$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa File: A24D0F54140C11EFBC640B71C4F9AE02.roa (raw, json) Hash identifier: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU= Subject key identifier: 94:F6:DD:57:08:B7:A1:21:BF:A7:C2:F6:AA:86:8E:F0:68:81:E2:8C Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01A3 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa Signing time: Thu 01 May 2025 02:39:25 +0000 ROA not before: Thu 01 May 2025 02:39:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150791 IP address blocks: 2001:df2:fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 1 02:39:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812dedd-a330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:bf:1d:63:e5:4f:a3:8c:80:c5:9a:9c:e0: d4:2f:55:4c:4c:73:9d:41:d2:8d:08:8d:3f:b3:31: 36:4d:a1:37:67:a3:a2:86:1e:28:3b:25:38:6c:3e: da:45:96:79:77:98:88:4c:3a:23:23:26:56:f5:88: 1b:6d:5b:ed:65:3c:e4:9a:e8:dd:c8:98:38:41:63: 5a:47:51:be:4c:07:fe:41:eb:66:eb:a6:8d:10:84: ae:b9:97:3c:32:ff:89:85:65:f0:fa:76:db:d4:46: 5c:77:45:d6:b9:d5:a3:41:cb:a4:82:f1:30:3b:07: 1f:b3:d9:79:87:56:72:96:d5:e0:40:30:3b:b4:80: 1c:18:06:cc:6c:87:dd:69:c0:bc:64:0b:6b:43:fa: 45:3e:0f:4c:f0:ac:02:92:36:ca:b1:15:36:f5:a3: 2f:28:89:a7:12:43:5b:0d:5a:57:2f:4a:d3:41:16: 1b:8d:42:e2:2d:f9:37:c9:12:0a:b1:4d:ac:53:86: 82:30:ea:e1:ed:a3:df:dd:77:31:91:41:70:6f:22: 5f:6c:f8:20:93:4c:ad:03:89:50:4b:a7:58:0d:97: 09:75:3e:74:0b:bd:f1:88:e4:7b:f8:79:f5:15:c0: 0d:0a:b7:8c:9e:ad:cd:c4:7b:40:f5:48:a5:69:58: aa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F6:DD:57:08:B7:A1:21:BF:A7:C2:F6:AA:86:8E:F0:68:81:E2:8C X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df2:fc0::/48 Signature Algorithm: sha256WithRSAEncryption 25:8f:9a:01:36:74:c3:0d:00:dd:52:f3:cb:80:b6:73:a5:76: 24:c7:9f:92:b1:aa:fe:24:be:1e:34:ea:54:92:2e:c8:4a:d4: 74:17:3c:7b:96:de:7f:76:10:47:a5:f5:0f:07:f1:bc:51:0f: 10:9a:9e:e2:65:90:7d:fd:e2:eb:cf:14:a3:1e:ee:6a:8d:83: 33:f3:35:cd:af:18:8d:68:6e:c2:35:88:32:10:c9:7d:0b:27: d1:5b:eb:cd:a4:6f:c7:61:86:40:34:e3:a6:40:7d:67:09:a0: 17:77:5b:77:f7:98:cf:76:20:98:a9:a5:36:41:ab:fd:0f:15: fa:cc:53:49:79:4b:76:fb:75:66:c0:46:df:17:87:4d:70:d4: f8:80:c6:71:7e:28:d0:5c:cb:f2:0e:21:44:05:19:ee:31:0f: 20:56:45:2c:c4:24:48:c2:7c:c5:11:32:2e:fe:6d:6a:c5:46: 82:7f:31:21:1a:2c:ac:8e:99:ea:e3:71:08:02:08:61:29:ba: 0b:a7:8e:e6:00:09:2f:75:6a:b4:53:91:32:a8:41:d9:dd:ef: 5b:35:63:16:8e:c2:97:a9:0e:26:67:19:e7:3a:2b:bc:78:8a: dc:92:c0:e2:3d:e1:9b:ae:c4:1a:eb:54:d7:bd:88:2e:0b:7f: 45:66:bb:16 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNTAxMDIzOTI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyZGVkZC1hMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBe/HWPlT6OMgMWanODUL1VMTHOdQdKNCI0/szE2TaE3Z6Oihh4oOyU4bD7a RZZ5d5iITDojIyZW9YgbbVvtZTzkmujdyJg4QWNaR1G+TAf+Qetm66aNEISuuZc8 Mv+JhWXw+nbb1EZcd0XWudWjQcukgvEwOwcfs9l5h1ZyltXgQDA7tIAcGAbMbIfd acC8ZAtrQ/pFPg9M8KwCkjbKsRU29aMvKImnEkNbDVpXL0rTQRYbjULiLfk3yRIK sU2sU4aCMOrh7aPf3XcxkUFwbyJfbPggk0ytA4lQS6dYDZcJdT50C73xiOR7+Hn1 FcANCreMnq3NxHtA9UilaViqawIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJT23VcI t6Ehv6fC9qqGjvBogeKMMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBNDAvOTZGMEQ3MENCQkRBMTFFRDg4NzhFRjQ3QzRGOUFFMDIvQTI0RDBGNTQx NDBDMTFFRkJDNjQwQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3yD8AwDQYJKoZIhvcNAQELBQADggEBACWPmgE2dMMN AN1S88uAtnOldiTHn5Kxqv4kvh406lSSLshK1HQXPHuW3n92EEel9Q8H8bxRDxCa nuJlkH394uvPFKMe7mqNgzPzNc2vGI1obsI1iDIQyX0LJ9Fb682kb8dhhkA046ZA fWcJoBd3W3f3mM92IJippTZBq/0PFfrMU0l5S3b7dWbARt8Xh01w1PiAxnF+KNBc y/IOIUQFGe4xDyBWRSzEJEjCfMURMi7+bWrFRoJ/MSEaLKyOmerjcQgCCGEpugun juYACS91arRTkTKoQdnd71s1YxaOwpepDiZnGec6K7x4itySwOI94ZuuxBrrVNe9 iC4Lf0VmuxY= -----END CERTIFICATE-----Generated at Tue May 13 09:10:48 2025 by rpki-client