$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/3D3827F2D6EE11EFB955866CC4F9AE02.roa File: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (raw, json) Hash identifier: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao= Subject key identifier: 21:97:90:1F:C8:EE:26:68:87:10:0B:9D:B1:28:EF:5E:A0:0D:89:63 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 02 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/3D3827F2D6EE11EFB955866CC4F9AE02.roa Signing time: Mon 20 Jan 2025 05:20:19 +0000 ROA not before: Mon 20 Jan 2025 05:20:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153530 IP address blocks: 2001:df4:f140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063 Validity Not Before: Jan 20 05:20:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=678ddd13-98ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:58:92:5b:7a:b8:46:b2:a5:6a:85:cd:93:e4: 06:02:e1:22:62:41:b4:b7:e3:35:de:2f:a1:e4:d6: 17:20:24:b3:f0:a0:7c:86:5a:65:25:d8:7e:6e:30: ae:da:44:57:a1:60:6f:6e:8d:60:4b:af:6a:a3:68: 7a:e4:49:32:e9:f7:0c:ff:f8:37:c6:cb:8b:a8:b6: af:82:fd:47:93:4e:b4:c1:d6:1b:04:ea:cb:b4:ef: 7b:a8:03:c6:c2:af:0f:32:7c:99:55:f0:a7:50:7e: 76:62:be:67:36:a3:1c:e2:c5:1f:d5:d6:ae:29:32: 1f:27:39:28:4e:10:b6:69:4c:31:5d:a6:5c:26:d4: bc:a3:e0:99:98:bd:49:e3:8f:f8:18:50:91:90:08: dd:db:85:db:19:33:fd:6a:64:84:de:45:0d:cc:21: 07:91:85:07:a7:ab:0e:9e:4e:ea:ab:4a:2f:56:f4: 7b:14:46:49:8d:3b:c2:73:a9:d2:65:b4:e0:6f:40: 8f:be:a9:3a:09:79:e1:26:75:13:f7:85:36:8c:d2: 31:8d:c5:34:14:a8:ec:b6:33:4c:a9:d5:97:bf:36: e6:51:b5:f2:77:7d:4f:3e:97:4b:6e:6d:b1:a1:65: 0a:8b:9a:8c:53:9e:bf:d2:d9:78:89:b6:ed:95:fe: 2f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:97:90:1F:C8:EE:26:68:87:10:0B:9D:B1:28:EF:5E:A0:0D:89:63 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/3D3827F2D6EE11EFB955866CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:f140::/48 Signature Algorithm: sha256WithRSAEncryption 97:fb:6f:33:8d:85:c2:07:26:4d:04:f1:20:9b:c2:c6:ab:8f: 9d:77:b7:f8:46:1c:cf:9e:f3:4c:d1:5f:98:3a:23:a8:09:81: fc:01:2f:f8:8f:9f:c0:4f:63:6f:c5:40:93:f3:31:9d:3e:99: 13:82:ea:d2:1b:c7:ec:97:2c:be:dc:82:a2:a7:36:96:39:92: c5:73:ce:fa:5e:ef:33:f8:67:96:c5:ef:41:17:3c:84:d6:c1: d9:36:89:b7:11:0d:0c:f4:65:1c:4c:b6:54:92:23:ee:4f:af: cf:12:b0:32:92:c8:11:81:c7:51:8f:f4:54:ad:c6:61:f8:fa: 51:7c:72:c7:78:a2:24:31:c5:a2:6b:de:55:d5:d9:ce:cd:47: f4:b3:e0:a8:ed:79:63:47:0c:5f:57:74:46:d8:92:3c:27:97: 25:fd:e1:a4:73:3a:e1:d6:6d:67:30:01:5f:c8:ca:15:e0:fe: 84:da:eb:26:41:83:41:6a:f8:ea:f1:08:48:5e:b5:f4:01:72: 91:15:8a:7a:ce:d4:69:a2:b5:55:51:0c:86:7f:30:b7:e3:93: 7e:99:bb:6f:43:3c:cc:38:1c:3b:31:56:04:94:d5:e1:f8:0d: 4a:90:8c:ab:bb:de:13:d2:df:e2:43:f6:dd:9c:5a:f6:26:1f: a1:9c:a1:ac -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG RTZEMEIxMTAeFw0yNTAxMjAwNTIwMTlaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OGRkZDEzLTk4Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAWJJberhGsqVqhc2T5AYC4SJiQbS34zXeL6Hk1hcgJLPwoHyGWmUl2H5uMK7a RFehYG9ujWBLr2qjaHrkSTLp9wz/+DfGy4uotq+C/UeTTrTB1hsE6su073uoA8bC rw8yfJlV8KdQfnZivmc2oxzixR/V1q4pMh8nOShOELZpTDFdplwm1Lyj4JmYvUnj j/gYUJGQCN3bhdsZM/1qZITeRQ3MIQeRhQenqw6eTuqrSi9W9HsURkmNO8JzqdJl tOBvQI++qToJeeEmdRP3hTaM0jGNxTQUqOy2M0yp1Ze/NuZRtfJ3fU8+l0tubbGh ZQqLmoxTnr/S2XiJtu2V/i/jAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUIZeQH8ju JmiHEAudsSjvXqANiWMwHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjA2My82QzBGOTYxMEQ2RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi8zRDM4MjdGMkQ2 RUUxMUVGQjk1NTg2NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTxQDANBgkqhkiG9w0BAQsFAAOCAQEAl/tvM42Fwgcm TQTxIJvCxquPnXe3+EYcz57zTNFfmDojqAmB/AEv+I+fwE9jb8VAk/MxnT6ZE4Lq 0hvH7JcsvtyCoqc2ljmSxXPO+l7vM/hnlsXvQRc8hNbB2TaJtxENDPRlHEy2VJIj 7k+vzxKwMpLIEYHHUY/0VK3GYfj6UXxyx3iiJDHFomveVdXZzs1H9LPgqO15Y0cM X1d0RtiSPCeXJf3hpHM64dZtZzABX8jKFeD+hNrrJkGDQWr46vEISF619AFykRWK es7UaaK1VVEMhn8wt+OTfpm7b0M8zDgcOzFWBJTV4fgNSpCMq7veE9Lf4kP23Zxa 9iYfoZyhrA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:12 2025 by rpki-client