$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/3D331986E17211EFA5959B2FC4F9AE02.roa File: 3D331986E17211EFA5959B2FC4F9AE02.roa (raw, json) Hash identifier: pOsL4nJKiT9Wc01cD2wPZO+WlYtBX9ZtStyQuOwRJu4= Subject key identifier: 99:9F:A6:27:BF:1F:28:29:66:17:87:7E:EB:8C:E6:C5:CB:4C:C3:12 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 027C Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/3D331986E17211EFA5959B2FC4F9AE02.roa Signing time: Fri 09 May 2025 02:00:16 +0000 ROA not before: Fri 09 May 2025 02:00:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133504 IP address blocks: 2401:93e0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: May 9 02:00:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d61b0-7c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:94:04:fe:83:c7:96:1c:19:99:ed:b4:87:ff: 12:02:69:b8:96:e5:04:bf:09:25:62:62:80:7f:bd: a4:fd:d1:79:6c:59:15:78:2f:ca:93:d3:6d:c6:15: b2:59:5c:9f:4d:62:12:b2:57:e0:de:0f:0e:60:7b: d2:83:66:8e:f5:4b:ba:94:71:81:e0:e1:81:43:ee: 40:2e:3a:b8:01:ac:1f:25:ff:12:b0:38:44:2e:55: 8a:6f:88:54:63:77:32:a3:18:9d:b4:1f:55:7f:e3: 3e:c8:9d:00:af:1b:66:e7:3e:b5:36:d8:59:93:0d: 30:6d:cc:e5:a6:ac:63:e5:76:f5:bc:59:49:58:49: eb:70:a8:f1:a5:51:6a:00:db:2f:62:65:28:54:ac: cc:66:44:44:47:de:0d:ba:80:38:2a:2d:ed:a2:d9: 8c:be:96:e8:0a:e0:dd:79:e3:59:7a:0e:77:78:57: 3e:6d:18:1b:e6:6c:be:9d:52:9a:9b:26:8d:1b:3e: 68:fa:80:e8:ee:3d:db:8d:ed:b4:97:91:84:6b:48: 66:88:a3:ff:b5:8d:91:8c:92:e4:54:5e:e5:51:f6: 20:dd:f0:fa:23:7c:c9:22:de:61:ce:06:18:cf:f7: 63:05:5d:0d:cc:7f:01:48:ee:30:7a:cb:c3:e3:57: c3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9F:A6:27:BF:1F:28:29:66:17:87:7E:EB:8C:E6:C5:CB:4C:C3:12 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/3D331986E17211EFA5959B2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:93e0:5::/48 Signature Algorithm: sha256WithRSAEncryption 2a:3b:79:e5:16:ee:5a:56:34:ea:ae:71:f0:d2:7b:05:cb:8a: b8:e9:77:51:c8:79:62:55:e3:83:60:d5:09:86:e6:fb:04:f7: 66:c0:99:c1:c2:fd:12:9e:be:59:c7:02:f7:ac:32:1e:d6:fb: 90:5e:a7:60:52:a6:da:f4:e5:f8:38:6e:36:87:70:a4:49:bc: ff:57:10:12:6a:d4:34:fb:8c:36:5d:1d:72:8b:9b:53:8a:8a: f4:88:82:5b:a8:dd:fd:9f:0a:2b:e3:6b:18:f9:16:97:08:ea: 72:31:eb:35:6d:86:17:57:0e:8e:9c:91:ba:51:84:08:97:d0: f9:85:db:a8:4d:c2:43:1d:20:df:8e:7b:ca:40:50:4c:53:01: 3d:bb:ed:e1:a5:24:0f:39:a3:2b:5c:68:db:93:90:36:82:90: e1:bb:04:68:05:22:d3:e0:ef:c7:d3:9f:8d:75:92:c0:e9:16: e9:6d:ea:d7:26:28:9c:ef:b0:bd:4a:ae:d1:8f:c8:f2:53:ba: 5e:55:4a:8a:ce:19:4f:b9:3c:7d:58:04:f6:50:6a:3b:85:de: 2a:f5:d3:9f:7a:f4:c7:33:24:b6:59:30:32:24:f7:32:0b:b2: 4c:5e:6c:20:b5:35:51:2d:0c:4c:60:93:4d:76:28:3b:73:53: 05:bf:78:1b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUwNTA5MDIwMDE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNjFiMC03YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJQE/oPHlhwZme20h/8SAmm4luUEvwklYmKAf72k/dF5bFkVeC/Kk9NtxhWy WVyfTWISslfg3g8OYHvSg2aO9Uu6lHGB4OGBQ+5ALjq4AawfJf8SsDhELlWKb4hU Y3cyoxidtB9Vf+M+yJ0Arxtm5z61NthZkw0wbczlpqxj5Xb1vFlJWEnrcKjxpVFq ANsvYmUoVKzMZkRER94NuoA4Ki3totmMvpboCuDdeeNZeg53eFc+bRgb5my+nVKa myaNGz5o+oDo7j3bje20l5GEa0hmiKP/tY2RjJLkVF7lUfYg3fD6I3zJIt5hzgYY z/djBV0NzH8BSO4wesvD41fD8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJmfpie/ HygpZheHfuuM5sXLTMMSMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNBQjMvMDVFRDk0Q0UxOTRDMTFFREFEMzhGMjJCQzRGOUFFMDIvM0QzMzE5ODZF MTcyMTFFRkE1OTU5QjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAZPgAAUwDQYJKoZIhvcNAQELBQADggEBACo7eeUW7lpW NOqucfDSewXLirjpd1HIeWJV44Ng1QmG5vsE92bAmcHC/RKevlnHAvesMh7W+5Be p2BSptr05fg4bjaHcKRJvP9XEBJq1DT7jDZdHXKLm1OKivSIgluo3f2fCivjaxj5 FpcI6nIx6zVthhdXDo6ckbpRhAiX0PmF26hNwkMdIN+Oe8pAUExTAT277eGlJA85 oytcaNuTkDaCkOG7BGgFItPg78fTn411ksDpFult6tcmKJzvsL1KrtGPyPJTul5V SorOGU+5PH1YBPZQajuF3ir105969MczJLZZMDIk9zILskxebCC1NVEtDExgk012 KDtzUwW/eBs= -----END CERTIFICATE-----Generated at Wed May 14 03:14:34 2025 by rpki-client