$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa File: C4A33CA4275711F0BA7C7752C4F9AE02.roa (raw, json) Hash identifier: UodVJEZpG8jo//8K6ghcq6/5J2v+GWRbykcw2y9KJwI= Subject key identifier: 5D:78:7F:B0:C7:A2:D9:B8:E4:04:8D:E3:95:88:68:1F:62:23:22:84 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 49 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa Signing time: Fri 02 May 2025 13:17:16 +0000 ROA not before: Fri 02 May 2025 13:17:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153581 IP address blocks: 2001:df5:11c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: May 2 13:17:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6814c5dc-eda7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:46:c2:74:2c:44:99:a9:03:81:65:06:36:e6: 10:b9:bb:d2:3e:2d:13:5d:eb:60:47:1f:4a:95:bb: 3b:59:c8:03:f1:37:fc:44:5f:4f:07:c0:8a:e0:97: 76:e7:4f:cb:cb:13:e2:36:73:47:8b:c8:47:df:a5: 31:62:4b:47:53:d4:b0:98:de:9a:c8:b2:49:9a:b7: eb:48:87:fe:70:db:25:2b:9e:8b:70:4c:fb:54:4d: 44:93:21:2d:1d:0f:a5:7f:88:b1:5f:55:77:28:5e: 38:14:23:ad:f9:3b:a1:a4:ed:16:4b:59:dd:7d:63: 4a:30:7c:fc:fb:dd:aa:3d:1f:b1:51:64:68:3e:a3: 14:c6:8f:d9:df:78:a5:f1:1a:9f:c5:a2:b5:a8:9f: 77:04:f8:90:bf:2e:a9:ab:7e:e3:0a:6a:0e:c7:83: ca:06:c6:3f:d9:2d:33:9e:85:de:4e:4b:99:cf:42: c0:1b:a2:98:89:bf:c8:c7:98:56:e8:9b:57:65:43: bb:84:10:0e:70:44:90:f3:42:13:eb:07:ee:81:83: 2c:7b:d5:c0:be:12:f4:91:42:d6:24:2d:a1:09:dd: d7:02:07:95:41:07:0f:50:29:4b:31:f9:0c:01:be: 96:27:a5:cc:08:5f:11:c7:6e:7b:cf:41:83:95:66: e2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:78:7F:B0:C7:A2:D9:B8:E4:04:8D:E3:95:88:68:1F:62:23:22:84 X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:11c0::/48 Signature Algorithm: sha256WithRSAEncryption 4d:95:a8:b0:60:77:47:30:a7:bd:01:18:e3:27:53:60:25:54: a8:b7:5e:b0:8d:c5:0f:44:55:56:5a:9e:c3:b7:d5:9f:4d:24: 3e:d8:f2:dc:ea:32:63:73:03:fe:9c:2a:49:a5:72:d8:ed:71: dc:c6:d6:5c:bf:0a:5e:5d:32:81:fb:89:b3:3d:d5:8b:28:d6: aa:bf:60:86:05:14:41:45:ab:62:aa:33:12:fa:54:d7:59:4b: 02:03:21:2e:29:d5:ad:7f:68:5c:11:14:4d:dc:9d:45:e4:88: 39:86:40:99:75:57:86:15:3f:b9:b7:5a:34:50:c5:7f:e5:8a: 0d:34:d1:5f:22:eb:ad:0e:0c:c7:28:4a:ca:81:9a:22:8a:a0: 4c:0d:b0:86:b8:d3:0d:c2:7f:de:04:a6:90:61:f7:11:b0:ae: 4c:dd:1f:45:6e:96:6a:4c:e1:3b:1a:41:36:ea:af:b7:8a:4b: 4d:15:b7:14:cf:79:48:b0:09:b5:ef:11:b4:ae:ae:76:b1:ea: 51:f8:fc:81:6a:ca:2b:5d:17:28:e9:b6:41:4c:db:15:df:2b: 66:ee:86:76:e5:57:18:7e:03:43:21:e5:bd:77:fa:c6:63:f8: b7:bc:2e:04:53:03:fc:65:8b:d3:28:a7:1b:ff:43:4c:3d:08: 8f:b8:be:4e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA1MDIxMzE3MTZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTRjNWRjLWVkYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtRsJ0LESZqQOBZQY25hC5u9I+LRNd62BHH0qVuztZyAPxN/xEX08HwIrgl3bn T8vLE+I2c0eLyEffpTFiS0dT1LCY3prIskmat+tIh/5w2yUrnotwTPtUTUSTIS0d D6V/iLFfVXcoXjgUI635O6Gk7RZLWd19Y0owfPz73ao9H7FRZGg+oxTGj9nfeKXx Gp/ForWon3cE+JC/LqmrfuMKag7Hg8oGxj/ZLTOehd5OS5nPQsAbopiJv8jHmFbo m1dlQ7uEEA5wRJDzQhPrB+6Bgyx71cC+EvSRQtYkLaEJ3dcCB5VBBw9QKUsx+QwB vpYnpcwIXxHHbnvPQYOVZuIrAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUXXh/sMei 2bjkBI3jlYhoH2IjIoQwHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REVFQi8xRUU3RkE2MEU1RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi9DNEEzM0NBNDI3 NTcxMUYwQkE3Qzc3NTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfURwDANBgkqhkiG9w0BAQsFAAOCAQEATZWosGB3RzCn vQEY4ydTYCVUqLdesI3FD0RVVlqew7fVn00kPtjy3OoyY3MD/pwqSaVy2O1x3MbW XL8KXl0ygfuJsz3ViyjWqr9ghgUUQUWrYqozEvpU11lLAgMhLinVrX9oXBEUTdyd ReSIOYZAmXVXhhU/ubdaNFDFf+WKDTTRXyLrrQ4MxyhKyoGaIoqgTA2whrjTDcJ/ 3gSmkGH3EbCuTN0fRW6WakzhOxpBNuqvt4pLTRW3FM95SLAJte8RtK6udrHqUfj8 gWrKK10XKOm2QUzbFd8rZu6GduVXGH4DQyHlvXf6xmP4t7wuBFMD/GWL0yinG/9D TD0Ij7i+Tg== -----END CERTIFICATE-----Generated at Wed May 14 21:03:18 2025 by rpki-client