$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/5C925054E06811EF895B471EC4F9AE02.roa File: 5C925054E06811EF895B471EC4F9AE02.roa (raw, json) Hash identifier: WJ6jshg1hMuefWZWAvCq9BHL/JR2w7ml13fnTUu4Jz8= Subject key identifier: 5B:83:4F:BD:08:43:03:54:EC:A0:DE:97:A3:CE:73:D3:EA:02:DC:35 Certificate issuer: /CN=A91C5413/serialNumber=5F9999CDA64A2A1A662E54E61A1D5798C688CCC3 Certificate serial: 4E Authority key identifier: 5F:99:99:CD:A6:4A:2A:1A:66:2E:54:E6:1A:1D:57:98:C6:88:CC:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5mZzaZKKhpmLlTmGh1XmMaIzMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/5C925054E06811EF895B471EC4F9AE02.roa Signing time: Mon 28 Apr 2025 23:03:09 +0000 ROA not before: Mon 28 Apr 2025 23:03:09 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 137480 IP address blocks: 2402:8440::/32 maxlen: 32 2402:8440::/48 maxlen: 48 2402:8440:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/X5mZzaZKKhpmLlTmGh1XmMaIzMM.crl rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/X5mZzaZKKhpmLlTmGh1XmMaIzMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5mZzaZKKhpmLlTmGh1XmMaIzMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5413, serialNumber=5F9999CDA64A2A1A662E54E61A1D5798C688CCC3 Validity Not Before: Apr 28 23:03:09 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=6810092d-25c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6f:12:03:16:89:72:0c:35:da:9c:33:3f:56: 7a:5f:33:e4:fa:ab:d1:fe:97:db:cf:a4:01:a5:c0: 54:f3:f5:f4:eb:47:ad:f3:7d:aa:b1:f6:12:35:ba: 6a:52:36:7f:57:ef:bc:04:6d:d4:0d:f8:0f:53:3f: 94:15:35:c7:77:6b:0e:8e:9c:80:6e:e3:8c:a9:08: c4:44:ae:50:dc:5a:42:79:13:23:ad:f4:6f:bf:cf: 88:2d:72:4b:39:ef:e7:ee:90:89:74:75:99:d0:c4: a9:56:29:9a:a8:4e:3e:68:79:48:17:00:c8:96:43: 9c:55:e8:7e:e8:51:13:cd:9e:72:18:25:21:f3:19: f9:9b:04:e2:5c:58:bb:f2:35:db:01:4e:07:98:d7: c8:dd:59:be:90:4a:e5:ec:72:bc:82:b9:5f:3e:22: 1f:18:f7:1d:8d:c8:d6:ef:30:89:cf:8d:28:a0:9d: 38:06:de:33:43:37:2d:27:00:14:a1:76:0f:63:d5: 67:18:79:0c:c9:a5:9d:89:4d:c9:49:1f:da:8c:7c: 3f:19:81:81:7b:74:b7:d1:a3:b2:3f:b8:09:91:29: c2:0c:05:3a:35:83:58:17:1e:9a:6e:af:3a:27:d1: 1f:e6:4f:b1:75:41:82:36:0d:85:5c:e1:72:ff:a6: b2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:83:4F:BD:08:43:03:54:EC:A0:DE:97:A3:CE:73:D3:EA:02:DC:35 X509v3 Authority Key Identifier: keyid:5F:99:99:CD:A6:4A:2A:1A:66:2E:54:E6:1A:1D:57:98:C6:88:CC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/X5mZzaZKKhpmLlTmGh1XmMaIzMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X5mZzaZKKhpmLlTmGh1XmMaIzMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5413/DF99A1E87BE811EB9A092342C4F9AE02/5C925054E06811EF895B471EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:8440::/32 Signature Algorithm: sha256WithRSAEncryption 00:f1:51:4f:92:68:98:f9:01:d5:5c:e0:5d:9b:13:17:ae:31: f2:09:b2:f5:67:2e:a7:14:e6:77:b6:29:70:af:9b:6e:74:8e: ff:61:ad:78:89:86:8b:e8:34:b3:e8:84:96:34:f5:28:cd:35: a8:bf:1a:d0:bb:16:76:08:ba:11:f0:3d:7e:c8:02:41:b0:25: 7e:92:d9:83:75:c5:d3:a3:28:28:25:e1:12:ec:22:16:b6:76: c8:e2:9e:5f:a1:a2:4b:f9:ad:c1:11:bb:b6:9a:98:27:5a:06: b8:eb:63:6c:b0:18:a3:cb:74:c0:f4:89:0e:b3:12:a9:a6:a2: dd:c9:53:9d:60:cc:22:04:59:ec:8f:d3:39:82:a3:f3:98:0d: b9:62:c3:f3:6f:19:a3:03:38:e5:3f:6c:78:b5:81:7c:e7:26: e2:14:54:db:c1:cf:be:3a:cc:83:34:f2:3a:e8:8f:9a:b3:fe: 15:61:01:52:4c:a7:8c:06:73:fc:be:5d:02:df:73:2d:c6:39: e4:0b:02:7b:7c:d6:bf:a7:a6:03:1b:0f:b5:56:a4:8e:12:c7: f5:3e:0a:83:90:09:22:0d:e1:cc:01:8f:f6:46:e2:a4:6a:a1: 36:7c:4d:d0:d4:7d:c3:05:ba:c3:be:5a:af:8c:c1:16:5a:f5: 3f:61:1f:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTQxMzExMC8GA1UEBRMoNUY5OTk5Q0RBNjRBMkExQTY2MkU1NEU2MUExRDU3OThD Njg4Q0NDMzAeFw0yNTA0MjgyMzAzMDlaFw0yNTA4MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTAwOTJkLTI1YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQbxIDFolyDDXanDM/VnpfM+T6q9H+l9vPpAGlwFTz9fTrR63zfaqx9hI1umpS Nn9X77wEbdQN+A9TP5QVNcd3aw6OnIBu44ypCMRErlDcWkJ5EyOt9G+/z4gtcks5 7+fukIl0dZnQxKlWKZqoTj5oeUgXAMiWQ5xV6H7oURPNnnIYJSHzGfmbBOJcWLvy NdsBTgeY18jdWb6QSuXscryCuV8+Ih8Y9x2NyNbvMInPjSignTgG3jNDNy0nABSh dg9j1WcYeQzJpZ2JTclJH9qMfD8ZgYF7dLfRo7I/uAmRKcIMBTo1g1gXHppurzon 0R/mT7F1QYI2DYVc4XL/prLFAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUW4NPvQhD A1TsoN6Xo85z0+oC3DUwHwYDVR0jBBgwFoAUX5mZzaZKKhpmLlTmGh1XmMaIzMMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NDEzL0RGOTlBMUU4N0JF ODExRUI5QTA5MjM0MkM0RjlBRTAyL1g1bVp6YVpLS2hwbUxsVG1HaDFYbU1hSXpN TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDVtWnphWktLaHBtTGxUbUdoMVhtTWFJek1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTQxMy9ERjk5QTFFODdCRTgxMUVCOUEwOTIzNDJDNEY5QUUwMi81QzkyNTA1NEUw NjgxMUVGODk1QjQ3MUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQChEAwDQYJKoZIhvcNAQELBQADggEBAADxUU+SaJj5AdVc 4F2bExeuMfIJsvVnLqcU5ne2KXCvm250jv9hrXiJhovoNLPohJY09SjNNai/GtC7 FnYIuhHwPX7IAkGwJX6S2YN1xdOjKCgl4RLsIha2dsjinl+hokv5rcERu7aamCda BrjrY2ywGKPLdMD0iQ6zEqmmot3JU51gzCIEWeyP0zmCo/OYDbliw/NvGaMDOOU/ bHi1gXznJuIUVNvBz746zIM08jroj5qz/hVhAVJMp4wGc/y+XQLfcy3GOeQLAnt8 1r+npgMbD7VWpI4Sx/U+CoOQCSIN4cwBj/ZG4qRqoTZ8TdDUfcMFusO+Wq+MwRZa 9T9hH6g= -----END CERTIFICATE-----Generated at Sun May 11 22:00:42 2025 by rpki-client