$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa File: 595774341B6211F0B9733473C4F9AE02.roa (raw, json) Hash identifier: odVPPwfcVNo8VayXEukIHnnjKu+cZ3Vme/PEEPSIOfg= Subject key identifier: 1F:EC:38:F9:BA:DC:39:3E:C2:BF:E3:83:9E:99:88:08:32:3B:54:9D Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 02F7 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa Signing time: Thu 17 Apr 2025 08:02:47 +0000 ROA not before: Thu 17 Apr 2025 08:02:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 21433 IP address blocks: 2404:3d00:41c4::/47 maxlen: 47 2404:3d00:41c4::/48 maxlen: 48 2404:3d00:41c5::/48 maxlen: 48 2404:3d00:41ce::/47 maxlen: 47 2404:3d00:41ce::/48 maxlen: 48 2404:3d00:41cf::/48 maxlen: 48 2404:3d00:41d0::/47 maxlen: 47 2404:3d00:41d0::/48 maxlen: 48 2404:3d00:41d1::/48 maxlen: 48 2404:3d00:41d2::/47 maxlen: 47 2404:3d00:41d4::/47 maxlen: 47 2404:3d00:41d6::/47 maxlen: 47 2404:3d00:41e2::/47 maxlen: 47 2404:3d00:41e2::/48 maxlen: 48 2404:3d00:41e3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Apr 17 08:02:47 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6800b5a7-9364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:cc:2a:cd:33:63:a2:b8:44:97:5f:90:51: 8c:81:12:0c:67:da:6b:b8:df:6c:7f:61:27:ac:b3: 21:c4:18:bf:3d:4c:ea:3d:d8:e8:09:1f:7f:59:b1: 6f:c9:22:9f:f3:c0:9e:9f:a3:9f:d7:91:a2:ed:15: 61:6d:e2:9f:04:bc:50:ce:5d:12:2e:10:38:10:c7: 43:79:38:52:97:6a:88:2d:ab:fb:66:2e:c4:8d:9d: 20:01:c1:01:cc:4e:8f:d6:4c:b9:eb:11:76:2b:d9: b1:3e:30:8e:9e:4e:ce:df:16:d7:3b:97:0b:24:ba: e5:03:0c:7d:03:e1:52:e7:d1:6a:48:d9:0e:1e:bb: e2:bd:e4:8e:54:dc:97:c5:e1:1e:fc:ab:56:00:35: 4e:3d:bc:87:9e:cb:0a:62:8a:65:36:c0:c5:af:5f: 8e:d9:bc:20:9a:7c:08:df:93:a6:50:28:71:4b:8f: c3:11:9e:8e:a0:b0:a4:ae:fa:f5:a9:47:76:e2:fb: d4:2b:58:61:5d:20:da:77:9d:08:0a:4c:cd:c8:61: 90:45:a1:7e:39:b1:bd:d6:47:f2:6f:11:8a:2d:af: d3:9c:8c:50:e1:39:4f:69:eb:aa:87:06:4c:73:54: 62:01:d9:a9:15:3e:f9:ef:f6:90:50:59:32:a2:06: 2a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EC:38:F9:BA:DC:39:3E:C2:BF:E3:83:9E:99:88:08:32:3B:54:9D X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/595774341B6211F0B9733473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:3d00:41c4::/47 2404:3d00:41ce::-2404:3d00:41d7:ffff:ffff:ffff:ffff:ffff 2404:3d00:41e2::/47 Signature Algorithm: sha256WithRSAEncryption 93:ab:f5:ca:ed:b5:b3:26:37:9d:63:07:d2:89:ba:29:66:54: b2:75:d9:f6:0f:7f:c6:89:37:7b:76:f6:6d:54:a0:37:7d:c0: ab:61:c6:77:6b:31:a1:01:49:90:48:ea:ce:0a:77:72:c8:86: e8:8e:db:6a:13:95:68:90:fc:96:d4:54:38:3a:52:e6:c9:47: 9a:dd:2e:39:80:2c:20:a1:93:ef:63:ad:9d:f0:bc:07:8f:53: 37:db:5d:43:e4:17:63:01:46:96:08:7c:ba:67:15:82:27:f2: 28:59:16:65:e8:75:02:33:86:b6:5b:ce:d4:e0:69:6b:2e:05: 1a:96:e7:15:c2:65:01:14:92:9e:8d:89:68:f5:5a:d6:da:b2: d5:27:2e:19:ed:43:ca:1e:ef:f6:30:ee:75:65:d8:ef:bc:fa: 15:3f:ba:10:43:41:38:fc:1f:51:1f:96:3c:8b:dd:c4:fb:e8: 88:ec:82:96:13:10:34:aa:36:7d:53:7d:d9:1a:42:ef:10:56: 1f:bf:c6:6b:6a:d3:b0:52:16:87:03:f7:39:f3:8c:83:34:c8: 46:6f:3e:4b:46:fa:31:09:0f:56:e1:4f:01:aa:d7:27:0b:d3: 5d:88:d4:50:55:44:9d:f5:2a:33:74:5e:f6:5f:2d:a7:55:1a: e5:7f:8c:27 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjUwNDE3MDgwMjQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwYjVhNy05MzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy7MKs0zY6K4RJdfkFGMgRIMZ9pruN9sf2EnrLMhxBi/PUzqPdjoCR9/WbFv ySKf88Cen6Of15Gi7RVhbeKfBLxQzl0SLhA4EMdDeThSl2qILav7Zi7EjZ0gAcEB zE6P1ky56xF2K9mxPjCOnk7O3xbXO5cLJLrlAwx9A+FS59FqSNkOHrviveSOVNyX xeEe/KtWADVOPbyHnssKYoplNsDFr1+O2bwgmnwI35OmUChxS4/DEZ6OoLCkrvr1 qUd24vvUK1hhXSDad50ICkzNyGGQRaF+ObG91kfybxGKLa/TnIxQ4TlPaeuqhwZM c1RiAdmpFT757/aQUFkyogYq0QIDAQABo4ICtTCCArEwHQYDVR0OBBYEFB/sOPm6 3Dk+wr/jg56ZiAgyO1SdMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI0QUYvQ0M3QjI1NUFEQ0E5MTFFQzk0RTNFMDI5QzRGOUFFMDIvNTk1Nzc0MzQx QjYyMTFGMEI5NzMzNDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgACMCYDBwEkBD0AQcQwEgMHASQEPQBBzgMHAyQEPQBB0AMHASQEPQBB 4jANBgkqhkiG9w0BAQsFAAOCAQEAk6v1yu21syY3nWMH0om6KWZUsnXZ9g9/xok3 e3b2bVSgN33Aq2HGd2sxoQFJkEjqzgp3csiG6I7bahOVaJD8ltRUODpS5slHmt0u OYAsIKGT72OtnfC8B49TN9tdQ+QXYwFGlgh8umcVgifyKFkWZeh1AjOGtlvO1OBp ay4FGpbnFcJlARSSno2JaPVa1tqy1ScuGe1Dyh7v9jDudWXY77z6FT+6EENBOPwf UR+WPIvdxPvoiOyClhMQNKo2fVN92RpC7xBWH7/Ga2rTsFIWhwP3OfOMgzTIRm8+ S0b6MQkPVuFPAarXJwvTXYjUUFVEnfUqM3Re9l8tp1Ua5X+MJw== -----END CERTIFICATE-----Generated at Sat Apr 26 07:39:19 2025 by rpki-client