$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa File: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (raw, json) Hash identifier: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE= Subject key identifier: AC:C2:56:40:BC:5A:AB:FC:97:FF:AA:DD:E4:82:08:99:3A:9C:E0:98 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: C5 Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa Signing time: Thu 23 Jan 2025 04:18:16 +0000 ROA not before: Thu 23 Jan 2025 04:18:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152342 IP address blocks: 2001:df3:6540::/48 maxlen: 48 2001:df3:6540::/49 maxlen: 49 2001:df3:6540:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A Validity Not Before: Jan 23 04:18:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6791c308-2c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b3:c3:59:14:4b:6c:97:c5:39:1d:ea:08:c1: 76:8c:cf:85:08:32:77:1e:1c:a6:48:97:95:08:3e: 53:06:98:a4:bf:42:9b:a2:7b:43:41:08:a8:82:c3: c4:af:a3:2a:f3:ac:45:bc:ab:e0:49:fe:80:69:5b: 46:f0:40:30:6a:3d:9d:0b:13:b8:cb:d5:33:52:05: fa:91:c0:8d:14:fd:a7:77:9c:bc:04:de:1f:36:87: 13:40:93:0a:8c:42:ce:2d:f2:09:23:5f:1d:d9:f3: 1c:fb:39:47:e7:34:3e:e9:bf:ff:af:58:8c:f4:b0: c3:4a:0a:b4:90:50:29:0b:00:1b:e9:61:1a:ea:78: 96:25:3d:8d:a8:8a:50:5f:11:a1:ae:5f:d3:77:24: eb:d1:ce:d0:71:9f:76:65:c4:40:67:f8:75:32:d4: 57:e1:ac:3d:c0:ee:6c:4f:b2:9a:c0:39:cf:a6:0e: 81:c7:bf:1a:1f:52:55:87:ba:82:de:31:a2:1a:c6: f7:55:c3:07:0c:79:dc:9f:25:5f:d1:4e:6c:6b:6b: 69:21:20:43:fd:90:80:ce:bb:16:d8:32:5e:75:ac: 5e:24:dd:9d:ae:5c:69:35:ad:ab:47:27:e3:a0:52: 2f:fd:f1:e8:cf:51:d4:56:c8:7b:cb:2b:6f:74:82: 80:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C2:56:40:BC:5A:AB:FC:97:FF:AA:DD:E4:82:08:99:3A:9C:E0:98 X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6540::/48 Signature Algorithm: sha256WithRSAEncryption cd:8b:35:83:a9:ba:01:5d:dc:bf:6b:c8:c4:91:7c:fc:70:6b: e6:1f:70:10:da:b9:a3:e6:59:a6:85:1f:2a:fe:ea:13:a6:9a: 0d:4f:30:8e:79:5b:9f:07:19:03:78:79:a5:aa:9b:ea:98:e4: e5:46:3d:94:79:77:e2:b0:f2:5f:9a:3f:0b:34:0b:3c:8f:87: 95:fc:08:00:09:c4:5c:ef:fc:54:96:91:06:82:e7:04:84:77: 1e:4f:2b:b1:78:10:68:d3:22:6e:93:86:97:aa:1b:68:08:12: 20:a5:07:4b:b0:88:38:8f:d3:07:45:ec:dd:a6:78:99:ad:e2: 37:72:48:ae:0b:05:1e:54:3d:74:6f:a7:b3:54:68:d8:ed:05: 5a:02:31:b8:38:bb:22:57:c0:8c:cd:e4:1b:6e:2c:cc:32:6d: 23:83:5d:41:7b:23:be:49:ed:44:02:38:63:51:a1:56:23:e4: 59:1d:7e:71:53:65:fd:8c:30:33:6d:11:e2:bf:ca:1c:9e:45: 92:f8:96:ef:3e:41:c8:4a:5d:a5:79:97:ff:bf:b7:ad:6c:b0: 2b:1b:c4:84:6d:12:77:06:d0:cc:4d:e7:05:8f:bb:50:95:78: ce:a2:26:30:69:56:be:85:c8:30:46:62:a2:c8:ed:9b:ae:be: 40:d9:24:c3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUwMTIzMDQxODE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxYzMwOC0yYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrPDWRRLbJfFOR3qCMF2jM+FCDJ3HhymSJeVCD5TBpikv0KbontDQQiogsPE r6Mq86xFvKvgSf6AaVtG8EAwaj2dCxO4y9UzUgX6kcCNFP2nd5y8BN4fNocTQJMK jELOLfIJI18d2fMc+zlH5zQ+6b//r1iM9LDDSgq0kFApCwAb6WEa6niWJT2NqIpQ XxGhrl/TdyTr0c7QcZ92ZcRAZ/h1MtRX4aw9wO5sT7KawDnPpg6Bx78aH1JVh7qC 3jGiGsb3VcMHDHncnyVf0U5sa2tpISBD/ZCAzrsW2DJedaxeJN2drlxpNa2rRyfj oFIv/fHoz1HUVsh7yytvdIKAEQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKzCVkC8 Wqv8l/+q3eSCCJk6nOCYMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZENUEvMjM3NUIzMDZCOTQ1MTFFRUJCODE4ODM0QzRGOUFFMDIvRDYwQjFCQ0NC OUFGMTFFRTk3RUVEQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zZUAwDQYJKoZIhvcNAQELBQADggEBAM2LNYOpugFd 3L9ryMSRfPxwa+YfcBDauaPmWaaFHyr+6hOmmg1PMI55W58HGQN4eaWqm+qY5OVG PZR5d+Kw8l+aPws0CzyPh5X8CAAJxFzv/FSWkQaC5wSEdx5PK7F4EGjTIm6Thpeq G2gIEiClB0uwiDiP0wdF7N2meJmt4jdySK4LBR5UPXRvp7NUaNjtBVoCMbg4uyJX wIzN5BtuLMwybSODXUF7I75J7UQCOGNRoVYj5FkdfnFTZf2MMDNtEeK/yhyeRZL4 lu8+QchKXaV5l/+/t61ssCsbxIRtEncG0MxN5wWPu1CVeM6iJjBpVr6FyDBGYqLI 7ZuuvkDZJMM= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:50 2025 by rpki-client