$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa File: 7879B24A3BA611EC8737B534C4F9AE02.roa (raw, json) Hash identifier: HkMdZ/7Zyl8/WVPS96RNyLCvOlQjm91vFX9iVmHYTgY= Subject key identifier: AF:83:E9:B6:C2:D0:72:7B:B7:81:DA:E5:2E:3C:35:4A:4A:9F:9F:23 Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 0512 Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa Signing time: Thu 06 Feb 2025 23:42:17 +0000 ROA not before: Thu 06 Feb 2025 23:42:17 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26506 IP address blocks: 2402:6800:6::/48 maxlen: 48 2402:6800:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 23:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268, serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 6 23:42:17 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a548d9-bce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:57:70:41:46:b1:a7:af:3d:fb:f8:76:03: 59:22:0a:be:e4:6e:38:a6:ea:82:e2:1c:4a:b5:e5: e5:45:a1:0f:5d:b4:4d:4e:2a:9a:09:67:2f:b3:71: 56:d4:09:93:99:31:52:54:c8:98:1d:d8:6b:b1:73: f7:88:a0:29:f6:cd:93:e2:8e:17:a8:73:66:19:ac: db:00:97:88:a4:7e:4d:32:c5:e2:47:58:f6:00:91: 50:58:f4:84:40:f2:8a:f5:9d:d2:3a:93:96:82:ad: fb:bc:3f:07:16:04:67:1e:e7:01:59:fa:64:40:de: a9:e0:28:97:04:d0:6d:3f:13:f0:a8:56:3e:dd:3d: 36:95:79:a2:0d:25:2e:33:34:2a:45:e9:52:a6:64: 96:93:7f:0b:a0:73:15:ca:49:ab:00:01:65:2a:d2: d0:3e:e3:f1:d5:cb:b5:38:96:bc:bf:f0:cb:af:15: de:94:11:18:3c:cb:9b:0c:12:5c:92:4f:93:db:be: 4d:62:4d:f5:4d:b2:dc:3d:f7:31:b6:4c:cf:0d:a1: cf:09:cd:48:89:39:79:08:de:29:d2:0a:1b:b4:2f: 1a:74:82:b7:c1:cd:63:ef:10:f8:99:9d:8f:99:bb: c1:aa:c6:61:ca:6f:c1:fc:9a:d5:de:41:f1:b6:ce: 02:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:83:E9:B6:C2:D0:72:7B:B7:81:DA:E5:2E:3C:35:4A:4A:9F:9F:23 X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7879B24A3BA611EC8737B534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:6800:6::/48 2402:6800:100::/48 Signature Algorithm: sha256WithRSAEncryption b9:ed:f2:55:fa:8c:39:9f:24:ad:1b:a7:f1:98:ae:94:38:6d: bb:cc:ad:12:32:5c:0f:22:08:5b:8c:0a:ba:1b:1b:89:5e:38: 61:91:a7:b3:41:c5:cf:d3:4b:2a:b1:9f:c0:7e:b0:a2:0d:de: 51:0a:c5:b0:92:94:03:8f:e0:75:a4:2b:7d:78:f1:1e:2f:a8: ee:c5:19:4b:1c:cd:66:12:18:b5:e8:c5:8d:24:d9:d8:20:35: 10:0c:4b:b7:6f:a9:c9:fe:f5:dd:b3:b7:2b:60:4f:27:fb:50: 92:77:65:de:14:6c:6f:af:58:b5:d5:60:ea:7a:d2:d9:6a:55: 80:cf:ab:85:26:c0:77:ae:8a:eb:0f:cc:88:93:89:dc:86:3e: 28:3e:f7:73:e0:93:a2:7e:b8:64:f6:70:cb:ba:ae:88:3c:b8: e4:61:26:11:d6:a5:21:2e:c7:02:f2:6e:86:ca:cf:e4:76:9c: 6d:53:97:20:e0:cd:5a:d9:4f:2e:bd:90:ce:0f:b0:b0:ef:0c: 48:fd:66:f8:9e:aa:2a:93:7c:5e:d5:a7:42:24:87:3c:1c:ae: a2:a8:06:c3:d7:16:a1:73:5f:4e:f8:65:06:df:f4:a3:6e:a4: ad:de:eb:5f:09:01:dc:a7:42:72:8b:ef:48:2a:f5:5d:fb:07: 31:94:1b:03 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjUwMjA2MjM0MjE3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1NDhkOS1iY2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+BXcEFGsaevPfv4dgNZIgq+5G44puqC4hxKteXlRaEPXbRNTiqaCWcvs3FW 1AmTmTFSVMiYHdhrsXP3iKAp9s2T4o4XqHNmGazbAJeIpH5NMsXiR1j2AJFQWPSE QPKK9Z3SOpOWgq37vD8HFgRnHucBWfpkQN6p4CiXBNBtPxPwqFY+3T02lXmiDSUu MzQqRelSpmSWk38LoHMVykmrAAFlKtLQPuPx1cu1OJa8v/DLrxXelBEYPMubDBJc kk+T275NYk31TbLcPfcxtkzPDaHPCc1IiTl5CN4p0gobtC8adIK3wc1j7xD4mZ2P mbvBqsZhym/B/JrV3kHxts4CIQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFK+D6bbC 0HJ7t4Ha5S48NUpKn58jMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvNzg3OUIyNEEz QkE2MTFFQzg3MzdCNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAmgAAAYDBwAkAmgAAQAwDQYJKoZIhvcNAQELBQADggEB ALnt8lX6jDmfJK0bp/GYrpQ4bbvMrRIyXA8iCFuMCrobG4leOGGRp7NBxc/TSyqx n8B+sKIN3lEKxbCSlAOP4HWkK3148R4vqO7FGUsczWYSGLXoxY0k2dggNRAMS7dv qcn+9d2ztytgTyf7UJJ3Zd4UbG+vWLXVYOp60tlqVYDPq4UmwHeuiusPzIiTidyG Pig+93Pgk6J+uGT2cMu6rog8uORhJhHWpSEuxwLybobKz+R2nG1TlyDgzVrZTy69 kM4PsLDvDEj9ZvieqiqTfF7Vp0IkhzwcrqKoBsPXFqFzX074ZQbf9KNupK3e618J AdynQnKL70gq9V37BzGUGwM= -----END CERTIFICATE-----Generated at Fri Apr 18 19:35:23 2025 by rpki-client