$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D83192B0152B11EE85ED4B1DC4F9AE02.roa File: D83192B0152B11EE85ED4B1DC4F9AE02.roa (raw, json) Hash identifier: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU= Subject key identifier: 83:2A:74:B9:4A:99:27:B7:A2:D6:E5:57:5F:38:E8:5A:4A:13:4C:05 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 03FB Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D83192B0152B11EE85ED4B1DC4F9AE02.roa Signing time: Fri 07 Mar 2025 00:45:59 +0000 ROA not before: Fri 07 Mar 2025 00:45:59 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133429 IP address blocks: 2400:54a0:2110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0 Validity Not Before: Mar 7 00:45:59 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41c7-b247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:37:ef:8e:38:af:f1:69:bc:97:a8:38:84: 69:38:e2:6e:bc:f7:6d:29:bc:43:60:a5:ed:b7:ff: 1a:b6:8e:f5:77:d3:75:6f:a5:d1:78:cd:a9:4b:41: a8:ee:47:26:ae:44:76:2f:20:e4:de:46:8d:2c:bb: 01:7b:17:89:ec:c9:32:7b:75:f5:86:b4:22:47:ad: 5c:48:fe:e4:84:24:33:e2:52:d3:e3:77:0c:e5:42: 35:cf:55:ee:a7:39:90:81:f8:08:36:ce:74:5f:f2: d8:16:9d:35:16:fc:40:86:76:dd:00:7b:12:a5:d0: 37:6c:4b:d5:1f:13:3d:d3:38:21:f0:ff:84:f1:23: dc:72:58:8d:14:9b:e1:48:d8:7a:cd:7f:67:95:be: ca:da:a5:f6:06:bc:8b:e3:d4:ec:93:8a:6d:b3:4d: ea:41:35:e5:a0:ec:94:84:d4:0a:fe:45:e1:f5:91: 20:a2:7a:fa:20:30:3e:c9:df:f7:46:d5:a4:c6:e4: 3e:2b:0a:46:9c:6e:79:b3:b1:05:25:d0:fd:57:ac: ec:2d:14:fd:86:7d:a0:9c:93:bd:96:20:42:46:52: d1:92:8d:78:da:64:da:6b:1a:52:b7:13:c2:59:7b: 98:32:9b:3f:4d:b3:a2:ff:83:89:a1:50:31:76:3c: 18:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2A:74:B9:4A:99:27:B7:A2:D6:E5:57:5F:38:E8:5A:4A:13:4C:05 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D83192B0152B11EE85ED4B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:54a0:2110::/48 Signature Algorithm: sha256WithRSAEncryption 1e:c2:5d:29:1e:c5:e4:16:5e:9e:7f:17:ac:d9:d1:54:6b:6b: e0:50:7e:72:c1:63:69:ac:08:52:42:0e:9a:15:2d:77:6e:e2: 94:55:2e:62:86:18:e6:88:60:88:aa:a1:be:00:1e:99:b9:a5: c4:8b:27:40:fa:bc:35:6b:bf:7e:02:94:44:02:41:2d:83:1b: 9a:6b:e9:67:57:c5:9d:f4:80:1d:64:d8:e5:45:87:d8:0f:61: d4:01:f9:7b:cc:a9:51:34:d6:71:93:a9:3a:0e:51:ae:b4:f8: cd:63:93:62:35:e9:2a:81:07:26:f8:2c:d8:1b:ff:89:4c:d1: 60:9f:d3:d2:c9:c9:53:cf:7f:66:33:a1:53:f3:7d:eb:a0:81: 25:0b:73:60:9b:24:d9:73:04:63:a3:95:89:0a:26:c1:68:14: 95:9d:96:f4:6e:36:35:6f:7b:2a:0b:54:86:09:ed:39:90:44: f2:c0:4b:13:36:a1:b3:62:8b:b0:8b:9f:b1:4e:f2:0d:bd:b8: e0:49:80:2f:2d:8b:97:b9:bf:c7:f2:5a:76:9f:1f:b5:cb:16: 25:89:81:64:a2:a2:dc:23:c5:ea:70:c6:1a:2e:33:e2:07:a4: 1d:dd:be:7f:f4:ae:b7:be:57:41:c1:a2:20:1c:dc:48:05:0b: c6:c7:00:70 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwMzA3MDA0NTU5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFjNy1iMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBo37444r/FpvJeoOIRpOOJuvPdtKbxDYKXtt/8ato71d9N1b6XReM2pS0Go 7kcmrkR2LyDk3kaNLLsBexeJ7Mkye3X1hrQiR61cSP7khCQz4lLT43cM5UI1z1Xu pzmQgfgINs50X/LYFp01FvxAhnbdAHsSpdA3bEvVHxM90zgh8P+E8SPccliNFJvh SNh6zX9nlb7K2qX2BryL49Tsk4pts03qQTXloOyUhNQK/kXh9ZEgonr6IDA+yd/3 RtWkxuQ+KwpGnG55s7EFJdD9V6zsLRT9hn2gnJO9liBCRlLRko142mTaaxpStxPC WXuYMps/TbOi/4OJoVAxdjwY+QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIMqdLlK mSe3otblV1846FpKE0wFMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvRDgzMTkyQjAx NTJCMTFFRTg1RUQ0QjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAFSgIRAwDQYJKoZIhvcNAQELBQADggEBAB7CXSkexeQW Xp5/F6zZ0VRra+BQfnLBY2msCFJCDpoVLXdu4pRVLmKGGOaIYIiqob4AHpm5pcSL J0D6vDVrv34ClEQCQS2DG5pr6WdXxZ30gB1k2OVFh9gPYdQB+XvMqVE01nGTqToO Ua60+M1jk2I16SqBByb4LNgb/4lM0WCf09LJyVPPf2YzoVPzfeuggSULc2CbJNlz BGOjlYkKJsFoFJWdlvRuNjVveyoLVIYJ7TmQRPLASxM2obNii7CLn7FO8g29uOBJ gC8ti5e5v8fyWnafH7XLFiWJgWSiotwjxepwxhouM+IHpB3dvn/0rre+V0HBoiAc 3EgFC8bHAHA= -----END CERTIFICATE-----Generated at Fri Apr 11 17:24:36 2025 by rpki-client