlqJxUILzCFYjlChf354QDJ/O2g4zswqXIbmmlGvyVOt/6X mUDx7DL+F28PlY9lD/6o5fVTRpt///LIJNXtVqjcv/U4HMNVl92FEDddWE5RIdU9 wcEpR7+znzHsojDhHAdyUlQbAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUxqjUG9lq oj+BHcWRMlAo8ShkCcAwHwYDVR0jBBgwFoAU/4zL5hh1Wh9Rmb0MgnYOjtuPhbow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCQzk4L0FCQUZGNUVBMDYx MjExRjA4RTlBRTUyOUM0RjlBRTAyL180ekw1aGgxV2g5Um1iME1nbllPanR1UGhi by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzR6TDVoaDFXaDlSbWIwTWduWU9qdHVQaGJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkM5OC9BQkFGRjVFQTA2MTIxMUYwOEU5QUU1MjlDNEY5QUUwMi85QzJBODBGQTA5 OTAxMUYwOEVBOUYyMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwIQQCAAIwGwMHBCQB+GAAAAMHACQB+GAAiQMHACQB+GAAkDANBgkqhkiG9w0B AQsFAAOCAQEAwzNJc5LwbalmBI+71ahWERFHZ2RZLM4ZKsvTMP/e/JJuNRdS3ohV XfOwv3DJVIWOD3vLIGSbog1lbweecvJIq4fv6r7MP/l2pHiF99XlmAUS+wnK0NNi 3achXsSV3KtWT1TTZqiaISVWfQLtz9Xzzh6H5GA5QmwEACT0KFK68rryyWqzey+s VVh4BbNCzotyBDdg7+1idPnq+N+USXFAkl+WVTB4wBK676rmhFdYjDf+HR0Sp1oB VcjCcn+FVDXZzcasibW9Y3EmWlEgpXiyritDleoE5HAVwLkwpBbqOvc7udogZVH2 P5L841VL/ZuNSAgh+j9jljS/ZUQVpabuug== -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:39 2025 by rpki-client