$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/1A7632424DA111ECA1180F87C4F9AE02.roa File: 1A7632424DA111ECA1180F87C4F9AE02.roa (raw, json) Hash identifier: emHp7Xzsh3MvD05QY3vvsc/JIauIxxqNW7MxPaZ5E+I= Subject key identifier: 9F:2D:F7:2D:1E:73:7D:1E:F4:15:E6:21:7B:F2:3B:30:73:D5:AB:04 Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Certificate serial: 08BB Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/1A7632424DA111ECA1180F87C4F9AE02.roa Signing time: Fri 02 May 2025 21:01:34 +0000 ROA not before: Fri 02 May 2025 21:01:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149030 IP address blocks: 2404:c140:210::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDFD, serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Validity Not Before: May 2 21:01:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681532ae-c345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:f4:59:2f:eb:db:32:3e:48:de:ae:a6:5a: b1:18:97:04:f1:5d:6a:37:13:71:1e:84:39:ba:4f: 73:ce:b0:91:01:3e:df:ca:4c:ae:a5:00:a9:06:fb: 6f:a3:9c:f5:c6:9e:5b:ae:5e:04:49:55:66:13:f0: 7b:71:bb:c3:a7:6b:35:56:92:97:cd:82:ed:75:8e: 04:98:89:a3:de:0b:49:ad:2d:c0:bb:77:f9:9e:f1: c8:4a:a4:95:59:fc:bc:21:94:35:ad:0f:6d:41:bf: dd:f7:da:c9:ea:83:e8:69:08:e6:83:99:a9:87:a7: 36:a8:00:f2:75:d9:bb:94:7f:cc:0a:1c:f4:8a:88: d2:97:58:35:20:b3:3f:f3:58:d7:17:56:87:b4:68: 61:15:dd:66:c9:e0:39:cc:7b:8f:1b:b9:8c:07:e9: 1d:c9:40:11:7d:da:e0:5b:8f:1e:fb:44:c8:48:c2: ab:81:52:00:44:8b:74:ad:2b:20:a2:f3:63:ad:c0: 47:ae:ad:5a:1c:4c:5a:fe:89:1d:87:34:a3:9c:93: a1:43:b3:db:95:6e:1e:b8:8c:73:ef:b5:46:a8:b1: 3e:84:11:61:8e:e9:02:96:d5:a7:cb:c5:a3:7b:b9: 14:1d:60:17:57:fe:45:2a:38:e0:55:8e:53:1a:61: db:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2D:F7:2D:1E:73:7D:1E:F4:15:E6:21:7B:F2:3B:30:73:D5:AB:04 X509v3 Authority Key Identifier: keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/1A7632424DA111ECA1180F87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c140:210::/44 Signature Algorithm: sha256WithRSAEncryption 17:0e:fc:b3:60:9b:fd:5d:40:77:d8:e0:24:de:c5:f2:23:36: 59:d1:c8:f0:43:62:e1:d9:34:a2:cf:ae:d6:36:93:ec:e9:08: 60:c5:94:74:a6:89:46:be:11:58:d3:a8:61:0a:fd:89:2e:48: 54:04:1f:07:dc:d7:fe:0e:ee:78:91:c4:3e:76:ba:51:94:f4: cf:c7:c5:91:35:7e:3b:95:4d:65:9c:52:b4:06:03:f3:90:f7: 05:74:98:ef:b8:1f:b7:d3:e9:71:33:42:d5:e3:57:77:6a:cd: fa:80:8f:fe:3b:46:75:6b:cc:bf:bc:11:9f:c0:b2:2a:40:9a: b7:30:a2:58:73:18:17:98:19:7e:11:59:7d:6c:e0:8d:bd:7b: cd:b8:06:76:87:90:c2:72:5c:dc:c0:53:20:17:81:a0:eb:4a: f4:54:48:fe:65:3c:c0:4a:0c:18:48:90:5d:6c:4a:b0:41:74: d2:18:7a:e3:d3:f1:b9:65:5e:39:a0:61:3d:6f:44:0a:e6:33: 86:68:c4:11:cf:b1:18:8b:70:52:ce:f0:16:47:b1:dd:9d:42: 3f:6e:e6:5c:4a:b2:46:fd:70:eb:a2:1a:86:28:fb:01:ec:9c: 4b:b4:45:96:15:4d:df:13:89:f4:95:32:ae:db:95:1f:9d:20: af:42:06:e0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVERkQxMTAvBgNVBAUTKEY0NTMyMUQ4Nzg1Qjg4OTdENUE4MzRCOTBFQUI5MTBD NTU5MDlEODUwHhcNMjUwNTAyMjEwMTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzJhZS1jMzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+T0WS/r2zI+SN6uplqxGJcE8V1qNxNxHoQ5uk9zzrCRAT7fykyupQCpBvtv o5z1xp5brl4ESVVmE/B7cbvDp2s1VpKXzYLtdY4EmImj3gtJrS3Au3f5nvHISqSV Wfy8IZQ1rQ9tQb/d99rJ6oPoaQjmg5mph6c2qADyddm7lH/MChz0iojSl1g1ILM/ 81jXF1aHtGhhFd1myeA5zHuPG7mMB+kdyUARfdrgW48e+0TISMKrgVIARIt0rSsg ovNjrcBHrq1aHExa/okdhzSjnJOhQ7PblW4euIxz77VGqLE+hBFhjukCltWny8Wj e7kUHWAXV/5FKjjgVY5TGmHbZQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ8t9y0e c30e9BXmIXvyOzBz1asEMB8GA1UdIwQYMBaAFPRTIdh4W4iX1ag0uQ6rkQxVkJ2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERURGRC81NDUzNkIzRUJD ODgxMUVBODhFRjNENDlDNEY5QUUwMi85Rk1oMkhoYmlKZlZxRFM1RHF1UkRGV1Fu WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGTWgySGhiaUpmVnFEUzVEcXVSREZXUW5ZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVERkQvNTQ1MzZCM0VCQzg4MTFFQTg4RUYzRDQ5QzRGOUFFMDIvMUE3NjMyNDI0 REExMTFFQ0ExMTgwRjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBMFAAhAwDQYJKoZIhvcNAQELBQADggEBABcO/LNgm/1d QHfY4CTexfIjNlnRyPBDYuHZNKLPrtY2k+zpCGDFlHSmiUa+EVjTqGEK/YkuSFQE Hwfc1/4O7niRxD52ulGU9M/HxZE1fjuVTWWcUrQGA/OQ9wV0mO+4H7fT6XEzQtXj V3dqzfqAj/47RnVrzL+8EZ/AsipAmrcwolhzGBeYGX4RWX1s4I29e824BnaHkMJy XNzAUyAXgaDrSvRUSP5lPMBKDBhIkF1sSrBBdNIYeuPT8bllXjmgYT1vRArmM4Zo xBHPsRiLcFLO8BZHsd2dQj9u5lxKskb9cOuiGoYo+wHsnEu0RZYVTd8TifSVMq7b lR+dIK9CBuA= -----END CERTIFICATE-----Generated at Tue May 13 01:14:53 2025 by rpki-client