$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa File: B579952EEBB311EEAF9E7718C4F9AE02.roa (raw, json) Hash identifier: cQvewbJ40h6EgOgsAFnDbtknSxNEUHRWVYRLfKeQf+8= Subject key identifier: AC:A9:DC:90:BD:B9:4B:8F:40:70:50:F9:D4:A6:CD:8D:3E:61:D2:62 Certificate issuer: /CN=A91CF83F/serialNumber=929889BB5D34E860ACBF70894337A462C1D6AC2E Certificate serial: 0CB9 Authority key identifier: 92:98:89:BB:5D:34:E8:60:AC:BF:70:89:43:37:A4:62:C1:D6:AC:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa Signing time: Tue 08 Apr 2025 18:27:01 +0000 ROA not before: Tue 08 Apr 2025 18:27:01 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135019 IP address blocks: 2400:b140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.crl rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF83F, serialNumber=929889BB5D34E860ACBF70894337A462C1D6AC2E Validity Not Before: Apr 8 18:27:01 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f56a74-b4ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:9b:f8:e7:77:99:90:8c:bc:56:fe:b2:ee: 0e:e3:9c:26:02:07:85:43:99:e0:7b:b8:9c:2f:f5: 3a:11:0d:e6:04:1d:40:c7:53:23:17:ba:2a:d9:66: 48:b8:0c:87:65:1f:fd:78:4f:9c:45:67:ba:94:76: fe:76:a8:cf:bf:0b:73:66:ca:e9:1c:11:6c:16:55: b9:ff:1a:4f:2e:40:7f:d0:41:fb:9e:c2:12:39:fc: a4:4f:78:03:79:b3:b4:ee:be:66:01:c1:95:5c:65: 2d:78:5a:ed:a9:58:88:5e:32:8d:ca:80:23:36:09: 61:fe:8a:c2:d0:c1:3a:ee:3b:26:fb:11:aa:48:b0: 08:ad:df:91:84:45:67:57:d6:ef:e5:a6:40:f0:6d: ce:4e:28:e6:61:cc:9e:b8:4f:ce:59:b5:db:3c:32: a0:e1:39:f1:13:56:9b:c7:a0:00:d5:ce:70:c8:7b: 07:0f:75:7a:bc:a3:38:15:46:11:fc:77:67:91:d5: 55:f9:ec:4b:b8:3c:e8:01:e7:4a:ce:eb:68:e6:1a: e5:ee:ce:55:eb:48:b0:44:af:1b:13:ba:ff:6a:1d: db:7e:8d:60:30:42:7a:8d:50:7a:a6:ea:f1:89:fe: 34:d0:8d:4e:d6:a2:3f:b1:55:a9:29:e4:7d:43:72: 85:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A9:DC:90:BD:B9:4B:8F:40:70:50:F9:D4:A6:CD:8D:3E:61:D2:62 X509v3 Authority Key Identifier: keyid:92:98:89:BB:5D:34:E8:60:AC:BF:70:89:43:37:A4:62:C1:D6:AC:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/kpiJu1006GCsv3CJQzekYsHWrC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kpiJu1006GCsv3CJQzekYsHWrC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF83F/89238ECCEF4F11E99DE47F0CC4F9AE02/B579952EEBB311EEAF9E7718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b140::/32 Signature Algorithm: sha256WithRSAEncryption 89:56:9a:76:8b:2e:b6:fd:a6:c3:65:d9:ec:b0:8a:d8:c1:3b: 82:0a:dc:2f:e8:46:ff:dd:06:3a:b3:4e:e4:68:33:aa:1e:17: de:97:c5:3a:76:fb:f4:a1:e1:3e:37:64:dc:d9:be:9c:c5:06: 4b:af:ad:ab:57:a2:db:a3:1e:2f:88:e5:c5:bd:ec:c9:ab:f6: b9:be:cd:b3:50:d9:4b:63:29:4a:12:92:48:da:89:8b:d9:ae: df:73:f0:0f:32:7d:ce:fc:d9:ff:f4:55:6d:b5:14:65:69:e3: b1:80:46:19:be:51:5b:5d:bf:ea:72:06:ae:d8:5e:38:83:fd: ca:12:4b:62:77:36:d1:58:96:3d:a2:de:49:81:30:d4:76:6a: 92:eb:11:ad:8f:21:2a:3e:e3:05:3f:da:c3:44:ba:33:d6:cd: c6:e7:d4:7f:6b:93:82:aa:e8:b8:3f:02:7e:e6:0d:97:8d:d0: 4c:02:39:f3:3e:83:7a:89:26:3a:0d:05:70:d9:ef:6c:60:48: b9:29:95:26:fd:b8:72:b6:5f:36:c7:e7:74:9a:82:be:3c:ce: 22:e3:70:f1:5a:c2:56:8f:41:4c:63:f8:e0:00:3e:b0:30:12: 8e:33:76:de:08:49:b4:3f:e7:2a:d2:5d:42:68:62:e8:5a:0d: 88:da:ad:bf -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4M0YxMTAvBgNVBAUTKDkyOTg4OUJCNUQzNEU4NjBBQ0JGNzA4OTQzMzdBNDYy QzFENkFDMkUwHhcNMjUwNDA4MTgyNzAxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NmE3NC1iNGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHWb+Od3mZCMvFb+su4O45wmAgeFQ5nge7icL/U6EQ3mBB1Ax1MjF7oq2WZI uAyHZR/9eE+cRWe6lHb+dqjPvwtzZsrpHBFsFlW5/xpPLkB/0EH7nsISOfykT3gD ebO07r5mAcGVXGUteFrtqViIXjKNyoAjNglh/orC0ME67jsm+xGqSLAIrd+RhEVn V9bv5aZA8G3OTijmYcyeuE/OWbXbPDKg4TnxE1abx6AA1c5wyHsHD3V6vKM4FUYR /HdnkdVV+exLuDzoAedKzuto5hrl7s5V60iwRK8bE7r/ah3bfo1gMEJ6jVB6purx if400I1O1qI/sVWpKeR9Q3KFDwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKyp3JC9 uUuPQHBQ+dSmzY0+YdJiMB8GA1UdIwQYMBaAFJKYibtdNOhgrL9wiUM3pGLB1qwu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjgzRi84OTIzOEVDQ0VG NEYxMUU5OURFNDdGMENDNEY5QUUwMi9rcGlKdTEwMDZHQ3N2M0NKUXpla1lzSFdy QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2twaUp1MTAwNkdDc3YzQ0pRemVrWXNIV3JDNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y4M0YvODkyMzhFQ0NFRjRGMTFFOTlERTQ3RjBDQzRGOUFFMDIvQjU3OTk1MkVF QkIzMTFFRUFGOUU3NzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALFAMA0GCSqGSIb3DQEBCwUAA4IBAQCJVpp2iy62/abD ZdnssIrYwTuCCtwv6Eb/3QY6s07kaDOqHhfel8U6dvv0oeE+N2Tc2b6cxQZLr62r V6Lbox4viOXFvezJq/a5vs2zUNlLYylKEpJI2omL2a7fc/APMn3O/Nn/9FVttRRl aeOxgEYZvlFbXb/qcgau2F44g/3KEktidzbRWJY9ot5JgTDUdmqS6xGtjyEqPuMF P9rDRLoz1s3G59R/a5OCqui4PwJ+5g2XjdBMAjnzPoN6iSY6DQVw2e9sYEi5KZUm /bhytl82x+d0moK+PM4i43DxWsJWj0FMY/jgAD6wMBKOM3beCEm0P+cq0l1CaGLo Wg2I2q2/ -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:37 2025 by rpki-client