$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/F29967B22B0011F0B0319E61C4F9AE02.roa File: F29967B22B0011F0B0319E61C4F9AE02.roa (raw, json) Hash identifier: AWipWCwfBJg9FTHPHDUNW5DfQTImAx6KbbjHRDTBNc8= Subject key identifier: 86:DE:DE:57:AE:79:DB:5D:7D:B2:86:2F:86:1B:CC:CE:37:D2:8D:E4 Certificate issuer: /CN=A91DD4A6/serialNumber=17004AA33105B0A0E6D3EB4E47C513063D92CEC2 Certificate serial: 0445 Authority key identifier: 17:00:4A:A3:31:05:B0:A0:E6:D3:EB:4E:47:C5:13:06:3D:92:CE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FwBKozEFsKDm0-tOR8UTBj2SzsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/F29967B22B0011F0B0319E61C4F9AE02.roa Signing time: Wed 07 May 2025 05:06:07 +0000 ROA not before: Wed 07 May 2025 05:06:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56209 IP address blocks: 2406:2100::/32 maxlen: 32 2406:2100::/48 maxlen: 48 2406:2100:1::/48 maxlen: 48 2406:2100:2::/48 maxlen: 48 2406:2100:3::/48 maxlen: 48 2406:2100:4::/48 maxlen: 48 2406:2100:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/FwBKozEFsKDm0-tOR8UTBj2SzsI.crl rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/FwBKozEFsKDm0-tOR8UTBj2SzsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FwBKozEFsKDm0-tOR8UTBj2SzsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD4A6, serialNumber=17004AA33105B0A0E6D3EB4E47C513063D92CEC2 Validity Not Before: May 7 05:06:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681aea3f-1376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d7:f7:e4:95:98:7d:e0:e7:de:f0:71:6f:ae: 41:ce:7d:5e:5c:86:b5:f7:47:56:33:be:2c:7c:3c: 4b:8f:c1:85:a0:dd:0f:81:d2:ac:43:ca:c9:11:8f: 7d:71:a6:f9:0a:a1:1a:b5:8b:84:e5:0b:88:86:b6: 63:f1:02:ea:3c:7c:35:19:7f:ba:d2:e2:05:c5:95: 94:4f:a5:e3:65:42:62:66:c4:c1:14:7e:f7:d2:db: c8:11:c9:ff:5b:4f:f1:3b:37:ff:44:d6:e0:98:67: 9e:de:2a:07:9f:08:ef:dd:11:32:48:1c:51:d4:56: 3a:b5:15:ef:40:5f:f4:63:51:82:6d:6b:de:fa:19: ff:88:ff:8e:06:30:95:d9:c9:5c:7c:f3:4d:54:92: 9c:aa:2b:f2:59:54:bd:37:a4:d2:82:bd:96:bf:52: 54:29:bc:7a:e8:54:a3:ef:39:1b:6e:de:b9:3b:9b: 67:ed:db:ff:7d:71:53:ab:ab:b0:e9:70:07:d9:b8: 82:b6:9d:49:0a:79:20:cd:7c:af:91:7e:51:74:27: 12:a2:7d:d5:31:ab:00:c5:da:44:20:78:03:0a:25: f8:11:b8:d8:ba:1f:ab:8c:8f:ae:ed:5a:7f:9c:9a: 4f:3a:4e:9e:38:cf:aa:ad:91:9e:ef:7e:5e:d1:72: 4d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DE:DE:57:AE:79:DB:5D:7D:B2:86:2F:86:1B:CC:CE:37:D2:8D:E4 X509v3 Authority Key Identifier: keyid:17:00:4A:A3:31:05:B0:A0:E6:D3:EB:4E:47:C5:13:06:3D:92:CE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/FwBKozEFsKDm0-tOR8UTBj2SzsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FwBKozEFsKDm0-tOR8UTBj2SzsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/F29967B22B0011F0B0319E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:2100::/32 Signature Algorithm: sha256WithRSAEncryption 5a:f4:e9:31:76:49:38:35:5e:52:cc:06:7d:d2:7d:a8:6f:b5: 7e:5b:59:07:33:fe:0b:d0:58:bc:9c:40:71:a0:3f:cc:ad:11: 89:55:27:c9:6d:12:bb:fe:30:8e:e3:35:ce:27:bb:92:91:97: 8a:5c:92:c4:cf:78:0c:3f:fc:0e:5c:e8:33:9f:95:10:5c:4a: 22:d4:5d:40:49:41:28:b2:7d:49:77:81:c3:fd:cd:76:18:b4: dc:dc:c0:bd:99:15:b5:b8:6d:92:bc:12:07:12:7b:64:15:de: 3f:33:8a:9b:9d:10:4c:e2:5d:3a:7c:d0:37:b3:b3:0e:e5:bb: f6:9a:af:b8:58:fc:a3:81:a6:c4:24:41:18:0a:f6:81:46:63: 4f:d2:82:63:c7:53:f9:86:b4:76:73:e8:9a:ca:0a:7d:b6:68: bc:87:a5:c4:bf:8e:74:c6:13:49:14:c7:de:de:c6:0f:94:40: 2c:1e:9e:06:50:33:f2:6b:5d:da:9b:1e:d5:6d:cc:f6:c5:0f: 98:f3:a5:af:48:be:d3:02:5f:e9:79:89:78:80:df:a4:a2:b3: 3a:e3:1b:b3:6c:f3:60:a2:52:c4:66:cd:17:00:fe:58:08:17: b8:b6:a0:84:d5:fc:d7:30:71:87:bf:c8:a9:d1:0c:24:14:ad: 3b:72:64:fe -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0QTYxMTAvBgNVBAUTKDE3MDA0QUEzMzEwNUIwQTBFNkQzRUI0RTQ3QzUxMzA2 M0Q5MkNFQzIwHhcNMjUwNTA3MDUwNjA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZWEzZi0xMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdf35JWYfeDn3vBxb65Bzn1eXIa190dWM74sfDxLj8GFoN0PgdKsQ8rJEY99 cab5CqEatYuE5QuIhrZj8QLqPHw1GX+60uIFxZWUT6XjZUJiZsTBFH730tvIEcn/ W0/xOzf/RNbgmGee3ioHnwjv3REySBxR1FY6tRXvQF/0Y1GCbWve+hn/iP+OBjCV 2clcfPNNVJKcqivyWVS9N6TSgr2Wv1JUKbx66FSj7zkbbt65O5tn7dv/fXFTq6uw 6XAH2biCtp1JCnkgzXyvkX5RdCcSon3VMasAxdpEIHgDCiX4EbjYuh+rjI+u7Vp/ nJpPOk6eOM+qrZGe735e0XJNAwIDAQABo4ICljCCApIwHQYDVR0OBBYEFIbe3leu edtdfbKGL4YbzM430o3kMB8GA1UdIwQYMBaAFBcASqMxBbCg5tPrTkfFEwY9ks7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDRBNi82QTU5NjlBODdF OTUxMUVDODJFRTUyMEFDNEY5QUUwMi9Gd0JLb3pFRnNLRG0wLXRPUjhVVEJqMlN6 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3QktvekVGc0tEbTAtdE9SOFVUQmoyU3pzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ0QTYvNkE1OTY5QTg3RTk1MTFFQzgyRUU1MjBBQzRGOUFFMDIvRjI5OTY3QjIy QjAwMTFGMEIwMzE5RTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBiEAMA0GCSqGSIb3DQEBCwUAA4IBAQBa9Okxdkk4NV5S zAZ90n2ob7V+W1kHM/4L0Fi8nEBxoD/MrRGJVSfJbRK7/jCO4zXOJ7uSkZeKXJLE z3gMP/wOXOgzn5UQXEoi1F1ASUEosn1Jd4HD/c12GLTc3MC9mRW1uG2SvBIHEntk Fd4/M4qbnRBM4l06fNA3s7MO5bv2mq+4WPyjgabEJEEYCvaBRmNP0oJjx1P5hrR2 c+iaygp9tmi8h6XEv450xhNJFMfe3sYPlEAsHp4GUDPya13amx7Vbcz2xQ+Y86Wv SL7TAl/peYl4gN+korM64xuzbPNgolLEZs0XAP5YCBe4tqCE1fzXMHGHv8ip0Qwk FK07cmT+ -----END CERTIFICATE-----Generated at Fri May 16 06:24:07 2025 by rpki-client