$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa File: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (raw, json) Hash identifier: da2ZawdG5alxBTyeAyi7NwDwyDeUsxgI6h/wI95o9Ho= Subject key identifier: C7:7C:C1:C3:40:C3:5D:96:1E:DD:DE:18:64:C7:E3:5F:81:FB:38:06 Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 0108 Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa Signing time: Tue 13 May 2025 04:55:30 +0000 ROA not before: Tue 13 May 2025 04:55:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152322 IP address blocks: 2001:df3:5ac0::/49 maxlen: 49 2001:df3:5ac0:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: May 13 04:55:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6822d0c1-4c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:63:4d:01:fa:9b:62:1e:00:39:61:1b:45: bd:d3:ee:08:06:0c:d8:1c:62:f8:88:27:a1:99:7d: de:60:5d:33:eb:08:cd:91:36:31:05:c8:61:b6:11: 5c:5c:96:73:9e:ee:a5:02:f7:91:53:1e:b2:86:59: 97:9f:1d:19:1c:a4:82:18:6a:f0:d4:63:32:6b:55: f6:15:ae:a8:5f:04:9a:bf:65:67:8c:61:10:65:73: d1:a1:b5:38:28:f2:94:58:68:d2:6f:0a:89:9f:a4: a1:e9:b1:02:0f:f6:50:95:c8:24:bf:b8:64:2e:fe: 30:73:8d:9d:32:68:97:ca:46:ee:e0:45:02:19:37: 5b:a1:d8:68:6e:34:6b:71:93:f2:d7:08:fe:85:3f: c8:ac:ba:42:85:80:60:6c:47:40:17:0d:3b:39:7e: 10:64:91:93:8f:eb:16:5e:c4:31:7b:84:79:d8:42: 30:3f:59:32:7e:d4:19:c4:d9:f7:93:54:5b:b1:05: 1e:d6:31:6f:06:48:31:94:e5:ea:81:ea:3d:ae:40: 7d:3a:48:91:38:8a:ef:5b:36:7a:2d:8e:8a:39:01: 23:0f:36:c3:c3:26:02:6e:23:fc:6f:14:ad:c9:99: 88:09:76:27:c8:ff:da:d3:8c:33:29:dd:8a:68:ce: bb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7C:C1:C3:40:C3:5D:96:1E:DD:DE:18:64:C7:E3:5F:81:FB:38:06 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5ac0::/48 Signature Algorithm: sha256WithRSAEncryption d5:66:57:e6:2d:77:6c:6d:c6:78:fb:ab:66:cc:6b:b2:13:ad: 4e:ec:2e:4f:35:66:10:8d:72:c2:94:e8:89:50:10:e6:cc:5f: d9:e3:8a:6e:23:59:6b:76:9e:f5:e9:d6:86:d6:dd:f1:bc:06: 02:21:12:3b:e2:d6:13:cd:f3:f8:53:3a:c4:8a:35:b9:e9:83: 44:bb:3f:32:e0:86:12:8e:90:2c:10:f6:0d:5f:b7:a4:56:cc: 89:45:24:98:9d:68:45:31:2d:e9:cc:21:30:4c:25:b6:6d:69: 50:74:91:58:5e:4c:f0:d7:b6:fd:b5:d6:19:c6:a5:2e:b6:03: 48:0f:3e:b2:5c:5f:23:b9:ac:9e:77:eb:5e:b8:51:ef:f5:2e: 70:02:59:25:0a:c4:3f:f7:54:bc:f9:52:2b:33:4b:60:b1:9b: 39:18:89:9c:9e:18:91:5d:05:df:18:c7:3a:0b:90:0d:06:24: 26:6e:05:00:07:68:16:4f:66:ac:ee:c6:3f:23:55:54:e1:1d: 3e:1c:1c:e9:8d:86:86:62:23:c9:69:83:cd:8e:cd:d7:a1:d5: 28:38:b1:c5:e9:0b:d8:1e:bc:c6:0d:a8:4c:29:47:33:e7:38: 16:61:f9:65:8c:71:28:4b:85:9c:8d:eb:98:cd:c4:8c:bf:4c: 40:9c:8d:9b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjUwNTEzMDQ1NTMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyZDBjMS00YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvRjTQH6m2IeADlhG0W90+4IBgzYHGL4iCehmX3eYF0z6wjNkTYxBchhthFc XJZznu6lAveRUx6yhlmXnx0ZHKSCGGrw1GMya1X2Fa6oXwSav2VnjGEQZXPRobU4 KPKUWGjSbwqJn6Sh6bECD/ZQlcgkv7hkLv4wc42dMmiXykbu4EUCGTdbodhobjRr cZPy1wj+hT/IrLpChYBgbEdAFw07OX4QZJGTj+sWXsQxe4R52EIwP1kyftQZxNn3 k1RbsQUe1jFvBkgxlOXqgeo9rkB9OkiROIrvWzZ6LY6KOQEjDzbDwyYCbiP8bxSt yZmICXYnyP/a04wzKd2KaM67CwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMd8wcNA w12WHt3eGGTH41+B+zgGMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMzkvRkVGNTQ5RThBRjE2MTFFRThDNDhBNzREQzRGOUFFMDIvQUE3NzhGNENB RjhBMTFFRUIxNjdEQjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zWsAwDQYJKoZIhvcNAQELBQADggEBANVmV+Ytd2xt xnj7q2bMa7ITrU7sLk81ZhCNcsKU6IlQEObMX9njim4jWWt2nvXp1obW3fG8BgIh Ejvi1hPN8/hTOsSKNbnpg0S7PzLghhKOkCwQ9g1ft6RWzIlFJJidaEUxLenMITBM JbZtaVB0kVheTPDXtv211hnGpS62A0gPPrJcXyO5rJ536164Ue/1LnACWSUKxD/3 VLz5UiszS2CxmzkYiZyeGJFdBd8YxzoLkA0GJCZuBQAHaBZPZqzuxj8jVVThHT4c HOmNhoZiI8lpg82Ozdeh1Sg4scXpC9gevMYNqEwpRzPnOBZh+WWMcShLhZyN65jN xIy/TECcjZs= -----END CERTIFICATE-----Generated at Tue May 13 19:19:01 2025 by rpki-client