$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/8F6A0892437611EC9E067020C4F9AE02.roa File: 8F6A0892437611EC9E067020C4F9AE02.roa (raw, json) Hash identifier: xykraSV8kLGomChcl9m8aUsM7WTxk2kDX+8/BfVDf4g= Subject key identifier: 18:23:C4:93:B8:CF:A0:B1:8E:EB:12:BB:D6:C8:81:A9:12:78:4D:C2 Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Certificate serial: 08BE Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/8F6A0892437611EC9E067020C4F9AE02.roa Signing time: Fri 02 May 2025 21:01:37 +0000 ROA not before: Fri 02 May 2025 21:01:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 57401 IP address blocks: 2404:c140:956e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDFD, serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85 Validity Not Before: May 2 21:01:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681532b1-fa96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1b:ce:0b:d2:ec:10:37:93:08:08:e5:53:40: b7:0c:a7:02:d1:3e:46:d4:91:14:72:96:e7:67:19: dd:a8:0d:c6:f4:9a:d5:47:f5:0a:29:49:9b:d7:95: df:f8:86:7b:45:14:03:df:44:73:af:e0:b9:d8:96: 98:41:9e:3a:be:60:6e:fa:f3:74:0c:d6:8d:9a:e9: d9:5e:11:47:20:6c:51:ea:3f:55:24:18:5e:a6:57: d8:75:0b:e0:9c:40:84:d9:f3:f1:b9:17:c8:98:a2: 0a:03:f2:c8:7d:3c:13:c4:5e:33:34:d9:af:c5:85: 7a:02:3b:d7:87:80:df:08:e8:df:84:89:b1:2c:92: ef:22:16:d0:f1:1f:c3:38:90:63:7d:8f:7f:28:e0: 08:1f:5d:b2:da:80:d0:8d:8d:6e:1b:55:a8:c9:ed: 20:4f:57:b8:43:4e:6d:aa:c0:43:e1:47:eb:2a:90: 3b:02:b3:c2:2c:71:1e:53:c8:6e:ae:85:3e:0a:f3: cd:bf:18:8c:57:57:84:04:96:7b:92:77:aa:cd:00: 1c:81:d7:32:c5:70:a9:9b:78:ba:a4:ab:91:66:a0: 71:be:84:4f:6b:04:4a:ae:aa:d2:07:e5:c2:9f:b2: a0:79:a2:f0:c2:97:f1:3d:26:45:2e:3d:b3:bd:32: dc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:23:C4:93:B8:CF:A0:B1:8E:EB:12:BB:D6:C8:81:A9:12:78:4D:C2 X509v3 Authority Key Identifier: keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/8F6A0892437611EC9E067020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:c140:956e::/48 Signature Algorithm: sha256WithRSAEncryption 61:7c:3f:ec:96:f2:89:a1:1f:01:5d:3f:11:77:3b:1c:03:b8: d7:7f:49:0f:cf:65:85:ea:40:bc:25:35:84:89:be:2e:3f:c4: 4a:5f:99:f3:d9:f0:b0:f2:b3:f8:f6:21:71:44:de:69:ab:7f: 6e:07:44:12:38:a7:18:be:c1:62:3b:31:b3:d0:1d:ed:14:d7: 4a:d4:d3:f6:ce:aa:0b:de:ae:0a:55:c1:de:1f:21:76:86:c8: f5:49:9b:ff:f8:71:04:00:15:81:c0:1f:75:d1:0e:85:0d:4d: ca:8c:20:ea:b8:d9:40:2c:5b:de:e8:23:7a:8c:95:9c:37:85: a2:78:1f:10:4e:08:40:f7:86:fb:67:75:bc:7c:c0:12:5d:24: 30:bd:28:37:c9:2c:db:6f:81:b6:c8:f2:90:4a:59:4c:a6:e0: 37:ff:bb:34:d4:7b:6a:53:66:27:ef:3d:a0:5d:58:bb:ab:cc: 56:e3:f2:14:25:f3:b4:95:78:39:0c:ee:8c:ff:c0:12:f2:11: 4d:f7:66:d6:d6:69:31:73:fa:17:5a:42:1f:3b:5e:e4:31:9b: 72:c1:c4:5b:3a:25:d3:db:de:ac:5f:f3:14:16:9d:30:08:87: bb:18:23:be:27:9a:9a:ce:19:00:bb:18:2c:82:d5:d2:6e:76: a6:13:e6:a0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVERkQxMTAvBgNVBAUTKEY0NTMyMUQ4Nzg1Qjg4OTdENUE4MzRCOTBFQUI5MTBD NTU5MDlEODUwHhcNMjUwNTAyMjEwMTM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzJiMS1mYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBvOC9LsEDeTCAjlU0C3DKcC0T5G1JEUcpbnZxndqA3G9JrVR/UKKUmb15Xf +IZ7RRQD30Rzr+C52JaYQZ46vmBu+vN0DNaNmunZXhFHIGxR6j9VJBheplfYdQvg nECE2fPxuRfImKIKA/LIfTwTxF4zNNmvxYV6AjvXh4DfCOjfhImxLJLvIhbQ8R/D OJBjfY9/KOAIH12y2oDQjY1uG1Woye0gT1e4Q05tqsBD4UfrKpA7ArPCLHEeU8hu roU+CvPNvxiMV1eEBJZ7kneqzQAcgdcyxXCpm3i6pKuRZqBxvoRPawRKrqrSB+XC n7KgeaLwwpfxPSZFLj2zvTLcaQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBgjxJO4 z6CxjusSu9bIgakSeE3CMB8GA1UdIwQYMBaAFPRTIdh4W4iX1ag0uQ6rkQxVkJ2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERURGRC81NDUzNkIzRUJD ODgxMUVBODhFRjNENDlDNEY5QUUwMi85Rk1oMkhoYmlKZlZxRFM1RHF1UkRGV1Fu WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGTWgySGhiaUpmVnFEUzVEcXVSREZXUW5ZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVERkQvNTQ1MzZCM0VCQzg4MTFFQTg4RUYzRDQ5QzRGOUFFMDIvOEY2QTA4OTI0 Mzc2MTFFQzlFMDY3MDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBMFAlW4wDQYJKoZIhvcNAQELBQADggEBAGF8P+yW8omh HwFdPxF3OxwDuNd/SQ/PZYXqQLwlNYSJvi4/xEpfmfPZ8LDys/j2IXFE3mmrf24H RBI4pxi+wWI7MbPQHe0U10rU0/bOqgvergpVwd4fIXaGyPVJm//4cQQAFYHAH3XR DoUNTcqMIOq42UAsW97oI3qMlZw3haJ4HxBOCED3hvtndbx8wBJdJDC9KDfJLNtv gbbI8pBKWUym4Df/uzTUe2pTZifvPaBdWLurzFbj8hQl87SVeDkM7oz/wBLyEU33 ZtbWaTFz+hdaQh87XuQxm3LBxFs6JdPb3qxf8xQWnTAIh7sYI74nmprOGQC7GCyC 1dJudqYT5qA= -----END CERTIFICATE-----Generated at Wed May 14 20:54:18 2025 by rpki-client