$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa File: 6667EA1E20F811F0A8A8B152C4F9AE02.roa (raw, json) Hash identifier: eFg9WgMMTt/zgk8aNG8CeylwZgeE9riWVK14SWsVzc0= Subject key identifier: 2E:08:0D:72:89:2E:36:39:19:67:3C:AF:D8:BD:BF:37:29:77:11:BE Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 3D Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa Signing time: Thu 24 Apr 2025 10:39:30 +0000 ROA not before: Thu 24 Apr 2025 10:39:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153581 IP address blocks: 2001:df5:11c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Apr 24 10:39:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680a14e1-ac61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:ac:ae:c3:c8:1a:51:46:bf:df:c3:91:23: 23:28:eb:ec:c1:c1:75:1d:d8:e7:7c:95:ee:5c:be: 81:f5:07:d9:b6:5e:5c:b9:2e:e1:bd:4b:4e:53:3f: f9:38:57:48:98:64:e8:5a:72:ef:1d:9d:6e:cb:75: 4e:8e:4f:32:2c:31:97:9b:88:41:ba:f6:3c:fe:54: 4d:52:f1:42:9f:a3:1a:0e:f4:a6:e2:e1:52:6b:33: 6f:a4:f2:7e:50:c9:d8:42:39:89:f8:a4:cd:32:7a: d9:85:42:f0:6d:a7:80:fe:9f:95:6d:db:53:42:20: 33:d6:c5:67:c4:1f:c8:f5:42:cf:b2:ee:22:43:a2: 36:1b:a0:13:7e:20:8f:22:44:ea:42:f4:3b:ee:06: 00:07:a2:5b:fb:78:a0:a5:86:bc:87:c3:20:92:a8: 03:8f:d3:ab:17:ec:3e:ba:fc:a8:24:f5:44:04:8f: af:40:8d:43:f0:5e:06:6c:f0:f8:0e:ca:87:74:8a: 78:fd:da:b8:91:61:7b:4f:20:ae:2d:be:6b:e6:17: 86:3c:ed:39:eb:b1:6c:c9:f6:f0:35:0f:4b:7a:21: 8a:7c:6f:65:b4:37:47:d8:7d:9f:f5:29:cd:30:e1: 96:6d:de:32:5d:cb:14:bf:0e:5a:5a:c4:88:9b:e4: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:08:0D:72:89:2E:36:39:19:67:3C:AF:D8:BD:BF:37:29:77:11:BE X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/6667EA1E20F811F0A8A8B152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:11c0::/48 Signature Algorithm: sha256WithRSAEncryption 8f:a5:9f:e4:4e:ed:a5:07:60:bb:75:c3:42:83:d5:f3:05:de: d5:2a:3b:c0:eb:34:56:e5:14:f3:35:97:74:fa:64:66:f4:8e: 07:59:de:7e:fe:46:eb:09:57:b5:ca:9c:83:a3:1b:56:b4:cc: 18:b6:7f:39:b5:a8:5d:46:01:70:5b:c7:9a:a0:ca:e9:51:d6: e2:2a:8b:dc:e4:96:e8:18:1b:a2:6d:6c:39:24:2b:ae:03:65: 85:a4:d8:57:f7:87:6e:62:8e:17:7c:ae:1c:8c:bf:98:7d:9d: 19:a2:8b:19:49:b7:aa:2f:8c:72:38:55:53:81:1a:f7:f0:33: 0a:72:85:84:97:0e:75:a8:b6:02:9e:de:93:24:b4:c0:71:08: d7:25:b3:b4:b0:d9:71:8b:11:05:f6:08:d5:23:19:4f:8d:0f: da:34:25:e7:d9:7f:c4:ad:5d:17:10:b8:a9:e1:5a:56:24:a8: 40:5c:3b:79:33:c8:3e:61:f6:39:e7:ba:3e:f9:85:2e:35:83: bb:41:6c:d4:01:af:df:ef:8a:31:9f:a8:3f:0a:e9:b2:de:a3: ba:aa:e5:60:e2:c9:db:b4:a6:d0:ef:d1:93:9b:bf:e6:70:94: 1f:6f:83:64:a6:94:a4:21:af:99:8b:87:0d:29:05:40:2a:c7: d6:ac:1a:a4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA0MjQxMDM5MjlaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGExNGUxLWFjNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEaayuw8gaUUa/38ORIyMo6+zBwXUd2Od8le5cvoH1B9m2Xly5LuG9S05TP/k4 V0iYZOhacu8dnW7LdU6OTzIsMZebiEG69jz+VE1S8UKfoxoO9Kbi4VJrM2+k8n5Q ydhCOYn4pM0yetmFQvBtp4D+n5Vt21NCIDPWxWfEH8j1Qs+y7iJDojYboBN+II8i ROpC9DvuBgAHolv7eKClhryHwyCSqAOP06sX7D66/Kgk9UQEj69AjUPwXgZs8PgO yod0inj92riRYXtPIK4tvmvmF4Y87TnrsWzJ9vA1D0t6IYp8b2W0N0fYfZ/1Kc0w 4ZZt3jJdyxS/DlpaxIib5PHnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQULggNcoku NjkZZzyv2L2/Nyl3Eb4wHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REVFQi8xRUU3RkE2MEU1RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi82NjY3RUExRTIw RjgxMUYwQThBOEIxNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfURwDANBgkqhkiG9w0BAQsFAAOCAQEAj6Wf5E7tpQdg u3XDQoPV8wXe1So7wOs0VuUU8zWXdPpkZvSOB1nefv5G6wlXtcqcg6MbVrTMGLZ/ ObWoXUYBcFvHmqDK6VHW4iqL3OSW6Bgbom1sOSQrrgNlhaTYV/eHbmKOF3yuHIy/ mH2dGaKLGUm3qi+McjhVU4Ea9/AzCnKFhJcOdai2Ap7ekyS0wHEI1yWztLDZcYsR BfYI1SMZT40P2jQl59l/xK1dFxC4qeFaViSoQFw7eTPIPmH2Oee6PvmFLjWDu0Fs 1AGv3++KMZ+oPwrpst6juqrlYOLJ27Sm0O/Rk5u/5nCUH2+DZKaUpCGvmYuHDSkF QCrH1qwapA== -----END CERTIFICATE-----Generated at Sat Apr 26 09:18:17 2025 by rpki-client