$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5F14A15442D111EF8424E65BC4F9AE02.roa File: 5F14A15442D111EF8424E65BC4F9AE02.roa (raw, json) Hash identifier: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs= Subject key identifier: BE:4B:59:5A:55:52:C0:2B:8E:0A:D7:DB:78:C8:B8:BC:40:73:8A:6B Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 03FD Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5F14A15442D111EF8424E65BC4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:01 +0000 ROA not before: Fri 07 Mar 2025 00:46:01 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140641 IP address blocks: 2400:54a0:20b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0 Validity Not Before: Mar 7 00:46:01 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41c9-229f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f1:8f:f7:2d:c8:fb:11:34:88:32:6b:d5:dc: 01:1e:fe:34:c2:06:af:7e:78:aa:8e:50:2f:79:d1: 7b:4d:fe:d4:73:99:80:2b:de:87:af:8e:20:09:dd: 4e:ff:02:e3:e3:0b:7f:de:4a:2c:cd:35:8c:4e:8f: a5:0a:bb:f0:8f:41:6f:ec:4c:aa:68:af:bc:ce:01: 34:50:79:cd:0d:b5:6e:b0:55:24:6e:2c:77:af:49: 78:2f:e4:5a:a8:f4:30:94:ef:5f:51:8e:df:ca:a3: af:1d:77:19:63:24:f0:cf:c8:e8:da:f8:4f:04:fe: 4c:cd:10:a0:c5:61:b4:ec:18:c0:ea:d6:1c:76:34: 3f:6a:02:ef:dd:ab:35:83:61:44:87:a8:35:fb:20: 66:2e:83:f5:c6:4c:8c:70:0f:f3:8f:d5:e8:5b:df: d3:b6:bc:7c:31:d4:11:3a:7c:53:3c:54:a1:ea:c9: 36:4f:d2:ea:22:3d:4e:55:3f:4b:85:72:bd:66:04: a4:2c:d6:49:d2:11:61:e8:b9:c4:1e:75:12:e2:29: 27:b6:37:0e:f0:db:ce:49:ac:96:c9:57:b5:29:12: 83:47:26:04:a0:5c:af:1f:ba:ad:4a:11:cf:18:bc: 5c:5f:2a:53:a1:1e:59:28:65:35:a8:d5:ba:53:b6: 48:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4B:59:5A:55:52:C0:2B:8E:0A:D7:DB:78:C8:B8:BC:40:73:8A:6B X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/5F14A15442D111EF8424E65BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:54a0:20b0::/48 Signature Algorithm: sha256WithRSAEncryption 04:83:ac:b2:5e:e0:fc:d4:f4:c6:5f:05:e4:bb:f0:4e:6e:69: 8a:c9:25:b7:f9:f9:f2:67:f1:81:4b:3f:98:d4:bc:dc:89:79: 1c:89:eb:92:62:7c:a1:d1:7f:d6:36:b7:ad:eb:17:a9:bf:2e: 07:85:2d:16:81:f7:38:92:3c:10:c4:26:dc:40:25:0f:7c:52: 27:8d:a2:84:8e:4e:a9:4b:7e:55:ba:31:d6:32:18:70:30:f0: b7:00:f8:ab:86:3c:2e:ab:51:a0:16:b2:17:04:d8:26:73:3a: e6:96:76:55:89:f2:e4:ab:92:7b:cc:94:4d:81:8d:d2:15:50: 69:01:81:4b:84:89:88:47:d7:2f:63:c1:b0:f4:d0:b3:c5:cc: fb:5c:5b:66:4b:67:1a:6c:73:07:fc:21:8d:72:21:ec:39:9e: b9:02:cf:3b:d8:01:1e:a1:b6:7e:8f:60:59:73:62:30:af:5e: d1:d1:3e:c7:08:2d:5d:fb:b7:5c:94:3a:e2:e5:17:80:b7:ef: d8:53:07:25:e6:d8:4a:56:20:bc:e1:b7:f6:d3:93:ca:60:53: 44:ed:3b:c0:90:dd:e0:f1:1d:9a:e1:99:d1:b1:d7:c6:84:33: 36:7b:7d:9e:62:20:44:58:a5:55:3d:4f:79:05:88:e7:36:c4: c5:9c:18:ac -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwMzA3MDA0NjAxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFjOS0yMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7fGP9y3I+xE0iDJr1dwBHv40wgavfniqjlAvedF7Tf7Uc5mAK96Hr44gCd1O /wLj4wt/3koszTWMTo+lCrvwj0Fv7EyqaK+8zgE0UHnNDbVusFUkbix3r0l4L+Ra qPQwlO9fUY7fyqOvHXcZYyTwz8jo2vhPBP5MzRCgxWG07BjA6tYcdjQ/agLv3as1 g2FEh6g1+yBmLoP1xkyMcA/zj9XoW9/Ttrx8MdQROnxTPFSh6sk2T9LqIj1OVT9L hXK9ZgSkLNZJ0hFh6LnEHnUS4ikntjcO8NvOSayWyVe1KRKDRyYEoFyvH7qtShHP GLxcXypToR5ZKGU1qNW6U7ZIRwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFL5LWVpV UsArjgrX23jIuLxAc4prMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvNUYxNEExNTQ0 MkQxMTFFRjg0MjRFNjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFSgILAwDQYJKoZIhvcNAQELBQADggEBAASDrLJe4PzU 9MZfBeS78E5uaYrJJbf5+fJn8YFLP5jUvNyJeRyJ65JifKHRf9Y2t63rF6m/LgeF LRaB9ziSPBDEJtxAJQ98UieNooSOTqlLflW6MdYyGHAw8LcA+KuGPC6rUaAWshcE 2CZzOuaWdlWJ8uSrknvMlE2BjdIVUGkBgUuEiYhH1y9jwbD00LPFzPtcW2ZLZxps cwf8IY1yIew5nrkCzzvYAR6htn6PYFlzYjCvXtHRPscILV37t1yUOuLlF4C379hT ByXm2EpWILzht/bTk8pgU0TtO8CQ3eDxHZrhmdGx18aEMzZ7fZ5iIERYpVU9T3kF iOc2xMWcGKw= -----END CERTIFICATE-----Generated at Sat Apr 5 08:23:35 2025 by rpki-client