$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa File: B8F67148DC6611ED89F0804EC4F9AE02.roa (raw, json) Hash identifier: W0JFS6tmn8XTuKql8AHkVwyZGDrJTsFtDN1V3+Sy2tA= Subject key identifier: 3A:86:F3:12:8B:93:C4:CE:85:46:34:EA:78:B9:EC:74:4A:49:1E:C4 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 1128 Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa Signing time: Wed 02 Apr 2025 17:46:36 +0000 ROA not before: Wed 02 Apr 2025 17:46:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4842 IP address blocks: 2404:7ac0:660::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4392 (0x1128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3 Validity Not Before: Apr 2 17:46:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed77fc-f298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0f:2e:d1:cb:23:ed:bc:98:50:0f:61:5b:93: 88:b0:d4:17:e4:95:11:22:1b:74:86:61:10:b5:8d: a8:27:6b:e5:48:60:4a:bb:30:03:8a:53:f2:5c:42: 75:37:3b:9b:49:92:81:5a:d5:41:43:83:4c:2b:bd: ea:bd:a7:6d:70:5c:20:e4:51:72:68:8d:3a:1a:f1: 64:09:f5:2f:59:da:42:10:3a:31:57:94:38:2e:0e: bc:41:ef:81:49:5a:0b:03:2f:ef:30:ad:ea:de:d5: 1f:b2:e0:80:51:5d:44:30:f3:c9:e8:f4:16:3a:a4: 80:98:89:ac:0c:e6:20:4e:d6:f1:a9:9e:09:47:a9: 19:a0:4a:73:c8:1f:61:e6:19:c5:9e:bc:4e:4d:08: 43:46:9c:b1:49:8c:dd:c7:c9:9a:cf:96:aa:6f:a2: 45:58:46:12:a5:0c:65:d6:5e:09:7b:19:d2:64:c1: 39:ca:13:e4:b3:96:bf:8b:df:7f:74:15:ff:15:b1: 0c:9b:1b:87:93:1d:74:53:bb:0e:9e:7d:57:ba:83: aa:5a:3b:e2:fc:9e:78:8a:6e:7b:d1:0d:0a:72:d4: 6b:25:e4:5a:7e:29:bf:91:a0:0b:33:2d:60:7c:80: 5c:4f:94:ce:ce:03:36:5a:d6:f6:6d:c5:21:1a:4f: d8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:86:F3:12:8B:93:C4:CE:85:46:34:EA:78:B9:EC:74:4A:49:1E:C4 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:660::/44 Signature Algorithm: sha256WithRSAEncryption 46:f9:57:07:53:58:2b:19:4c:e0:c1:60:38:77:fc:8b:c1:42: 0f:a7:30:50:be:91:c3:1c:65:5e:cd:4b:a2:83:40:bf:59:6b: bb:86:b7:28:63:38:d8:1c:cb:2f:54:4f:3a:60:78:20:19:1b: c2:94:7b:29:cf:4f:55:2c:79:5c:d2:1c:ee:bd:80:14:fd:df: 3f:5a:b2:87:9a:02:de:c0:c5:f2:8e:e0:b1:bf:d6:e2:6f:1f: e7:ef:66:12:f0:cb:7d:4a:a2:43:ec:7e:33:32:91:a9:b4:82: c5:4e:64:27:7a:c1:af:84:1e:03:b7:cb:b2:01:82:2b:37:8c: 79:aa:7b:0c:09:99:32:9b:58:43:a0:a0:5e:09:79:e8:8e:47: d5:b9:03:64:7b:44:e5:38:d5:e2:3a:60:76:d2:72:2b:00:cc: 2c:67:8c:63:98:c6:c0:8c:c4:71:5e:65:70:86:06:9b:ee:5a: e0:c1:ab:05:7a:44:7a:71:f5:f8:99:47:27:00:98:95:7c:ff: 3f:1d:15:61:3e:81:79:44:fe:36:be:09:2a:a3:49:d6:d1:d5: 7d:60:09:bd:8a:6a:24:a0:0e:47:73:b0:cf:53:5f:19:f9:06: 92:02:bb:40:6f:a4:88:8a:ba:58:eb:28:d1:cb:4b:a8:5c:8d: 40:06:46:1c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICESgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzdmYy1mMjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw8u0csj7byYUA9hW5OIsNQX5JURIht0hmEQtY2oJ2vlSGBKuzADilPyXEJ1 NzubSZKBWtVBQ4NMK73qvadtcFwg5FFyaI06GvFkCfUvWdpCEDoxV5Q4Lg68Qe+B SVoLAy/vMK3q3tUfsuCAUV1EMPPJ6PQWOqSAmImsDOYgTtbxqZ4JR6kZoEpzyB9h 5hnFnrxOTQhDRpyxSYzdx8maz5aqb6JFWEYSpQxl1l4JexnSZME5yhPks5a/i99/ dBX/FbEMmxuHkx10U7sOnn1XuoOqWjvi/J54im570Q0KctRrJeRafim/kaALMy1g fIBcT5TOzgM2Wtb2bcUhGk/YhQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDqG8xKL k8TOhUY06ni57HRKSR7EMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQjhGNjcxNDhE QzY2MTFFRDg5RjA4MDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBHrABmAwDQYJKoZIhvcNAQELBQADggEBAEb5VwdTWCsZ TODBYDh3/IvBQg+nMFC+kcMcZV7NS6KDQL9Za7uGtyhjONgcyy9UTzpgeCAZG8KU eynPT1UseVzSHO69gBT93z9asoeaAt7AxfKO4LG/1uJvH+fvZhLwy31KokPsfjMy kam0gsVOZCd6wa+EHgO3y7IBgis3jHmqewwJmTKbWEOgoF4JeeiOR9W5A2R7ROU4 1eI6YHbScisAzCxnjGOYxsCMxHFeZXCGBpvuWuDBqwV6RHpx9fiZRycAmJV8/z8d FWE+gXlE/ja+CSqjSdbR1X1gCb2KaiSgDkdzsM9TXxn5BpICu0BvpIiKuljrKNHL S6hcjUAGRhw= -----END CERTIFICATE-----Generated at Sat Apr 5 21:21:58 2025 by rpki-client