$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/900AE11A539811EAB7BED96CC4F9AE02.roa File: 900AE11A539811EAB7BED96CC4F9AE02.roa (raw, json) Hash identifier: FOJZ4BQr1BzTJakhN9QQ/ukK2wZIeA5tNJm4H+ECBeo= Subject key identifier: E4:F4:65:F5:D1:72:CD:86:F0:58:5C:BD:39:9D:1A:E5:CD:70:39:1A Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 188B Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/900AE11A539811EAB7BED96CC4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:18 +0000 ROA not before: Tue 18 Feb 2025 17:35:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133326 IP address blocks: 2404:bc00:c41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6283 (0x188b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D Validity Not Before: Feb 18 17:35:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4d5-1cab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:10:23:d2:ec:7f:1a:42:64:c1:d8:e3:ea: 6f:e1:8b:47:5f:c0:07:2e:40:4d:e4:a5:27:dc:00: e9:22:bd:ad:9f:a0:f6:eb:60:32:9c:8c:9e:dd:21: da:91:d6:39:ac:a3:0f:08:7a:bc:0d:af:7f:01:fa: 57:5b:bd:ab:0a:25:d3:40:0a:58:65:73:88:57:50: e9:37:aa:a6:ef:76:cf:12:2f:ee:a9:34:13:69:de: 03:7d:42:83:68:83:d7:2e:11:57:6c:07:16:35:72: 86:15:9e:9e:4d:04:4f:46:0b:88:7e:ad:d9:86:d4: cd:aa:84:ed:0d:25:f0:aa:a5:8a:6e:43:17:de:81: d9:c6:d1:52:76:af:0a:fe:4e:f0:ad:d7:1a:73:25: 1f:02:90:a1:2e:b9:f4:f4:72:0d:c2:81:d5:8b:22: 1e:94:59:6b:59:01:42:37:52:a3:8b:34:e6:95:66: 9d:1b:f6:a9:f4:18:39:d7:36:1f:89:71:2e:e3:ea: de:62:0f:2d:64:e9:ae:e5:91:f9:5c:29:de:09:db: d0:1e:03:bd:74:87:8f:2b:0d:77:c2:05:f6:f2:8c: 43:8f:2f:07:2b:d3:dc:1e:03:fb:31:16:a7:35:f6: 47:58:21:d8:7e:96:c6:77:a2:66:53:da:6a:2f:38: fc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F4:65:F5:D1:72:CD:86:F0:58:5C:BD:39:9D:1A:E5:CD:70:39:1A X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/900AE11A539811EAB7BED96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:bc00:c41::/48 Signature Algorithm: sha256WithRSAEncryption 84:cb:e7:42:44:b8:e3:75:a2:a9:72:76:c1:3c:df:f0:7b:b3: 69:42:9c:5e:12:96:08:b5:e7:94:92:e8:0b:e7:a3:af:00:1d: 11:32:e4:f0:af:c9:3b:36:e2:c9:8e:ef:02:09:07:3b:18:b1: df:c3:89:48:53:1d:da:84:d0:61:21:53:a5:9e:23:55:02:ca: 97:85:d5:f3:76:96:7e:dd:7c:d1:db:d7:28:6b:aa:63:11:da: 9a:dd:b5:e7:78:40:25:d5:da:60:d8:1a:87:9c:2c:16:b7:bc: 14:11:ef:e5:15:47:5b:cd:be:5c:23:da:7d:67:6a:a0:c7:fe: 40:47:f1:51:48:ae:dd:52:5e:01:19:e2:fd:07:09:1e:07:91: 3a:8a:10:86:f1:be:b0:28:10:8d:a5:ec:f6:45:e8:ad:0a:8c: 8d:cc:94:08:3f:94:e8:70:02:02:c3:82:57:4b:08:b5:70:5d: 11:6a:b6:35:c5:ae:e2:d2:33:6f:d8:00:12:86:a7:a8:a6:d5: 28:a5:95:3b:25:f0:3b:3c:87:6a:75:83:f7:fb:0c:65:6f:cd: d9:52:71:c9:9d:c7:21:3c:74:39:dd:35:43:90:3e:ce:f1:9a: 98:97:60:e0:4d:d1:02:76:33:92:76:41:6e:0e:f8:0e:07:ab: 2c:c5:f5:d5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICGIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRkNS0xY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9IQI9LsfxpCZMHY4+pv4YtHX8AHLkBN5KUn3ADpIr2tn6D262AynIye3SHa kdY5rKMPCHq8Da9/AfpXW72rCiXTQApYZXOIV1DpN6qm73bPEi/uqTQTad4DfUKD aIPXLhFXbAcWNXKGFZ6eTQRPRguIfq3ZhtTNqoTtDSXwqqWKbkMX3oHZxtFSdq8K /k7wrdcacyUfApChLrn09HINwoHViyIelFlrWQFCN1KjizTmlWadG/ap9Bg51zYf iXEu4+reYg8tZOmu5ZH5XCneCdvQHgO9dIePKw13wgX28oxDjy8HK9PcHgP7MRan NfZHWCHYfpbGd6JmU9pqLzj8pwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOT0ZfXR cs2G8FhcvTmdGuXNcDkaMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvOTAwQUUxMUE1 Mzk4MTFFQUI3QkVEOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBLwADEEwDQYJKoZIhvcNAQELBQADggEBAITL50JEuON1 oqlydsE83/B7s2lCnF4Slgi155SS6Avno68AHREy5PCvyTs24smO7wIJBzsYsd/D iUhTHdqE0GEhU6WeI1UCypeF1fN2ln7dfNHb1yhrqmMR2prdted4QCXV2mDYGoec LBa3vBQR7+UVR1vNvlwj2n1naqDH/kBH8VFIrt1SXgEZ4v0HCR4HkTqKEIbxvrAo EI2l7PZF6K0KjI3MlAg/lOhwAgLDgldLCLVwXRFqtjXFruLSM2/YABKGp6im1Sil lTsl8Ds8h2p1g/f7DGVvzdlSccmdxyE8dDndNUOQPs7xmpiXYOBN0QJ2M5J2QW4O +A4HqyzF9dU= -----END CERTIFICATE-----Generated at Sat Apr 5 22:24:33 2025 by rpki-client