$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa File: 08D1870EF0B411EE962EE784C4F9AE02.roa (raw, json) Hash identifier: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo= Subject key identifier: E8:5E:03:19:7B:3F:33:4C:AC:50:B2:43:16:51:61:33:27:03:6A:34 Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: B4 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa Signing time: Mon 17 Mar 2025 04:51:20 +0000 ROA not before: Mon 17 Mar 2025 04:51:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152604 IP address blocks: 2401:84a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Mar 17 04:51:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d7aa48-4e6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d8:dd:39:c2:7b:09:3c:ac:4e:c6:8b:78:18: 2b:4e:c6:2b:66:db:d4:47:6c:c5:c6:3e:19:a0:11: 4a:81:0e:6e:1b:61:c1:25:14:ec:38:41:11:f9:5d: 09:e7:99:23:06:c1:a8:d0:11:65:5b:7b:f3:43:f9: c5:21:2f:de:1c:83:7f:76:76:2d:a0:6e:8c:85:1e: 47:5f:3c:f7:8f:33:14:12:2a:c4:3f:cb:c4:9d:1f: e6:5a:db:50:0e:bb:2d:ac:18:18:90:13:5c:62:6b: 58:d0:d3:be:03:5e:31:35:8f:4d:21:5d:68:1b:b6: a3:83:0b:56:9e:99:68:7b:bd:66:6a:b4:e1:fc:7c: bc:13:b5:37:b4:7e:03:7e:cd:58:c0:10:4e:8c:42: 34:10:06:ba:dd:69:86:13:82:02:80:b1:32:13:2d: e5:f5:c6:e4:f6:4c:8d:69:cf:b8:f9:ec:54:f7:62: 28:c6:48:0a:4e:51:ed:6d:ce:40:92:e2:33:97:18: 4b:09:f0:63:e1:d1:4d:07:3d:fc:4a:d2:e4:8e:9c: ba:8a:2a:49:ba:37:46:4f:1c:1b:c3:f6:d8:c1:93: 9c:ab:4d:9a:8d:13:21:cf:e4:b9:b8:6a:16:bb:4f: 72:c2:d9:45:87:24:9d:4f:33:1c:15:a2:98:5f:2d: 86:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5E:03:19:7B:3F:33:4C:AC:50:B2:43:16:51:61:33:27:03:6A:34 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/08D1870EF0B411EE962EE784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:84a0::/32 Signature Algorithm: sha256WithRSAEncryption 29:01:bc:ed:05:54:2a:73:25:cb:cd:2a:95:70:c3:47:04:72: f3:8d:1f:66:0e:c1:4e:5f:a9:77:98:73:c4:64:66:ab:59:0d: bf:94:7d:e9:52:de:76:9b:12:b8:61:c9:8c:16:51:0f:da:be: f9:31:5a:33:aa:27:6d:92:db:4f:5a:84:46:46:d7:02:1e:cf: 5d:1b:0d:7a:7c:4a:b0:d1:56:a0:06:d5:5b:ee:49:9f:07:12: e3:4c:de:e2:66:99:68:04:fa:fd:70:1e:73:72:13:86:30:ea: 19:79:16:32:27:73:60:b5:0c:c6:40:30:84:92:8e:20:18:4e: 26:c2:5f:c2:f7:35:9c:c0:98:96:5a:fb:9b:bf:9a:14:10:4f: 2c:3a:06:6a:7a:8e:1a:b3:db:47:8d:4a:88:60:6d:61:32:ca: 08:20:2c:bf:3b:2e:6d:4f:48:cc:99:7f:05:3b:10:b0:5c:9b: c0:cc:5a:42:d8:e8:3d:8f:01:3d:83:63:3f:6c:4e:ad:6f:67: 93:db:be:62:e9:1a:ce:df:e2:e7:13:12:46:b9:da:7c:e1:c8: f5:05:d4:e1:b8:b4:03:af:b6:4a:fe:7d:38:3d:f3:28:be:1f: 7c:3b:73:96:c5:ab:f3:be:0e:61:6c:b7:b0:1e:d8:6e:02:5a: 4f:b2:4e:b3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwMzE3MDQ1MTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3YWE0OC00ZTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9jdOcJ7CTysTsaLeBgrTsYrZtvUR2zFxj4ZoBFKgQ5uG2HBJRTsOEER+V0J 55kjBsGo0BFlW3vzQ/nFIS/eHIN/dnYtoG6MhR5HXzz3jzMUEirEP8vEnR/mWttQ DrstrBgYkBNcYmtY0NO+A14xNY9NIV1oG7ajgwtWnploe71marTh/Hy8E7U3tH4D fs1YwBBOjEI0EAa63WmGE4ICgLEyEy3l9cbk9kyNac+4+exU92IoxkgKTlHtbc5A kuIzlxhLCfBj4dFNBz38StLkjpy6iipJujdGTxwbw/bYwZOcq02ajRMhz+S5uGoW u09ywtlFhySdTzMcFaKYXy2GwQIDAQABo4ICljCCApIwHQYDVR0OBBYEFOheAxl7 PzNMrFCyQxZRYTMnA2o0MB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4ODIvQjIzOEExODRGMEIzMTFFRUE0QzcyRjg0QzRGOUFFMDIvMDhEMTg3MEVG MEI0MTFFRTk2MkVFNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAYSgMA0GCSqGSIb3DQEBCwUAA4IBAQApAbztBVQqcyXL zSqVcMNHBHLzjR9mDsFOX6l3mHPEZGarWQ2/lH3pUt52mxK4YcmMFlEP2r75MVoz qidtkttPWoRGRtcCHs9dGw16fEqw0VagBtVb7kmfBxLjTN7iZploBPr9cB5zchOG MOoZeRYyJ3NgtQzGQDCEko4gGE4mwl/C9zWcwJiWWvubv5oUEE8sOgZqeo4as9tH jUqIYG1hMsoIICy/Oy5tT0jMmX8FOxCwXJvAzFpC2Og9jwE9g2M/bE6tb2eT275i 6RrO3+LnExJGudp84cj1BdThuLQDr7ZK/n04PfMovh98O3OWxavzvg5hbLewHthu AlpPsk6z -----END CERTIFICATE-----Generated at Sat Apr 26 08:19:32 2025 by rpki-client