$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa File: D46B2C087F8711EC81E76A59C4F9AE02.roa (raw, json) Hash identifier: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478= Subject key identifier: 63:3C:03:B0:6B:12:19:2C:E2:10:5D:45:88:B4:7C:CD:5A:2D:72:BC Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 03FE Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:02 +0000 ROA not before: Fri 07 Mar 2025 00:46:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149476 IP address blocks: 2400:54a0::/48 maxlen: 48 2400:54a0:1004::/48 maxlen: 48 2400:54a0:1030::/48 maxlen: 48 2400:54a0:2040::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0 Validity Not Before: Mar 7 00:46:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41ca-09ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9c:57:a8:6f:43:68:ad:da:3c:e3:08:a7:a9: 02:0e:ea:08:87:fc:52:a5:79:91:8e:76:fd:04:99: 5c:c3:ab:88:75:e0:09:ed:ca:70:18:5d:cd:ce:17: 3b:62:18:c7:9e:54:db:c2:34:08:55:c5:63:8e:d3: 35:a3:08:f6:60:88:63:7e:b6:43:ec:c4:34:da:6a: e2:d2:b9:46:d8:f5:b1:b3:5d:75:b1:44:84:e4:cc: ad:62:f3:a3:1b:e8:af:41:e7:14:b2:f8:8f:37:72: 8d:dd:53:ca:9d:c7:fb:87:37:51:16:08:8b:26:5a: 6e:7b:53:6e:34:3e:67:b2:16:79:fe:a1:42:50:c2: cd:bc:3c:91:42:f7:2d:7f:87:d0:18:a3:49:39:ec: 8c:b9:d4:d8:29:66:b6:af:0d:17:7f:9d:13:91:7d: 73:c9:2c:ef:e9:eb:59:b0:f5:85:79:ec:ab:a9:01: 92:87:02:da:c1:5d:c2:39:26:ae:07:88:6c:75:42: 53:9f:57:15:aa:e5:58:25:b7:37:c1:39:c8:97:d3: 9c:c5:08:ac:d5:75:1b:8e:52:de:cc:25:8d:23:98: 29:22:cb:c7:c1:dc:38:8c:81:aa:bf:ca:ee:c9:32: ab:4b:f2:01:93:45:35:04:55:62:76:e4:31:a3:dd: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3C:03:B0:6B:12:19:2C:E2:10:5D:45:88:B4:7C:CD:5A:2D:72:BC X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:54a0::/48 2400:54a0:1004::/48 2400:54a0:1030::/48 2400:54a0:2040::/44 Signature Algorithm: sha256WithRSAEncryption 83:67:6a:e0:57:99:56:12:55:8e:33:ea:0b:6e:cf:81:5d:de: 9c:31:23:9f:2d:4b:c5:d4:d2:24:6f:b9:9f:ef:bf:b3:75:7c: 23:af:54:31:52:ce:67:81:5d:67:a0:38:e2:1f:71:b4:7a:49: 46:e0:b0:4a:d7:36:14:d4:9d:96:27:b4:66:b4:97:90:e0:5f: 8a:73:c0:76:fc:27:0b:d3:a5:3d:a7:37:fa:9c:dc:39:52:24: 2c:e9:05:5c:93:33:74:3d:cd:64:d8:c0:e9:4f:8c:11:b8:76: 02:2c:26:e5:42:95:b2:fa:b7:9b:97:ea:da:48:f9:b7:a0:99: 7b:56:bc:96:42:7f:fe:ce:1f:1d:70:b0:ef:b7:f9:be:6d:0d: b0:9b:6c:b6:a9:dd:03:14:b7:53:09:d0:16:a0:b6:62:36:12: c9:f3:8e:43:75:09:58:6b:49:30:e9:4f:00:9f:39:42:aa:ce: e1:0b:04:b2:4a:7d:97:4e:e7:0f:c2:4a:22:3f:f3:f0:bf:1f: 8b:00:fc:f7:13:67:86:71:0f:63:09:6c:b9:14:ce:7b:2f:9d: 20:a3:64:1f:51:f2:6e:61:5b:ad:b4:54:86:dd:38:7c:dd:e9: 8e:d3:b3:32:b6:3c:55:60:62:bf:4e:82:94:c7:66:d6:d2:82: 2d:8c:2a:d0 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwMzA3MDA0NjAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFjYS0wOWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopxXqG9DaK3aPOMIp6kCDuoIh/xSpXmRjnb9BJlcw6uIdeAJ7cpwGF3Nzhc7 YhjHnlTbwjQIVcVjjtM1owj2YIhjfrZD7MQ02mri0rlG2PWxs111sUSE5MytYvOj G+ivQecUsviPN3KN3VPKncf7hzdRFgiLJlpue1NuND5nshZ5/qFCUMLNvDyRQvct f4fQGKNJOeyMudTYKWa2rw0Xf50TkX1zySzv6etZsPWFeeyrqQGShwLawV3COSau B4hsdUJTn1cVquVYJbc3wTnIl9OcxQis1XUbjlLezCWNI5gpIsvHwdw4jIGqv8ru yTKrS/IBk0U1BFViduQxo92gZQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFGM8A7Br Ehks4hBdRYi0fM1aLXK8MB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvRDQ2QjJDMDg3 Rjg3MTFFQzgxRTc2QTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwAkAFSgAAADBwAkAFSgEAQDBwAkAFSgEDADBwQkAFSgIEAw DQYJKoZIhvcNAQELBQADggEBAINnauBXmVYSVY4z6gtuz4Fd3pwxI58tS8XU0iRv uZ/vv7N1fCOvVDFSzmeBXWegOOIfcbR6SUbgsErXNhTUnZYntGa0l5DgX4pzwHb8 JwvTpT2nN/qc3DlSJCzpBVyTM3Q9zWTYwOlPjBG4dgIsJuVClbL6t5uX6tpI+beg mXtWvJZCf/7OHx1wsO+3+b5tDbCbbLap3QMUt1MJ0BagtmI2EsnzjkN1CVhrSTDp TwCfOUKqzuELBLJKfZdO5w/CSiI/8/C/H4sA/PcTZ4ZxD2MJbLkUznsvnSCjZB9R 8m5hW620VIbdOHzd6Y7TszK2PFVgYr9OgpTHZtbSgi2MKtA= -----END CERTIFICATE-----Generated at Sun Apr 6 09:10:32 2025 by rpki-client