$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/B47FEDD024C411F0A4C45287C4F9AE02.roa File: B47FEDD024C411F0A4C45287C4F9AE02.roa (raw, json) Hash identifier: wvzHuF+2h6ezDImAHqgncsm+q7jG9ZtSU72WgGzJGBg= Subject key identifier: 79:95:FD:3B:FC:13:56:1C:AE:EF:4A:DE:61:0D:C5:FD:33:47:5A:E6 Certificate issuer: /CN=A91B6B4B/serialNumber=4EEB1DC7D28214D316AA3378B1E295E9101B4CAA Certificate serial: 02 Authority key identifier: 4E:EB:1D:C7:D2:82:14:D3:16:AA:33:78:B1:E2:95:E9:10:1B:4C:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tusdx9KCFNMWqjN4seKV6RAbTKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/B47FEDD024C411F0A4C45287C4F9AE02.roa Signing time: Tue 29 Apr 2025 06:39:31 +0000 ROA not before: Tue 29 Apr 2025 06:39:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139698 IP address blocks: 2001:df4:d540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/Tusdx9KCFNMWqjN4seKV6RAbTKo.crl rsync://rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/Tusdx9KCFNMWqjN4seKV6RAbTKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tusdx9KCFNMWqjN4seKV6RAbTKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6B4B, serialNumber=4EEB1DC7D28214D316AA3378B1E295E9101B4CAA Validity Not Before: Apr 29 06:39:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68107423-584a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4e:5c:db:ce:04:8e:d3:0d:3d:4e:64:db:90: d2:1f:55:75:78:af:6e:ca:01:a5:13:03:bb:8f:ff: 19:ba:f4:ab:b8:d4:29:30:c5:48:68:89:3e:b8:95: 5c:b8:5b:0a:a0:64:9f:b5:4b:9a:bc:cf:a8:f4:bc: 14:8f:c5:0b:cf:4d:4a:cd:8e:9a:9f:e3:6f:ef:b0: 3e:83:a8:14:0f:34:44:81:17:a7:36:3b:65:a0:67: 5d:d8:bf:e5:d4:8c:a9:f3:4c:81:ca:27:af:b8:9d: 87:bb:49:47:8f:09:17:26:73:f0:c9:15:92:f7:cb: f6:a7:82:30:44:fb:95:1f:ea:f8:bb:13:de:e1:29: 9b:31:0d:3c:ce:a0:4d:71:8c:9f:f8:ab:36:43:0c: 0f:38:e4:32:ac:c2:b4:5e:65:b0:8a:a1:da:a4:a5: d2:49:3b:f1:95:76:dd:71:04:a8:19:1b:f8:09:e4: c0:f7:df:a0:d7:f1:32:22:04:64:e6:21:61:42:69: 75:11:7f:19:13:8f:97:4b:ae:e2:d2:00:ab:77:85: f0:af:50:b7:07:93:e3:03:d2:af:ab:fd:0f:f7:c7: 3e:80:6e:7d:a1:32:6e:60:d9:58:53:19:c6:7f:1a: f7:43:52:0f:e5:a3:a3:03:97:17:59:d2:06:8d:32: d2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:95:FD:3B:FC:13:56:1C:AE:EF:4A:DE:61:0D:C5:FD:33:47:5A:E6 X509v3 Authority Key Identifier: keyid:4E:EB:1D:C7:D2:82:14:D3:16:AA:33:78:B1:E2:95:E9:10:1B:4C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/Tusdx9KCFNMWqjN4seKV6RAbTKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tusdx9KCFNMWqjN4seKV6RAbTKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/C399FBC224C311F096C68481C4F9AE02/B47FEDD024C411F0A4C45287C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:d540::/48 Signature Algorithm: sha256WithRSAEncryption 23:d6:ef:24:ff:b0:87:01:a9:c0:42:34:e4:0a:71:0f:8d:14: b0:d9:3b:a8:cf:8b:67:14:3f:70:3a:af:28:3d:31:3c:05:44: dc:6e:89:34:11:78:da:19:cc:a6:69:5e:02:8e:4d:a5:91:51: d6:e2:86:18:b1:55:da:29:b7:eb:88:3f:6e:c8:6d:64:6c:73: 58:bc:a1:0d:14:a2:e3:a6:9d:71:89:f5:14:f0:24:10:4c:26: 61:d0:5b:9d:53:75:d8:62:9a:44:77:ba:fa:90:16:0a:58:82: 88:ff:e1:1b:5c:83:e1:e2:2a:cf:66:ab:ba:53:9d:3c:4c:95: 74:8c:4c:d3:bc:a0:5c:6a:ca:97:b0:4d:9e:80:8c:8a:30:86: d6:b9:43:3b:66:b3:ea:23:7f:6d:97:f7:e1:05:6c:55:21:2d: 1e:4c:b7:30:e1:69:f8:a9:88:80:81:a7:eb:ab:86:5f:34:53: 26:3e:f8:97:50:0b:41:04:26:40:86:2b:1e:47:e3:a6:1a:ec: 9c:84:6e:62:d4:a0:d8:ef:23:f9:7b:11:04:9e:df:b5:ec:fe: 7a:21:52:a7:fa:86:70:70:11:b0:b9:88:c3:bd:a6:84:e1:75: 16:89:14:7b:e9:8f:c4:6c:d1:aa:5e:d1:a2:4a:d1:cd:38:5c: 1a:46:1c:dc -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkI0QjExMC8GA1UEBRMoNEVFQjFEQzdEMjgyMTREMzE2QUEzMzc4QjFFMjk1RTkx MDFCNENBQTAeFw0yNTA0MjkwNjM5MzFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTA3NDIzLTU4NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFTlzbzgSO0w09TmTbkNIfVXV4r27KAaUTA7uP/xm69Ku41CkwxUhoiT64lVy4 WwqgZJ+1S5q8z6j0vBSPxQvPTUrNjpqf42/vsD6DqBQPNESBF6c2O2WgZ13Yv+XU jKnzTIHKJ6+4nYe7SUePCRcmc/DJFZL3y/angjBE+5Uf6vi7E97hKZsxDTzOoE1x jJ/4qzZDDA845DKswrReZbCKodqkpdJJO/GVdt1xBKgZG/gJ5MD336DX8TIiBGTm IWFCaXURfxkTj5dLruLSAKt3hfCvULcHk+MD0q+r/Q/3xz6Abn2hMm5g2VhTGcZ/ GvdDUg/lo6MDlxdZ0gaNMtK/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUeZX9O/wT Vhyu70reYQ3F/TNHWuYwHwYDVR0jBBgwFoAUTusdx9KCFNMWqjN4seKV6RAbTKow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QjRCL0MzOTlGQkMyMjRD MzExRjA5NkM2ODQ4MUM0RjlBRTAyL1R1c2R4OUtDRk5NV3FqTjRzZUtWNlJBYlRL by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHVzZHg5S0NGTk1XcWpONHNlS1Y2UkFiVEtvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkI0Qi9DMzk5RkJDMjI0QzMxMUYwOTZDNjg0ODFDNEY5QUUwMi9CNDdGRUREMDI0 QzQxMUYwQTRDNDUyODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfTVQDANBgkqhkiG9w0BAQsFAAOCAQEAI9bvJP+whwGp wEI05ApxD40UsNk7qM+LZxQ/cDqvKD0xPAVE3G6JNBF42hnMpmleAo5NpZFR1uKG GLFV2im364g/bshtZGxzWLyhDRSi46adcYn1FPAkEEwmYdBbnVN12GKaRHe6+pAW CliCiP/hG1yD4eIqz2arulOdPEyVdIxM07ygXGrKl7BNnoCMijCG1rlDO2az6iN/ bZf34QVsVSEtHky3MOFp+KmIgIGn66uGXzRTJj74l1ALQQQmQIYrHkfjphrsnIRu YtSg2O8j+XsRBJ7ftez+eiFSp/qGcHARsLmIw72mhOF1FokUe+mPxGzRql7RokrR zThcGkYc3A== -----END CERTIFICATE-----Generated at Mon Jun 2 05:16:54 2025 by rpki-client