$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/F3997FACE21D11EFA5819B7EC4F9AE02.roa File: F3997FACE21D11EFA5819B7EC4F9AE02.roa (raw, json) Hash identifier: YJknqh8T+qXW11AGQpkWixPSeb/oim2jtPvDZDC0Y5M= Subject key identifier: 9A:CB:23:8B:A9:C7:56:C9:E3:E3:61:F3:C2:77:22:52:57:3B:0F:C7 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 027E Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/F3997FACE21D11EFA5819B7EC4F9AE02.roa Signing time: Fri 09 May 2025 02:00:18 +0000 ROA not before: Fri 09 May 2025 02:00:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152599 IP address blocks: 2001:df0:9840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: May 9 02:00:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d61b2-fa6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:9f:ce:12:26:56:9f:8f:e5:d6:69:0c:0e: db:bd:55:fd:88:64:37:95:13:19:f5:40:cd:7a:36: 88:0b:4c:63:a2:5e:48:c9:c4:c9:40:38:67:2e:00: 1b:fb:21:45:aa:5f:16:ab:e9:45:cb:71:8c:d4:9a: 1c:94:71:02:a6:3c:ff:0e:d1:2a:22:c4:41:46:fb: a4:7f:39:57:8b:f7:24:76:3f:63:81:12:3c:f7:1b: 88:41:20:58:c9:48:66:be:7b:1b:1c:b5:a5:de:1c: 1d:1d:f7:c7:8d:c4:55:ad:5e:45:38:cf:05:ef:cc: c2:35:3a:c2:ab:b4:36:3b:cc:31:f6:7d:03:7a:c6: 95:15:7d:71:84:4a:fb:94:f4:fa:e4:51:e3:f0:45: 03:6e:a4:86:21:21:5c:69:f2:63:dc:37:c8:c1:c8: b6:c7:ac:5d:96:0b:1c:36:7c:e1:42:41:c0:e1:66: f2:6b:4c:9d:fa:25:46:75:08:49:78:b8:b6:d2:0a: 75:ec:d2:93:b2:aa:71:a8:4e:18:d9:cb:f8:8e:d6: 73:03:56:97:f4:82:22:ac:b0:d8:17:07:a7:b8:aa: 17:62:a6:5c:30:a9:4e:49:40:a9:5c:7d:f8:5d:c2: 2e:84:71:93:1b:e2:5b:60:f2:99:16:12:ef:9e:e3: 25:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CB:23:8B:A9:C7:56:C9:E3:E3:61:F3:C2:77:22:52:57:3B:0F:C7 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/F3997FACE21D11EFA5819B7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:9840::/48 Signature Algorithm: sha256WithRSAEncryption 61:0c:9b:7b:ae:50:44:0e:2d:b4:cd:6c:36:87:71:db:76:46: 92:ee:47:2f:2b:bb:5f:c1:73:e6:2c:6a:fc:8b:7d:7e:1e:e4: 60:60:fd:cd:be:d4:21:a1:1a:b6:ea:0d:e9:44:43:b6:d5:f7: a8:c8:c1:24:0a:72:8e:ec:9d:cb:b9:ee:e5:43:7c:6a:35:38: 9a:c4:b2:83:37:d1:2f:b2:a6:59:80:9e:e1:2d:28:a7:89:28: 10:b7:cd:3b:4a:fc:27:b0:64:3b:25:61:70:24:4d:af:ba:96: 46:44:26:75:92:05:7f:db:a2:64:16:1a:f9:a6:1c:4b:af:cf: cc:84:1b:96:cb:50:aa:d3:15:a0:4e:fb:44:4c:9e:04:e8:55: b2:82:3f:62:73:cb:36:26:04:23:bb:f7:76:57:c0:d7:74:ba: 4f:54:1e:a0:ce:2d:2b:cd:22:1f:4a:ae:97:2d:a0:18:97:f0: da:18:2b:6b:f3:63:94:d5:36:b9:11:24:33:1e:db:5e:78:1a: 46:ad:7d:ac:07:df:d1:4d:0a:ca:a6:16:07:c3:cc:1a:77:94: 1e:1d:d6:28:df:4c:dd:be:76:2d:38:68:2a:75:1f:ca:ce:e1: be:f3:0d:df:25:9d:08:39:31:23:5e:ab:fa:18:e3:53:67:e7: 99:70:51:cb -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUwNTA5MDIwMDE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNjFiMi1mYTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjSfzhImVp+P5dZpDA7bvVX9iGQ3lRMZ9UDNejaIC0xjol5IycTJQDhnLgAb +yFFql8Wq+lFy3GM1JoclHECpjz/DtEqIsRBRvukfzlXi/ckdj9jgRI89xuIQSBY yUhmvnsbHLWl3hwdHffHjcRVrV5FOM8F78zCNTrCq7Q2O8wx9n0DesaVFX1xhEr7 lPT65FHj8EUDbqSGISFcafJj3DfIwci2x6xdlgscNnzhQkHA4Wbya0yd+iVGdQhJ eLi20gp17NKTsqpxqE4Y2cv4jtZzA1aX9IIirLDYFwenuKoXYqZcMKlOSUCpXH34 XcIuhHGTG+JbYPKZFhLvnuMlvwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJrLI4up x1bJ4+Nh88J3IlJXOw/HMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNBQjMvMDVFRDk0Q0UxOTRDMTFFREFEMzhGMjJCQzRGOUFFMDIvRjM5OTdGQUNF MjFEMTFFRkE1ODE5QjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wmEAwDQYJKoZIhvcNAQELBQADggEBAGEMm3uuUEQO LbTNbDaHcdt2RpLuRy8ru1/Bc+YsavyLfX4e5GBg/c2+1CGhGrbqDelEQ7bV96jI wSQKco7sncu57uVDfGo1OJrEsoM30S+yplmAnuEtKKeJKBC3zTtK/CewZDslYXAk Ta+6lkZEJnWSBX/bomQWGvmmHEuvz8yEG5bLUKrTFaBO+0RMngToVbKCP2JzyzYm BCO793ZXwNd0uk9UHqDOLSvNIh9KrpctoBiX8NoYK2vzY5TVNrkRJDMe2154Gkat fawH39FNCsqmFgfDzBp3lB4d1ijfTN2+di04aCp1H8rO4b7zDd8lnQg5MSNeq/oY 41Nn55lwUcs= -----END CERTIFICATE-----Generated at Wed May 14 15:09:19 2025 by rpki-client