$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa File: E3E47D36B6B911EE8E72C641C4F9AE02.roa (raw, json) Hash identifier: yzICNTcM283Dqn+31XlCHYK+SaKesuIOk3Z/S3+BpWk= Subject key identifier: C8:EF:56:ED:98:6D:D7:B1:AD:5F:2A:AE:AE:87:95:CD:BD:34:4B:88 Certificate issuer: /CN=A91D63AF/serialNumber=EF30A24146DF66B1FA6FBA5D676769EB64B387AA Certificate serial: D2 Authority key identifier: EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa Signing time: Thu 13 Feb 2025 07:08:07 +0000 ROA not before: Thu 13 Feb 2025 07:08:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152339 IP address blocks: 2001:df3:6240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF Validity Not Before: Feb 13 07:08:07 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ad9a56-def0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:80:89:6d:5b:04:76:e6:d9:9a:9f:18:a6: ce:0c:2f:f4:f6:de:95:5c:f8:b4:e9:6d:9a:04:54: 47:3b:9c:3c:fd:33:31:6a:41:ce:09:14:9f:10:47: 12:10:d2:e1:24:79:a4:3c:28:86:e7:7f:29:aa:5b: de:88:39:13:c1:64:15:c6:59:9c:c1:6d:77:4f:8b: 00:b4:1e:98:bb:73:a0:e0:ee:b8:c5:7c:fd:9b:b1: 48:d7:27:38:64:d2:0f:58:68:b7:c1:76:f5:26:a7: 5a:ec:c6:27:09:37:5c:58:29:5f:b4:8b:38:ca:85: 30:a8:1a:f2:11:6a:83:b0:a9:a6:5c:a1:3a:46:46: 82:ea:97:30:36:60:5a:3f:63:8c:f5:73:50:5c:9c: 4f:22:ac:2b:82:cb:da:56:7f:76:b5:ee:16:d6:26: bd:90:be:9c:69:0d:2c:9f:1e:e8:10:5a:94:eb:6d: 8b:5f:97:fe:b8:dd:57:06:7b:e1:e9:3d:39:48:3c: ed:c1:af:68:13:40:a6:d1:59:7f:be:e1:1f:16:ae: e5:e7:6f:0f:fe:9e:36:f5:21:39:64:97:e9:b2:9e: 48:ab:6f:ea:57:de:e4:cc:35:68:91:55:bf:1f:f3: 24:b9:ff:f4:bf:38:3b:0e:85:48:b2:1e:5f:a7:c9: b7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EF:56:ED:98:6D:D7:B1:AD:5F:2A:AE:AE:87:95:CD:BD:34:4B:88 X509v3 Authority Key Identifier: keyid:EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/E3E47D36B6B911EE8E72C641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:6240::/48 Signature Algorithm: sha256WithRSAEncryption 23:fe:a2:6a:e7:75:fb:b5:0a:67:f5:4d:95:e8:33:0a:73:96: 95:b2:5f:1f:e9:8c:84:1b:ab:9d:7b:8b:a1:18:b2:58:70:ee: 57:fc:99:35:c1:61:7a:c0:6a:13:c6:31:01:2b:ea:58:5a:73: 55:6c:87:c0:b3:74:54:9f:8c:9c:5b:72:4a:11:7d:a1:b2:c0: 2c:78:1b:0b:d8:c6:77:f6:7d:8a:59:32:2f:a8:97:45:8e:73: 28:c0:0b:89:b3:fc:57:02:6c:8a:c3:28:ca:0a:7e:ec:87:f7: c0:42:96:37:ff:b5:64:99:5a:12:6f:0f:f4:16:68:3b:3b:91: 41:a7:10:05:52:66:c1:ce:0b:db:b4:14:64:31:e5:e1:90:40: 9c:e2:63:75:a1:ed:d1:8e:c1:5d:8a:4b:fa:a7:f8:5e:de:50: 9f:f3:cf:d0:74:e5:39:d3:e2:ed:00:9a:b4:6d:60:7a:30:0a: ca:c6:96:1d:df:a3:bf:77:b3:56:b3:46:65:03:63:ab:83:91: 51:74:ce:c1:79:08:c6:4a:d1:5b:19:98:99:85:11:de:b6:e4: 73:0b:6c:3f:b3:b9:f8:b4:b4:51:60:4a:6f:8e:a7:dc:8a:1d: 9f:2c:28:16:ab:6f:17:21:c4:f4:4c:d8:e5:c0:d5:a0:12:d5: e9:e3:bb:84 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKEVGMzBBMjQxNDZERjY2QjFGQTZGQkE1RDY3Njc2OUVC NjRCMzg3QUEwHhcNMjUwMjEzMDcwODA3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FkOWE1Ni1kZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxriAiW1bBHbm2ZqfGKbODC/09t6VXPi06W2aBFRHO5w8/TMxakHOCRSfEEcS ENLhJHmkPCiG538pqlveiDkTwWQVxlmcwW13T4sAtB6Yu3Og4O64xXz9m7FI1yc4 ZNIPWGi3wXb1Jqda7MYnCTdcWClftIs4yoUwqBryEWqDsKmmXKE6RkaC6pcwNmBa P2OM9XNQXJxPIqwrgsvaVn92te4W1ia9kL6caQ0snx7oEFqU622LX5f+uN1XBnvh 6T05SDztwa9oE0Cm0Vl/vuEfFq7l528P/p429SE5ZJfpsp5Iq2/qV97kzDVokVW/ H/Mkuf/0vzg7DoVIsh5fp8m3WwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMjvVu2Y bdexrV8qrq6Hlc29NEuIMB8GA1UdIwQYMBaAFO8wokFG32ax+m+6XWdnaetks4eq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi9FMTREMUFCNEI2 QTYxMUVFQTA0QThCMjNDNEY5QUUwMi83ekNpUVViZlpySDZiN3BkWjJkcDYyU3po Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd6Q2lRVWJmWnJINmI3cGRaMmRwNjJTemg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYzQUYvRTE0RDFBQjRCNkE2MTFFRUEwNEE4QjIzQzRGOUFFMDIvRTNFNDdEMzZC NkI5MTFFRThFNzJDNjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zYkAwDQYJKoZIhvcNAQELBQADggEBACP+omrndfu1 Cmf1TZXoMwpzlpWyXx/pjIQbq517i6EYslhw7lf8mTXBYXrAahPGMQEr6lhac1Vs h8CzdFSfjJxbckoRfaGywCx4GwvYxnf2fYpZMi+ol0WOcyjAC4mz/FcCbIrDKMoK fuyH98BCljf/tWSZWhJvD/QWaDs7kUGnEAVSZsHOC9u0FGQx5eGQQJziY3Wh7dGO wV2KS/qn+F7eUJ/zz9B05TnT4u0AmrRtYHowCsrGlh3fo793s1azRmUDY6uDkVF0 zsF5CMZK0VsZmJmFEd625HMLbD+zufi0tFFgSm+Op9yKHZ8sKBarbxchxPRM2OXA 1aAS1enju4Q= -----END CERTIFICATE-----Generated at Wed Apr 9 22:04:16 2025 by rpki-client