$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/BB5954CE241111F094390A32C4F9AE02.roa File: BB5954CE241111F094390A32C4F9AE02.roa (raw, json) Hash identifier: amE47EhnSit+US/UtKoH9NH2bYhuMwqLRibNnGMwK/Q= Subject key identifier: D5:74:3B:ED:F2:58:D1:24:5D:66:65:0C:9C:1E:E2:0A:C2:1D:8B:93 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: 50 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/BB5954CE241111F094390A32C4F9AE02.roa Signing time: Mon 28 Apr 2025 09:18:23 +0000 ROA not before: Mon 28 Apr 2025 09:18:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140704 IP address blocks: 2001:df4:18c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Apr 28 09:18:23 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=680f47de-43f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:01:7b:fe:f2:ea:0e:0d:ff:2d:f0:a5:17: f2:e1:11:33:84:78:33:b3:e3:60:77:47:9a:79:64: 44:51:82:c4:6a:4d:ae:c3:e7:5f:d5:5d:86:a8:37: 0d:62:c8:bf:11:d7:a8:3a:a3:15:a5:25:a2:fd:a7: f2:c5:e0:80:17:f9:6e:39:e5:89:08:ad:45:5a:4d: c4:a4:f7:27:88:21:9a:6a:bd:70:03:1e:2f:e5:86: f7:c0:02:eb:25:71:cf:1d:39:ee:5d:23:24:6d:9b: 6e:ca:2c:04:99:c4:1e:93:d1:e0:23:64:17:6a:7f: 56:93:56:a0:01:07:32:71:12:fd:fb:0e:d5:e5:9d: fe:43:60:0a:f8:99:49:a8:d7:58:57:f9:a9:bb:27: 69:e7:ea:93:54:c7:98:88:6f:1c:81:de:4a:a5:53: 83:b8:bd:36:01:3f:03:49:b3:d4:3a:7a:70:21:37: b6:24:51:ca:41:15:95:be:3e:86:78:74:10:37:b1: 93:bf:06:18:ce:df:3a:74:1e:83:f4:f9:a9:63:6a: 73:69:16:93:cd:45:9f:97:63:49:f4:14:2e:11:dd: 9e:6d:6b:43:bf:71:c6:db:a5:a4:55:0e:f6:fe:6e: 9f:f5:30:e6:4f:f2:40:8c:08:5e:e2:41:46:d6:0a: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:74:3B:ED:F2:58:D1:24:5D:66:65:0C:9C:1E:E2:0A:C2:1D:8B:93 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/BB5954CE241111F094390A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:18c0::/48 Signature Algorithm: sha256WithRSAEncryption 0d:71:86:94:89:55:75:8a:c4:3f:96:b8:9b:6b:23:35:c8:96: 04:3c:bd:18:98:c5:aa:b4:28:67:e2:20:f1:3f:91:02:1e:e1: 89:35:3f:71:38:da:1c:02:84:64:97:f6:76:69:b3:a9:da:e5: f8:72:13:66:cc:ab:31:fd:9e:80:64:d4:de:38:66:74:f3:2c: 1d:5e:7b:02:ac:58:e7:f6:0a:76:fb:85:58:fd:03:a5:9f:ed: c9:e0:30:5d:ff:ec:62:b4:33:5d:fe:c5:09:05:8a:76:0d:64: 1a:53:a2:89:30:f0:79:52:dc:f3:76:3a:b0:f4:cd:a6:f3:34: 33:a8:75:c9:6c:bc:34:e6:aa:ae:40:ca:30:ca:5f:70:0f:a0: 3c:85:2d:f0:b5:6a:73:a6:eb:87:ed:17:2b:ea:fd:2a:56:a1: 45:9c:2c:18:f5:14:90:fc:bd:74:ab:e4:69:4b:3d:1c:ee:af: 55:0d:90:ce:65:2a:df:55:cd:99:50:89:d4:a2:34:a4:20:73: d0:75:7d:7a:8d:c3:e7:4c:ec:57:c2:fc:df:f6:f6:5c:3e:aa: 54:75:65:dd:39:4d:f9:87:95:94:9c:ce:35:93:00:0a:9f:d6: 0f:9d:ff:4b:5f:49:a3:04:6c:a8:2c:31:b3:31:1d:e1:71:09: 9c:99:e5:29 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUQ1MzExMC8GA1UEBRMoRDYyNzE2Rjc2MUYxODhENTZGQTExN0Y5REM5NEJFNDE0 MTA0QTY4MTAeFw0yNTA0MjgwOTE4MjNaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGY0N2RlLTQzZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd/AF7/vLqDg3/LfClF/LhETOEeDOz42B3R5p5ZERRgsRqTa7D51/VXYaoNw1i yL8R16g6oxWlJaL9p/LF4IAX+W455YkIrUVaTcSk9yeIIZpqvXADHi/lhvfAAusl cc8dOe5dIyRtm27KLASZxB6T0eAjZBdqf1aTVqABBzJxEv37DtXlnf5DYAr4mUmo 11hX+am7J2nn6pNUx5iIbxyB3kqlU4O4vTYBPwNJs9Q6enAhN7YkUcpBFZW+PoZ4 dBA3sZO/BhjO3zp0HoP0+aljanNpFpPNRZ+XY0n0FC4R3Z5ta0O/ccbbpaRVDvb+ bp/1MOZP8kCMCF7iQUbWCgPNAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU1XQ77fJY 0SRdZmUMnB7iCsIdi5MwHwYDVR0jBBgwFoAU1icW92HxiNVvoRf53JS+QUEEpoEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RDUzLzA1RkZDMDBFQUM4 NDExRUY4MjE0OTcyQkM0RjlBRTAyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBv RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWljVzkySHhpTlZ2b1JmNTNKUy1RVUVFcG9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi9CQjU5NTRDRTI0 MTExMUYwOTQzOTBBMzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQYwDANBgkqhkiG9w0BAQsFAAOCAQEADXGGlIlVdYrE P5a4m2sjNciWBDy9GJjFqrQoZ+Ig8T+RAh7hiTU/cTjaHAKEZJf2dmmzqdrl+HIT ZsyrMf2egGTU3jhmdPMsHV57AqxY5/YKdvuFWP0DpZ/tyeAwXf/sYrQzXf7FCQWK dg1kGlOiiTDweVLc83Y6sPTNpvM0M6h1yWy8NOaqrkDKMMpfcA+gPIUt8LVqc6br h+0XK+r9KlahRZwsGPUUkPy9dKvkaUs9HO6vVQ2QzmUq31XNmVCJ1KI0pCBz0HV9 eo3D50zsV8L83/b2XD6qVHVl3TlN+YeVlJzONZMACp/WD53/S19JowRsqCwxszEd 4XEJnJnlKQ== -----END CERTIFICATE-----Generated at Thu May 15 19:04:53 2025 by rpki-client