$ rpki-client -vvf rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/96A61404AAA911EBA223275EC4F9AE02.roa File: 96A61404AAA911EBA223275EC4F9AE02.roa (raw, json) Hash identifier: E9czvgeh6YRFhRYFfzW1p9Rsfnmm6YmfPInujvKlVu4= Subject key identifier: E8:8E:71:BF:04:97:84:A2:B8:30:AD:A4:73:8C:19:57:1A:C5:CA:D1 Certificate issuer: /CN=A914845D/serialNumber=ABA6C0C46CE887A639D0DE07133AE1FFCC0D2D91 Certificate serial: 0604 Authority key identifier: AB:A6:C0:C4:6C:E8:87:A6:39:D0:DE:07:13:3A:E1:FF:CC:0D:2D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6bAxGzoh6Y50N4HEzrh_8wNLZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/96A61404AAA911EBA223275EC4F9AE02.roa Signing time: Wed 19 Feb 2025 00:31:57 +0000 ROA not before: Wed 19 Feb 2025 00:31:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141704 IP address blocks: 2001:df5:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/q6bAxGzoh6Y50N4HEzrh_8wNLZE.crl rsync://rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/q6bAxGzoh6Y50N4HEzrh_8wNLZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6bAxGzoh6Y50N4HEzrh_8wNLZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914845D, serialNumber=ABA6C0C46CE887A639D0DE07133AE1FFCC0D2D91 Validity Not Before: Feb 19 00:31:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67b5267d-c332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:fd:8b:2d:7f:80:10:5e:4d:5d:6c:28:7a: 1f:a2:6e:ce:94:02:4c:1d:d6:52:66:72:41:24:dd: b5:26:23:ad:70:0e:73:6d:c0:d6:9d:0b:ff:a9:e1: bd:47:7f:bd:05:66:16:f3:15:87:f8:d7:bb:93:49: 6d:96:64:4b:55:48:66:05:95:bf:b1:1d:b0:fc:72: c4:5a:b8:f4:50:b2:40:fb:ec:03:0a:29:29:4a:ae: 30:13:92:20:26:4c:de:bc:5d:32:62:ba:07:f0:9b: 3c:22:f0:81:41:35:d5:bc:b6:04:85:e3:95:55:6d: ad:31:db:d9:6c:e1:c6:ac:bf:1c:93:5a:0e:b7:c7: cb:8d:ac:f2:ce:24:b5:05:0c:cb:33:62:8b:0c:3c: 8b:3c:e3:7a:9b:42:a6:b9:22:25:d2:da:56:62:dc: bd:b4:e2:54:c5:11:6d:95:59:0a:76:49:44:71:7f: 58:90:06:4d:87:04:fb:5d:35:f7:60:5b:46:6a:86: cf:00:a6:30:d6:39:75:a5:3d:54:90:88:4f:d5:fe: e9:5d:af:25:4a:a6:3e:4e:20:96:4d:ee:16:24:cf: 94:c9:af:a4:a8:d6:50:a6:d0:5c:22:46:3a:9e:5e: e8:a9:bf:71:3b:b5:e1:4f:d8:53:c8:a7:ef:a7:2e: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8E:71:BF:04:97:84:A2:B8:30:AD:A4:73:8C:19:57:1A:C5:CA:D1 X509v3 Authority Key Identifier: keyid:AB:A6:C0:C4:6C:E8:87:A6:39:D0:DE:07:13:3A:E1:FF:CC:0D:2D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/q6bAxGzoh6Y50N4HEzrh_8wNLZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6bAxGzoh6Y50N4HEzrh_8wNLZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914845D/547515C6949711EB9CF8832AC4F9AE02/96A61404AAA911EBA223275EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 2b:f5:18:7a:50:f2:ac:0b:cf:d3:e3:79:d9:4d:f3:ea:5a:3d: 71:57:a6:c7:65:ed:2b:42:fb:4e:d9:90:41:d6:01:5b:4d:11: 16:40:50:a0:ac:17:47:cf:34:4a:6e:7e:5d:fe:84:c6:c5:3b: 68:9d:fc:92:0d:bc:0d:00:ed:86:a8:cd:77:44:17:a1:a5:9a: f0:d8:be:9d:96:4f:95:03:b1:a4:c4:99:42:2c:97:d9:e7:1d: 7c:46:1c:ef:e5:ca:3e:d3:9a:f4:93:00:04:67:07:3d:78:8e: fa:7d:9a:31:c7:8a:27:17:7c:d5:0a:3f:89:b2:a6:ca:3c:ac: c7:38:a3:e5:af:79:26:1e:56:49:3b:2b:3d:52:a7:df:8c:42: 6a:11:47:91:58:d4:ab:b9:31:c5:0c:11:05:f5:df:6d:c7:0d: 3b:66:8e:a0:80:0c:19:5e:bb:14:c4:91:5e:a4:3d:01:7e:94: c9:85:60:66:47:d3:53:56:52:60:38:cb:d6:97:e3:62:ca:ab: 55:89:e7:33:94:d2:4d:08:85:19:f8:9d:d7:7a:45:d8:5e:63: 91:d7:b7:7a:ca:ed:1e:57:3c:31:9a:af:28:9c:82:46:2b:a8: 9a:c7:28:37:5b:f9:4d:89:d6:cc:aa:28:ed:be:b0:a2:60:3b: ea:7d:7c:70 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NUQxMTAvBgNVBAUTKEFCQTZDMEM0NkNFODg3QTYzOUQwREUwNzEzM0FFMUZG Q0MwRDJEOTEwHhcNMjUwMjE5MDAzMTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1MjY3ZC1jMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRH9iy1/gBBeTV1sKHofom7OlAJMHdZSZnJBJN21JiOtcA5zbcDWnQv/qeG9 R3+9BWYW8xWH+Ne7k0ltlmRLVUhmBZW/sR2w/HLEWrj0ULJA++wDCikpSq4wE5Ig JkzevF0yYroH8Js8IvCBQTXVvLYEheOVVW2tMdvZbOHGrL8ck1oOt8fLjazyziS1 BQzLM2KLDDyLPON6m0KmuSIl0tpWYty9tOJUxRFtlVkKdklEcX9YkAZNhwT7XTX3 YFtGaobPAKYw1jl1pT1UkIhP1f7pXa8lSqY+TiCWTe4WJM+Uya+kqNZQptBcIkY6 nl7oqb9xO7XhT9hTyKfvpy7vIQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOiOcb8E l4SiuDCtpHOMGVcaxcrRMB8GA1UdIwQYMBaAFKumwMRs6IemOdDeBxM64f/MDS2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ1RC81NDc1MTVDNjk0 OTcxMUVCOUNGODgzMkFDNEY5QUUwMi9xNmJBeEd6b2g2WTUwTjRIRXpyaF84d05M WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2YkF4R3pvaDZZNTBONEhFenJoXzh3TkxaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg0NUQvNTQ3NTE1QzY5NDk3MTFFQjlDRjg4MzJBQzRGOUFFMDIvOTZBNjE0MDRB QUE5MTFFQkEyMjMyNzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ317oAwDQYJKoZIhvcNAQELBQADggEBACv1GHpQ8qwL z9PjedlN8+paPXFXpsdl7StC+07ZkEHWAVtNERZAUKCsF0fPNEpufl3+hMbFO2id /JINvA0A7YaozXdEF6GlmvDYvp2WT5UDsaTEmUIsl9nnHXxGHO/lyj7TmvSTAARn Bz14jvp9mjHHiicXfNUKP4mypso8rMc4o+WveSYeVkk7Kz1Sp9+MQmoRR5FY1Ku5 McUMEQX1323HDTtmjqCADBleuxTEkV6kPQF+lMmFYGZH01NWUmA4y9aX42LKq1WJ 5zOU0k0IhRn4ndd6RdheY5HXt3rK7R5XPDGaryicgkYrqJrHKDdb+U2J1syqKO2+ sKJgO+p9fHA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:43 2025 by rpki-client