$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/09C0DFCE202011F098619934C4F9AE02.roa File: 09C0DFCE202011F098619934C4F9AE02.roa (raw, json) Hash identifier: VTcOwA4/ZHFl9NF0jVq8bKcfk95wITIQIkP9/wxqkas= Subject key identifier: CA:F3:2B:A9:AF:73:C2:C1:B5:39:DA:FD:8E:12:C5:59:6C:AA:EF:1B Certificate issuer: /CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Certificate serial: 1903 Authority key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/09C0DFCE202011F098619934C4F9AE02.roa Signing time: Wed 23 Apr 2025 08:50:43 +0000 ROA not before: Wed 23 Apr 2025 08:50:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55408 IP address blocks: 2401:ffe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6403 (0x1903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1306, serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Validity Not Before: Apr 23 08:50:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6808a9e2-5b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:08:85:40:c7:89:04:aa:e2:8b:68:11:b2: 7e:15:a9:1e:0a:31:f8:2c:70:a1:c3:ef:d0:67:e8: d1:81:fd:fc:1a:ce:e0:4b:93:e4:53:2f:3b:97:b8: 69:3c:91:e6:64:87:21:07:9c:bf:e6:e2:f8:16:de: db:39:e0:e2:09:4e:b5:0a:1c:c0:12:bc:0b:db:fe: 27:27:fe:c2:3c:ae:c7:40:64:4b:6e:a5:79:31:03: 50:be:4b:13:29:c3:a2:2d:33:d5:d7:7b:bf:4e:8a: 2d:58:83:10:77:a8:65:95:d1:31:6d:b9:ae:e2:24: 07:73:70:e0:d1:2b:c8:16:3e:ed:ea:6c:0a:0c:c4: 7f:50:1d:08:f3:7f:77:73:ed:b8:1f:d1:73:cb:0f: 23:39:84:f4:93:f6:d4:e6:0a:12:fd:da:8c:9a:34: 35:9c:a5:81:73:c3:7f:2a:e9:70:3c:23:98:37:90: 2d:18:3c:2d:37:88:b5:1a:6b:78:fa:04:30:59:c8: 59:a5:20:0d:46:a3:b3:2b:12:87:b6:35:74:42:c7: d5:98:d0:70:40:7a:74:56:b8:75:cd:0f:89:a2:f4: ab:00:6f:63:1d:41:cf:6e:5d:dd:d2:80:89:9d:77: 57:95:a1:02:67:72:da:3f:8a:7f:8b:6c:3a:8a:d5: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F3:2B:A9:AF:73:C2:C1:B5:39:DA:FD:8E:12:C5:59:6C:AA:EF:1B X509v3 Authority Key Identifier: keyid:E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/09C0DFCE202011F098619934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:ffe0::/32 Signature Algorithm: sha256WithRSAEncryption a7:3f:bf:06:3b:d4:45:a4:d9:a9:97:46:d2:33:8b:46:86:83: c5:2d:12:1f:82:b7:53:8f:63:58:8c:bc:97:99:0d:56:c9:4e: 14:ea:cf:bf:1f:50:14:6f:fc:3c:84:2b:51:28:7b:61:4c:ba: 53:20:94:e2:69:92:ac:18:b3:fc:10:ee:7a:b3:a1:bd:76:69: e9:fe:92:5f:98:d3:b3:ad:4c:d0:ae:75:08:a6:bf:86:6c:1d: cc:ac:9c:1f:a6:d2:34:33:3f:3d:95:24:34:69:c5:47:b0:59: 2b:62:23:b0:7a:41:4d:3b:dc:9b:14:6f:ec:c5:bc:7d:e7:bf: d9:cf:32:22:26:9b:45:35:19:4d:b3:31:45:e6:11:2a:83:ce: b1:af:8b:8f:87:95:22:36:7a:be:18:e7:53:ed:71:9e:63:01: e4:70:1c:7f:a4:b0:9d:8d:f4:c0:77:16:2c:ce:49:e3:3e:9e: 33:da:d7:67:22:3e:8c:d7:ca:29:3a:de:63:40:a4:1f:ec:25: 83:36:a1:12:56:0a:67:ea:02:fb:cc:08:eb:1a:26:9e:19:4c: e2:23:81:38:3d:21:40:9b:c2:4d:92:98:d9:46:4c:ee:90:62: b9:f2:aa:4a:d1:e6:d3:a3:59:72:e3:a9:fc:dc:1a:75:94:47: 65:21:38:cf -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICGQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEzMDYxMTAvBgNVBAUTKEUwNEZCMkFBNjI3RDk3Qjk4OUFFQ0ZFODY5NzRFM0M1 RjMwMzEyMUEwHhcNMjUwNDIzMDg1MDQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4YTllMi01YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWIIhUDHiQSq4otoEbJ+FakeCjH4LHChw+/QZ+jRgf38Gs7gS5PkUy87l7hp PJHmZIchB5y/5uL4Ft7bOeDiCU61ChzAErwL2/4nJ/7CPK7HQGRLbqV5MQNQvksT KcOiLTPV13u/TootWIMQd6hlldExbbmu4iQHc3Dg0SvIFj7t6mwKDMR/UB0I8393 c+24H9Fzyw8jOYT0k/bU5goS/dqMmjQ1nKWBc8N/KulwPCOYN5AtGDwtN4i1Gmt4 +gQwWchZpSANRqOzKxKHtjV0QsfVmNBwQHp0Vrh1zQ+JovSrAG9jHUHPbl3d0oCJ nXdXlaECZ3LaP4p/i2w6itW7yQIDAQABo4ICljCCApIwHQYDVR0OBBYEFMrzK6mv c8LBtTna/Y4SxVlsqu8bMB8GA1UdIwQYMBaAFOBPsqpifZe5ia7P6Gl048XzAxIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTMwNi9GRTQ5NzQ5ODgz Q0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3bUpyc19vYVhUanhmTURF aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRFLXlxbUo5bDdtSnJzX29hWFRqeGZNREVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEzMDYvRkU0OTc0OTg4M0NBMTFFN0I4MjQwQTQyQzRGOUFFMDIvMDlDMERGQ0Uy MDIwMTFGMDk4NjE5OTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAf/gMA0GCSqGSIb3DQEBCwUAA4IBAQCnP78GO9RFpNmp l0bSM4tGhoPFLRIfgrdTj2NYjLyXmQ1WyU4U6s+/H1AUb/w8hCtRKHthTLpTIJTi aZKsGLP8EO56s6G9dmnp/pJfmNOzrUzQrnUIpr+GbB3MrJwfptI0Mz89lSQ0acVH sFkrYiOwekFNO9ybFG/sxbx957/ZzzIiJptFNRlNszFF5hEqg86xr4uPh5UiNnq+ GOdT7XGeYwHkcBx/pLCdjfTAdxYszknjPp4z2tdnIj6M18opOt5jQKQf7CWDNqES Vgpn6gL7zAjrGiaeGUziI4E4PSFAm8JNkpjZRkzukGK58qpK0ebTo1ly46n83Bp1 lEdlITjP -----END CERTIFICATE-----Generated at Sat Apr 26 16:40:10 2025 by rpki-client