$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa File: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (raw, json) Hash identifier: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk= Subject key identifier: B0:C2:97:FE:74:92:0C:64:0F:A2:7D:84:B0:06:D2:14:5C:C7:96:D3 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: F1 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa Signing time: Tue 18 Mar 2025 19:39:23 +0000 ROA not before: Tue 18 Mar 2025 19:39:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 63121 IP address blocks: 2405:cbc0:4::/48 maxlen: 48 2405:cbc0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Mar 18 19:39:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d9cbeb-671b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a2:60:71:1c:e8:4a:d8:91:d1:4a:45:b4:7d: 0f:b7:02:0f:4f:2a:45:aa:d5:6f:16:23:0d:1f:28: 5e:fb:9a:46:b9:3c:75:08:d1:eb:ff:49:26:48:27: 31:21:94:a0:b3:07:64:69:c9:39:2c:f7:9c:9d:ed: 0b:c0:55:11:b1:c4:a9:fe:6b:f4:c6:2a:f4:50:d1: c2:31:78:4b:35:48:5e:65:97:0a:54:18:62:c0:28: 13:51:03:f5:58:e0:a8:0a:bb:c9:df:3b:04:dc:a5: b5:10:b8:43:ba:6f:fe:5c:40:38:d6:50:bb:75:ad: 05:9d:b6:71:8d:87:fb:8c:92:d3:1f:f1:10:9c:1c: 16:38:6d:16:b5:fb:66:66:88:f5:f8:d1:aa:a0:11: 34:74:81:a4:f4:25:f3:b7:ea:e9:37:bd:57:df:96: 7f:43:b3:ee:2d:45:10:74:28:21:0e:c8:05:d8:a3: 8a:d1:82:94:e1:37:18:ac:d4:81:fa:53:5e:46:d9: 78:9a:7e:2e:c3:e7:be:45:75:bb:d6:6d:77:62:6d: f2:cd:21:04:49:c9:d9:f9:1d:39:cf:cd:56:17:07: b7:84:2f:2f:c8:cc:3e:d4:21:ef:f7:ae:2c:c4:e4: af:41:2c:5c:89:de:f6:eb:65:6d:47:a7:75:7f:76: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C2:97:FE:74:92:0C:64:0F:A2:7D:84:B0:06:D2:14:5C:C7:96:D3 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:cbc0:4::/47 Signature Algorithm: sha256WithRSAEncryption 55:a8:ed:b8:fb:c0:b9:50:38:40:02:73:5c:06:56:5a:ff:a8: 01:35:9f:c2:43:66:d7:30:14:8d:1f:0a:7a:95:a4:80:b9:9c: 56:e0:70:15:ae:7e:8e:ea:1a:a6:7f:5b:5d:51:e3:c7:70:37: 67:eb:3b:95:67:b4:39:27:51:41:cf:d1:cd:aa:09:17:a1:f0: 3f:6b:4b:15:a1:ee:af:4e:40:4e:e4:4e:ef:94:b9:ca:72:0d: 47:87:a8:2d:15:5a:a3:58:2d:95:93:77:b1:72:59:c5:0d:42: 69:5a:22:d5:49:7e:30:1b:a5:a6:1d:f8:13:2d:ba:10:f6:18: 08:0e:77:b1:f2:a6:8a:19:5c:14:1d:37:d5:0b:25:3a:66:67: b5:37:fa:04:eb:77:9b:22:64:ba:1b:7c:bc:9d:57:d0:53:33: f7:92:b7:56:17:4d:2a:ec:66:d1:3c:66:14:c9:8a:ba:02:e2: 23:4d:de:7d:13:6d:cf:bd:c7:b4:ee:12:c0:e6:5a:bf:15:94: ef:00:c2:77:99:77:de:e9:41:a9:0f:ab:ef:c2:d2:10:86:a7: 6b:f3:f3:fc:8f:cb:2e:a8:00:1c:75:8c:ec:d5:e2:06:cc:77: 68:14:4d:2b:df:41:d2:bc:fd:3a:fe:2d:cc:c3:26:f2:ae:15: b5:64:57:17 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwMzE4MTkzOTIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5Y2JlYi02NzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKJgcRzoStiR0UpFtH0PtwIPTypFqtVvFiMNHyhe+5pGuTx1CNHr/0kmSCcx IZSgswdkack5LPecne0LwFURscSp/mv0xir0UNHCMXhLNUheZZcKVBhiwCgTUQP1 WOCoCrvJ3zsE3KW1ELhDum/+XEA41lC7da0FnbZxjYf7jJLTH/EQnBwWOG0Wtftm Zoj1+NGqoBE0dIGk9CXzt+rpN71X35Z/Q7PuLUUQdCghDsgF2KOK0YKU4TcYrNSB +lNeRtl4mn4uw+e+RXW71m13Ym3yzSEEScnZ+R05z81WFwe3hC8vyMw+1CHv964s xOSvQSxcid7262VtR6d1f3b51wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLDCl/50 kgxkD6J9hLAG0hRcx5bTMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFGNEIvODQ4NThGNkE0NzE5MTFFQTkwODYzMDcyQzRGOUFFMDIvRkY1MjEzRThB ODFEMTFFRkE3NEZGRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBcvAAAQwDQYJKoZIhvcNAQELBQADggEBAFWo7bj7wLlQ OEACc1wGVlr/qAE1n8JDZtcwFI0fCnqVpIC5nFbgcBWufo7qGqZ/W11R48dwN2fr O5VntDknUUHP0c2qCReh8D9rSxWh7q9OQE7kTu+UucpyDUeHqC0VWqNYLZWTd7Fy WcUNQmlaItVJfjAbpaYd+BMtuhD2GAgOd7HypooZXBQdN9ULJTpmZ7U3+gTrd5si ZLobfLydV9BTM/eSt1YXTSrsZtE8ZhTJiroC4iNN3n0Tbc+9x7TuEsDmWr8VlO8A wneZd97pQakPq+/C0hCGp2vz8/yPyy6oABx1jOzV4gbMd2gUTSvfQdK8/Tr+LczD JvKuFbVkVxc= -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:09 2025 by rpki-client