$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/B245BA601C4311F08254DE40C4F9AE02.roa File: B245BA601C4311F08254DE40C4F9AE02.roa (raw, json) Hash identifier: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980= Subject key identifier: C6:F1:B6:1A:92:6D:69:B3:FB:98:CD:0A:72:11:F4:69:EA:5C:C4:AE Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 02 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/B245BA601C4311F08254DE40C4F9AE02.roa Signing time: Fri 18 Apr 2025 10:55:53 +0000 ROA not before: Fri 18 Apr 2025 10:55:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140096 IP address blocks: 2400:cca0:2101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Apr 18 10:55:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68022fb9-8b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:aa:08:ea:59:15:f4:9d:ab:12:36:d1:6e:65: bd:27:a0:0d:bd:ac:90:5b:3b:37:7d:4f:77:70:09: 8d:fe:2b:8a:7b:22:13:0f:0d:ae:9b:aa:b2:09:9a: c4:73:36:ab:09:5e:08:ff:b0:f0:2a:76:d3:40:00: 24:7b:13:62:a9:43:92:fe:b0:b1:81:93:54:5b:67: 32:75:d7:5d:9b:4c:cf:82:6f:15:20:9c:d1:11:67: 94:e1:fc:51:c6:fc:7d:ad:ca:dc:2b:ce:1e:23:d6: d5:89:71:b6:fd:17:b6:76:eb:c8:fc:ab:8e:11:7f: ff:b6:7a:93:d0:90:a3:57:3e:6c:03:49:95:5e:52: 43:2b:28:11:32:66:54:e4:75:ce:25:1e:68:eb:8c: 72:24:b9:1b:bc:62:12:ba:97:5a:53:12:ad:fe:02: 07:3f:fe:63:27:7e:48:06:57:b5:a6:6c:42:49:a2: 45:ff:f2:aa:52:a6:ac:7e:ea:c7:aa:d8:04:5d:e0: 49:13:7b:9d:4c:06:6c:bd:2a:39:55:7f:57:af:ce: 87:aa:9e:c8:3b:c6:70:6c:04:61:48:03:91:80:ea: 9b:dd:bb:8f:99:93:0f:cb:8b:25:b4:cf:d8:17:5b: e3:3e:cf:7d:9d:62:e5:70:92:3d:8c:21:8f:0a:c6: cc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F1:B6:1A:92:6D:69:B3:FB:98:CD:0A:72:11:F4:69:EA:5C:C4:AE X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/B245BA601C4311F08254DE40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:cca0:2101::/48 Signature Algorithm: sha256WithRSAEncryption 20:ca:9f:de:b1:6d:b2:48:0a:ed:8c:a7:f5:92:6a:4c:e7:83: d3:70:87:59:dc:96:33:85:21:53:8e:74:0d:70:60:29:a8:a0: bd:22:d2:d1:d0:3b:e1:4a:e6:ba:46:8c:42:80:12:10:4e:83: e9:a3:0b:8f:c0:96:fe:b1:f7:07:bd:a1:4c:90:49:e5:12:dc: db:4d:f3:42:f7:5e:8a:aa:0d:b2:44:05:63:25:26:50:e9:04: 3e:3c:9b:0f:e3:94:5d:40:d8:7a:05:ff:08:8c:db:bc:37:45: 1f:d1:04:3a:be:0f:3a:32:f2:be:47:58:ab:74:b1:1b:09:b7: 8d:8a:76:1b:6c:ab:6e:0c:c9:32:cd:b1:b7:ca:b7:ed:6e:04: ab:b6:48:ab:0d:10:68:27:45:20:23:55:ca:02:44:fb:ff:33: 0a:cd:50:fb:68:19:ee:d0:db:e9:6b:5f:17:e2:7a:d0:30:93: ff:5a:81:c5:50:0f:6f:bd:f8:f8:fd:89:0c:fd:87:3a:47:1e: e7:f0:29:13:c2:15:ee:22:c4:b7:ed:ff:40:d5:c5:6f:dd:ad: 6a:fe:fb:61:32:eb:d7:9e:2b:50:2d:38:5b:c2:eb:1d:56:38: 62:0c:db:98:ca:62:0e:81:cb:14:87:3b:f3:dc:f7:6f:58:1e: 0a:7e:6a:69 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA0MTgxMDU1NTNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDIyZmI5LThiN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYqgjqWRX0nasSNtFuZb0noA29rJBbOzd9T3dwCY3+K4p7IhMPDa6bqrIJmsRz NqsJXgj/sPAqdtNAACR7E2KpQ5L+sLGBk1RbZzJ1112bTM+CbxUgnNERZ5Th/FHG /H2tytwrzh4j1tWJcbb9F7Z268j8q44Rf/+2epPQkKNXPmwDSZVeUkMrKBEyZlTk dc4lHmjrjHIkuRu8YhK6l1pTEq3+Agc//mMnfkgGV7WmbEJJokX/8qpSpqx+6seq 2ARd4EkTe51MBmy9KjlVf1evzoeqnsg7xnBsBGFIA5GA6pvdu4+Zkw/LiyW0z9gX W+M+z32dYuVwkj2MIY8KxsxNAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUxvG2GpJt abP7mM0KchH0aepcxK4wHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9CMjQ1QkE2MDFD NDMxMUYwODI1NERFNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQAzKAhATANBgkqhkiG9w0BAQsFAAOCAQEAIMqf3rFtskgK 7Yyn9ZJqTOeD03CHWdyWM4UhU450DXBgKaigvSLS0dA74UrmukaMQoASEE6D6aML j8CW/rH3B72hTJBJ5RLc203zQvdeiqoNskQFYyUmUOkEPjybD+OUXUDYegX/CIzb vDdFH9EEOr4POjLyvkdYq3SxGwm3jYp2G2yrbgzJMs2xt8q37W4Eq7ZIqw0QaCdF ICNVygJE+/8zCs1Q+2gZ7tDb6WtfF+J60DCT/1qBxVAPb734+P2JDP2HOkce5/Ap E8IV7iLEt+3/QNXFb92tav77YTLr154rUC04W8LrHVY4YgzbmMpiDoHLFIc789z3 b1geCn5qaQ== -----END CERTIFICATE-----Generated at Sat Apr 26 09:23:08 2025 by rpki-client