$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa File: 7AE3D13C62A111ED80F96E47C4F9AE02.roa (raw, json) Hash identifier: Dx71OVIwLra0qJzFPwaosr95WYYv+7Bg/7InXVNYyaM= Subject key identifier: 53:26:88:0A:48:9C:21:2B:C8:C5:13:3D:B7:55:33:A3:84:50:6A:3D Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Certificate serial: 08BC Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa Signing time: Fri 02 May 2025 21:01:35 +0000 ROA not before: Fri 02 May 2025 21:01:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 18041 IP address blocks: 2404:c140:2596::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDFD, serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Validity Not Before: May 2 21:01:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681532af-d0fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e8:e1:1f:22:a7:df:1a:ba:90:47:4e:60:e0: 0c:11:93:84:89:90:42:f6:b0:9c:8f:26:7c:b7:2c: 6f:b9:c3:ed:2b:3e:c6:91:70:a5:c7:0a:da:d8:54: a5:22:86:eb:ee:30:e4:0e:7c:63:22:85:06:64:ca: bb:bd:35:b4:75:1a:95:ec:a0:46:b5:53:ed:57:be: a2:64:ab:15:b5:86:3e:17:91:89:28:f8:2b:06:60: c8:c6:32:1b:ec:7f:81:30:66:6e:b2:3e:28:23:0e: a3:87:29:ac:28:f0:f1:6e:54:13:d0:72:ea:73:33: a0:7c:cd:34:a0:d5:b6:19:36:f3:a9:d4:a2:46:70: 4c:30:0b:36:28:a0:c3:ef:cd:1c:65:d5:2e:86:4f: c0:ac:55:81:d4:98:d4:59:a2:84:7b:9f:74:cb:5f: c6:23:57:f7:66:41:7b:d0:4a:bf:8f:07:93:b1:f7: 94:d7:87:18:85:e7:20:76:ce:ae:c8:ff:64:57:76: d6:c6:04:37:a3:d5:6b:94:eb:5b:8f:d4:b3:e3:cb: 8c:40:84:34:27:20:fc:ef:e8:e8:ee:a6:46:1c:2c: 4f:6a:a7:e8:1d:a4:06:c3:ee:cd:45:60:86:41:e4: 65:6d:62:61:ce:7e:43:8c:7a:bd:1f:98:c0:48:de: 5a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:26:88:0A:48:9C:21:2B:C8:C5:13:3D:B7:55:33:A3:84:50:6A:3D X509v3 Authority Key Identifier: keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7AE3D13C62A111ED80F96E47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c140:2596::/48 Signature Algorithm: sha256WithRSAEncryption 80:c0:48:09:b9:98:5f:9e:79:d1:16:5f:e1:c1:f5:27:9f:98: 86:32:a6:6c:d5:c0:87:56:43:84:93:34:67:f9:d7:c0:5a:20: c7:87:8b:da:e7:8c:5c:77:a5:cd:9d:70:12:2f:d9:46:6e:a8: e6:58:2a:99:dc:c5:3f:fb:f0:0d:26:3a:2d:83:75:fb:66:f4: da:ca:f5:b6:94:0a:5b:45:5e:9d:61:7a:fe:fc:87:48:9a:c7: b0:06:b5:18:39:c7:b2:59:9c:4c:60:4c:ac:2c:dd:55:0d:41: 2a:20:1d:df:21:cd:e8:07:57:a6:6c:30:76:79:3b:c1:79:d3: 77:2c:6c:02:d3:99:f9:5d:49:c1:36:09:ac:8a:36:81:6a:51: 43:9b:c1:e8:eb:4f:06:39:00:87:d3:a1:c9:43:b8:da:9a:4d: 2f:3f:ed:b4:f9:7f:fa:ff:d8:dd:6c:99:35:82:a4:36:45:4a: 46:b0:27:e7:01:8f:7b:de:13:de:80:86:1a:fa:37:ca:2b:e4: 7c:c9:e2:fd:1d:10:93:45:91:4f:fd:5f:f0:38:a9:6f:23:56: 5f:76:ee:e0:d9:05:a7:2f:a2:12:4b:0d:be:ff:d3:3b:f6:d0: 14:70:1a:b7:ac:c4:71:39:d9:2c:bd:b9:23:ee:dd:c0:57:b7: 83:a7:9a:d3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVERkQxMTAvBgNVBAUTKEY0NTMyMUQ4Nzg1Qjg4OTdENUE4MzRCOTBFQUI5MTBD NTU5MDlEODUwHhcNMjUwNTAyMjEwMTM1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzJhZi1kMGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+jhHyKn3xq6kEdOYOAMEZOEiZBC9rCcjyZ8tyxvucPtKz7GkXClxwra2FSl Iobr7jDkDnxjIoUGZMq7vTW0dRqV7KBGtVPtV76iZKsVtYY+F5GJKPgrBmDIxjIb 7H+BMGZusj4oIw6jhymsKPDxblQT0HLqczOgfM00oNW2GTbzqdSiRnBMMAs2KKDD 780cZdUuhk/ArFWB1JjUWaKEe590y1/GI1f3ZkF70Eq/jweTsfeU14cYhecgds6u yP9kV3bWxgQ3o9VrlOtbj9Sz48uMQIQ0JyD87+jo7qZGHCxPaqfoHaQGw+7NRWCG QeRlbWJhzn5DjHq9H5jASN5a2QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFMmiApI nCEryMUTPbdVM6OEUGo9MB8GA1UdIwQYMBaAFPRTIdh4W4iX1ag0uQ6rkQxVkJ2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERURGRC81NDUzNkIzRUJD ODgxMUVBODhFRjNENDlDNEY5QUUwMi85Rk1oMkhoYmlKZlZxRFM1RHF1UkRGV1Fu WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGTWgySGhiaUpmVnFEUzVEcXVSREZXUW5ZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVERkQvNTQ1MzZCM0VCQzg4MTFFQTg4RUYzRDQ5QzRGOUFFMDIvN0FFM0QxM0M2 MkExMTFFRDgwRjk2RTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBMFAJZYwDQYJKoZIhvcNAQELBQADggEBAIDASAm5mF+e edEWX+HB9SefmIYypmzVwIdWQ4STNGf518BaIMeHi9rnjFx3pc2dcBIv2UZuqOZY KpncxT/78A0mOi2Ddftm9NrK9baUCltFXp1hev78h0iax7AGtRg5x7JZnExgTKws 3VUNQSogHd8hzegHV6ZsMHZ5O8F503csbALTmfldScE2CayKNoFqUUObwejrTwY5 AIfToclDuNqaTS8/7bT5f/r/2N1smTWCpDZFSkawJ+cBj3veE96Ahhr6N8or5HzJ 4v0dEJNFkU/9X/A4qW8jVl927uDZBacvohJLDb7/0zv20BRwGresxHE52Sy9uSPu 3cBXt4OnmtM= -----END CERTIFICATE-----Generated at Mon May 12 18:28:15 2025 by rpki-client