$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa File: 4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa (raw, json) Hash identifier: m341WV0PD/1DlxScFlxuiYsnv0C/NfxZjJ04ilTVB14= Subject key identifier: 3B:A1:D3:CF:4B:5A:7B:B2:9F:5D:8E:4D:D2:22:61:C8:A7:AE:34:A7 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1889 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:16 +0000 ROA not before: Tue 18 Feb 2025 17:35:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 131298 IP address blocks: 2401:1c00:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6281 (0x1889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4d3-e249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:19:00:b2:bf:4b:69:f8:49:cc:4a:38:fb:70: a2:00:8c:dc:c7:8b:d3:92:bd:08:af:7d:ff:c4:83: e3:8a:43:1e:c0:e2:57:13:e3:56:5e:fd:6f:8f:73: 08:bc:f2:c7:54:a4:e5:93:1a:4d:8d:32:7c:db:fc: 49:9e:66:24:ab:be:59:a5:b1:95:87:c0:09:57:44: 13:85:7a:d3:4e:15:5a:86:2d:bb:c0:33:4c:11:a1: 15:2e:42:c9:8d:46:33:73:15:50:d4:d8:66:4c:4f: dc:49:a4:bd:b9:05:63:36:dc:53:8d:3a:a0:d9:cf: 27:2f:af:73:96:e8:56:7d:e1:23:c5:93:9b:c1:6e: 72:2d:de:e8:50:20:eb:8b:0a:59:f9:a4:27:cf:a1: 4e:bc:06:f8:c4:c8:15:e6:76:b9:3b:f4:9e:7a:e8: c8:f3:6c:95:59:dd:47:eb:07:e8:f3:9a:be:a0:b2: 18:32:56:35:6e:88:53:a0:90:20:5c:cd:c1:89:0d: 31:95:a8:59:fc:0e:ba:d7:af:17:0d:28:69:a2:96: 2a:2a:8e:86:a8:4a:39:d8:54:0d:56:fb:3d:f7:15: 28:30:f6:86:25:14:8b:3f:57:ad:84:fb:e3:66:80: 2b:56:96:ec:19:06:d3:af:3c:6e:07:18:8e:19:89: fe:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A1:D3:CF:4B:5A:7B:B2:9F:5D:8E:4D:D2:22:61:C8:A7:AE:34:A7 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4996DBD6FC6111EA9BE8AB1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:1c00:3080::/48 Signature Algorithm: sha256WithRSAEncryption 83:96:de:39:fe:ca:db:c2:d8:62:28:8a:3e:8e:4d:bb:74:d2: da:fc:82:d1:49:26:80:4d:fd:bc:4b:12:a7:af:53:52:15:ee: 22:27:fa:f2:38:08:7b:71:66:e2:27:6a:de:75:94:5a:9a:51: 1a:b6:19:a2:61:57:ca:f4:3a:e3:8a:d4:b0:dc:a5:ce:59:e7: 53:99:7a:73:74:fa:46:4c:bc:a0:e6:c0:69:c0:97:04:c9:9d: 7f:51:39:d2:c7:35:b0:56:5b:f1:ef:d8:83:e1:82:1d:29:d1: 6c:7b:b8:2a:93:0d:85:3c:a9:fd:43:5d:2c:e6:c8:11:d6:5e: 1e:8b:e6:78:73:3d:de:d3:68:58:c2:99:56:77:c1:0b:f9:57: ef:96:af:00:8d:61:91:92:c8:bf:a2:69:8c:01:3b:43:9c:35: c9:aa:a3:3a:37:0d:ee:e8:c8:f1:eb:de:d1:d2:f0:b0:ac:9b: 0b:1d:57:5d:f0:4c:63:d5:25:7a:e1:86:45:3f:b1:ee:be:b4: 0c:41:f3:c6:ea:20:93:65:d0:f1:09:03:f7:1e:c9:1d:91:3f: 41:b8:66:7a:4a:a8:49:d9:2b:6f:4d:0d:da:89:f3:61:35:ba: 4a:5e:e8:6c:37:9f:58:74:10:6b:d4:bd:fa:b3:4c:c1:10:18: b6:9e:06:e2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICGIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRkMy1lMjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RkAsr9LafhJzEo4+3CiAIzcx4vTkr0Ir33/xIPjikMewOJXE+NWXv1vj3MI vPLHVKTlkxpNjTJ82/xJnmYkq75ZpbGVh8AJV0QThXrTThVahi27wDNMEaEVLkLJ jUYzcxVQ1NhmTE/cSaS9uQVjNtxTjTqg2c8nL69zluhWfeEjxZObwW5yLd7oUCDr iwpZ+aQnz6FOvAb4xMgV5na5O/SeeujI82yVWd1H6wfo85q+oLIYMlY1bohToJAg XM3BiQ0xlahZ/A66168XDShpopYqKo6GqEo52FQNVvs99xUoMPaGJRSLP1ethPvj ZoArVpbsGQbTrzxuBxiOGYn+8QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDuh089L Wnuyn12OTdIiYcinrjSnMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNDk5NkRCRDZG QzYxMTFFQTlCRThBQjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkARwAMIAwDQYJKoZIhvcNAQELBQADggEBAIOW3jn+ytvC 2GIoij6OTbt00tr8gtFJJoBN/bxLEqevU1IV7iIn+vI4CHtxZuInat51lFqaURq2 GaJhV8r0OuOK1LDcpc5Z51OZenN0+kZMvKDmwGnAlwTJnX9ROdLHNbBWW/Hv2IPh gh0p0Wx7uCqTDYU8qf1DXSzmyBHWXh6L5nhzPd7TaFjCmVZ3wQv5V++WrwCNYZGS yL+iaYwBO0OcNcmqozo3De7oyPHr3tHS8LCsmwsdV13wTGPVJXrhhkU/se6+tAxB 88bqIJNl0PEJA/ceyR2RP0G4ZnpKqEnZK29NDdqJ82E1ukpe6Gw3n1h0EGvUvfqz TMEQGLaeBuI= -----END CERTIFICATE-----Generated at Sat Apr 5 22:18:38 2025 by rpki-client