$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa File: 4CC50DB2BB7811EE9416DD42C4F9AE02.roa (raw, json) Hash identifier: zPBkBX8TSXO+DP7kaXxBDzxvo14LuZd67QJ/cyraKFg= Subject key identifier: 6D:DB:6C:AD:83:6F:FC:F8:DF:DB:FA:A9:CE:B3:78:04:D4:58:3A:09 Certificate issuer: /CN=A91CDB75/serialNumber=7BE98C7AAAD87C9F259296301643A3610A7B5188 Certificate serial: C4 Authority key identifier: 7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa Signing time: Wed 05 Feb 2025 04:38:56 +0000 ROA not before: Wed 05 Feb 2025 04:38:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152446 IP address blocks: 2001:df3:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.crl rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDB75 Validity Not Before: Feb 5 04:38:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a2eb60-3783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:15:09:a1:21:bb:13:e3:d3:07:49:0c:b1: ee:06:31:f3:70:b3:fd:67:ce:84:f9:f8:8a:b5:45: f3:7e:31:75:66:5e:cf:d6:4e:3f:73:54:9c:2c:b6: 06:7c:3f:ca:33:24:e1:2f:16:bc:35:f3:b8:67:ad: 6f:43:c6:52:a3:80:b3:af:46:ba:56:7b:a9:c6:d0: 04:fb:0b:a2:8a:33:f4:aa:b1:df:7a:24:9e:9e:c3: 3d:03:e1:85:fd:e7:e4:f0:cc:1a:c3:55:f7:d8:72: bf:8a:c8:f9:c6:f7:43:f6:a7:73:17:2b:3c:e3:54: fd:00:ff:2b:8a:98:0b:b9:2f:f5:84:20:f3:2f:ba: 91:fe:67:ca:ed:04:4b:f1:45:a8:00:04:29:69:f9: ee:cf:cd:2e:5d:f9:bd:4d:05:8c:fc:ee:64:5a:0d: 23:c8:ca:c4:bb:17:eb:d1:23:aa:9a:30:79:a5:ff: e7:cd:fd:2b:4a:bd:75:78:c8:98:d3:7d:6e:a1:3c: 5d:e3:67:36:b2:4e:5b:de:e6:07:05:c7:49:d9:88: 33:1d:36:59:ae:1e:56:2a:c2:91:d5:cc:e5:60:ae: c2:ff:e4:d2:e3:dd:b4:e1:7d:e8:44:4e:88:d3:71: 19:17:00:44:41:54:af:cd:a8:16:ce:03:86:6c:90: b1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DB:6C:AD:83:6F:FC:F8:DF:DB:FA:A9:CE:B3:78:04:D4:58:3A:09 X509v3 Authority Key Identifier: keyid:7B:E9:8C:7A:AA:D8:7C:9F:25:92:96:30:16:43:A3:61:0A:7B:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-mMeqrYfJ8lkpYwFkOjYQp7UYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/E6519A14BB7711EEAAD7B241C4F9AE02/4CC50DB2BB7811EE9416DD42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 70:fe:f4:c9:40:c1:22:73:ca:86:a2:cb:61:b5:6a:39:9d:63: 36:45:f1:c4:84:93:5b:55:a4:63:7c:03:24:a4:32:6f:7e:e2: 7f:7b:a3:38:98:98:b9:47:4b:5d:a6:f4:fb:99:32:01:3b:ad: 86:79:e8:c1:dd:1d:61:15:1a:cb:db:eb:6f:98:db:fe:d7:a4: f6:82:f4:b2:27:00:56:43:2a:08:09:05:88:1a:f3:ff:ac:1e: 44:d9:be:d8:5f:b6:64:8f:49:a3:ff:eb:0f:b9:a4:46:04:b5: d9:8d:1f:00:6a:77:36:50:c8:12:1e:5f:74:da:b4:cc:eb:33: 3b:1c:45:49:c5:12:70:3c:33:11:00:cd:0a:8d:ac:75:ee:26: 55:88:d3:50:3f:36:de:09:a3:ad:4e:87:06:2d:e8:e9:8f:63: 9f:88:1e:66:d3:97:9f:7d:19:ed:96:9b:4c:e8:67:93:1b:09: 06:be:10:dd:98:e8:ba:fe:ac:c9:47:e1:14:d9:da:f1:32:a8: a6:41:ad:06:9b:c4:91:67:68:67:f6:e0:da:3a:fb:ec:4b:16: 55:ae:70:5d:41:a7:d6:13:83:3d:c5:38:43:a7:20:d2:a4:f8: d3:60:40:f2:e6:6e:53:0d:1c:c2:3f:6e:83:6d:e4:c8:34:bb: c9:d0:65:97 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RCNzUxMTAvBgNVBAUTKDdCRTk4QzdBQUFEODdDOUYyNTkyOTYzMDE2NDNBMzYx MEE3QjUxODgwHhcNMjUwMjA1MDQzODU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyZWI2MC0zNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNYVCaEhuxPj0wdJDLHuBjHzcLP9Z86E+fiKtUXzfjF1Zl7P1k4/c1ScLLYG fD/KMyThLxa8NfO4Z61vQ8ZSo4Czr0a6VnupxtAE+wuiijP0qrHfeiSensM9A+GF /efk8Mwaw1X32HK/isj5xvdD9qdzFys841T9AP8ripgLuS/1hCDzL7qR/mfK7QRL 8UWoAAQpafnuz80uXfm9TQWM/O5kWg0jyMrEuxfr0SOqmjB5pf/nzf0rSr11eMiY 031uoTxd42c2sk5b3uYHBcdJ2YgzHTZZrh5WKsKR1czlYK7C/+TS49204X3oRE6I 03EZFwBEQVSvzagWzgOGbJCx/QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFG3bbK2D b/z439v6qc6zeATUWDoJMB8GA1UdIwQYMBaAFHvpjHqq2HyfJZKWMBZDo2EKe1GI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREI3NS9FNjUxOUExNEJC NzcxMUVFQUFEN0IyNDFDNEY5QUUwMi9lLW1NZXFyWWZKOGxrcFl3RmtPallRcDdV WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UtbU1lcXJZZko4bGtwWXdGa09qWVFwN1VZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RCNzUvRTY1MTlBMTRCQjc3MTFFRUFBRDdCMjQxQzRGOUFFMDIvNENDNTBEQjJC Qjc4MTFFRTk0MTZERDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zZsAwDQYJKoZIhvcNAQELBQADggEBAHD+9MlAwSJz yoaiy2G1ajmdYzZF8cSEk1tVpGN8AySkMm9+4n97oziYmLlHS12m9PuZMgE7rYZ5 6MHdHWEVGsvb62+Y2/7XpPaC9LInAFZDKggJBYga8/+sHkTZvthftmSPSaP/6w+5 pEYEtdmNHwBqdzZQyBIeX3TatMzrMzscRUnFEnA8MxEAzQqNrHXuJlWI01A/Nt4J o61OhwYt6OmPY5+IHmbTl599Ge2Wm0zoZ5MbCQa+EN2Y6Lr+rMlH4RTZ2vEyqKZB rQabxJFnaGf24No6++xLFlWucF1Bp9YTgz3FOEOnINKk+NNgQPLmblMNHMI/boNt 5Mg0u8nQZZc= -----END CERTIFICATE-----Generated at Sat Apr 5 03:25:16 2025 by rpki-client