$ rpki-client -vvf rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/2C06DFA22C4C11EFB6974530C4F9AE02.roa File: 2C06DFA22C4C11EFB6974530C4F9AE02.roa (raw, json) Hash identifier: x0R7/aV5SAgSCY1aeBWFVSWK6YKsQh3+SMh4O+dO85w= Subject key identifier: ED:B4:23:B6:DD:A7:62:3B:A5:40:B5:EE:9F:72:4C:98:F9:22:AC:F8 Certificate issuer: /CN=A916DAC0/serialNumber=54B966AD8B57316416529507F5BCA9C00E1181B9 Certificate serial: CF Authority key identifier: 54:B9:66:AD:8B:57:31:64:16:52:95:07:F5:BC:A9:C0:0E:11:81:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLlmrYtXMWQWUpUH9bypwA4Rgbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/2C06DFA22C4C11EFB6974530C4F9AE02.roa Signing time: Thu 03 Apr 2025 05:03:23 +0000 ROA not before: Thu 03 Apr 2025 05:03:23 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152464 IP address blocks: 2401:a7a0::/36 maxlen: 36 2401:a7a0:1000::/36 maxlen: 36 2401:a7a0:2000::/36 maxlen: 36 2401:a7a0:3000::/36 maxlen: 36 2401:a7a0:4000::/36 maxlen: 36 2401:a7a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/VLlmrYtXMWQWUpUH9bypwA4Rgbk.crl rsync://rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/VLlmrYtXMWQWUpUH9bypwA4Rgbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLlmrYtXMWQWUpUH9bypwA4Rgbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DAC0, serialNumber=54B966AD8B57316416529507F5BCA9C00E1181B9 Validity Not Before: Apr 3 05:03:23 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ee169b-d48b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:cf:7d:d9:e9:54:47:50:ab:e0:e7:e0:7f: 07:9f:99:be:5a:5b:22:f6:9a:65:b7:21:e2:be:ac: fe:95:f6:b1:72:45:a3:33:3d:86:49:67:fb:24:cb: 7f:62:2f:01:ce:89:94:b9:03:3a:b8:b7:dc:9e:91: 6a:08:a8:86:34:ed:d6:68:2c:80:0e:5c:69:d3:a6: 34:3c:3e:d0:f5:e0:49:f8:60:e1:54:79:1f:0a:1b: b6:8f:10:9a:8e:d4:c7:55:82:0e:0c:ab:d1:db:72: 66:df:a0:7a:eb:18:14:7b:b0:cb:f9:a7:a5:a3:f9: d1:8d:27:0c:68:54:fb:88:fd:0a:ab:27:c8:f0:83: a5:7c:06:f2:61:1a:9f:ae:a6:16:a2:48:df:8e:ad: 8d:1c:4d:f5:62:6c:e6:f7:ac:c2:f3:d7:93:e4:d1: 5d:97:ce:d8:1f:0a:d8:22:79:b0:27:94:1a:eb:89: 47:20:17:f9:cc:67:59:c5:4a:9f:91:8c:df:14:b4: 36:cc:0d:07:bc:4e:dc:e7:43:46:c2:8c:a2:a9:ff: 27:b1:0c:43:fa:fc:6d:f2:9b:48:e2:10:f1:23:d8: dd:42:6e:d9:6c:50:58:bf:26:a9:38:2f:0c:f4:c1: 84:eb:94:02:21:91:ed:bb:2a:83:2a:6f:b7:dd:77: 1a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B4:23:B6:DD:A7:62:3B:A5:40:B5:EE:9F:72:4C:98:F9:22:AC:F8 X509v3 Authority Key Identifier: keyid:54:B9:66:AD:8B:57:31:64:16:52:95:07:F5:BC:A9:C0:0E:11:81:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/VLlmrYtXMWQWUpUH9bypwA4Rgbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLlmrYtXMWQWUpUH9bypwA4Rgbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DAC0/E763AA8ADE8811EE93D9A744C4F9AE02/2C06DFA22C4C11EFB6974530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a7a0::-2401:a7a0:4fff:ffff:ffff:ffff:ffff:ffff 2401:a7a0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 93:74:7a:d1:74:a3:8b:6e:bf:fe:c6:19:75:65:1c:d0:27:45: 1e:c7:54:92:ec:36:c0:1c:2a:a0:12:82:d1:08:2b:1d:92:19: 5e:05:bb:d5:77:ac:81:20:9b:45:89:dd:72:2b:d9:98:74:34: 34:78:8d:cd:c9:63:89:45:64:a6:cd:2b:22:c3:13:00:1b:bc: e5:4e:58:2f:4f:c0:6a:8f:e1:80:27:bd:71:a0:61:87:41:f2: 74:0c:b7:d0:6d:6f:09:68:8f:e6:1a:c6:e1:61:56:cb:9a:28: af:fb:60:e2:a9:44:d5:24:54:8d:17:ae:fe:d6:01:80:8c:6c: 7a:91:01:0c:74:42:ec:4f:cc:b3:15:56:15:27:ba:83:d0:3f: d6:ec:1f:b5:25:fe:5e:4d:34:44:af:cf:48:16:8b:9b:69:bb: 31:30:04:94:63:f6:cf:80:13:97:70:50:87:5e:25:88:76:2d: 34:01:bb:65:cb:f8:dc:02:dc:14:22:61:46:c4:4f:4a:da:ee: 94:65:e1:6d:e0:a2:e6:3b:e9:9d:2f:e4:69:ac:74:44:fa:91: 19:9f:6d:9b:71:f9:16:04:77:d3:8d:e0:73:e9:1d:75:cb:24: 7a:4f:7a:4e:fa:0f:6f:1d:27:1c:57:b6:74:66:52:85:48:b0: 92:29:58:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRBQzAxMTAvBgNVBAUTKDU0Qjk2NkFEOEI1NzMxNjQxNjUyOTUwN0Y1QkNBOUMw MEUxMTgxQjkwHhcNMjUwNDAzMDUwMzIzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMTY5Yi1kNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygPPfdnpVEdQq+Dn4H8Hn5m+Wlsi9ppltyHivqz+lfaxckWjMz2GSWf7JMt/ Yi8BzomUuQM6uLfcnpFqCKiGNO3WaCyADlxp06Y0PD7Q9eBJ+GDhVHkfChu2jxCa jtTHVYIODKvR23Jm36B66xgUe7DL+aelo/nRjScMaFT7iP0KqyfI8IOlfAbyYRqf rqYWokjfjq2NHE31Ymzm96zC89eT5NFdl87YHwrYInmwJ5Qa64lHIBf5zGdZxUqf kYzfFLQ2zA0HvE7c50NGwoyiqf8nsQxD+vxt8ptI4hDxI9jdQm7ZbFBYvyapOC8M 9MGE65QCIZHtuyqDKm+33Xca7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO20I7bd p2I7pUC17p9yTJj5Iqz4MB8GA1UdIwQYMBaAFFS5Zq2LVzFkFlKVB/W8qcAOEYG5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REFDMC9FNzYzQUE4QURF ODgxMUVFOTNEOUE3NDRDNEY5QUUwMi9WTGxtcll0WE1XUVdVcFVIOWJ5cHdBNFJn YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZMbG1yWXRYTVdRV1VwVUg5Ynlwd0E0Umdiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRBQzAvRTc2M0FBOEFERTg4MTFFRTkzRDlBNzQ0QzRGOUFFMDIvMkMwNkRGQTIy QzRDMTFFRkI2OTc0NTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgACMBkwDwMFBSQBp6ADBgQkAaegQAMGBCQBp6DwMA0GCSqGSIb3DQEB CwUAA4IBAQCTdHrRdKOLbr/+xhl1ZRzQJ0Uex1SS7DbAHCqgEoLRCCsdkhleBbvV d6yBIJtFid1yK9mYdDQ0eI3NyWOJRWSmzSsiwxMAG7zlTlgvT8Bqj+GAJ71xoGGH QfJ0DLfQbW8JaI/mGsbhYVbLmiiv+2DiqUTVJFSNF67+1gGAjGx6kQEMdELsT8yz FVYVJ7qD0D/W7B+1Jf5eTTREr89IFoubabsxMASUY/bPgBOXcFCHXiWIdi00Abtl y/jcAtwUImFGxE9K2u6UZeFt4KLmO+mdL+RprHRE+pEZn22bcfkWBHfTjeBz6R11 yyR6T3pO+g9vHSccV7Z0ZlKFSLCSKVgJ -----END CERTIFICATE-----Generated at Sun May 11 00:40:01 2025 by rpki-client