$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/344644CC1DC511EF95607948C4F9AE02.roa File: 344644CC1DC511EF95607948C4F9AE02.roa (raw, json) Hash identifier: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs= Subject key identifier: 48:6A:D3:4D:B7:4A:39:75:3F:5B:A6:A1:52:73:88:EE:F0:92:8A:61 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 09EE Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/344644CC1DC511EF95607948C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:58:55 +0000 ROA not before: Wed 30 Apr 2025 19:58:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140579 IP address blocks: 2001:df3:8380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2542 (0x9ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Apr 30 19:58:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681280fe-75e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:91:bb:07:ed:1b:1a:a7:21:89:6a:f0:15: 53:0b:71:f4:44:47:96:3d:16:1c:16:62:d8:99:46: a8:3e:0b:79:8a:9b:fe:15:db:4c:0f:8d:99:a2:d5: de:7e:d9:86:8b:29:80:9f:af:7f:99:79:41:b4:4a: f8:17:23:64:cd:d6:d3:39:ce:0d:e2:03:21:65:55: fb:d9:87:46:c2:af:ce:7a:15:24:91:da:5c:d7:a0: 47:64:61:96:98:9a:f9:7b:39:ed:6c:62:de:dd:09: 6f:bd:46:45:18:7e:27:28:62:ee:94:a1:0e:ff:ef: 35:a7:b2:0a:77:c1:ae:82:7f:ca:d0:3b:30:83:86: 6e:0c:3e:2d:86:93:bf:f8:f3:31:0e:eb:fa:a0:3f: f2:4e:d4:32:e0:0c:8f:e4:9c:2c:94:18:d3:18:1b: e4:07:00:dc:f7:81:9c:85:d1:11:94:8c:38:e1:b0: 99:d8:c4:b7:7a:54:db:ef:2c:68:3c:b1:e8:9b:2d: 11:24:48:ee:ad:da:9b:ab:ba:01:72:72:9c:0e:f4: 50:f3:18:40:4f:2c:06:28:77:5c:ce:12:c5:b1:80: 9e:1c:88:a3:8c:55:bd:d4:26:0c:74:01:60:9e:97: 8e:e8:58:5c:03:d3:3c:ce:a2:ce:54:ed:ca:3b:cc: e6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6A:D3:4D:B7:4A:39:75:3F:5B:A6:A1:52:73:88:EE:F0:92:8A:61 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/344644CC1DC511EF95607948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:8380::/48 Signature Algorithm: sha256WithRSAEncryption 12:e0:82:77:2f:07:30:59:45:f7:f4:a3:51:91:5f:fc:ea:8d: ed:28:ac:6f:f6:89:27:35:1a:5e:0b:a6:76:d7:91:e9:5e:5b: 25:9d:fd:58:03:09:7b:e2:78:37:26:c1:8b:dd:85:c3:bc:2a: e5:0d:3e:f4:f9:49:e5:5d:a2:c8:be:93:65:c9:84:1e:40:63: 31:f7:54:8b:06:fa:2b:01:13:e0:a7:74:2f:07:db:75:a2:17: de:5d:7d:28:43:a3:61:33:b7:a2:68:ec:4f:70:70:9c:31:4e: e0:23:56:3e:39:79:e2:8c:ee:e4:a5:13:0a:23:7e:f5:c8:2b: cd:b1:da:2d:10:65:0f:62:37:9b:97:e3:e6:18:78:cc:7b:31: 44:09:e4:52:96:30:10:d0:37:7e:c1:c2:13:f6:e2:0b:c9:b5: 31:16:a8:78:81:96:b3:3a:59:7f:eb:7e:af:9b:f7:67:5b:e9: 1f:a0:20:75:32:6f:9f:94:af:38:1d:3b:f1:6c:3a:be:80:d0: c1:ea:b1:d7:12:60:b8:8c:ee:b6:72:39:0e:37:87:f8:e8:0f: 88:ea:fe:8b:0e:2d:8e:1c:55:41:e9:2e:c6:ff:e3:c3:9d:3f: 09:a2:2d:12:aa:4a:3f:4e:1f:a9:6a:5e:2a:90:5a:b0:27:77: 46:2b:a8:02 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNDMwMTk1ODU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODBmZS03NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wyRuwftGxqnIYlq8BVTC3H0REeWPRYcFmLYmUaoPgt5ipv+FdtMD42ZotXe ftmGiymAn69/mXlBtEr4FyNkzdbTOc4N4gMhZVX72YdGwq/OehUkkdpc16BHZGGW mJr5ezntbGLe3QlvvUZFGH4nKGLulKEO/+81p7IKd8Gugn/K0Dswg4ZuDD4thpO/ +PMxDuv6oD/yTtQy4AyP5JwslBjTGBvkBwDc94GchdERlIw44bCZ2MS3elTb7yxo PLHomy0RJEjurdqbq7oBcnKcDvRQ8xhATywGKHdczhLFsYCeHIijjFW91CYMdAFg npeO6FhcA9M8zqLOVO3KO8zmzQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEhq0023 Sjl1P1umoVJziO7wkophMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJGMzMvRTZFQzJEOTI4MDkxMTFFQUFCQ0RGRjZDQzRGOUFFMDIvMzQ0NjQ0Q0Mx REM1MTFFRjk1NjA3OTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zg4AwDQYJKoZIhvcNAQELBQADggEBABLggncvBzBZ Rff0o1GRX/zqje0orG/2iSc1Gl4LpnbXkeleWyWd/VgDCXvieDcmwYvdhcO8KuUN PvT5SeVdosi+k2XJhB5AYzH3VIsG+isBE+CndC8H23WiF95dfShDo2Ezt6Jo7E9w cJwxTuAjVj45eeKM7uSlEwojfvXIK82x2i0QZQ9iN5uX4+YYeMx7MUQJ5FKWMBDQ N37BwhP24gvJtTEWqHiBlrM6WX/rfq+b92db6R+gIHUyb5+UrzgdO/FsOr6A0MHq sdcSYLiM7rZyOQ43h/joD4jq/osOLY4cVUHpLsb/48OdPwmiLRKqSj9OH6lqXiqQ WrAnd0YrqAI= -----END CERTIFICATE-----Generated at Sun Jun 8 16:39:38 2025 by rpki-client