$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/C731AFD03B9A11F0B7924C1FC4F9AE02.roa File: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (raw, json) Hash identifier: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY= Subject key identifier: 6E:05:FE:AC:43:1A:0B:6F:9D:AD:F4:F9:40:06:2C:1B:BB:B2:E4:D8 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 78 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/C731AFD03B9A11F0B7924C1FC4F9AE02.roa Signing time: Wed 28 May 2025 08:07:20 +0000 ROA not before: Wed 28 May 2025 08:07:20 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153341 IP address blocks: 2001:df4:4ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: May 28 08:07:20 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6836c438-d560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:62:bc:0b:5b:63:0e:05:2a:4f:b2:c8:43: 10:89:1b:02:71:cc:37:55:16:e4:c2:73:83:09:14: 7e:db:18:e6:ad:42:39:b0:ca:d1:a1:84:91:06:3c: a9:32:6f:15:f3:dd:5e:eb:0f:5f:51:fe:bb:df:d3: 9d:77:93:96:db:f8:6c:5a:b5:83:ad:8e:ff:ea:ea: f6:68:32:7d:02:ec:bd:d9:72:e8:60:f2:b8:0f:07: 3c:68:d3:0c:21:af:23:86:21:fd:c2:73:3e:59:ae: a9:9a:5b:63:9a:f7:cf:03:dd:9f:71:36:3a:78:b2: cf:66:17:d2:cd:12:e7:99:19:71:40:45:c4:c4:6e: b1:bd:e7:7f:31:1f:44:56:54:ff:06:c8:6d:46:6f: d4:dc:c0:d3:67:13:9e:88:8a:12:b1:83:e8:16:d1: 5a:10:0f:89:da:8b:8c:0a:93:02:5d:04:ef:7c:1b: d7:88:55:22:a4:fc:23:3a:09:da:78:49:6a:d3:bd: 04:38:7e:73:45:dd:84:46:ba:c3:a3:80:b4:d2:c4: 44:df:be:56:b1:63:8f:5a:3f:6e:4e:bd:f2:b2:b8: 3a:b8:e9:ea:f0:47:58:7d:91:6f:b8:f1:73:bb:f1: 7a:90:15:ad:b1:c1:b1:70:aa:bf:fd:94:3b:22:1f: ab:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:05:FE:AC:43:1A:0B:6F:9D:AD:F4:F9:40:06:2C:1B:BB:B2:E4:D8 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/C731AFD03B9A11F0B7924C1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:4ec0::/48 Signature Algorithm: sha256WithRSAEncryption 94:e5:fc:3c:dd:25:66:ed:b5:b1:24:64:51:21:7a:e4:98:12: 47:ec:c1:62:39:db:ad:a0:f1:05:2f:24:d6:69:47:88:99:ca: 5e:34:02:5e:8e:8e:f9:e4:bb:86:8b:2f:f4:c7:2d:5e:5c:f3: 2b:7c:03:9f:9d:6a:0b:8d:cd:f6:ca:02:13:86:88:64:5f:96: 0b:e0:58:84:35:6d:48:b6:43:58:10:7a:47:55:2c:6b:c7:d0: a0:ed:51:42:75:a8:6b:bd:98:68:67:2d:21:27:76:fd:04:32: 94:6d:09:c3:8f:50:92:d4:1a:68:5b:68:66:f8:37:c8:31:2a: 56:0b:a4:53:9f:d5:79:38:6e:c0:8d:6e:79:c1:53:cd:c2:3b: 62:8f:c7:04:d9:b2:28:5c:54:87:19:4b:23:74:a1:b3:a8:2f: 01:cf:e2:34:50:10:c1:a5:76:e9:20:4f:4b:c9:62:0c:3e:d7: 5e:93:f3:f4:71:9f:92:4a:b6:5e:4e:97:e0:19:f5:24:90:94: 8c:b4:f3:8e:65:78:46:8f:3a:d5:b7:2b:b6:47:ef:16:59:4e: 42:33:07:30:8e:f3:b3:66:31:2f:91:48:77:02:db:fb:a2:9a: 08:e3:8f:eb:7b:bc:54:9c:f4:88:3f:b5:77:ec:4b:51:87:3b: 22:f6:3b:c1 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoMjlBMDA5MDEzRjc0MzFERTM2OUMwMENBQjU0NzE2Q0E5 MzQ1MjZEMzAeFw0yNTA1MjgwODA3MjBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZjNDM4LWQ1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+Y2K8C1tjDgUqT7LIQxCJGwJxzDdVFuTCc4MJFH7bGOatQjmwytGhhJEGPKky bxXz3V7rD19R/rvf0513k5bb+GxatYOtjv/q6vZoMn0C7L3Zcuhg8rgPBzxo0wwh ryOGIf3Ccz5ZrqmaW2Oa988D3Z9xNjp4ss9mF9LNEueZGXFARcTEbrG9538xH0RW VP8GyG1Gb9TcwNNnE56IihKxg+gW0VoQD4nai4wKkwJdBO98G9eIVSKk/CM6Cdp4 SWrTvQQ4fnNF3YRGusOjgLTSxETfvlaxY49aP25OvfKyuDq46erwR1h9kW+48XO7 8XqQFa2xwbFwqr/9lDsiH6srAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUbgX+rEMa C2+drfT5QAYsG7uy5NgwHwYDVR0jBBgwFoAUKaAJAT90Md42nADKtUcWypNFJtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzMwNDM2MzVDODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2FBSkFUOTBNZDQybkFES3RVY1d5cE5GSnRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9DNzMxQUZEMDNC OUExMUYwQjc5MjRDMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfROwDANBgkqhkiG9w0BAQsFAAOCAQEAlOX8PN0lZu21 sSRkUSF65JgSR+zBYjnbraDxBS8k1mlHiJnKXjQCXo6O+eS7hosv9MctXlzzK3wD n51qC43N9soCE4aIZF+WC+BYhDVtSLZDWBB6R1Usa8fQoO1RQnWoa72YaGctISd2 /QQylG0Jw49QktQaaFtoZvg3yDEqVgukU5/VeThuwI1uecFTzcI7Yo/HBNmyKFxU hxlLI3Shs6gvAc/iNFAQwaV26SBPS8liDD7XXpPz9HGfkkq2Xk6X4Bn1JJCUjLTz jmV4Ro861bcrtkfvFllOQjMHMI7zs2YxL5FIdwLb+6KaCOOP63u8VJz0iD+1d+xL UYc7IvY7wQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:42 2025 by rpki-client