$ rpki-client -vvf rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/B3E4D03621B111F089CE216DC4F9AE02.roa File: B3E4D03621B111F089CE216DC4F9AE02.roa (raw, json) Hash identifier: VCQENYwleJhQRqqUILKpkln6ADdmKoB6HviWfuCE7i4= Subject key identifier: 4D:17:F8:30:CD:05:9F:A8:A4:50:07:3F:4E:CA:FA:9B:80:A5:AF:CB Certificate issuer: /CN=A91A995E/serialNumber=A5EBDF983919C60F622F34EF8FC521E72489D1CD Certificate serial: 1F Authority key identifier: A5:EB:DF:98:39:19:C6:0F:62:2F:34:EF:8F:C5:21:E7:24:89:D1:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/B3E4D03621B111F089CE216DC4F9AE02.roa Signing time: Fri 25 Apr 2025 08:45:56 +0000 ROA not before: Fri 25 Apr 2025 08:45:56 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134182 IP address blocks: 2001:df5:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.crl rsync://rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 08:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A995E, serialNumber=A5EBDF983919C60F622F34EF8FC521E72489D1CD Validity Not Before: Apr 25 08:45:56 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=680b4bc4-6636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9f:37:98:c8:59:ca:0b:86:0c:9d:f0:a1:61: 7c:c7:e3:51:59:ca:29:ec:f0:e6:b4:1d:b8:1f:e7: 81:34:55:36:92:9c:fb:ce:39:09:d2:1c:29:1d:1a: d1:d9:be:7e:4f:ad:bb:fc:1e:4d:83:38:7a:2a:88: fe:54:6a:5e:13:7c:5e:30:90:0a:86:7d:9c:3b:74: 2f:dc:eb:8d:4b:26:d6:5b:71:7d:b3:9a:85:77:04: 68:c7:7f:8b:ab:a9:81:d9:94:ed:66:e0:be:71:05: 43:ba:a2:fc:12:d9:33:ec:56:e2:77:a3:f6:42:ed: e1:f2:4a:72:d2:18:27:81:1f:7e:1c:35:5c:e0:4a: 21:05:10:92:87:c0:01:11:26:c4:20:86:00:12:3e: 99:e0:a8:91:40:5f:7f:28:ad:41:e9:2f:f5:07:d4: c1:93:33:5f:c0:90:e1:3e:6a:d4:ba:18:29:37:f4: 88:ff:c9:2c:5e:48:21:c9:86:6b:bc:f3:4f:2c:8d: ea:40:23:dd:e5:fb:dc:37:e6:37:4a:ff:81:3f:d2: 40:3b:25:47:5b:d6:0a:b0:ce:95:b9:6b:8f:d2:9a: 99:b9:83:b4:2a:29:ce:28:b2:06:61:88:96:de:50: a4:cd:19:10:80:cf:85:a4:de:75:f9:6f:bd:c0:c6: 76:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:17:F8:30:CD:05:9F:A8:A4:50:07:3F:4E:CA:FA:9B:80:A5:AF:CB X509v3 Authority Key Identifier: keyid:A5:EB:DF:98:39:19:C6:0F:62:2F:34:EF:8F:C5:21:E7:24:89:D1:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pevfmDkZxg9iLzTvj8Uh5ySJ0c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A995E/37BB5F82FA6211EF95555C0EC4F9AE02/B3E4D03621B111F089CE216DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 48:aa:ce:cb:cc:16:de:10:d1:84:f1:43:a6:cb:cd:d0:66:f1: 96:77:b4:f5:c7:43:eb:ba:b7:d0:0d:62:92:7d:84:35:7d:2f: a1:4f:76:7e:bc:1b:db:80:9a:fa:f1:1b:93:8f:c3:95:de:b9: 82:b2:cd:6c:1a:7a:61:fb:f5:8f:0a:f0:39:8c:c8:1a:30:1e: 7b:c2:eb:3d:81:41:4e:f7:2e:c8:04:5c:fd:07:22:ec:54:04: ce:4c:b4:52:13:da:aa:26:db:14:b0:c4:2b:92:6b:98:a2:13: 19:6a:76:72:a9:ee:0f:7a:19:11:cb:d0:cd:b5:fe:9d:7c:f2: 8f:60:ff:77:b3:5c:80:c3:98:67:74:ca:eb:60:46:6a:bb:49: 64:92:87:07:99:da:ba:ef:52:a8:bb:23:f2:d3:59:1a:88:f5: 02:0f:6e:de:5c:f5:8b:4b:0a:19:33:80:bb:f1:56:35:40:2f: 3b:59:b2:99:1b:8e:5e:f1:6a:89:d8:1f:f0:86:48:04:14:e7: 85:51:33:05:9a:9c:61:fc:3a:e9:18:1e:55:6a:a8:84:84:b9: a4:a5:13:9d:f2:1b:8d:af:39:20:a2:0b:69:9d:14:85:64:0a: b8:81:6d:ba:47:27:f8:77:23:8a:20:f3:df:75:e3:49:21:b7: 42:dc:ea:71 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTk1RTExMC8GA1UEBRMoQTVFQkRGOTgzOTE5QzYwRjYyMkYzNEVGOEZDNTIxRTcy NDg5RDFDRDAeFw0yNTA0MjUwODQ1NTZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGI0YmM0LTY2MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGnzeYyFnKC4YMnfChYXzH41FZyins8Oa0Hbgf54E0VTaSnPvOOQnSHCkdGtHZ vn5Prbv8Hk2DOHoqiP5Ual4TfF4wkAqGfZw7dC/c641LJtZbcX2zmoV3BGjHf4ur qYHZlO1m4L5xBUO6ovwS2TPsVuJ3o/ZC7eHySnLSGCeBH34cNVzgSiEFEJKHwAER JsQghgASPpngqJFAX38orUHpL/UH1MGTM1/AkOE+atS6GCk39Ij/ySxeSCHJhmu8 808sjepAI93l+9w35jdK/4E/0kA7JUdb1gqwzpW5a4/Smpm5g7QqKc4osgZhiJbe UKTNGRCAz4Wk3nX5b73AxnajAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUTRf4MM0F n6ikUAc/Tsr6m4Clr8swHwYDVR0jBBgwFoAUpevfmDkZxg9iLzTvj8Uh5ySJ0c0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OTVFLzM3QkI1RjgyRkE2 MjExRUY5NTU1NUMwRUM0RjlBRTAyL3BldmZtRGtaeGc5aUx6VHZqOFVoNXlTSjBj MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGV2Zm1Ea1p4ZzlpTHpUdmo4VWg1eVNKMGMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk1RS8zN0JCNUY4MkZBNjIxMUVGOTU1NTVDMEVDNEY5QUUwMi9CM0U0RDAzNjIx QjExMUYwODlDRTIxNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfVLQDANBgkqhkiG9w0BAQsFAAOCAQEASKrOy8wW3hDR hPFDpsvN0Gbxlne09cdD67q30A1ikn2ENX0voU92frwb24Ca+vEbk4/Dld65grLN bBp6Yfv1jwrwOYzIGjAee8LrPYFBTvcuyARc/Qci7FQEzky0UhPaqibbFLDEK5Jr mKITGWp2cqnuD3oZEcvQzbX+nXzyj2D/d7NcgMOYZ3TK62BGartJZJKHB5nauu9S qLsj8tNZGoj1Ag9u3lz1i0sKGTOAu/FWNUAvO1mymRuOXvFqidgf8IZIBBTnhVEz BZqcYfw66RgeVWqohIS5pKUTnfIbja85IKILaZ0UhWQKuIFtukcn+HcjiiDz33Xj SSG3QtzqcQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:49:48 2025 by rpki-client