$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa File: C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa (raw, json) Hash identifier: +tn7Z6fq6avHjQp2bglrCkd8E2Sa27UKrn3GOMUj6b8= Subject key identifier: 31:5B:B0:49:9E:11:86:20:DF:FF:57:57:36:23:72:7A:0A:62:12:2F Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 1125 Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa Signing time: Wed 02 Apr 2025 17:46:34 +0000 ROA not before: Wed 02 Apr 2025 17:46:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 199974 IP address blocks: 2404:7ac0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4389 (0x1125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3 Validity Not Before: Apr 2 17:46:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed77f9-ced1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ea:d1:61:9b:f8:aa:1d:0d:e1:ec:07:79:93: 2a:78:7d:bd:a4:dc:c6:a5:1c:0e:14:df:0e:51:08: bf:86:97:49:d3:89:f2:f6:f9:7a:32:7e:4d:2d:99: ea:8a:c9:a2:f5:53:f0:af:a7:5b:bc:f6:5c:31:88: bd:ee:bf:f1:11:4f:57:91:ba:42:80:d3:2b:6e:92: 29:a1:57:f8:a4:89:6f:49:4a:28:e4:84:6f:4a:0b: 64:ee:9a:5b:7c:0b:d7:02:0c:2d:b7:8e:fa:b6:b2: c2:cf:f3:09:e1:c1:d2:84:ef:9b:c2:a8:2d:1e:91: 35:3e:5e:39:78:38:1f:f6:6c:3f:8f:ed:a0:05:a7: 58:c9:17:e7:ac:83:27:43:bb:55:4b:4f:68:a1:09: 2e:6f:ab:53:0b:46:c4:fe:d3:61:19:4d:cd:fe:eb: 00:71:55:73:d3:eb:83:6f:71:38:0d:71:0e:66:a7: f4:d6:82:cb:fb:15:cd:69:08:6a:e0:2e:60:53:f1: 3a:c8:fc:4f:9c:76:4b:ce:c5:9e:f5:54:dd:f2:f3: c9:b2:a1:f9:61:66:65:1b:43:52:f9:38:18:31:b7: 91:fc:05:36:4f:a9:7f:f7:21:23:09:d8:bc:dd:00: 4e:d9:1d:23:8a:03:a0:37:2b:d4:58:30:7c:7b:a2: 33:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5B:B0:49:9E:11:86:20:DF:FF:57:57:36:23:72:7A:0A:62:12:2F X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/C39DD1EAB2AE11EDBF6E4032C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 8e:36:49:4f:89:f5:69:d8:1c:3b:a2:fa:db:b8:27:8f:b6:8d: 1d:12:59:23:8d:07:c7:e6:27:78:44:d6:01:82:ce:cb:79:66: 97:bb:f1:67:b2:5c:bf:ea:2c:e8:c2:d0:64:6b:02:46:2b:63: 6d:be:0a:97:c9:e5:79:53:c0:bc:8d:b2:6f:6d:4b:8d:df:ca: 9a:5c:4d:45:b8:2a:26:55:58:32:6e:ed:d7:1c:69:f7:f2:a9: 98:5b:21:ee:e8:61:8a:4d:27:f9:fa:ab:c5:21:01:17:35:ae: ac:83:12:6d:8c:42:c8:11:dd:16:39:f6:c9:a9:b9:6f:75:1a: d5:7a:91:66:40:2c:00:8d:f9:6d:75:22:72:6e:d7:05:0b:5c: 86:db:93:0f:15:64:88:25:60:95:7a:18:f9:f1:6a:dd:73:16: 05:b5:f3:94:92:16:80:a1:b8:82:d6:93:af:53:3d:3b:b6:0c: c7:1c:2a:80:02:69:9c:98:76:d1:d2:a0:96:c3:e0:b4:c1:3f: 59:29:ce:07:bd:d6:f4:d2:97:86:3d:94:3d:ef:67:9c:ab:db: 47:74:d8:57:33:f3:ab:4e:3f:1e:ab:3e:23:21:ad:56:75:29: c1:fe:4b:8b:48:52:f2:2f:1a:c4:f2:6e:b8:58:1d:1b:14:84: 1a:80:8f:1c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICESUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzdmOS1jZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAserRYZv4qh0N4ewHeZMqeH29pNzGpRwOFN8OUQi/hpdJ04ny9vl6Mn5NLZnq ismi9VPwr6dbvPZcMYi97r/xEU9XkbpCgNMrbpIpoVf4pIlvSUoo5IRvSgtk7ppb fAvXAgwtt476trLCz/MJ4cHShO+bwqgtHpE1Pl45eDgf9mw/j+2gBadYyRfnrIMn Q7tVS09ooQkub6tTC0bE/tNhGU3N/usAcVVz0+uDb3E4DXEOZqf01oLL+xXNaQhq 4C5gU/E6yPxPnHZLzsWe9VTd8vPJsqH5YWZlG0NS+TgYMbeR/AU2T6l/9yEjCdi8 3QBO2R0jigOgNyvUWDB8e6IzwQIDAQABo4IClzCCApMwHQYDVR0OBBYEFDFbsEme EYYg3/9XVzYjcnoKYhIvMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQzM5REQxRUFC MkFFMTFFREJGNkU0MDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBHrAIDANBgkqhkiG9w0BAQsFAAOCAQEAjjZJT4n1adgc O6L627gnj7aNHRJZI40Hx+YneETWAYLOy3lml7vxZ7Jcv+os6MLQZGsCRitjbb4K l8nleVPAvI2yb21Ljd/KmlxNRbgqJlVYMm7t1xxp9/KpmFsh7uhhik0n+fqrxSEB FzWurIMSbYxCyBHdFjn2yam5b3Ua1XqRZkAsAI35bXUicm7XBQtchtuTDxVkiCVg lXoY+fFq3XMWBbXzlJIWgKG4gtaTr1M9O7YMxxwqgAJpnJh20dKglsPgtME/WSnO B73W9NKXhj2UPe9nnKvbR3TYVzPzq04/Hqs+IyGtVnUpwf5Li0hS8i8axPJuuFgd GxSEGoCPHA== -----END CERTIFICATE-----Generated at Sun Apr 6 08:59:37 2025 by rpki-client