$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa File: 8610B9DCF33F11EEB412F210C4F9AE02.roa (raw, json) Hash identifier: pnaBbR2DtiTGY+c3G7fBP288UhK6UiUJopbmpztAwNM= Subject key identifier: A0:AB:DA:6C:59:61:28:3A:73:F2:A9:78:1C:5C:A4:22:A5:64:EF:4B Certificate issuer: /CN=A91C1A4E/serialNumber=A921635C7493F21CD26093D5903510802F4E3586 Certificate serial: 0B5C Authority key identifier: A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa Signing time: Wed 02 Apr 2025 19:19:13 +0000 ROA not before: Wed 02 Apr 2025 19:19:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138585 IP address blocks: 2404:53c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2908 (0xb5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A4E Validity Not Before: Apr 2 19:19:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ed8db1-b6a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:36:0b:d8:34:a5:42:38:f2:5c:ff:30:9e:6f: 3e:fc:e3:b5:96:c2:28:cc:08:fb:31:82:86:7a:c7: 31:ba:71:dd:04:3a:57:ec:8a:86:23:c6:b4:d6:2d: 91:f6:ca:8a:72:4e:18:e7:f3:3b:d5:5b:1f:0b:e4: 89:93:d0:b6:51:ff:b8:ea:48:a9:40:7a:57:15:ce: 22:fa:87:16:00:f7:07:1b:c2:5c:c2:ef:11:cd:95: 8e:48:2a:40:a1:c3:e7:22:80:08:a8:5d:fd:25:6c: 5c:cf:a9:7c:ee:4d:87:89:fd:f8:72:82:47:26:46: 4f:0d:76:e2:b5:a4:a0:4b:85:ac:4d:c1:08:cf:3a: 58:59:34:c8:58:12:e7:60:e5:b2:25:e6:9c:ff:aa: da:dc:d5:c7:db:01:99:0a:fc:0c:d5:22:9a:d1:a4: 1b:5f:69:de:9e:0d:87:c7:44:63:44:e7:e1:97:c7: 74:52:ae:f3:6f:cb:07:a7:9e:04:36:e5:27:06:51: 61:f4:7a:89:43:f9:8d:41:be:26:83:42:37:b9:6f: df:60:08:92:df:1e:ae:37:13:96:78:ec:1a:f1:60: 27:d2:51:97:d3:50:a2:9f:3e:41:de:8b:41:55:70: 7b:99:48:12:b4:81:99:38:9b:f3:6d:5d:28:90:df: 40:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AB:DA:6C:59:61:28:3A:73:F2:A9:78:1C:5C:A4:22:A5:64:EF:4B X509v3 Authority Key Identifier: keyid:A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:53c0::/32 Signature Algorithm: sha256WithRSAEncryption 67:7d:00:d0:2c:2c:a9:a8:7f:ab:d9:44:da:e1:2f:68:12:1d: 7a:d6:6e:8d:87:46:ac:90:6f:f9:88:57:59:2d:d2:98:93:bc: 79:f9:88:70:46:27:2a:8c:2b:f9:a4:06:f9:d1:e4:a7:a9:70: 5f:46:e8:47:4b:f0:2f:b2:a5:23:96:5f:19:45:d4:76:c6:2a: 38:02:c1:b8:2e:47:5c:5e:30:80:fb:ba:5c:f9:39:07:e6:f2: 19:8c:cc:fb:2c:ff:7b:e8:a4:34:c7:8f:2d:87:29:ec:60:c1: b3:a4:76:8b:73:c0:d5:e4:7a:a0:55:ba:f4:6b:cd:ee:a9:1a: 84:71:be:17:76:9f:b1:51:e6:6e:22:4b:83:b2:08:06:0f:57: d9:55:68:1e:ce:8a:6c:8a:b3:d3:92:74:5b:d7:5b:52:b3:30: 34:fd:8f:5b:d6:e0:0b:d1:5f:b0:ce:74:80:ac:a8:4a:51:d5: 41:03:3e:08:b1:67:dc:b9:0f:d1:54:13:79:80:b4:54:4f:19: cb:52:20:4b:09:12:2c:68:cf:c2:3c:02:ba:17:36:1a:f6:30: d3:97:24:60:45:80:05:55:8c:4f:85:bf:12:d4:f2:bd:3a:0b: 24:08:25:23:f0:82:ec:65:d9:f5:43:98:74:67:9c:66:95:15: bf:43:bc:38 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICC1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBNEUxMTAvBgNVBAUTKEE5MjE2MzVDNzQ5M0YyMUNEMjYwOTNENTkwMzUxMDgw MkY0RTM1ODYwHhcNMjUwNDAyMTkxOTEzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOGRiMS1iNmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzYL2DSlQjjyXP8wnm8+/OO1lsIozAj7MYKGescxunHdBDpX7IqGI8a01i2R 9sqKck4Y5/M71VsfC+SJk9C2Uf+46kipQHpXFc4i+ocWAPcHG8Jcwu8RzZWOSCpA ocPnIoAIqF39JWxcz6l87k2Hif34coJHJkZPDXbitaSgS4WsTcEIzzpYWTTIWBLn YOWyJeac/6ra3NXH2wGZCvwM1SKa0aQbX2neng2Hx0RjROfhl8d0Uq7zb8sHp54E NuUnBlFh9HqJQ/mNQb4mg0I3uW/fYAiS3x6uNxOWeOwa8WAn0lGX01Cinz5B3otB VXB7mUgStIGZOJvzbV0okN9AiQIDAQABo4ICljCCApIwHQYDVR0OBBYEFKCr2mxZ YSg6c/KpeBxcpCKlZO9LMB8GA1UdIwQYMBaAFKkhY1x0k/Ic0mCT1ZA1EIAvTjWG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUE0RS9BNDlCNEQ3NDM3 QzYxMUVBOUQ5NkFFNTFDNEY5QUUwMi9xU0ZqWEhTVDhoelNZSlBWa0RVUWdDOU9O WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRmpYSFNUOGh6U1lKUFZrRFVRZ0M5T05ZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBNEUvQTQ5QjRENzQzN0M2MTFFQTlEOTZBRTUxQzRGOUFFMDIvODYxMEI5RENG MzNGMTFFRUI0MTJGMjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBFPAMA0GCSqGSIb3DQEBCwUAA4IBAQBnfQDQLCypqH+r 2UTa4S9oEh161m6Nh0askG/5iFdZLdKYk7x5+YhwRicqjCv5pAb50eSnqXBfRuhH S/AvsqUjll8ZRdR2xio4AsG4LkdcXjCA+7pc+TkH5vIZjMz7LP976KQ0x48thyns YMGzpHaLc8DV5HqgVbr0a83uqRqEcb4Xdp+xUeZuIkuDsggGD1fZVWgezopsirPT knRb11tSszA0/Y9b1uAL0V+wznSArKhKUdVBAz4IsWfcuQ/RVBN5gLRUTxnLUiBL CRIsaM/CPAK6FzYa9jDTlyRgRYAFVYxPhb8S1PK9OgskCCUj8ILsZdn1Q5h0Z5xm lRW/Q7w4 -----END CERTIFICATE-----Generated at Sun Apr 6 17:33:10 2025 by rpki-client