$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa File: 965254F8278811F09217002CC4F9AE02.roa (raw, json) Hash identifier: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ= Subject key identifier: 57:F9:BD:AB:53:72:0F:D8:3E:60:46:94:2F:B8:78:9B:85:DE:4F:CB Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 3E Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa Signing time: Fri 02 May 2025 19:06:44 +0000 ROA not before: Fri 02 May 2025 19:06:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 150696 IP address blocks: 2001:df5:1740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: May 2 19:06:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=681517c4-e395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9d:4d:12:1d:48:d2:68:0e:db:ec:1c:70:ba: 16:a7:d7:4d:68:76:d5:9b:7d:f2:85:c5:5a:fd:c6: cc:13:2f:ee:41:71:29:21:c9:e1:fd:a8:84:38:73: 78:c8:ce:7e:d8:e7:90:dd:e6:f9:9e:32:dc:6b:b2: ad:aa:0c:27:42:0e:58:c0:de:0a:02:48:37:17:d4: 6c:2f:75:6d:98:6e:ef:ca:ee:c2:90:2d:b4:97:88: 3a:73:d3:5c:8d:e5:71:27:c7:27:25:9e:0c:83:eb: fc:a5:e1:8c:f9:14:42:33:84:7c:c3:9e:4b:9c:a7: f3:18:84:df:2f:21:f1:c0:36:f9:39:02:ad:35:a3: d2:dc:b4:0a:b9:cc:0f:c2:76:76:1b:f4:b7:80:3d: 64:17:c3:d4:b7:24:88:09:3b:f6:0e:39:fa:7d:4d: ce:e7:c7:a1:d7:ab:a7:f3:06:68:98:6b:45:d7:f8: 61:da:fd:c0:fd:ec:09:20:a7:97:97:2f:3f:da:ff: e9:15:51:79:56:8a:a6:3c:e2:f8:f8:1b:f0:f3:dd: 7d:01:ec:16:d5:49:aa:12:27:7e:d2:85:03:d6:bb: 66:54:11:70:17:93:77:1a:89:8f:21:cd:93:f5:dc: aa:bf:6e:39:27:a3:14:10:4f:b8:06:21:6f:64:ca: 81:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F9:BD:AB:53:72:0F:D8:3E:60:46:94:2F:B8:78:9B:85:DE:4F:CB X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/965254F8278811F09217002CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:1740::/48 Signature Algorithm: sha256WithRSAEncryption ad:db:96:ab:26:1d:64:45:73:92:ff:f3:0a:19:53:91:d3:fa: 13:0d:f6:a8:12:da:16:e8:ed:dd:4e:60:27:6c:04:98:85:58: 9b:18:b7:10:c8:e4:21:c3:6c:75:a1:16:cd:da:ce:00:73:34: 53:b7:c3:8d:cb:51:78:86:c9:d2:c0:ee:e8:be:7c:55:07:ce: 5c:f9:c5:f2:61:ec:3a:01:f7:a4:df:35:6f:a9:6d:f7:0b:4a: ab:b1:cb:b2:cb:58:0f:61:cc:33:b9:e2:ed:03:dd:9c:da:39: 0f:6f:5d:51:22:a6:52:10:e2:79:a6:83:fa:c5:75:b1:9a:6c: fe:0e:8f:76:1b:ab:48:05:44:25:79:ce:af:1f:2d:f6:84:a0: 82:cd:51:dc:76:5a:c1:86:b6:a1:2a:96:24:6f:c5:4e:0a:90: 54:91:2b:e3:00:00:39:cc:dc:a7:d1:34:61:80:4d:51:e3:d2: ec:53:42:39:16:8a:c2:54:7d:d7:86:c7:c0:79:17:87:b6:e2: cf:44:20:97:7f:42:aa:3e:ab:0a:ee:3c:00:55:c0:b8:1f:83: dc:b6:ec:17:39:94:a7:7f:69:56:0d:0e:5d:00:7b:95:25:a9: 90:c9:4e:61:d7:58:2a:30:ed:dd:cb:93:91:2f:3e:e6:db:f0: 87:c1:c0:83 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjY4QzExMC8GA1UEBRMoQTIyODhGODk2NEQ2MTY5QTg3OTVGMkY0RUYwNUUwRDVF NkUxM0IwOTAeFw0yNTA1MDIxOTA2NDRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTUxN2M0LWUzOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnnU0SHUjSaA7b7Bxwuhan101odtWbffKFxVr9xswTL+5BcSkhyeH9qIQ4c3jI zn7Y55Dd5vmeMtxrsq2qDCdCDljA3goCSDcX1GwvdW2Ybu/K7sKQLbSXiDpz01yN 5XEnxyclngyD6/yl4Yz5FEIzhHzDnkucp/MYhN8vIfHANvk5Aq01o9LctAq5zA/C dnYb9LeAPWQXw9S3JIgJO/YOOfp9Tc7nx6HXq6fzBmiYa0XX+GHa/cD97Akgp5eX Lz/a/+kVUXlWiqY84vj4G/Dz3X0B7BbVSaoSJ37ShQPWu2ZUEXAXk3caiY8hzZP1 3Kq/bjknoxQQT7gGIW9kyoGXAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUV/m9q1Ny D9g+YEaUL7h4m4XeT8swHwYDVR0jBBgwFoAUoiiPiWTWFpqHlfL07wXg1ebhOwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNjhDLzE3RDEwM0E4RUFC MjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lpUGlXVFdGcHFIbGZMMDd3WGcxZWJoT3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi85NjUyNTRGODI3 ODgxMUYwOTIxNzAwMkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfUXQDANBgkqhkiG9w0BAQsFAAOCAQEArduWqyYdZEVz kv/zChlTkdP6Ew32qBLaFujt3U5gJ2wEmIVYmxi3EMjkIcNsdaEWzdrOAHM0U7fD jctReIbJ0sDu6L58VQfOXPnF8mHsOgH3pN81b6lt9wtKq7HLsstYD2HMM7ni7QPd nNo5D29dUSKmUhDieaaD+sV1sZps/g6PdhurSAVEJXnOrx8t9oSggs1R3HZawYa2 oSqWJG/FTgqQVJEr4wAAOczcp9E0YYBNUePS7FNCORaKwlR914bHwHkXh7biz0Qg l39Cqj6rCu48AFXAuB+D3LbsFzmUp39pVg0OXQB7lSWpkMlOYddYKjDt3cuTkS8+ 5tvwh8HAgw== -----END CERTIFICATE-----Generated at Sun May 11 23:02:37 2025 by rpki-client