$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/3E269BEE155F11F0A4BD4442C4F9AE02.roa File: 3E269BEE155F11F0A4BD4442C4F9AE02.roa (raw, json) Hash identifier: YepcYqCU3z67JdbH5lWyJSuimAJ/H7ABqSOHQGnz6Xw= Subject key identifier: 98:AF:B8:9B:4D:17:DF:3C:00:7E:F5:2C:9F:80:17:63:39:DB:37:EC Certificate issuer: /CN=A91C09C5/serialNumber=66761CCD1B4C88384E6A404028CD9A9F809DE276 Certificate serial: 010F Authority key identifier: 66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/3E269BEE155F11F0A4BD4442C4F9AE02.roa Signing time: Wed 09 Apr 2025 16:25:26 +0000 ROA not before: Wed 09 Apr 2025 16:25:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152147 IP address blocks: 2001:df3:4240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.crl rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:09:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09C5, serialNumber=66761CCD1B4C88384E6A404028CD9A9F809DE276 Validity Not Before: Apr 9 16:25:26 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67f69f75-4cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a9:44:70:aa:8b:f2:7c:52:5c:31:41:b3:b3: 4c:b7:0a:95:10:02:08:06:60:a9:9f:26:c8:9a:d6: ee:48:13:17:cc:5c:57:21:8e:3b:2c:a4:c2:16:d8: b5:e1:c9:b3:38:f3:b1:6d:9d:3a:50:81:3b:71:49: fc:ae:f1:7d:56:ee:ab:30:40:c0:f3:c0:9f:38:78: b3:a0:80:57:57:65:e5:28:90:be:fb:ab:75:32:a1: ed:37:cf:56:db:e6:cd:a6:dd:56:22:e6:61:b0:98: 58:6a:32:31:36:87:ce:31:d3:72:a6:78:89:f9:02: 0c:6b:12:d8:a6:a1:4a:e8:3b:6a:10:c6:53:9b:b6: a7:45:55:6d:d8:cc:3c:8c:7f:e2:5a:b7:c9:a4:30: a3:75:0a:76:df:cc:de:53:24:91:e8:90:64:68:2b: 6a:6d:ee:99:41:4f:40:9c:04:ff:f2:7b:a4:27:b5: da:f9:64:f7:72:fc:f3:a4:2a:ee:78:0a:24:9a:05: 45:a3:20:4b:b2:a4:79:5b:9a:37:18:34:ac:23:fe: e4:b5:0a:80:75:62:b1:c0:ee:0a:f5:59:70:a9:d6: 67:9b:a9:1f:99:cd:83:c7:73:b3:4b:f0:7c:0e:69: 29:70:f8:8c:d5:63:1b:1e:c3:ba:5d:fc:a3:62:f0: 5a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AF:B8:9B:4D:17:DF:3C:00:7E:F5:2C:9F:80:17:63:39:DB:37:EC X509v3 Authority Key Identifier: keyid:66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/3E269BEE155F11F0A4BD4442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:4240::/48 Signature Algorithm: sha256WithRSAEncryption 5f:08:85:e3:a9:de:de:ca:67:31:47:2e:fd:d4:68:36:32:ed: ff:c8:9c:f8:22:3f:54:d4:85:56:64:e1:80:99:52:c3:e3:97: 76:70:97:8f:0e:e5:14:c5:64:96:f4:ba:32:c8:6a:10:5d:99: 6d:e4:4c:56:27:a2:a4:d8:92:ff:bd:66:b0:d8:2e:54:c9:b2: 4e:b2:02:f6:28:e4:fd:d6:e1:d3:c0:20:61:6b:33:d1:7c:ba: 9d:d5:0e:0a:b1:2f:29:af:3d:52:19:65:fd:3b:66:ea:fa:da: bb:12:ff:7e:a9:a1:cc:02:ca:63:93:4c:0e:5e:86:2b:69:b3: c5:2f:2f:3c:ee:9d:37:e9:a7:7a:73:b2:5f:c9:cd:10:47:49: c7:1c:dd:15:bb:69:d0:80:68:68:ba:7f:47:24:bc:94:af:f6: 75:c7:25:ba:9c:5d:1c:05:55:ac:7c:99:f7:3d:9b:02:4a:e3: ed:b1:70:94:ea:cd:8c:a8:ed:fc:b8:64:d2:e3:6a:16:a5:e9: 94:dc:e8:85:2a:29:45:ea:d7:14:5b:e8:8f:ef:00:af:ad:9e: 2a:24:89:e3:ba:3a:b4:fe:da:f0:d8:f9:46:7d:87:16:8f:38: 7d:d7:d3:0a:e1:f0:6a:e9:e9:5c:e1:91:f9:b5:e3:25:4a:ae: ff:f1:30:26 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5QzUxMTAvBgNVBAUTKDY2NzYxQ0NEMUI0Qzg4Mzg0RTZBNDA0MDI4Q0Q5QTlG ODA5REUyNzYwHhcNMjUwNDA5MTYyNTI2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y2OWY3NS00Y2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKlEcKqL8nxSXDFBs7NMtwqVEAIIBmCpnybImtbuSBMXzFxXIY47LKTCFti1 4cmzOPOxbZ06UIE7cUn8rvF9Vu6rMEDA88CfOHizoIBXV2XlKJC++6t1MqHtN89W 2+bNpt1WIuZhsJhYajIxNofOMdNypniJ+QIMaxLYpqFK6DtqEMZTm7anRVVt2Mw8 jH/iWrfJpDCjdQp238zeUySR6JBkaCtqbe6ZQU9AnAT/8nukJ7Xa+WT3cvzzpCru eAokmgVFoyBLsqR5W5o3GDSsI/7ktQqAdWKxwO4K9VlwqdZnm6kfmc2Dx3OzS/B8 DmkpcPiM1WMbHsO6XfyjYvBa5QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJivuJtN F988AH71LJ+AF2M52zfsMB8GA1UdIwQYMBaAFGZ2HM0bTIg4TmpAQCjNmp+AneJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlDNS83NEIxNkM3Njk1 OTkxMUVFQkEzQ0IyNzVDNEY5QUUwMi9ablljelJ0TWlEaE9ha0JBS00yYW40Q2Q0 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1puWWN6UnRNaURoT2FrQkFLTTJhbjRDZDRuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA5QzUvNzRCMTZDNzY5NTk5MTFFRUJBM0NCMjc1QzRGOUFFMDIvM0UyNjlCRUUx NTVGMTFGMEE0QkQ0NDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zQkAwDQYJKoZIhvcNAQELBQADggEBAF8IheOp3t7K ZzFHLv3UaDYy7f/InPgiP1TUhVZk4YCZUsPjl3Zwl48O5RTFZJb0ujLIahBdmW3k TFYnoqTYkv+9ZrDYLlTJsk6yAvYo5P3W4dPAIGFrM9F8up3VDgqxLymvPVIZZf07 Zur62rsS/36pocwCymOTTA5ehitps8UvLzzunTfpp3pzsl/JzRBHSccc3RW7adCA aGi6f0ckvJSv9nXHJbqcXRwFVax8mfc9mwJK4+2xcJTqzYyo7fy4ZNLjahal6ZTc 6IUqKUXq1xRb6I/vAK+tniokieO6OrT+2vDY+UZ9hxaPOH3X0wrh8Grp6Vzhkfm1 4yVKrv/xMCY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:01:39 2025 by rpki-client