$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa File: 4D144B780DFE11F09C46E054C4F9AE02.roa (raw, json) Hash identifier: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI= Subject key identifier: 14:B2:F1:BF:0E:E5:05:9A:A5:CF:B9:4E:68:27:B8:7E:35:5B:81:D2 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 02 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa Signing time: Mon 31 Mar 2025 07:03:51 +0000 ROA not before: Mon 31 Mar 2025 07:03:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153322 IP address blocks: 2001:df4:3ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Mar 31 07:03:51 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67ea3e57-b1f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:45:9c:52:15:7c:55:bf:5e:21:f7:68:fb:4b: ff:18:ee:90:4c:3e:66:7c:0f:77:d2:e6:1c:bd:23: b8:30:c7:ab:21:c2:2d:c6:2e:ce:1f:7a:6e:fe:ae: 75:da:93:d9:08:76:7d:6d:ac:b0:bb:6e:86:51:af: e6:c9:84:72:63:f4:06:e0:8e:bc:ff:d5:62:49:43: f5:ef:ab:83:74:84:8e:60:3c:bb:1b:58:7d:40:e3: 64:3a:43:8c:d8:0d:21:e4:b8:1f:4c:a6:01:d2:7b: 73:70:c7:cd:93:f3:57:b8:9d:09:af:02:57:b9:b2: 7f:01:86:b5:89:a6:b2:c2:73:7c:52:b5:e3:3b:52: a5:ff:fa:ea:89:93:bb:c3:2e:78:67:71:12:08:22: 24:a8:e4:cb:7d:e7:82:eb:1f:91:de:46:af:f8:32: c2:fd:a8:21:33:1c:e7:51:c4:d9:33:6a:da:68:ed: fc:16:8a:03:2c:4c:6d:ac:73:9f:b8:3a:db:b9:38: 29:50:98:7c:22:77:9d:ba:51:1a:31:37:ab:86:be: e0:04:16:29:d3:ea:2b:21:07:59:50:a5:b5:32:5a: a5:69:27:ea:6b:6a:90:a1:f2:68:82:f8:c4:80:99: 60:d0:17:e4:f4:37:01:80:b9:a2:1d:e4:74:6d:52: 76:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B2:F1:BF:0E:E5:05:9A:A5:CF:B9:4E:68:27:B8:7E:35:5B:81:D2 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3ec0::/48 Signature Algorithm: sha256WithRSAEncryption 0c:23:fd:00:04:29:a2:f3:d9:f7:61:78:11:1d:d8:59:ba:f5: d6:7a:5a:04:6b:48:26:92:96:fa:19:be:63:97:26:82:4f:15: 81:46:ad:ce:39:76:89:1e:12:4f:79:2b:59:d7:d9:ef:60:1e: c8:c7:55:da:71:7f:ea:2f:07:af:e2:2d:a0:85:eb:e0:5e:dc: 84:d1:93:c6:bc:a9:fd:02:26:35:87:cd:4b:b5:99:e5:f7:16: a8:49:6d:07:aa:6d:98:a9:f1:1d:aa:6d:e5:2a:a9:d1:2d:3f: 96:27:49:4d:48:e6:9f:07:d9:e4:9c:a9:10:42:9b:ae:6c:5b: fd:05:f4:3c:2e:8f:0a:c0:97:50:6c:27:6f:79:01:9a:cd:fd: f5:9d:67:c7:41:54:1e:e3:dd:d7:31:de:13:51:23:55:0b:99: cd:5a:2a:34:5a:81:db:3d:1c:47:ff:35:ed:b6:e0:81:e6:dc: aa:62:ed:fd:db:0e:0d:10:4b:7c:af:18:ac:41:b8:64:01:ed: c1:dd:91:15:d1:ae:da:b6:42:20:cc:b1:7c:a8:4b:af:36:9f: f9:08:39:78:86:0d:5b:de:74:1c:c2:b3:c4:b8:dc:f6:44:5f: 05:80:31:51:83:5c:88:86:04:f3:50:67:a3:b2:f4:ef:f6:b7: e9:2d:91:78 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTAzMzEwNzAzNTFaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWEzZTU3LWIxZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLRZxSFXxVv14h92j7S/8Y7pBMPmZ8D3fS5hy9I7gwx6shwi3GLs4fem7+rnXa k9kIdn1trLC7boZRr+bJhHJj9Abgjrz/1WJJQ/Xvq4N0hI5gPLsbWH1A42Q6Q4zY DSHkuB9MpgHSe3Nwx82T81e4nQmvAle5sn8BhrWJprLCc3xSteM7UqX/+uqJk7vD LnhncRIIIiSo5Mt954LrH5HeRq/4MsL9qCEzHOdRxNkzatpo7fwWigMsTG2sc5+4 Otu5OClQmHwid526URoxN6uGvuAEFinT6ishB1lQpbUyWqVpJ+prapCh8miC+MSA mWDQF+T0NwGAuaId5HRtUnajAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUFLLxvw7l BZqlz7lOaCe4fjVbgdIwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82QUE0RDYwQTBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi80RDE0NEI3ODBE RkUxMUYwOUM0NkUwNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQ+wDANBgkqhkiG9w0BAQsFAAOCAQEADCP9AAQpovPZ 92F4ER3YWbr11npaBGtIJpKW+hm+Y5cmgk8VgUatzjl2iR4ST3krWdfZ72AeyMdV 2nF/6i8Hr+ItoIXr4F7chNGTxryp/QImNYfNS7WZ5fcWqEltB6ptmKnxHapt5Sqp 0S0/lidJTUjmnwfZ5JypEEKbrmxb/QX0PC6PCsCXUGwnb3kBms399Z1nx0FUHuPd 1zHeE1EjVQuZzVoqNFqB2z0cR/817bbggebcqmLt/dsODRBLfK8YrEG4ZAHtwd2R FdGu2rZCIMyxfKhLrzaf+Qg5eIYNW950HMKzxLjc9kRfBYAxUYNciIYE81Bno7L0 7/a36S2ReA== -----END CERTIFICATE-----Generated at Sat Apr 26 07:45:31 2025 by rpki-client