$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa File: F5D6628C205011EB9EC2AA46C4F9AE02.roa (raw, json) Hash identifier: UjevdaGjYYh/fLHbv94Vi82GRHni+SflrmcRbP8Ltsg= Subject key identifier: 94:B0:F5:1D:06:A8:CE:46:CE:72:6B:08:5E:A5:27:D0:01:9E:D4:F6 Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 079B Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa Signing time: Tue 10 Dec 2024 21:50:48 +0000 ROA not before: Tue 10 Dec 2024 21:50:48 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141173 IP address blocks: 2406:9dc0:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F Validity Not Before: Dec 10 21:50:48 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758b7b8-8f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b8:61:76:31:c4:e9:f2:16:d3:bf:fe:d4:65: e6:0e:a5:99:6c:33:df:ed:7a:1b:71:c5:5a:a9:b3: 0f:14:0a:36:f8:bb:00:f9:77:54:5f:32:00:29:29: 87:1d:29:e4:e9:d3:74:6a:39:7d:4e:5c:42:5f:d0: 59:81:a4:6d:77:a0:e3:bb:b1:50:52:be:6a:56:f1: 31:32:b2:22:32:4b:bf:4f:06:81:cc:75:32:78:0f: 5c:40:25:0f:e7:74:57:3b:10:92:21:f3:00:b6:1f: 65:8b:4a:0b:51:bd:44:ab:81:d6:98:e7:54:62:ff: 91:75:98:db:1a:0d:50:4f:12:f0:81:a9:08:a7:28: 23:e6:02:a3:4c:36:49:33:4a:bb:b3:fc:f5:6f:5e: 90:d9:87:fb:98:ba:7e:3f:51:f2:c2:8a:ed:91:4a: b6:3d:9d:75:0f:52:bd:9a:d9:b4:79:97:f4:96:63: 4c:66:7a:61:b0:82:33:fa:ac:ef:c0:8d:64:33:ec: e7:d1:bf:d5:c9:6e:c5:e0:1f:7c:07:cf:de:85:66: 97:5e:4a:02:a8:6e:85:f7:4b:6e:03:b6:58:d4:9f: 33:01:de:d1:b5:1e:c8:d8:52:71:8d:92:29:d4:33: a7:6a:71:0d:a9:d8:cd:65:ac:de:a9:5a:26:7a:cc: 47:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B0:F5:1D:06:A8:CE:46:CE:72:6B:08:5E:A5:27:D0:01:9E:D4:F6 X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/F5D6628C205011EB9EC2AA46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:40::/44 Signature Algorithm: sha256WithRSAEncryption 82:fd:41:17:38:fb:18:a5:a1:40:ee:a6:27:dc:03:c7:05:68: 2c:a5:22:60:20:a4:32:b7:bf:90:b3:21:5d:75:54:95:ca:ec: 5d:fb:b4:8e:dc:f6:1e:7a:a3:ed:64:4e:d8:4f:5c:b8:5b:53: 7a:c4:fb:e1:28:af:05:23:0b:70:34:5c:01:26:22:20:8a:88: 97:27:f7:db:59:d8:40:a7:00:28:86:d5:15:da:56:ad:79:15: 49:63:bf:dc:0e:10:02:62:23:ae:3a:00:8f:ee:ff:be:2e:6d: c8:44:07:29:64:29:3e:4e:94:e8:27:7f:e3:b5:75:8f:5b:83: ed:cf:58:c1:17:8d:78:21:4e:6f:b1:dc:5b:9e:82:3a:2f:a3: 0a:98:57:e2:6a:89:7a:2b:71:c4:61:f7:f5:2e:d7:91:2d:30: a4:fb:3e:13:40:60:03:73:77:f5:2d:64:70:59:a0:4d:05:58: f7:e0:7d:77:a0:b3:bd:47:f7:15:41:4d:db:c8:f6:5f:fa:cc: d2:09:96:8a:f2:25:a6:b1:f2:a8:42:8d:c6:4d:30:14:aa:1d: 82:92:43:cf:bf:9f:e1:fb:f8:0c:50:6e:ae:74:92:fa:52:3e: 5b:ea:54:ee:60:e1:80:6a:e4:0e:20:cc:b6:48:81:d2:da:47: bb:ea:1a:17 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjQxMjEwMjE1MDQ4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YjdiOC04ZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbhhdjHE6fIW07/+1GXmDqWZbDPf7XobccVaqbMPFAo2+LsA+XdUXzIAKSmH HSnk6dN0ajl9TlxCX9BZgaRtd6Dju7FQUr5qVvExMrIiMku/TwaBzHUyeA9cQCUP 53RXOxCSIfMAth9li0oLUb1Eq4HWmOdUYv+RdZjbGg1QTxLwgakIpygj5gKjTDZJ M0q7s/z1b16Q2Yf7mLp+P1HywortkUq2PZ11D1K9mtm0eZf0lmNMZnphsIIz+qzv wI1kM+zn0b/VyW7F4B98B8/ehWaXXkoCqG6F90tuA7ZY1J8zAd7RtR7I2FJxjZIp 1DOnanENqdjNZazeqVomesxH0wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJSw9R0G qM5GznJrCF6lJ9ABntT2MB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvRjVENjYyOEMy MDUwMTFFQjlFQzJBQTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBp3AAEAwDQYJKoZIhvcNAQELBQADggEBAIL9QRc4+xil oUDupifcA8cFaCylImAgpDK3v5CzIV11VJXK7F37tI7c9h56o+1kTthPXLhbU3rE ++EorwUjC3A0XAEmIiCKiJcn99tZ2ECnACiG1RXaVq15FUljv9wOEAJiI646AI/u /74ubchEBylkKT5OlOgnf+O1dY9bg+3PWMEXjXghTm+x3FuegjovowqYV+JqiXor ccRh9/Uu15EtMKT7PhNAYANzd/UtZHBZoE0FWPfgfXegs71H9xVBTdvI9l/6zNIJ loryJaax8qhCjcZNMBSqHYKSQ8+/n+H7+AxQbq50kvpSPlvqVO5g4YBq5A4gzLZI gdLaR7vqGhc= -----END CERTIFICATE-----Generated at Sat Apr 5 03:57:03 2025 by rpki-client