$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/7CF0A45404DF11F0B877A115C4F9AE02.roa File: 7CF0A45404DF11F0B877A115C4F9AE02.roa (raw, json) Hash identifier: bc2WkbYAbuGAx2Gf2EfnLZLtMVMYcpQMrHnCADXGRJs= Subject key identifier: C7:50:E1:C7:37:14:67:35:13:49:5C:1F:08:E8:1B:56:C4:22:7A:1B Certificate issuer: /CN=A91C7AB9/serialNumber=59CA0ED6B96B70C29B3DD8E4EC598EA12E0DC2E6 Certificate serial: F5 Authority key identifier: 59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/7CF0A45404DF11F0B877A115C4F9AE02.roa Signing time: Wed 19 Mar 2025 16:30:37 +0000 ROA not before: Wed 19 Mar 2025 16:30:37 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136739 IP address blocks: 2401:f6a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AB9 Validity Not Before: Mar 19 16:30:37 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67daf12d-ce91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:df:9a:d1:65:d2:37:26:ab:36:d1:81:4c:82: d4:a4:55:a3:ef:91:ff:31:4c:ac:be:6c:af:d6:7c: c3:1e:80:0f:de:6c:63:c7:b1:3e:7e:a5:6a:04:9a: e7:ad:5a:fb:82:42:7b:26:df:49:b1:0a:67:6a:68: 2e:36:7d:03:99:09:b1:65:9c:83:70:86:85:7c:bc: cb:80:05:10:9a:21:45:e5:ba:7f:c0:bb:1d:68:5a: 03:a3:7d:59:b2:03:75:fc:ad:5d:e3:1f:c4:b6:31: 8c:9e:d3:72:00:b2:a2:19:3c:d1:52:e6:1c:73:8f: ff:5a:c0:04:bd:8e:5f:27:74:49:a9:7a:3b:41:91: c8:0e:cd:f2:68:ca:7b:9b:ea:41:97:1e:3d:96:01: 2b:e5:40:79:c7:c5:e8:e5:b2:9b:53:9a:db:e1:ea: f2:49:2a:6c:aa:49:97:e5:81:37:4e:9f:af:22:4c: 28:97:0a:dd:34:ba:98:11:2f:7e:6e:30:5a:4a:99: 54:05:66:d2:e2:9c:85:69:82:ab:1b:c8:87:e2:86: 1d:e4:05:25:fe:06:13:e9:3f:7a:85:0e:c6:56:c9: 71:69:0a:d2:95:dc:d6:fa:eb:97:f7:31:82:fd:43: 7f:8c:41:73:6c:36:54:b0:b7:2e:cb:87:4e:da:d5: 7c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:50:E1:C7:37:14:67:35:13:49:5C:1F:08:E8:1B:56:C4:22:7A:1B X509v3 Authority Key Identifier: keyid:59:CA:0E:D6:B9:6B:70:C2:9B:3D:D8:E4:EC:59:8E:A1:2E:0D:C2:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/WcoO1rlrcMKbPdjk7FmOoS4NwuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WcoO1rlrcMKbPdjk7FmOoS4NwuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AB9/AB5753069B1311EEAAAA3982C4F9AE02/7CF0A45404DF11F0B877A115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f6a0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:a1:91:14:35:c4:7d:2d:ac:2a:79:44:e1:e8:d1:65:26:af: 2b:c2:e5:ca:24:0e:a9:9a:c4:69:00:b7:c4:3a:bb:b6:8b:4b: 35:09:37:24:2f:f7:88:12:2f:b3:26:2b:30:c5:af:33:f0:63: 08:8f:1c:3a:1d:1a:04:1f:36:06:c4:49:18:51:a1:a6:38:60: c1:8d:27:14:5f:5f:20:53:32:c2:26:16:ed:49:ae:9d:25:28: 6f:55:ac:d2:ce:da:76:55:46:b5:c3:9b:60:08:c4:af:44:cc: 0a:38:6e:ff:56:cf:2c:49:da:4a:1a:af:76:19:76:4d:76:72: 1d:7e:cc:9c:ee:3b:1e:0a:26:d2:c0:c2:9f:14:eb:d7:cf:27: 1e:77:77:1d:26:13:68:16:e5:4f:df:5c:4d:80:05:df:93:7d: f7:f6:5d:a8:a9:38:51:82:b3:6c:11:6b:b4:65:01:23:e2:4c: d8:a3:db:74:40:49:11:e1:7c:4e:99:1b:9b:ef:6c:f1:76:56: 8d:75:2d:e7:3a:32:eb:8f:9d:8c:f0:7d:f6:31:6f:2d:63:ca: 61:1d:3b:4a:b4:59:da:d7:13:57:ce:4a:4c:77:19:c2:5d:3b: d8:e4:0f:cd:89:13:68:a6:52:49:b9:80:f1:9d:f8:bb:b5:ce: cc:6c:02:ce -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQjkxMTAvBgNVBAUTKDU5Q0EwRUQ2Qjk2QjcwQzI5QjNERDhFNEVDNTk4RUEx MkUwREMyRTYwHhcNMjUwMzE5MTYzMDM3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RhZjEyZC1jZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49+a0WXSNyarNtGBTILUpFWj75H/MUysvmyv1nzDHoAP3mxjx7E+fqVqBJrn rVr7gkJ7Jt9JsQpnamguNn0DmQmxZZyDcIaFfLzLgAUQmiFF5bp/wLsdaFoDo31Z sgN1/K1d4x/EtjGMntNyALKiGTzRUuYcc4//WsAEvY5fJ3RJqXo7QZHIDs3yaMp7 m+pBlx49lgEr5UB5x8Xo5bKbU5rb4erySSpsqkmX5YE3Tp+vIkwolwrdNLqYES9+ bjBaSplUBWbS4pyFaYKrG8iH4oYd5AUl/gYT6T96hQ7GVslxaQrSldzW+uuX9zGC /UN/jEFzbDZUsLcuy4dO2tV8yQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMdQ4cc3 FGc1E0lcHwjoG1bEInobMB8GA1UdIwQYMBaAFFnKDta5a3DCmz3Y5OxZjqEuDcLm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FCOS9BQjU3NTMwNjlC MTMxMUVFQUFBQTM5ODJDNEY5QUUwMi9XY29PMXJscmNNS2JQZGprN0ZtT29TNE53 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1djb08xcmxyY01LYlBkams3Rm1Pb1M0Tnd1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQjkvQUI1NzUzMDY5QjEzMTFFRUFBQUEzOTgyQzRGOUFFMDIvN0NGMEE0NTQw NERGMTFGMEI4NzdBMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAfagMA0GCSqGSIb3DQEBCwUAA4IBAQCfoZEUNcR9Lawq eUTh6NFlJq8rwuXKJA6pmsRpALfEOru2i0s1CTckL/eIEi+zJiswxa8z8GMIjxw6 HRoEHzYGxEkYUaGmOGDBjScUX18gUzLCJhbtSa6dJShvVazSztp2VUa1w5tgCMSv RMwKOG7/Vs8sSdpKGq92GXZNdnIdfsyc7jseCibSwMKfFOvXzyced3cdJhNoFuVP 31xNgAXfk3339l2oqThRgrNsEWu0ZQEj4kzYo9t0QEkR4XxOmRub72zxdlaNdS3n OjLrj52M8H32MW8tY8phHTtKtFna1xNXzkpMdxnCXTvY5A/NiRNoplJJuYDxnfi7 tc7MbALO -----END CERTIFICATE-----Generated at Sat Apr 5 02:03:09 2025 by rpki-client