$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa File: 6360524E03D311F0A6C64177C4F9AE02.roa (raw, json) Hash identifier: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8= Subject key identifier: 2A:01:92:64:FA:F2:CC:2A:20:A9:D5:23:4C:BB:45:2A:D7:7C:9A:FE Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: EF Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa Signing time: Tue 18 Mar 2025 19:39:21 +0000 ROA not before: Tue 18 Mar 2025 19:39:21 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14007 IP address blocks: 2405:cbc0::/32 maxlen: 32 2405:cbc0:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Mar 18 19:39:21 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d9cbe9-111e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:c1:8e:01:95:14:ef:ed:8f:b0:bf:fd:62: 24:10:82:a1:64:18:a5:36:9f:95:e3:3d:d5:85:67: 46:b5:bc:ae:90:68:61:ac:f8:e3:89:2a:1d:ca:f8: 4a:65:70:40:b1:c4:0e:f3:0d:20:b5:f2:6b:e1:37: 47:6a:04:50:65:ee:8a:3e:67:51:54:9a:fe:b2:37: 15:ad:1e:4a:32:4e:8b:b2:1f:6e:1e:d7:3a:27:fa: a0:e4:a0:09:db:ec:2a:1b:d8:99:f6:f7:29:54:17: 34:81:91:a9:07:4e:3a:0a:86:9f:dd:60:4e:d3:12: d2:6e:92:49:16:43:0d:b0:01:44:43:79:80:42:70: c1:ac:10:49:d7:95:69:df:92:27:93:e5:d4:61:65: c4:77:19:ab:ff:27:6a:e0:bb:cf:e8:0b:46:f9:de: e7:c7:52:10:ac:99:84:1e:61:94:de:fd:d7:ea:37: c5:83:9d:cb:d9:8d:90:01:c6:87:3d:7f:2a:10:6c: cf:6a:ef:56:95:46:c8:14:85:58:b0:6e:ed:d6:ad: a4:dc:f1:43:68:87:09:67:02:fe:f3:8b:08:72:a9: 4d:6b:ad:de:84:ab:f2:e1:e4:2b:a6:68:f5:fe:46: 2d:f1:a8:95:bf:f0:6c:4e:8a:ca:50:20:72:14:1d: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:01:92:64:FA:F2:CC:2A:20:A9:D5:23:4C:BB:45:2A:D7:7C:9A:FE X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/6360524E03D311F0A6C64177C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:30:b1:ce:ac:dc:bd:36:f2:ef:18:b8:2d:c1:4f:36:15:9f: 4e:9a:db:a3:cd:d1:b9:bc:bb:47:91:24:a4:10:28:14:9a:69: 20:a7:a9:2b:ee:03:21:7a:f2:7a:f3:89:19:17:65:58:b5:e2: fc:42:1b:ff:ce:6b:4f:ba:52:8e:f3:13:71:66:c0:ba:a3:21: 92:57:b8:01:59:8a:7d:29:6d:9a:fc:ce:85:86:0a:e0:d6:3a: 61:af:79:d6:11:09:b6:a3:5a:76:c2:cd:0e:dc:0a:0e:c6:b5: df:97:f5:66:5e:0b:3c:ab:1d:79:38:aa:f1:a7:89:6c:80:61: cf:c9:3a:a2:3b:bd:e3:1b:a0:de:cb:00:9b:45:25:33:21:74: aa:b3:ed:68:26:17:c5:94:79:28:2b:d0:3d:55:31:01:3a:e0: ff:03:d6:7b:c7:ae:91:67:90:1a:f6:77:53:52:5c:fc:d2:d0: d5:29:5d:b0:0f:28:2c:54:de:00:f9:8e:64:33:e6:e9:f7:1b: d9:e0:7d:7c:7c:c2:28:3a:37:b5:e0:db:fc:3d:54:0d:14:a5: 16:55:f7:c8:32:45:33:4a:ad:ab:52:d5:7d:f4:e6:7e:dd:a8: 60:2f:7a:76:5b:05:64:3b:fe:9f:e3:9e:53:5a:70:66:48:56: 13:80:dc:c7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwMzE4MTkzOTIxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5Y2JlOS0xMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPbBjgGVFO/tj7C//WIkEIKhZBilNp+V4z3VhWdGtbyukGhhrPjjiSodyvhK ZXBAscQO8w0gtfJr4TdHagRQZe6KPmdRVJr+sjcVrR5KMk6Lsh9uHtc6J/qg5KAJ 2+wqG9iZ9vcpVBc0gZGpB046Coaf3WBO0xLSbpJJFkMNsAFEQ3mAQnDBrBBJ15Vp 35Ink+XUYWXEdxmr/ydq4LvP6AtG+d7nx1IQrJmEHmGU3v3X6jfFg53L2Y2QAcaH PX8qEGzPau9WlUbIFIVYsG7t1q2k3PFDaIcJZwL+84sIcqlNa63ehKvy4eQrpmj1 /kYt8aiVv/BsTorKUCByFB1CsQIDAQABo4ICljCCApIwHQYDVR0OBBYEFCoBkmT6 8swqIKnVI0y7RSrXfJr+MB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFGNEIvODQ4NThGNkE0NzE5MTFFQTkwODYzMDcyQzRGOUFFMDIvNjM2MDUyNEUw M0QzMTFGMEE2QzY0MTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBcvAMA0GCSqGSIb3DQEBCwUAA4IBAQB8MLHOrNy9NvLv GLgtwU82FZ9OmtujzdG5vLtHkSSkECgUmmkgp6kr7gMhevJ684kZF2VYteL8Qhv/ zmtPulKO8xNxZsC6oyGSV7gBWYp9KW2a/M6Fhgrg1jphr3nWEQm2o1p2ws0O3AoO xrXfl/VmXgs8qx15OKrxp4lsgGHPyTqiO73jG6DeywCbRSUzIXSqs+1oJhfFlHko K9A9VTEBOuD/A9Z7x66RZ5Aa9ndTUlz80tDVKV2wDygsVN4A+Y5kM+bp9xvZ4H18 fMIoOje14Nv8PVQNFKUWVffIMkUzSq2rUtV99OZ+3ahgL3p2WwVkO/6f455TWnBm SFYTgNzH -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:07 2025 by rpki-client