$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/A547705AF34A11EFA7A4C071C4F9AE02.roa File: A547705AF34A11EFA7A4C071C4F9AE02.roa (raw, json) Hash identifier: zHzWpn3mnsOfvTNZTI8jar+PLrByMmMa5fTBk5pULgI= Subject key identifier: 1F:5E:FD:1E:EC:2B:3C:69:0E:7F:C7:67:EB:31:30:56:38:47:07:57 Certificate issuer: /CN=A91620E0/serialNumber=FD3B4EF8F79B0AE127E71E4B6C1869D81B22E880 Certificate serial: 0F91 Authority key identifier: FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/A547705AF34A11EFA7A4C071C4F9AE02.roa Signing time: Tue 25 Feb 2025 07:32:20 +0000 ROA not before: Tue 25 Feb 2025 07:32:20 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55936 IP address blocks: 2409:4055:2d00::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3985 (0xf91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0 Validity Not Before: Feb 25 07:32:20 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67bd7204-e6fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ea:e5:55:a9:74:ee:5b:24:50:95:93:f9:0f: de:83:13:eb:b5:46:f4:b6:29:52:fd:19:ff:b9:65: 83:7d:0e:1e:4f:fd:98:00:b5:46:b9:b2:d9:e4:2f: fb:8a:12:49:33:22:c9:b9:d0:e5:15:82:26:f2:44: 10:e7:96:c7:08:1b:fb:31:3e:15:f0:80:02:ea:7a: f7:d2:2d:ad:5a:e4:6f:d9:21:fa:53:37:58:fb:a4: 0c:a5:93:ff:00:d2:9b:c7:fe:a4:86:fa:f5:94:fc: 06:a0:10:e6:5b:2a:01:af:87:12:64:c4:50:ad:ca: d3:26:ef:74:fd:dc:dd:c2:84:bd:42:37:f4:a2:b1: 8c:89:ed:99:99:8c:18:28:ec:dc:fc:03:f1:69:e4: ed:d4:28:11:e1:7a:58:40:e0:d0:a7:5f:40:3f:c2: 86:f2:40:cf:19:c7:7e:5a:f8:1d:62:71:8b:28:2e: 0e:d5:a1:b9:89:a4:20:60:26:da:3f:1c:81:52:ee: bd:f7:85:96:d5:0b:c8:bc:f6:91:7e:ba:c1:cd:09: a5:c9:6a:3c:e9:c8:6c:14:bc:94:fa:8e:f9:a1:04: 8e:23:1d:cf:44:86:89:e2:c9:97:8b:9b:e3:1d:98: c4:5d:a1:e9:33:67:54:aa:97:1a:2a:31:99:b6:cb: 4f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5E:FD:1E:EC:2B:3C:69:0E:7F:C7:67:EB:31:30:56:38:47:07:57 X509v3 Authority Key Identifier: keyid:FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/A547705AF34A11EFA7A4C071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2409:4055:2d00::/41 Signature Algorithm: sha256WithRSAEncryption 60:ae:03:c4:55:a0:bd:d6:56:dd:77:78:27:25:72:fa:c1:3b: d4:7f:c7:b5:1f:98:af:74:43:22:5f:c3:50:ed:df:f0:53:3f: de:96:0f:79:4a:3f:d9:d5:1e:0b:72:72:4e:0b:0f:d0:e0:5f: 1a:3c:02:9b:37:7e:93:05:44:bc:e1:d8:99:ed:2e:89:c0:d3: b3:b3:60:db:90:ed:4b:e3:29:f1:a0:e6:56:ea:40:b1:79:32: 36:ac:78:18:43:65:a0:d3:24:84:29:ae:ca:d0:a3:36:cb:0b: af:54:57:5d:d5:c8:59:e2:06:33:f9:40:a0:46:6c:db:2e:1b: d5:c9:73:a6:9f:53:36:f2:2a:c0:84:ca:5d:69:4c:08:e4:d2: 56:05:6c:90:8d:56:ec:be:4c:2f:44:3e:09:85:7a:0b:a0:b1: 1f:07:5e:67:3b:4f:1c:e1:a1:63:fb:3a:26:03:58:98:d7:74: f3:0e:a7:2c:64:be:2e:7f:62:5a:c3:de:f4:1e:49:32:54:da: 02:b8:f1:eb:46:c2:74:a7:77:a6:89:b2:42:e0:26:70:b9:8d: 54:d1:8d:f7:d4:46:ab:19:d5:a2:11:3a:37:a7:91:2a:41:89: c1:f8:cb:99:0f:a3:19:3d:46:b8:68:62:7a:b1:94:f8:00:08: 63:5a:ee:cc -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICD5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKEZEM0I0RUY4Rjc5QjBBRTEyN0U3MUU0QjZDMTg2OUQ4 MUIyMkU4ODAwHhcNMjUwMjI1MDczMjIwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkNzIwNC1lNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OrlVal07lskUJWT+Q/egxPrtUb0tilS/Rn/uWWDfQ4eT/2YALVGubLZ5C/7 ihJJMyLJudDlFYIm8kQQ55bHCBv7MT4V8IAC6nr30i2tWuRv2SH6UzdY+6QMpZP/ ANKbx/6khvr1lPwGoBDmWyoBr4cSZMRQrcrTJu90/dzdwoS9Qjf0orGMie2ZmYwY KOzc/APxaeTt1CgR4XpYQODQp19AP8KG8kDPGcd+WvgdYnGLKC4O1aG5iaQgYCba PxyBUu6994WW1QvIvPaRfrrBzQmlyWo86chsFLyU+o75oQSOIx3PRIaJ4smXi5vj HZjEXaHpM2dUqpcaKjGZtstPOQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB9e/R7s KzxpDn/HZ+sxMFY4RwdXMB8GA1UdIwQYMBaAFP07Tvj3mwrhJ+ceS2wYadgbIuiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9FMUEzODRBQzMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9fVHRPLVBlYkN1RW41eDVMYkJocDJCc2k2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19UdE8tUGViQ3VFbjV4NUxiQmhwMkJzaTZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIwRTAvRTFBMzg0QUMzMTBFMTFFQTlDM0NFNzJGQzRGOUFFMDIvQTU0NzcwNUFG MzRBMTFFRkE3QTRDMDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwckCUBVLQAwDQYJKoZIhvcNAQELBQADggEBAGCuA8RVoL3W Vt13eCclcvrBO9R/x7UfmK90QyJfw1Dt3/BTP96WD3lKP9nVHgtyck4LD9DgXxo8 Aps3fpMFRLzh2JntLonA07OzYNuQ7UvjKfGg5lbqQLF5MjaseBhDZaDTJIQprsrQ ozbLC69UV13VyFniBjP5QKBGbNsuG9XJc6afUzbyKsCEyl1pTAjk0lYFbJCNVuy+ TC9EPgmFegugsR8HXmc7TxzhoWP7OiYDWJjXdPMOpyxkvi5/YlrD3vQeSTJU2gK4 8etGwnSnd6aJskLgJnC5jVTRjffURqsZ1aIROjenkSpBicH4y5kPoxk9RrhoYnqx lPgACGNa7sw= -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:38 2025 by rpki-client