$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa File: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (raw, json) Hash identifier: NPaRLQzlfeRDFfVjFZGdCoMjhFrE57rsZhCE/YcIOww= Subject key identifier: 12:03:1D:65:11:21:45:A5:A7:9F:B1:04:4A:31:AF:82:EA:35:7E:B1 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 28FF Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa Signing time: Thu 24 Apr 2025 15:42:27 +0000 ROA not before: Thu 24 Apr 2025 15:42:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58587 IP address blocks: 2403:9300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10495 (0x28ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Apr 24 15:42:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a5be3-cf55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a5:71:1c:ed:f3:09:d6:9d:25:82:93:d6:7d: 55:43:bf:68:bc:ef:54:60:73:21:e0:97:7c:91:0c: 60:eb:33:bc:5c:76:95:8f:fe:ff:1d:6b:e2:dc:58: e6:cc:85:ac:e6:bc:ef:48:81:79:a3:54:61:eb:6c: 27:4c:f2:d5:87:78:0a:5b:26:14:06:82:67:b4:44: da:c2:96:c1:22:5a:af:39:67:bf:34:5c:a1:f8:5d: a2:52:13:74:dd:6c:4e:89:ee:25:49:ab:ff:87:24: 86:5c:5a:52:5c:b7:c2:1f:51:1b:9c:de:f6:91:62: d7:e8:1a:f7:be:23:96:49:ea:30:a1:a1:f4:53:a5: e9:a6:7c:5d:bc:8f:ba:e7:80:1b:05:8b:d5:de:96: c4:2b:55:99:70:78:d7:fc:f6:41:88:28:4a:cb:7b: ae:87:e2:ed:65:7d:aa:28:94:dc:fa:af:f6:19:95: 5f:40:49:5f:4b:a7:94:d1:6f:b3:cb:f6:bf:e5:f9: e4:22:fc:76:eb:91:cc:58:44:66:93:ad:1d:bf:e4: 27:f9:5f:31:f0:da:a2:3e:a6:62:e0:5b:d3:70:d6: c9:c9:bb:1a:aa:47:82:c8:74:85:e4:d5:7e:db:e2: c3:d7:21:bc:94:60:e5:04:c3:7a:10:5b:07:97:31: d4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:03:1D:65:11:21:45:A5:A7:9F:B1:04:4A:31:AF:82:EA:35:7E:B1 X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:9300::/32 Signature Algorithm: sha256WithRSAEncryption 58:f2:10:43:c8:6c:cc:8f:5d:25:2d:1f:aa:48:83:e8:ad:48: 12:11:99:d4:91:b4:01:88:3f:96:fe:89:72:5d:12:6d:cf:32: aa:33:5a:9a:00:76:a5:62:a7:5c:16:a4:bc:2a:f5:08:3f:45: ef:12:c1:8a:0b:97:be:7d:af:c1:a4:42:5c:80:fd:e0:0c:14: 78:8f:a1:f0:b6:d6:aa:03:62:21:91:7c:ee:71:11:53:7d:a9: 9a:10:99:b1:3f:21:40:ca:b4:f8:e9:65:02:e1:3f:8a:d8:a3: ab:0d:9f:ad:df:57:e5:9f:e2:5d:d8:25:54:8b:21:43:9b:7b: 2b:5f:8d:ed:f0:93:92:a5:b9:23:5b:0c:03:c3:5a:19:cf:43: 14:d1:0b:12:74:f8:34:28:a6:7d:83:b3:3c:9b:42:c1:89:1a: ed:eb:8f:88:50:df:24:c1:15:d2:2d:9f:ba:84:3c:e8:c7:bb: 79:23:55:a3:6b:40:f8:17:28:a4:d4:7d:ec:1f:73:c1:1f:00: d0:88:bb:b8:54:97:58:c4:2c:06:b9:d9:78:65:ad:16:80:cf: 2a:d7:81:e1:9e:58:35:15:84:30:06:73:a0:ad:cc:ed:49:c3: bc:f3:d3:eb:6c:83:6a:69:75:c1:97:cb:f3:0c:4f:b9:5f:dc: 62:ec:2f:74 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICKP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwNDI0MTU0MjI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNWJlMy1jZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqVxHO3zCdadJYKT1n1VQ79ovO9UYHMh4Jd8kQxg6zO8XHaVj/7/HWvi3Fjm zIWs5rzvSIF5o1Rh62wnTPLVh3gKWyYUBoJntETawpbBIlqvOWe/NFyh+F2iUhN0 3WxOie4lSav/hySGXFpSXLfCH1EbnN72kWLX6Br3viOWSeowoaH0U6XppnxdvI+6 54AbBYvV3pbEK1WZcHjX/PZBiChKy3uuh+LtZX2qKJTc+q/2GZVfQElfS6eU0W+z y/a/5fnkIvx265HMWERmk60dv+Qn+V8x8NqiPqZi4FvTcNbJybsaqkeCyHSF5NV+ 2+LD1yG8lGDlBMN6EFsHlzHUMQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBIDHWUR IUWlp5+xBEoxr4LqNX6xMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1MTcvNDA2RjkwNEM2QUU2MTFFNDkxOTE0Njg3QzRGOUFFMDIvNUIwRDBCRkUw NEQ0MTFFQUE3RTNGODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA5MAMA0GCSqGSIb3DQEBCwUAA4IBAQBY8hBDyGzMj10l LR+qSIPorUgSEZnUkbQBiD+W/olyXRJtzzKqM1qaAHalYqdcFqS8KvUIP0XvEsGK C5e+fa/BpEJcgP3gDBR4j6HwttaqA2IhkXzucRFTfamaEJmxPyFAyrT46WUC4T+K 2KOrDZ+t31fln+Jd2CVUiyFDm3srX43t8JOSpbkjWwwDw1oZz0MU0QsSdPg0KKZ9 g7M8m0LBiRrt64+IUN8kwRXSLZ+6hDzox7t5I1Wja0D4Fyik1H3sH3PBHwDQiLu4 VJdYxCwGudl4Za0WgM8q14Hhnlg1FYQwBnOgrcztScO889PrbINqaXXBl8vzDE+5 X9xi7C90 -----END CERTIFICATE-----Generated at Sat Apr 26 09:23:59 2025 by rpki-client