$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa File: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (raw, json) Hash identifier: +tAlw28NvGVDo5cCezaQKFVIMHfW8hqdMwBD9HYIeLs= Subject key identifier: BB:C9:43:11:EF:35:7B:A1:59:9F:D1:0A:DE:6B:EA:32:00:2C:1E:0F Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 28 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa Signing time: Wed 22 Jan 2025 13:00:13 +0000 ROA not before: Wed 22 Jan 2025 13:00:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135426 IP address blocks: 2401:bd60::/32 maxlen: 32 2401:bd60:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Jan 22 13:00:13 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6790ebdd-4e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:9d:18:a4:e1:f2:8b:d8:c6:31:74:94:53: 55:97:bc:35:d9:10:10:63:94:79:a2:0f:f3:09:14: 91:ae:dd:7a:aa:63:09:05:a8:0c:c1:40:26:5e:a7: fd:50:29:b6:09:b6:a2:c8:06:65:64:34:7d:06:10: c4:74:66:c0:68:74:86:e9:52:7e:6a:41:7c:45:de: 09:22:f6:a6:fd:ca:96:e8:58:bc:22:d1:4e:dc:36: 83:e9:0d:12:fe:3b:29:f9:78:7f:69:b8:8e:8d:a8: d1:3b:ad:3a:98:c4:f1:06:b7:31:ac:31:30:c5:48: c3:ba:0d:96:33:0e:3f:2f:d9:5c:d9:4d:81:fd:ea: 2c:04:e7:f3:87:68:f4:bd:c4:77:ff:3b:db:c3:4b: d3:e7:a8:7d:04:04:da:71:b2:bc:60:f3:26:b9:8f: 16:48:05:76:0d:63:23:86:1a:4a:3a:64:a4:88:0c: 4c:a6:79:7c:a1:44:eb:a7:64:00:90:24:0c:5e:e0: b0:4a:b4:5b:4a:38:44:24:58:10:0c:9d:b5:32:dd: c6:2c:57:80:ff:06:c2:71:9d:43:e5:15:7b:3a:e3: 5f:6e:69:0f:e3:49:87:bf:ef:55:77:ca:36:b9:48: fe:22:fb:70:db:b4:f5:5a:3d:d4:cf:2e:7d:c2:67: 12:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C9:43:11:EF:35:7B:A1:59:9F:D1:0A:DE:6B:EA:32:00:2C:1E:0F X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bd60::/32 Signature Algorithm: sha256WithRSAEncryption 89:72:2d:c3:ad:9f:6b:b4:73:e4:0a:86:d5:f3:a4:67:05:f5: 6e:0d:7b:a6:b0:d2:ab:84:1b:d8:cd:d7:76:00:bc:ff:e3:2c: e1:38:d1:d2:52:a7:3f:96:87:47:2b:b7:0a:80:f4:b7:20:10: e1:3a:3b:85:31:36:17:28:01:7c:d6:5e:35:17:b6:1c:d2:e0: f6:7e:6f:8c:b1:1d:72:3b:95:d7:7b:ff:a6:47:67:88:f9:08: cd:aa:86:bd:4d:a0:fd:e4:8c:dd:a5:75:36:6f:26:72:2e:d1: 86:85:15:a1:5d:4d:c2:e7:ba:71:31:ae:f3:f0:5f:2b:7a:ce: b7:9e:9e:3f:ec:93:55:48:ab:15:d9:77:da:6e:d7:96:ee:51: 27:f2:9b:fb:f8:de:10:3b:bf:23:23:c2:eb:60:7d:bc:6c:9c: e7:96:b9:d7:38:0b:0c:73:c1:df:01:7a:2c:69:c6:2b:0c:65: 6d:bd:6c:bf:0b:b0:40:b9:03:e0:72:67:59:b9:e3:a0:dc:95: 91:d8:c6:38:0c:47:ad:4c:65:79:ab:5a:2a:31:39:fe:74:0e: f9:e8:83:91:6f:82:06:32:ff:b7:0e:73:77:12:6f:10:52:99: 01:b9:df:11:3d:a4:4e:5c:30:c6:ea:65:2b:ad:47:b1:0c:38: 7b:20:64:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNTAxMjIxMzAwMTNaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTBlYmRkLTRlNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Jp0YpOHyi9jGMXSUU1WXvDXZEBBjlHmiD/MJFJGu3XqqYwkFqAzBQCZep/1Q KbYJtqLIBmVkNH0GEMR0ZsBodIbpUn5qQXxF3gki9qb9ypboWLwi0U7cNoPpDRL+ Oyn5eH9puI6NqNE7rTqYxPEGtzGsMTDFSMO6DZYzDj8v2VzZTYH96iwE5/OHaPS9 xHf/O9vDS9PnqH0EBNpxsrxg8ya5jxZIBXYNYyOGGko6ZKSIDEymeXyhROunZACQ JAxe4LBKtFtKOEQkWBAMnbUy3cYsV4D/BsJxnUPlFXs6419uaQ/jSYe/71V3yja5 SP4i+3DbtPVaPdTPLn3CZxLzAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUu8lDEe81 e6FZn9EK3mvqMgAsHg8wHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTk0MS85QjNEMjU0OEEwQTAxMUVGOTA1MjMyNUZDNEY5QUUwMi80OEE1RkNBNEEw QTIxMUVGODFGQTY4NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBvWAwDQYJKoZIhvcNAQELBQADggEBAIlyLcOtn2u0c+QK htXzpGcF9W4Ne6aw0quEG9jN13YAvP/jLOE40dJSpz+Wh0crtwqA9LcgEOE6O4Ux NhcoAXzWXjUXthzS4PZ+b4yxHXI7ldd7/6ZHZ4j5CM2qhr1NoP3kjN2ldTZvJnIu 0YaFFaFdTcLnunExrvPwXyt6zreenj/sk1VIqxXZd9pu15buUSfym/v43hA7vyMj wutgfbxsnOeWudc4Cwxzwd8BeixpxisMZW29bL8LsEC5A+ByZ1m546DclZHYxjgM R61MZXmrWioxOf50Dvnog5FvggYy/7cOc3cSbxBSmQG53xE9pE5cMMbqZSutR7EM OHsgZJE= -----END CERTIFICATE-----Generated at Sat May 17 07:12:54 2025 by rpki-client