$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa File: BACC498C9EFC11EC856FCB09C4F9AE02.roa (raw, json) Hash identifier: 2GC7KAVMhvV+YXc4GAZ/vzQonWiNlY6zwWOHBpULon8= Subject key identifier: 9F:CC:0B:08:FD:71:BA:3A:65:6E:1C:63:A7:AF:85:39:D8:84:85:58 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0A67 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa Signing time: Wed 26 Mar 2025 19:59:57 +0000 ROA not before: Wed 26 Mar 2025 19:59:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 3938 IP address blocks: 2001:218:4000:9::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2663 (0xa67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:59:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e45cbd-49e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b6:13:77:5d:5f:0b:00:91:35:6a:5e:d0:c0: ba:96:64:9f:24:f5:ff:69:14:eb:d5:9d:44:7f:24: a9:94:90:fe:3c:e7:e7:ab:64:f6:b4:c3:d5:b6:09: 47:c3:00:51:5c:bf:85:a5:6d:13:07:c4:45:5d:06: 30:64:7d:77:d4:5d:2f:b7:e9:ce:09:47:f4:76:f0: fb:9c:26:7c:07:02:b4:e7:43:44:fd:76:33:01:5a: 0f:25:79:3b:38:be:49:0f:29:89:e3:d4:fb:ff:a7: 49:f5:49:f7:ae:05:ed:ea:b4:ee:95:88:e6:22:f9: 57:0f:44:8f:75:d9:a2:21:79:05:61:b3:94:3c:f7: 77:54:e7:ff:13:a3:9b:4c:fd:3e:5e:fb:cc:f8:39: cd:6f:c2:09:ed:7b:fa:a9:33:a9:0c:75:ac:ee:b5: 1f:a4:67:28:58:4b:ac:43:1c:55:60:5d:53:e6:31: 43:59:2b:1f:f6:73:7f:92:d9:e6:0e:9c:8f:68:99: 99:f0:52:bd:5d:bf:55:70:3e:2a:91:a4:82:c8:f2: 74:82:a7:c4:d2:cb:7d:67:01:fd:f4:a6:86:45:8d: 33:aa:c8:8d:ba:00:2b:c8:d6:61:60:9e:d6:96:6e: 09:91:5e:9f:95:d3:13:5f:f2:ac:e8:76:42:c1:4a: e2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CC:0B:08:FD:71:BA:3A:65:6E:1C:63:A7:AF:85:39:D8:84:85:58 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/BACC498C9EFC11EC856FCB09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:218:4000:9::/64 Signature Algorithm: sha256WithRSAEncryption 13:6e:8a:b6:c0:bf:1b:91:04:77:97:d2:23:f5:2c:9f:71:c9: 1a:5a:37:b8:a7:21:fe:5e:2a:7a:cf:0f:e5:3e:d1:3d:c9:10: 9c:15:0f:28:3e:d4:94:38:db:4c:7f:cd:7b:a2:57:bf:b0:e3: ed:58:a3:5a:a4:17:d2:ec:df:bd:23:77:6c:79:29:90:c3:ae: 4c:11:8e:88:5c:f4:10:32:5e:06:38:bb:c3:79:41:2f:65:a6: c3:ba:4d:c0:a0:35:89:60:cd:96:7d:ed:f3:a0:f4:58:ac:f4: 93:b8:ca:62:bf:f5:21:86:79:2e:a4:7f:4c:59:c9:ee:3f:ed: 16:71:6b:7d:0d:fc:b8:20:9d:70:10:aa:40:89:c0:18:f2:89: ab:89:85:a6:42:2f:2e:b1:5f:b2:a3:30:69:08:bb:01:0b:f4: 0a:33:c8:5f:94:a8:d5:89:85:0f:c8:73:4d:79:2b:88:c6:d9: 55:f2:76:de:2d:43:48:8b:19:68:a5:52:58:84:a6:59:85:53: 22:80:c7:f7:95:c2:f3:44:30:36:15:40:e8:ac:dc:04:1e:e2: 7f:ae:b5:98:2b:f4:a9:82:3f:93:65:ad:51:54:33:e5:43:b8: b9:82:cf:14:e1:4f:e3:ab:34:ff:5e:8a:95:22:e6:f6:c3:d3: 93:83:f6:46 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICCmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MTk1OTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0NWNiZC00OWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7YTd11fCwCRNWpe0MC6lmSfJPX/aRTr1Z1EfySplJD+POfnq2T2tMPVtglH wwBRXL+FpW0TB8RFXQYwZH131F0vt+nOCUf0dvD7nCZ8BwK050NE/XYzAVoPJXk7 OL5JDymJ49T7/6dJ9Un3rgXt6rTulYjmIvlXD0SPddmiIXkFYbOUPPd3VOf/E6Ob TP0+XvvM+DnNb8IJ7Xv6qTOpDHWs7rUfpGcoWEusQxxVYF1T5jFDWSsf9nN/ktnm DpyPaJmZ8FK9Xb9VcD4qkaSCyPJ0gqfE0st9ZwH99KaGRY0zqsiNugAryNZhYJ7W lm4JkV6fldMTX/Ks6HZCwUriKQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFJ/MCwj9 cbo6ZW4cY6evhTnYhIVYMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvQkFDQzQ5OEM5 RUZDMTFFQzg1NkZDQjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgACMAsDCQAgAQIYQAAACTANBgkqhkiG9w0BAQsFAAOCAQEAE26KtsC/ G5EEd5fSI/Usn3HJGlo3uKch/l4qes8P5T7RPckQnBUPKD7UlDjbTH/Ne6JXv7Dj 7VijWqQX0uzfvSN3bHkpkMOuTBGOiFz0EDJeBji7w3lBL2Wmw7pNwKA1iWDNln3t 86D0WKz0k7jKYr/1IYZ5LqR/TFnJ7j/tFnFrfQ38uCCdcBCqQInAGPKJq4mFpkIv LrFfsqMwaQi7AQv0CjPIX5So1YmFD8hzTXkriMbZVfJ23i1DSIsZaKVSWISmWYVT IoDH95XC80QwNhVA6KzcBB7if661mCv0qYI/k2WtUVQz5UO4uYLPFOFP46s0/16K lSLm9sPTk4P2Rg== -----END CERTIFICATE-----Generated at Sat Apr 26 09:24:32 2025 by rpki-client