$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/EF6D0418235911EFB1B55375C4F9AE02.roa File: EF6D0418235911EFB1B55375C4F9AE02.roa (raw, json) Hash identifier: xAxqo/39ROKd3bFPPtYVdYrT8F7pY6ozf1j+GuGsqZc= Subject key identifier: 11:9D:A4:A9:AA:8F:5B:CF:E3:A1:65:AA:4F:73:D4:19:61:3A:09:FE Certificate issuer: /CN=A91C9B08/serialNumber=614CCD24F785E9299215916408294042F1463294 Certificate serial: 03C4 Authority key identifier: 61:4C:CD:24:F7:85:E9:29:92:15:91:64:08:29:40:42:F1:46:32:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YUzNJPeF6SmSFZFkCClAQvFGMpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/EF6D0418235911EFB1B55375C4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:24 +0000 ROA not before: Fri 07 Mar 2025 00:46:24 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 60068 IP address blocks: 2400:52e0:1e00::/48 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/YUzNJPeF6SmSFZFkCClAQvFGMpQ.crl rsync://rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/YUzNJPeF6SmSFZFkCClAQvFGMpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YUzNJPeF6SmSFZFkCClAQvFGMpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B08 Validity Not Before: Mar 7 00:46:24 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41df-a606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5f:3c:eb:44:0e:db:b8:c4:19:8f:06:6c:1d: c4:5d:bd:8c:2d:f8:01:20:5c:d7:12:e7:9d:8e:fb: f1:8b:b4:1f:dd:ad:ef:4f:a5:cf:ba:dc:b4:dc:ca: f7:cd:5b:f8:7d:cf:7c:d2:35:3e:b3:7d:c7:54:da: 27:55:51:0d:b0:e7:51:0a:36:50:20:f4:a7:ce:89: 44:17:d9:8e:ff:35:29:e6:a3:10:f2:03:cf:14:79: e5:4b:c4:58:8e:7b:f3:e2:d7:30:9c:8b:6a:92:86: e0:9e:0c:0d:78:0b:ea:d2:49:eb:de:ab:95:e6:7b: ba:57:00:93:4c:30:60:03:76:5d:c7:58:46:9b:0b: e1:30:f7:1a:87:01:60:83:3f:57:97:bf:f1:95:42: 0e:30:54:ce:2f:fb:21:67:2f:3b:d8:c2:5e:b1:0c: 39:ea:78:e6:34:95:73:52:4f:1a:83:a4:bb:b4:e4: 22:52:75:ec:c9:7c:35:b4:07:3f:56:39:77:4c:61: dc:bc:3d:a3:68:e1:a8:43:f2:cc:2f:ce:9a:9d:1e: c7:fa:36:f9:dd:7e:36:78:42:27:66:7b:ff:d7:71: 38:a9:55:ce:3c:e3:da:09:cd:dd:87:b2:1c:f9:b9: ff:f4:e7:8d:13:23:79:ab:97:06:8d:dc:d5:d7:81: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9D:A4:A9:AA:8F:5B:CF:E3:A1:65:AA:4F:73:D4:19:61:3A:09:FE X509v3 Authority Key Identifier: keyid:61:4C:CD:24:F7:85:E9:29:92:15:91:64:08:29:40:42:F1:46:32:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/YUzNJPeF6SmSFZFkCClAQvFGMpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YUzNJPeF6SmSFZFkCClAQvFGMpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B08/37553A56899D11EC8B424E0BC4F9AE02/EF6D0418235911EFB1B55375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:52e0:1e00::/48 Signature Algorithm: sha256WithRSAEncryption 26:16:79:52:9b:a8:6d:05:36:b3:cf:cc:d0:cf:77:82:7b:2d: 69:b0:91:99:69:f7:eb:12:b0:47:29:d0:94:8c:7e:ff:a5:58: 10:4b:02:12:05:07:9d:3d:19:90:21:a0:27:3e:16:3a:05:d6: f5:a5:b6:9b:82:b5:cd:25:5b:4c:87:45:ec:f8:ac:db:8f:34: 63:86:f5:2d:90:11:a8:dd:50:ac:59:31:43:66:21:d6:ad:94: 76:c2:14:f2:c4:54:4e:6a:f5:a5:81:f0:1d:8b:28:3c:c6:22: e8:d0:8e:24:5b:ae:99:2d:b8:49:fc:8d:7d:05:13:ad:ef:ae: 50:fd:7b:95:16:8f:23:e0:5e:8d:41:8b:75:25:88:bf:a6:11: 79:0b:ce:06:50:de:ee:22:e5:81:69:46:e0:4c:d0:e8:da:2f: 42:bc:24:41:e0:d8:3e:d3:cd:9a:fa:a2:62:bb:4c:64:b8:43: 00:38:ae:f1:15:eb:f9:19:b0:60:4a:7c:e7:c5:95:ee:bb:b5: 55:5d:81:7a:ee:c7:76:0e:b5:9f:8e:f4:b4:a8:3e:3b:36:6e: 62:04:df:16:62:50:40:aa:b6:12:e0:c4:f0:73:74:95:0c:0f: a9:3d:39:ec:c4:4a:9f:f3:2a:f8:ac:54:4c:80:e0:58:06:0d: b8:60:c1:1d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMDgxMTAvBgNVBAUTKDYxNENDRDI0Rjc4NUU5Mjk5MjE1OTE2NDA4Mjk0MDQy RjE0NjMyOTQwHhcNMjUwMzA3MDA0NjI0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFkZi1hNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF8860QO27jEGY8GbB3EXb2MLfgBIFzXEuedjvvxi7Qf3a3vT6XPuty03Mr3 zVv4fc980jU+s33HVNonVVENsOdRCjZQIPSnzolEF9mO/zUp5qMQ8gPPFHnlS8RY jnvz4tcwnItqkobgngwNeAvq0knr3quV5nu6VwCTTDBgA3Zdx1hGmwvhMPcahwFg gz9Xl7/xlUIOMFTOL/shZy872MJesQw56njmNJVzUk8ag6S7tOQiUnXsyXw1tAc/ Vjl3TGHcvD2jaOGoQ/LML86anR7H+jb53X42eEInZnv/13E4qVXOPOPaCc3dh7Ic +bn/9OeNEyN5q5cGjdzV14GIlQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBGdpKmq j1vP46Flqk9z1BlhOgn+MB8GA1UdIwQYMBaAFGFMzST3hekpkhWRZAgpQELxRjKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIwOC8zNzU1M0E1Njg5 OUQxMUVDOEI0MjRFMEJDNEY5QUUwMi9ZVXpOSlBlRjZTbVNGWkZrQ0NsQVF2RkdN cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lVek5KUGVGNlNtU0ZaRmtDQ2xBUXZGR01wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlCMDgvMzc1NTNBNTY4OTlEMTFFQzhCNDI0RTBCQzRGOUFFMDIvRUY2RDA0MTgy MzU5MTFFRkIxQjU1Mzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFLgHgAwDQYJKoZIhvcNAQELBQADggEBACYWeVKbqG0F NrPPzNDPd4J7LWmwkZlp9+sSsEcp0JSMfv+lWBBLAhIFB509GZAhoCc+FjoF1vWl tpuCtc0lW0yHRez4rNuPNGOG9S2QEajdUKxZMUNmIdatlHbCFPLEVE5q9aWB8B2L KDzGIujQjiRbrpktuEn8jX0FE63vrlD9e5UWjyPgXo1Bi3UliL+mEXkLzgZQ3u4i 5YFpRuBM0OjaL0K8JEHg2D7TzZr6omK7TGS4QwA4rvEV6/kZsGBKfOfFle67tVVd gXrux3YOtZ+O9LSoPjs2bmIE3xZiUECqthLgxPBzdJUMD6k9OezESp/zKvisVEyA 4FgGDbhgwR0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:20:55 2025 by rpki-client