$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7E4270063AF011EC9E421056C4F9AE02.roa File: 7E4270063AF011EC9E421056C4F9AE02.roa (raw, json) Hash identifier: FNdfZCcbxe3V2OAQFLZGqdKXBJ6o0UkfGqCv1XFBIe4= Subject key identifier: 42:4F:40:5D:6D:AC:23:02:75:3D:98:DE:5F:BE:DF:6C:2F:5F:C0:48 Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Certificate serial: 08BD Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7E4270063AF011EC9E421056C4F9AE02.roa Signing time: Fri 02 May 2025 21:01:36 +0000 ROA not before: Fri 02 May 2025 21:01:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38254 IP address blocks: 2404:c140:956e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDFD, serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Validity Not Before: May 2 21:01:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681532b0-7600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c2:91:85:bf:02:7b:3f:64:74:f2:74:ec:e1: 43:38:cf:6c:99:c1:a0:a6:d9:dd:0a:33:6a:ab:a8: 06:99:82:d0:11:ec:1c:05:49:3a:63:8a:7e:e7:01: b2:c9:68:03:ac:22:df:a6:51:cc:5a:95:ba:bc:34: 22:1f:45:87:e5:80:8c:5f:cd:5d:a7:34:ba:14:e6: e4:50:63:11:60:57:bb:19:b8:5b:b2:cb:2e:0b:4a: 42:8f:08:17:f2:5b:e4:01:f4:76:61:36:ac:c8:cb: 82:4b:b4:d7:3f:7d:3e:b5:54:aa:36:60:8e:49:8f: 12:64:4e:90:50:06:64:1e:15:91:39:a9:8c:30:a7: 92:00:0b:50:62:4f:50:0e:a6:b9:94:0b:02:36:9c: 90:89:27:02:50:aa:f0:9d:00:aa:29:f8:7d:1a:ec: 6c:4b:1e:f9:f4:a8:f0:83:06:4e:eb:67:1a:8d:38: 9f:32:92:1b:68:b6:08:52:55:84:c2:bc:8c:26:61: 6e:a8:00:b5:40:89:8e:42:d8:8a:da:6e:3e:0f:2b: b2:41:b7:1d:9c:0f:53:f2:3d:b8:d9:d2:a2:c0:37: ea:ea:c3:1d:46:85:01:d4:86:1f:f4:34:3c:3e:be: 09:99:73:0f:fd:78:1b:59:98:e4:74:c9:b9:79:2d: b7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4F:40:5D:6D:AC:23:02:75:3D:98:DE:5F:BE:DF:6C:2F:5F:C0:48 X509v3 Authority Key Identifier: keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/7E4270063AF011EC9E421056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c140:956e::/48 Signature Algorithm: sha256WithRSAEncryption af:77:aa:26:f6:d9:92:fe:ee:14:c9:bb:cd:48:00:1e:86:e3: f5:fd:7a:77:a6:6a:78:2b:84:1c:00:b5:c6:7e:dd:40:7e:0f: c2:b5:f7:66:3e:db:ca:75:0c:ab:eb:ec:5b:7e:30:99:41:ed: ed:2e:ad:0d:d1:ac:c5:b1:9a:a4:13:cf:33:01:19:ff:7f:a1: 9b:cf:c4:d1:da:4e:89:d3:52:f6:33:f3:2b:0a:09:48:98:ab: 20:87:ed:dd:cf:9a:23:9c:da:e8:7a:7a:51:0f:04:41:7a:c9: f5:49:51:fe:81:63:5d:13:18:f6:43:08:18:5b:96:1f:07:44: 68:ca:df:fe:87:89:b5:d1:6e:a7:98:6d:c4:77:de:09:e0:e5: 0f:c0:1f:cd:c5:18:4c:38:42:ac:26:3f:98:ce:76:90:48:9f: 99:d6:52:99:68:59:2e:9a:2d:f3:a3:c9:3d:34:4c:bb:e9:e0: 81:f3:79:91:fe:9e:9d:6f:ea:df:30:c9:45:2f:72:be:d6:d8: 0c:58:67:13:89:b0:66:ab:fe:fe:fe:c1:96:a2:fa:ba:31:09: 4a:43:08:44:70:30:3f:e9:03:cc:38:fa:bd:42:63:03:37:c6: ff:2f:28:37:d8:12:59:17:c3:0d:c5:c5:f0:28:b2:57:30:d3: 1b:12:ae:53 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVERkQxMTAvBgNVBAUTKEY0NTMyMUQ4Nzg1Qjg4OTdENUE4MzRCOTBFQUI5MTBD NTU5MDlEODUwHhcNMjUwNTAyMjEwMTM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzJiMC03NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cKRhb8Cez9kdPJ07OFDOM9smcGgptndCjNqq6gGmYLQEewcBUk6Y4p+5wGy yWgDrCLfplHMWpW6vDQiH0WH5YCMX81dpzS6FObkUGMRYFe7GbhbsssuC0pCjwgX 8lvkAfR2YTasyMuCS7TXP30+tVSqNmCOSY8SZE6QUAZkHhWROamMMKeSAAtQYk9Q Dqa5lAsCNpyQiScCUKrwnQCqKfh9GuxsSx759KjwgwZO62cajTifMpIbaLYIUlWE wryMJmFuqAC1QImOQtiK2m4+DyuyQbcdnA9T8j242dKiwDfq6sMdRoUB1IYf9DQ8 Pr4JmXMP/XgbWZjkdMm5eS239QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEJPQF1t rCMCdT2Y3l++32wvX8BIMB8GA1UdIwQYMBaAFPRTIdh4W4iX1ag0uQ6rkQxVkJ2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERURGRC81NDUzNkIzRUJD ODgxMUVBODhFRjNENDlDNEY5QUUwMi85Rk1oMkhoYmlKZlZxRFM1RHF1UkRGV1Fu WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGTWgySGhiaUpmVnFEUzVEcXVSREZXUW5ZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVERkQvNTQ1MzZCM0VCQzg4MTFFQTg4RUYzRDQ5QzRGOUFFMDIvN0U0MjcwMDYz QUYwMTFFQzlFNDIxMDU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBMFAlW4wDQYJKoZIhvcNAQELBQADggEBAK93qib22ZL+ 7hTJu81IAB6G4/X9enemangrhBwAtcZ+3UB+D8K192Y+28p1DKvr7Ft+MJlB7e0u rQ3RrMWxmqQTzzMBGf9/oZvPxNHaTonTUvYz8ysKCUiYqyCH7d3PmiOc2uh6elEP BEF6yfVJUf6BY10TGPZDCBhblh8HRGjK3/6HibXRbqeYbcR33gng5Q/AH83FGEw4 QqwmP5jOdpBIn5nWUploWS6aLfOjyT00TLvp4IHzeZH+np1v6t8wyUUvcr7W2AxY ZxOJsGar/v7+wZai+roxCUpDCERwMD/pA8w4+r1CYwM3xv8vKDfYElkXww3FxfAo slcw0xsSrlM= -----END CERTIFICATE-----Generated at Wed May 14 03:49:35 2025 by rpki-client