$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa File: 38D25300639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg= Subject key identifier: A8:06:8C:7E:27:83:9E:3C:BD:84:1B:75:DD:F5:DD:22:FB:C8:92:F5 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 7E Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa Signing time: Thu 17 Apr 2025 05:44:53 +0000 ROA not before: Thu 17 Apr 2025 05:44:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 2401:9ce0::/44 maxlen: 48 2401:9ce0:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Apr 17 05:44:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68009555-dca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a1:70:d1:1e:dd:80:8b:7d:e4:a9:c5:4f:0e: 0f:a4:df:ae:85:ee:ab:5f:4d:f0:32:65:9c:9d:ee: 16:4b:ed:c5:61:e3:2b:e9:39:fe:84:23:04:76:9a: 01:e5:2e:0a:de:57:4c:c9:c3:d6:e2:29:e7:10:b0: 47:a5:db:75:0e:6a:ca:1b:53:be:78:cd:ed:29:e0: 15:2b:4a:d1:96:d5:9f:fb:96:80:20:b1:b6:b3:f9: ee:60:8a:79:35:a3:d6:40:50:3d:72:ad:a6:1a:d5: 1e:44:ac:3f:39:bf:f3:80:85:11:2b:b7:08:c9:8a: 17:0c:4d:10:cf:05:10:28:04:51:94:09:42:71:40: a5:41:88:ef:e1:5b:57:02:33:ed:9e:bd:46:2f:90: fb:09:02:d5:4b:8d:be:ba:1e:e1:20:d4:6c:28:60: 6a:d0:ee:37:04:f1:f0:8f:95:a0:7a:21:ff:77:e7: bd:35:b1:ab:8e:ae:56:9c:a0:e4:8e:8d:31:37:ce: 9b:fb:91:77:d7:64:13:43:ae:7c:81:31:4f:22:16: bd:f2:9b:d9:29:5c:e8:8f:aa:1b:15:99:19:7e:be: 45:ff:33:54:c1:77:7e:6e:63:0e:7c:de:81:17:31: a5:a7:d4:84:6f:ca:e0:59:33:22:9d:6a:5d:d6:78: be:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:06:8C:7E:27:83:9E:3C:BD:84:1B:75:DD:F5:DD:22:FB:C8:92:F5 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:9ce0::/43 Signature Algorithm: sha256WithRSAEncryption b6:6b:95:89:74:95:80:47:9c:f3:c8:b8:74:05:25:c5:df:14: 55:b8:50:e6:49:33:e8:16:2c:ca:f0:cf:04:a6:60:ca:f6:42: a3:ce:86:56:31:42:e9:34:ae:2e:bf:02:53:1f:28:c6:b0:a8: e5:94:ed:35:c0:e0:b6:08:36:ff:09:d3:d4:37:dd:18:de:0c: b0:ae:23:00:90:f4:7d:56:43:9a:a3:a7:33:7a:b3:70:03:95: 89:9c:d4:76:33:01:da:37:82:78:db:01:3a:07:8e:95:4f:00: f2:f8:fe:ef:e5:b5:b7:49:f0:f1:b4:7b:d2:25:9b:7b:5f:9a: b1:8f:ac:fe:11:43:20:50:78:55:fc:91:e8:78:71:7c:df:04: ec:45:5d:03:58:c3:02:e2:71:f1:f8:c6:92:0f:d3:ad:30:6d: 1e:9b:0c:aa:37:d8:9a:56:8c:89:0f:8b:2e:f1:bd:b8:3d:ee: f4:8b:a9:04:b9:da:c1:34:69:16:ce:fe:7e:40:ad:4a:aa:4a: 76:45:5a:5e:38:eb:27:a7:27:4a:fa:02:c9:cc:fa:05:59:13: 76:71:84:c2:c7:2c:57:8f:51:f4:20:74:0d:ed:32:16:d0:68: eb:2b:ef:a9:43:a5:03:a9:8b:80:09:f4:35:7f:bb:ce:06:a3: df:18:67:9d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTczNTExMC8GA1UEBRMoNTM3QjFCQTFDMDFCNDg2MzQ3MzhBQTExNTlBRTJCOTU1 OTBEREQ5MTAeFw0yNTA0MTcwNTQ0NTNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDA5NTU1LWRjYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyoXDRHt2Ai33kqcVPDg+k366F7qtfTfAyZZyd7hZL7cVh4yvpOf6EIwR2mgHl LgreV0zJw9biKecQsEel23UOasobU754ze0p4BUrStGW1Z/7loAgsbaz+e5gink1 o9ZAUD1yraYa1R5ErD85v/OAhRErtwjJihcMTRDPBRAoBFGUCUJxQKVBiO/hW1cC M+2evUYvkPsJAtVLjb66HuEg1GwoYGrQ7jcE8fCPlaB6If935701sauOrlacoOSO jTE3zpv7kXfXZBNDrnyBMU8iFr3ym9kpXOiPqhsVmRl+vkX/M1TBd35uYw583oEX MaWn1IRvyuBZMyKdal3WeL4xAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUqAaMfieD njy9hBt13fXdIvvIkvUwHwYDVR0jBBgwFoAUU3sbocAbSGNHOKoRWa4rlVkN3ZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNzM1L0QwRTlCMUVFNjM5 QjExRUY5QjREMkE1REM0RjlBRTAyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTNzYm9jQWJTR05IT0tvUldhNHJsVmtOM1pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi8zOEQyNTMwMDYz OUQxMUVGQjY2ODc3NUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBSQBnOAAADANBgkqhkiG9w0BAQsFAAOCAQEAtmuViXSVgEec 88i4dAUlxd8UVbhQ5kkz6BYsyvDPBKZgyvZCo86GVjFC6TSuLr8CUx8oxrCo5ZTt NcDgtgg2/wnT1DfdGN4MsK4jAJD0fVZDmqOnM3qzcAOViZzUdjMB2jeCeNsBOgeO lU8A8vj+7+W1t0nw8bR70iWbe1+asY+s/hFDIFB4VfyR6HhxfN8E7EVdA1jDAuJx 8fjGkg/TrTBtHpsMqjfYmlaMiQ+LLvG9uD3u9IupBLnawTRpFs7+fkCtSqpKdkVa XjjrJ6cnSvoCycz6BVkTdnGEwscsV49R9CB0De0yFtBo6yvvqUOlA6mLgAn0NX+7 zgaj3xhnnQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:38 2025 by rpki-client