$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa File: F548379631A011EE9F9D0D4DC4F9AE02.roa (raw, json) Hash identifier: agT8B/KOnCHYQpfkAexNJsFp5T4PhjfgQqzkODGUs5w= Subject key identifier: 13:6B:4C:F7:FF:D5:7B:83:6F:29:A4:D0:8D:51:40:54:BB:EE:B1:99 Certificate issuer: /CN=A91F0FC6/serialNumber=66E6F6F8FDCE3D954A77E5B0A3E250CC262E5D5D Certificate serial: 0175 Authority key identifier: 66:E6:F6:F8:FD:CE:3D:95:4A:77:E5:B0:A3:E2:50:CC:26:2E:5D:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa Signing time: Sun 05 Jan 2025 02:25:53 +0000 ROA not before: Sun 05 Jan 2025 02:25:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150430 IP address blocks: 2001:df1:efc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.crl rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FC6 Validity Not Before: Jan 5 02:25:53 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6779edb1-eb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:7e:8d:03:2f:d4:0a:06:07:c9:5d:bb:01: cf:29:29:94:65:c6:09:41:88:c1:37:7f:0d:4e:85: 76:f2:be:ad:60:8d:98:93:cc:6e:36:b3:02:13:d5: 36:f5:59:b8:2d:12:1f:57:cc:a2:72:25:4a:37:23: 15:6e:1b:04:57:8f:f5:14:67:1c:2e:7e:99:76:a3: ec:98:e0:2e:ac:90:83:0c:cc:33:b2:37:22:67:3d: bf:68:6b:fe:24:cb:7a:3e:2e:ea:85:ce:a4:e0:bd: 0e:af:ad:16:f8:6a:66:57:c8:ee:2f:a5:e8:87:23: 33:0f:93:b2:f4:4b:b7:8d:78:95:7d:e9:40:a2:c3: 51:6b:70:38:ff:e8:36:50:f6:63:00:de:1d:78:25: 0b:5d:5e:25:7d:5c:aa:ce:f4:79:87:02:dd:31:48: dd:e3:26:4a:56:ee:b9:a8:60:9f:e9:bc:05:3c:37: 6e:22:54:20:1f:40:2a:06:f6:51:7f:ed:7b:81:0c: a2:f6:b3:23:55:13:b7:6f:66:eb:c1:68:6f:7c:ef: 0f:c8:63:a9:57:98:a1:76:4e:41:1f:19:f9:9c:1b: fd:e1:e6:44:7d:dd:e7:c4:44:f5:45:ff:93:be:33: 4e:91:27:c7:18:b3:0f:95:65:a2:1f:6f:84:f7:c9: 35:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6B:4C:F7:FF:D5:7B:83:6F:29:A4:D0:8D:51:40:54:BB:EE:B1:99 X509v3 Authority Key Identifier: keyid:66:E6:F6:F8:FD:CE:3D:95:4A:77:E5:B0:A3:E2:50:CC:26:2E:5D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zub2-P3OPZVKd-Wwo-JQzCYuXV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FC6/1D9F3E08A76111ED98242252C4F9AE02/F548379631A011EE9F9D0D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:efc0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:a4:59:cd:26:fa:59:44:6e:64:01:33:ba:1a:b3:f9:c5:20: d5:f4:aa:a4:9d:04:85:3e:e4:37:2d:41:62:7a:33:37:47:8a: a8:0f:bb:9c:37:af:25:70:61:4d:ba:1c:b4:1a:5e:33:ee:2c: 12:4b:f1:67:3e:e2:74:7f:e2:e6:87:33:26:ca:24:41:45:96: f4:63:0e:e6:6a:b0:c6:73:73:63:4e:aa:f7:e5:50:55:8c:f6: 1e:a1:bd:0d:ff:39:09:8d:14:c1:93:a9:d0:f2:07:53:7f:0c: ee:94:f3:84:66:86:1b:0e:7c:5a:3f:ee:77:22:4c:c6:3c:86: e9:3e:bd:b0:33:24:9c:2b:da:4c:b0:03:8c:c7:ba:c3:a9:43: 22:c7:1e:91:be:59:14:35:b2:86:b4:c0:f0:77:c3:bc:c5:25: 5b:32:c8:92:c8:be:29:3f:37:a0:27:86:98:b3:4b:27:2f:43: 58:84:39:51:ab:cc:6a:a2:1c:19:d4:c7:ef:d3:7f:54:42:85: 75:cb:8d:05:ba:7b:e0:2d:20:d4:42:c8:f3:f0:e4:f2:b7:12: 32:96:e8:93:73:59:ec:2e:43:32:11:14:bc:d5:32:d7:3e:9e: 99:69:e5:7c:39:09:4f:2b:71:b1:93:27:e8:f1:a8:94:33:e1: 55:48:eb:85 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQzYxMTAvBgNVBAUTKDY2RTZGNkY4RkRDRTNEOTU0QTc3RTVCMEEzRTI1MEND MjYyRTVENUQwHhcNMjUwMTA1MDIyNTUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5ZWRiMS1lYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9B+jQMv1AoGB8lduwHPKSmUZcYJQYjBN38NToV28r6tYI2Yk8xuNrMCE9U2 9Vm4LRIfV8yiciVKNyMVbhsEV4/1FGccLn6ZdqPsmOAurJCDDMwzsjciZz2/aGv+ JMt6Pi7qhc6k4L0Or60W+GpmV8juL6XohyMzD5Oy9Eu3jXiVfelAosNRa3A4/+g2 UPZjAN4deCULXV4lfVyqzvR5hwLdMUjd4yZKVu65qGCf6bwFPDduIlQgH0AqBvZR f+17gQyi9rMjVRO3b2brwWhvfO8PyGOpV5ihdk5BHxn5nBv94eZEfd3nxET1Rf+T vjNOkSfHGLMPlWWiH2+E98k14QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBNrTPf/ 1XuDbymk0I1RQFS77rGZMB8GA1UdIwQYMBaAFGbm9vj9zj2VSnflsKPiUMwmLl1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZDNi8xRDlGM0UwOEE3 NjExMUVEOTgyNDIyNTJDNEY5QUUwMi9adWIyLVAzT1BaVktkLVd3by1KUXpDWXVY VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1YjItUDNPUFpWS2QtV3dvLUpRekNZdVhWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBGQzYvMUQ5RjNFMDhBNzYxMTFFRDk4MjQyMjUyQzRGOUFFMDIvRjU0ODM3OTYz MUEwMTFFRTlGOUQwRDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3x78AwDQYJKoZIhvcNAQELBQADggEBAF6kWc0m+llE bmQBM7oas/nFINX0qqSdBIU+5DctQWJ6MzdHiqgPu5w3ryVwYU26HLQaXjPuLBJL 8Wc+4nR/4uaHMybKJEFFlvRjDuZqsMZzc2NOqvflUFWM9h6hvQ3/OQmNFMGTqdDy B1N/DO6U84RmhhsOfFo/7nciTMY8huk+vbAzJJwr2kywA4zHusOpQyLHHpG+WRQ1 soa0wPB3w7zFJVsyyJLIvik/N6AnhpizSycvQ1iEOVGrzGqiHBnUx+/Tf1RChXXL jQW6e+AtINRCyPPw5PK3EjKW6JNzWewuQzIRFLzVMtc+nplp5Xw5CU8rcbGTJ+jx qJQz4VVI64U= -----END CERTIFICATE-----Generated at Sat Apr 5 11:16:38 2025 by rpki-client