$ rpki-client -vvf rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B47A0CDA660F11EB8A1DB351C4F9AE02.roa File: B47A0CDA660F11EB8A1DB351C4F9AE02.roa (raw, json) Hash identifier: hPcGjX6pod1mQjVuO2fta8f52KKrIcQ5XI+2+yM8wXY= Subject key identifier: 69:CB:B4:6E:9A:69:C2:17:71:08:B1:69:63:1D:D5:67:14:C3:C4:B7 Certificate issuer: /CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Certificate serial: 0A7E Authority key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B47A0CDA660F11EB8A1DB351C4F9AE02.roa Signing time: Mon 12 May 2025 19:35:36 +0000 ROA not before: Mon 12 May 2025 19:35:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136992 IP address blocks: 2001:df3:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91755F6, serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D Validity Not Before: May 12 19:35:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68224d87-e960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:54:53:dd:7d:25:3d:4e:cd:fa:50:3d:c6:72: 6f:98:ad:77:af:dc:04:e9:8a:ea:67:aa:54:f4:57: 5e:2f:01:6e:15:84:2e:1c:d7:8e:1a:0a:a8:b9:dc: a8:29:e3:91:b6:1b:c8:3c:73:b7:ed:22:52:18:82: a0:27:e3:8d:bd:33:d3:8b:c4:43:c3:78:2a:95:78: e9:ca:4a:9c:dc:ff:3e:eb:39:92:a4:fa:d3:06:19: 7c:99:f6:75:23:29:57:78:be:85:61:de:f2:eb:f9: 25:7c:79:8c:7f:dc:a1:31:61:02:da:df:1b:bd:da: 21:2d:19:60:f5:57:e1:b8:4e:12:17:d1:c4:43:b4: 9f:de:f5:f3:6b:f6:40:f5:9e:74:8a:87:71:1c:41: 38:ce:7e:42:6c:65:a2:b8:f8:23:14:96:b3:c7:0c: a2:38:7f:1e:ed:41:6b:8c:94:dd:7c:cc:10:08:5f: 58:f2:90:cf:27:35:a6:0d:25:f2:24:8e:35:ee:2b: 7c:52:f5:0e:62:de:67:97:47:f9:6b:3e:3a:08:32: b0:8e:1c:00:3f:ed:6b:5c:74:0a:23:54:3b:ec:99: 2d:a5:e0:70:03:33:09:c3:9a:6f:07:63:0f:ac:61: 40:cf:ca:d2:08:c1:32:58:6c:b9:70:5d:1f:52:ff: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CB:B4:6E:9A:69:C2:17:71:08:B1:69:63:1D:D5:67:14:C3:C4:B7 X509v3 Authority Key Identifier: keyid:F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/B47A0CDA660F11EB8A1DB351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:1080::/48 Signature Algorithm: sha256WithRSAEncryption 27:05:f0:8f:69:27:be:6f:48:ad:65:25:5a:14:fb:bb:4c:d5: 13:b2:7e:97:ed:97:56:39:e0:7d:41:76:f5:4b:60:d3:4e:a5: d0:0c:5d:92:e1:04:34:ac:21:fc:6f:51:d7:3f:11:ca:4a:08: b8:f5:4a:b3:6e:c5:20:de:2e:7f:08:61:65:81:06:e3:21:32: 69:eb:7b:b0:c2:ef:6f:2b:bd:60:2b:41:d0:e0:6f:75:b8:7e: 9a:c7:d7:65:68:05:16:ae:34:bf:bb:40:0d:7f:1b:3f:4f:9b: dd:8d:bb:e3:90:f5:29:62:58:9d:af:1d:69:c9:dd:cc:98:ba: 47:69:86:f8:25:37:a8:a0:2b:a8:eb:59:71:1d:bf:34:8a:eb: eb:e3:59:31:03:e2:15:c5:13:6d:20:1b:51:50:5b:5f:85:a3: 54:4b:e9:34:ea:60:41:51:05:3b:f4:9a:71:aa:d0:e6:95:8b: 11:e0:7b:32:fd:2a:c8:c7:fb:7d:89:81:73:c4:8b:7d:d2:68: 79:b4:ce:90:12:40:a2:03:91:d3:46:98:82:8f:2f:25:45:f9: e3:fe:f9:69:ab:63:d9:eb:45:76:17:00:61:ea:69:ef:be:b4: 51:aa:a0:d5:45:50:f6:fe:4d:7d:74:f2:68:10:b1:e9:c6:8f: ff:8d:74:89 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1RjYxMTAvBgNVBAUTKEY2OEI4NjI2OEIzN0RFODEwQjk2OERCOEYzNTdGNzcz RTk4M0JGNkQwHhcNMjUwNTEyMTkzNTM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyNGQ4Ny1lOTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlRT3X0lPU7N+lA9xnJvmK13r9wE6YrqZ6pU9FdeLwFuFYQuHNeOGgqoudyo KeORthvIPHO37SJSGIKgJ+ONvTPTi8RDw3gqlXjpykqc3P8+6zmSpPrTBhl8mfZ1 IylXeL6FYd7y6/klfHmMf9yhMWEC2t8bvdohLRlg9VfhuE4SF9HEQ7Sf3vXza/ZA 9Z50iodxHEE4zn5CbGWiuPgjFJazxwyiOH8e7UFrjJTdfMwQCF9Y8pDPJzWmDSXy JI417it8UvUOYt5nl0f5az46CDKwjhwAP+1rXHQKI1Q77JktpeBwAzMJw5pvB2MP rGFAz8rSCMEyWGy5cF0fUv9GswIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGnLtG6a acIXcQixaWMd1WcUw8S3MB8GA1UdIwQYMBaAFPaLhiaLN96BC5aNuPNX93Ppg79t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTVGNi9ENjlFQUFCMjVG NjQxMUVBOUNBQTNBNjRDNEY5QUUwMi85b3VHSm9zMzNvRUxsbzI0ODFmM2MtbUR2 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvdUdKb3MzM29FTGxvMjQ4MWYzYy1tRHYyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1RjYvRDY5RUFBQjI1RjY0MTFFQTlDQUEzQTY0QzRGOUFFMDIvQjQ3QTBDREE2 NjBGMTFFQjhBMURCMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zEIAwDQYJKoZIhvcNAQELBQADggEBACcF8I9pJ75v SK1lJVoU+7tM1ROyfpftl1Y54H1BdvVLYNNOpdAMXZLhBDSsIfxvUdc/EcpKCLj1 SrNuxSDeLn8IYWWBBuMhMmnre7DC728rvWArQdDgb3W4fprH12VoBRauNL+7QA1/ Gz9Pm92Nu+OQ9SliWJ2vHWnJ3cyYukdphvglN6igK6jrWXEdvzSK6+vjWTED4hXF E20gG1FQW1+Fo1RL6TTqYEFRBTv0mnGq0OaVixHgezL9KsjH+32JgXPEi33SaHm0 zpASQKIDkdNGmIKPLyVF+eP++WmrY9nrRXYXAGHqae++tFGqoNVFUPb+TX108mgQ senGj/+NdIk= -----END CERTIFICATE-----Generated at Thu May 15 14:31:47 2025 by rpki-client