$ rpki-client -vvf rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/47B75B3893EE11E9B1F2926AC4F9AE02.roa File: 47B75B3893EE11E9B1F2926AC4F9AE02.roa (raw, json) Hash identifier: E66SV6WNRD5ULWCmhiJGOhN+NZfmVirzyRoB4Hy/u4Q= Subject key identifier: D0:09:B8:CB:ED:7C:C6:9A:3D:06:86:ED:5D:5F:37:09:F1:69:22:0B Certificate issuer: /CN=A9169CEB/serialNumber=895DA68BAD8A7F9D3178856C7B62E9C1688B2B73 Certificate serial: 0F79 Authority key identifier: 89:5D:A6:8B:AD:8A:7F:9D:31:78:85:6C:7B:62:E9:C1:68:8B:2B:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/47B75B3893EE11E9B1F2926AC4F9AE02.roa Signing time: Fri 02 May 2025 17:57:47 +0000 ROA not before: Fri 02 May 2025 17:57:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6939 IP address blocks: 2001:df0:3a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.crl rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3961 (0xf79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169CEB, serialNumber=895DA68BAD8A7F9D3178856C7B62E9C1688B2B73 Validity Not Before: May 2 17:57:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815079a-1b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:33:9a:e6:71:4f:c4:86:b4:0f:9b:73:b7: ab:d2:a5:53:ed:c0:e9:b1:d8:c4:62:3e:9b:5b:22: d1:bf:ad:45:df:3e:1e:37:63:de:89:47:01:3d:4d: 84:1f:38:70:67:e1:d1:0c:ec:7f:11:33:bb:90:68: 5e:cd:0b:57:a1:22:3b:4f:f8:12:1c:27:c2:f6:32: 69:51:6f:b6:0a:e8:ec:d3:7b:2f:d1:7b:ea:ba:c9: c9:6b:1b:06:ff:00:e0:e3:32:22:5c:81:42:46:6f: 7e:a7:05:c1:c0:d7:c1:f7:f9:78:e3:22:50:18:cd: 44:c0:c8:93:3c:2b:a4:73:fd:d6:ac:ee:fb:16:35: 39:e7:9f:6e:71:ab:cc:30:f8:59:25:ba:a9:b8:37: f7:18:3b:4e:43:04:c2:f6:75:58:97:4e:80:61:bf: 74:fe:89:d2:39:7c:32:a3:cb:2d:b6:16:93:eb:66: 3e:f7:a5:dc:b1:04:3b:fa:f4:4a:ea:61:16:bb:3c: 8c:13:b1:89:a7:37:64:0f:e4:20:25:52:4a:3b:7c: c4:e7:cb:94:86:58:9f:fa:d8:c9:73:b6:90:36:e3: 72:a3:2b:eb:b7:38:bc:77:8b:d6:e1:ca:fe:e9:9f: a7:c4:b4:e3:08:e4:83:40:a6:68:f8:a7:0f:7e:55: 21:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:09:B8:CB:ED:7C:C6:9A:3D:06:86:ED:5D:5F:37:09:F1:69:22:0B X509v3 Authority Key Identifier: keyid:89:5D:A6:8B:AD:8A:7F:9D:31:78:85:6C:7B:62:E9:C1:68:8B:2B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/iV2mi62Kf50xeIVse2LpwWiLK3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV2mi62Kf50xeIVse2LpwWiLK3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169CEB/7DA583E4655611E985810D37C4F9AE02/47B75B3893EE11E9B1F2926AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:3a80::/48 Signature Algorithm: sha256WithRSAEncryption 3f:69:4c:e6:54:d5:44:e9:b4:de:03:4e:01:76:55:ea:cb:62: 1c:f3:4d:af:06:b8:8a:e0:b3:f8:d6:cf:6e:4f:cc:23:9c:79: 49:c2:2a:50:ee:01:9b:60:d4:6b:53:ab:14:c3:78:dd:e7:b8: b0:4b:f8:9d:d3:65:bc:75:95:a8:e6:e6:13:db:3e:4a:e9:f3: a4:60:ca:5c:00:bc:4a:71:ce:84:d3:9a:76:59:94:87:e5:03: 8e:54:ee:b8:a0:2f:c0:db:55:d8:11:a7:dd:ca:c4:ad:ab:69: d7:4e:f4:c1:99:86:20:a2:8b:dc:1c:e1:9e:d0:2b:0c:00:7c: 0c:27:03:1e:6d:de:02:e2:95:24:e3:c3:7d:7c:4e:a3:19:22: 50:4b:2c:ce:0b:5a:77:48:a8:e4:c6:76:24:59:be:b5:40:fc: cd:07:1c:94:da:61:5a:86:64:03:0f:56:c4:ff:1d:3f:51:2c: 2f:a0:a2:44:0f:13:6f:bc:0b:61:c2:1f:47:80:65:56:92:62: 0c:1d:4e:c1:bb:26:ec:f7:69:b6:d8:1a:7a:1c:11:8b:5f:af: dd:e8:69:aa:7f:a6:7e:6a:1b:a4:ab:5b:73:4a:28:2f:23:c4: fd:90:24:02:a8:6a:dc:a3:cb:9a:6b:c6:86:fa:5a:cc:bf:29: 51:1f:ad:12 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDRUIxMTAvBgNVBAUTKDg5NURBNjhCQUQ4QTdGOUQzMTc4ODU2QzdCNjJFOUMx Njg4QjJCNzMwHhcNMjUwNTAyMTc1NzQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc5YS0xYjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIgzmuZxT8SGtA+bc7er0qVT7cDpsdjEYj6bWyLRv61F3z4eN2PeiUcBPU2E HzhwZ+HRDOx/ETO7kGhezQtXoSI7T/gSHCfC9jJpUW+2Cujs03sv0XvqusnJaxsG /wDg4zIiXIFCRm9+pwXBwNfB9/l44yJQGM1EwMiTPCukc/3WrO77FjU5559ucavM MPhZJbqpuDf3GDtOQwTC9nVYl06AYb90/onSOXwyo8stthaT62Y+96XcsQQ7+vRK 6mEWuzyME7GJpzdkD+QgJVJKO3zE58uUhlif+tjJc7aQNuNyoyvrtzi8d4vW4cr+ 6Z+nxLTjCOSDQKZo+KcPflUhnQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNAJuMvt fMaaPQaG7V1fNwnxaSILMB8GA1UdIwQYMBaAFIldpoutin+dMXiFbHti6cFoiytz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUNFQi83REE1ODNFNDY1 NTYxMUU5ODU4MTBEMzdDNEY5QUUwMi9pVjJtaTYyS2Y1MHhlSVZzZTJMcHdXaUxL M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWMm1pNjJLZjUweGVJVnNlMkxwd1dpTEszTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlDRUIvN0RBNTgzRTQ2NTU2MTFFOTg1ODEwRDM3QzRGOUFFMDIvNDdCNzVCMzg5 M0VFMTFFOUIxRjI5MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wOoAwDQYJKoZIhvcNAQELBQADggEBAD9pTOZU1UTp tN4DTgF2VerLYhzzTa8GuIrgs/jWz25PzCOceUnCKlDuAZtg1GtTqxTDeN3nuLBL +J3TZbx1lajm5hPbPkrp86RgylwAvEpxzoTTmnZZlIflA45U7rigL8DbVdgRp93K xK2raddO9MGZhiCii9wc4Z7QKwwAfAwnAx5t3gLilSTjw318TqMZIlBLLM4LWndI qOTGdiRZvrVA/M0HHJTaYVqGZAMPVsT/HT9RLC+gokQPE2+8C2HCH0eAZVaSYgwd TsG7Juz3abbYGnocEYtfr93oaap/pn5qG6SrW3NKKC8jxP2QJAKoatyjy5prxob6 Wsy/KVEfrRI= -----END CERTIFICATE-----Generated at Sat May 17 13:30:41 2025 by rpki-client