$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa File: 595774341B6211F0B9733473C4F9AE02.roa (raw, json) Hash identifier: +tz3y5WKplkKwmkAAAjt/2fkFlX3E3AyLeSQygFyWM8= Subject key identifier: 84:73:70:7A:DF:37:5A:26:0A:24:02:62:A3:6D:FA:C1:3D:19:6A:C8 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 030C Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa Signing time: Tue 20 May 2025 14:53:24 +0000 ROA not before: Tue 20 May 2025 14:53:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 21433 IP address blocks: 2404:3d00:41c4::/47 maxlen: 47 2404:3d00:41c4::/48 maxlen: 48 2404:3d00:41c5::/48 maxlen: 48 2404:3d00:41ce::/47 maxlen: 47 2404:3d00:41ce::/48 maxlen: 48 2404:3d00:41cf::/48 maxlen: 48 2404:3d00:41d0::/47 maxlen: 47 2404:3d00:41d0::/48 maxlen: 48 2404:3d00:41d1::/48 maxlen: 48 2404:3d00:41d2::/47 maxlen: 47 2404:3d00:41d4::/47 maxlen: 47 2404:3d00:41d6::/47 maxlen: 47 2404:3d00:41e2::/47 maxlen: 47 2404:3d00:41e2::/48 maxlen: 48 2404:3d00:41e3::/48 maxlen: 48 2404:3d00:41e6::/47 maxlen: 47 2404:3d00:41e6::/48 maxlen: 48 2404:3d00:41e7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: May 20 14:53:24 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=682c9764-40d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:c6:9e:b0:0f:08:d3:cb:5b:40:73:0e:a5: c5:26:fc:27:d7:8a:02:70:db:4d:e1:0d:44:3c:dd: af:2d:5e:37:06:09:8c:cc:0a:d6:35:de:79:9f:b7: b2:c9:1e:f4:09:52:a0:e5:ff:a2:2b:9c:98:0b:5f: e1:b1:73:65:49:bc:a7:82:ba:a0:33:74:73:00:72: 21:fc:75:55:90:9e:fd:28:ee:52:f7:27:0c:d7:60: 1d:ab:cb:3d:59:82:d2:38:7a:e4:d6:38:74:47:33: 13:5a:b4:f5:be:cf:24:71:7d:85:6f:1a:de:88:68: 12:1a:fe:f7:90:dc:86:98:e6:22:5b:1e:a6:21:c6: 2c:ce:cf:cc:52:4e:60:c0:ee:7b:04:23:b5:86:05: 34:bb:67:dd:e1:e0:5e:b4:40:5c:84:61:82:16:92: 4d:e5:e2:e4:42:84:ba:2d:6b:35:f9:9b:7c:f2:10: 5a:e3:1a:91:23:36:f1:f3:68:06:9e:c3:3a:e1:2e: 9c:b4:aa:fe:52:ae:d7:8d:4a:98:a9:56:26:32:bf: f0:39:24:ec:b1:55:fc:b1:1a:22:0a:eb:b7:94:2e: e6:00:50:1e:48:18:4d:97:aa:09:96:ae:32:35:96: 57:ba:d6:ed:7f:16:4d:ad:9b:37:b2:3a:07:ac:c9: f5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:73:70:7A:DF:37:5A:26:0A:24:02:62:A3:6D:FA:C1:3D:19:6A:C8 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:3d00:41c4::/47 2404:3d00:41ce::-2404:3d00:41d7:ffff:ffff:ffff:ffff:ffff 2404:3d00:41e2::/47 2404:3d00:41e6::/47 Signature Algorithm: sha256WithRSAEncryption 85:46:de:d1:a8:ff:df:9c:c0:7a:7a:4c:98:9b:cb:4b:20:60: b8:d2:88:ab:4c:b9:86:47:55:b5:1a:8b:2e:b7:61:8a:0d:be: 5d:1a:c7:98:dd:20:ae:88:1d:da:d1:7d:f8:be:00:5e:92:f0: 49:81:3e:e3:3c:43:ed:14:38:7e:ce:ed:e9:06:8b:3b:07:35: f5:ae:bf:2b:09:3a:ce:35:33:66:be:7d:be:1b:5d:c3:f0:6c: e6:08:70:72:7c:f7:69:e4:1d:a1:05:df:ae:5c:c2:64:48:72: 1b:a4:8a:a1:2a:ac:fd:e1:8c:2a:fa:45:64:4b:12:44:dd:97: 28:2a:c7:78:5a:ba:e6:f0:8a:5b:79:8f:09:25:69:22:f1:84: 1f:0b:91:2a:70:15:39:af:1f:2a:b5:c2:91:f9:1c:83:6c:b9: a3:4c:5b:91:5d:f2:84:eb:fa:fd:3a:c4:ad:9b:9e:a9:bf:e0: 5e:d6:7b:c4:3f:00:1f:ab:20:47:5e:dc:34:89:f8:dc:f0:74: 16:99:b8:00:3b:ca:6b:db:55:3c:5f:ca:dc:54:fa:ba:c5:94: 81:cf:0d:08:81:e4:2d:51:24:86:9a:e5:c7:c4:44:ec:2e:04: 6b:9c:73:57:bd:9c:8f:da:a5:e4:40:e9:b3:46:9c:a8:19:0f: 81:4f:02:d9 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjUwNTIwMTQ1MzI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjOTc2NC00MGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI3GnrAPCNPLW0BzDqXFJvwn14oCcNtN4Q1EPN2vLV43BgmMzArWNd55n7ey yR70CVKg5f+iK5yYC1/hsXNlSbyngrqgM3RzAHIh/HVVkJ79KO5S9ycM12Adq8s9 WYLSOHrk1jh0RzMTWrT1vs8kcX2FbxreiGgSGv73kNyGmOYiWx6mIcYszs/MUk5g wO57BCO1hgU0u2fd4eBetEBchGGCFpJN5eLkQoS6LWs1+Zt88hBa4xqRIzbx82gG nsM64S6ctKr+Uq7XjUqYqVYmMr/wOSTssVX8sRoiCuu3lC7mAFAeSBhNl6oJlq4y NZZXutbtfxZNrZs3sjoHrMn1HwIDAQABo4ICvjCCArowHQYDVR0OBBYEFIRzcHrf N1omCiQCYqNt+sE9GWrIMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI0QUYvQ0M3QjI1NUFEQ0E5MTFFQzk0RTNFMDI5QzRGOUFFMDIvNTk1Nzc0MzQx QjYyMTFGMEI5NzMzNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MDUEAgACMC8DBwEkBD0AQcQwEgMHASQEPQBBzgMHAyQEPQBB0AMHASQEPQBB 4gMHASQEPQBB5jANBgkqhkiG9w0BAQsFAAOCAQEAhUbe0aj/35zAenpMmJvLSyBg uNKIq0y5hkdVtRqLLrdhig2+XRrHmN0grogd2tF9+L4AXpLwSYE+4zxD7RQ4fs7t 6QaLOwc19a6/Kwk6zjUzZr59vhtdw/Bs5ghwcnz3aeQdoQXfrlzCZEhyG6SKoSqs /eGMKvpFZEsSRN2XKCrHeFq65vCKW3mPCSVpIvGEHwuRKnAVOa8fKrXCkfkcg2y5 o0xbkV3yhOv6/TrErZueqb/gXtZ7xD8AH6sgR17cNIn43PB0Fpm4ADvKa9tVPF/K 3FT6usWUgc8NCIHkLVEkhprlx8RE7C4Ea5xzV72cj9ql5EDps0acqBkPgU8C2Q== -----END CERTIFICATE-----Generated at Mon Jun 2 06:34:26 2025 by rpki-client