$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/F8C50B08201711F0A5D51F16C4F9AE02.roa File: F8C50B08201711F0A5D51F16C4F9AE02.roa (raw, json) Hash identifier: YsXcAlte05qmGIgWu2vJoEwWF+8nksJR/jWNa1FgQP4= Subject key identifier: 50:77:3C:64:2C:9C:87:C9:6D:01:35:73:4E:BA:A7:4E:33:F9:9F:1B Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: 02 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/F8C50B08201711F0A5D51F16C4F9AE02.roa Signing time: Wed 23 Apr 2025 07:52:58 +0000 ROA not before: Wed 23 Apr 2025 07:52:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153782 IP address blocks: 2001:df5:5c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Apr 23 07:52:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68089c5a-3a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6d:14:29:24:9f:29:30:33:b6:c4:1d:2d:25: 53:52:b7:56:b2:45:2e:7e:8a:6c:18:10:b9:6e:d3: 65:2d:91:34:77:bc:ef:e2:0e:ef:0d:2e:07:85:c8: 6a:6d:b0:98:9b:e9:ad:0f:79:e8:0c:48:e5:04:73: 8e:29:cd:6a:70:28:4a:97:95:56:4c:30:dd:cb:4f: ac:7b:25:97:14:35:25:21:f0:b0:11:02:44:c7:49: 5d:14:e7:55:e3:bd:23:04:67:e3:e0:11:5d:5c:76: bd:61:9a:5a:9d:66:2a:ba:55:7c:44:8c:2a:55:3a: 3c:2e:9d:44:6e:23:33:31:0f:7a:e1:32:8b:dc:66: 3e:9a:92:70:6e:65:2d:8f:19:73:2e:82:42:06:72: 7d:07:a7:96:01:0c:44:bd:7c:35:4e:67:73:5e:03: c9:90:9d:17:c8:37:e0:b9:11:67:1d:ea:fc:95:43: a2:5f:52:d7:7f:2d:98:d2:fa:c9:e9:5f:29:1b:1d: 8f:3d:10:30:d8:75:59:a2:5d:fe:21:c9:c6:8a:c6: a9:b2:cb:7f:85:22:7a:69:e2:e8:fb:02:21:94:e4: 25:12:0c:c3:5b:e7:3e:30:17:dc:cc:51:d7:3d:4a: 29:5c:f5:ab:be:3c:00:a1:84:30:66:fc:58:73:be: ab:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:77:3C:64:2C:9C:87:C9:6D:01:35:73:4E:BA:A7:4E:33:F9:9F:1B X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/F8C50B08201711F0A5D51F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:5c40::/48 Signature Algorithm: sha256WithRSAEncryption c7:d5:92:97:95:e2:a0:fe:fb:e2:c6:93:9d:90:18:91:42:1f: 48:47:b4:be:b5:8c:73:10:5e:c8:80:0b:f0:72:b9:0d:05:16: 7c:ae:2e:c2:d9:0c:7c:cc:ad:57:31:2f:fb:1a:02:bd:bc:39: 17:c6:5e:be:5d:7b:dd:f5:6c:37:55:9b:3c:4b:bb:cf:2c:e2: 76:f8:83:9f:ae:af:44:b1:ae:cd:5e:ce:c1:4d:22:cf:61:3b: 22:be:ed:98:0d:be:98:22:94:80:bc:a4:f1:bf:6c:ee:50:b2: 3d:4e:a8:ba:87:38:62:04:a9:16:2e:c4:ec:d8:33:73:77:19: 7c:22:34:7c:ca:03:fc:aa:23:4f:47:a0:1e:92:7e:40:df:3d: c0:25:e4:12:20:52:93:9d:db:ea:09:03:02:5d:0d:19:af:77: 21:f8:7f:36:06:e9:11:39:a7:4c:15:9d:8d:de:6a:60:cf:77: 9e:c0:2e:7f:b1:0d:45:69:95:24:72:10:aa:d4:c9:92:39:81: 0d:6f:87:cc:f1:7f:c4:6c:1b:11:3c:06:ef:1a:c4:9e:3a:ae: e8:7f:30:b8:34:88:19:fa:02:1b:22:67:3c:93:69:b1:3f:98: 0f:bb:50:f0:e1:ec:95:29:8a:2c:72:22:9f:26:41:95:5f:5b: 6a:8d:1a:d9 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjZCMjExMC8GA1UEBRMoM0YzMUZCNUQ4RUY0N0RBRDM4REQ5MkVBMUE4OUU4ODg3 MTQwM0EzMTAeFw0yNTA0MjMwNzUyNThaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDg5YzVhLTNhNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWbRQpJJ8pMDO2xB0tJVNSt1ayRS5+imwYELlu02UtkTR3vO/iDu8NLgeFyGpt sJib6a0PeegMSOUEc44pzWpwKEqXlVZMMN3LT6x7JZcUNSUh8LARAkTHSV0U51Xj vSMEZ+PgEV1cdr1hmlqdZiq6VXxEjCpVOjwunURuIzMxD3rhMovcZj6aknBuZS2P GXMugkIGcn0Hp5YBDES9fDVOZ3NeA8mQnRfIN+C5EWcd6vyVQ6JfUtd/LZjS+snp XykbHY89EDDYdVmiXf4hycaKxqmyy3+FInpp4uj7AiGU5CUSDMNb5z4wF9zMUdc9 Silc9au+PAChhDBm/FhzvquTAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUUHc8ZCyc h8ltATVzTrqnTjP5nxswHwYDVR0jBBgwFoAUPzH7XY70fa043ZLqGonoiHFAOjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2NkIyL0M0RjE1NDcyMjAx NjExRjBBOEQ3NDMxNEM0RjlBRTAyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9q RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHpIN1hZNzBmYTA0M1pMcUdvbm9pSEZBT2pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCMi9DNEYxNTQ3MjIwMTYxMUYwQThENzQzMTRDNEY5QUUwMi9GOEM1MEIwODIw MTcxMUYwQTVENTFGMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfVcQDANBgkqhkiG9w0BAQsFAAOCAQEAx9WSl5XioP77 4saTnZAYkUIfSEe0vrWMcxBeyIAL8HK5DQUWfK4uwtkMfMytVzEv+xoCvbw5F8Ze vl173fVsN1WbPEu7zyzidviDn66vRLGuzV7OwU0iz2E7Ir7tmA2+mCKUgLyk8b9s 7lCyPU6ouoc4YgSpFi7E7Ngzc3cZfCI0fMoD/KojT0egHpJ+QN89wCXkEiBSk53b 6gkDAl0NGa93Ifh/NgbpETmnTBWdjd5qYM93nsAuf7ENRWmVJHIQqtTJkjmBDW+H zPF/xGwbETwG7xrEnjqu6H8wuDSIGfoCGyJnPJNpsT+YD7tQ8OHslSmKLHIinyZB lV9bao0a2Q== -----END CERTIFICATE-----Generated at Sat Apr 26 07:59:36 2025 by rpki-client