$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa File: 9D003F28621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM= Subject key identifier: 1C:7C:98:22:7C:A2:E3:A2:AC:7D:95:C6:62:2B:05:0A:E8:8C:59:64 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 11C1 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa Signing time: Wed 16 Apr 2025 12:36:02 +0000 ROA not before: Wed 16 Apr 2025 12:36:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 13335 IP address blocks: 2405:8100:57::/48 maxlen: 48 2405:8100:8001::/48 maxlen: 48 2405:8100:8002::/48 maxlen: 48 2405:8100:8003::/48 maxlen: 48 2405:8100:8004::/48 maxlen: 48 2405:8100:8005::/48 maxlen: 48 2405:8100:c000::/38 maxlen: 38 2405:8100:c400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Apr 16 12:36:02 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67ffa432-cd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:78:53:25:68:3e:d7:a2:67:15:25:50:3a: 45:da:da:fe:42:f3:c8:58:0c:19:36:a4:98:4c:84: 23:87:e8:77:08:9a:91:d7:05:99:c6:2e:5b:59:08: 00:be:7f:5e:2b:a7:64:a3:25:f7:0f:37:08:46:d4: f1:f7:1b:95:0f:16:a8:6c:e8:ec:5d:12:78:cd:50: 60:64:ad:5d:0a:e7:20:ff:d3:b1:4e:ce:c0:ed:29: d6:96:1c:05:34:11:6e:d3:21:d6:63:ba:25:be:c0: 2c:1f:08:a3:1b:2d:d4:2d:59:ae:f0:17:23:b2:26: b4:fc:09:da:fa:b6:85:bf:ba:cd:f3:e7:38:15:fe: 0f:fa:8b:5c:6c:84:8c:26:95:7d:d1:61:3a:31:6f: 98:e8:b5:41:92:71:d3:d8:e0:42:e9:9d:89:c8:0c: 02:49:e6:89:46:94:3e:f5:20:57:a8:5b:4b:5c:2e: 4e:a4:47:5e:48:44:af:f5:69:c3:b6:7f:cb:f1:b9: d3:1d:06:d0:9c:ae:b8:f4:60:c0:c6:60:98:3a:74: a9:ff:7e:d3:06:d8:63:c8:57:d2:84:6c:af:25:47: 70:ac:38:77:59:0d:74:d2:ee:e9:80:d7:02:41:1b: 4c:ae:05:5e:62:e1:12:7b:5a:a2:e4:44:de:c0:dd: f5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7C:98:22:7C:A2:E3:A2:AC:7D:95:C6:62:2B:05:0A:E8:8C:59:64 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8100:57::/48 2405:8100:8001::-2405:8100:8005:ffff:ffff:ffff:ffff:ffff 2405:8100:c000::-2405:8100:c400:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption cb:94:47:4e:b1:0f:74:91:cf:68:19:b8:4c:88:23:be:2f:af: c2:34:b9:20:72:8d:7d:a2:53:94:e1:2e:19:1b:f2:d4:b2:b7: b7:c2:6b:5d:1f:0f:dc:69:1a:67:c0:fb:19:d1:c2:bc:3f:a0: 56:e1:d7:cb:0d:11:93:50:41:33:a5:9e:9d:0d:b0:e2:02:98: 26:b8:07:ac:00:84:ef:d9:84:1d:3f:4e:73:c2:a4:39:9c:1c: f0:bf:2e:44:80:1f:5f:6f:53:3c:11:a8:7e:ff:19:11:22:3f: 6a:72:e0:5c:3c:b2:7b:b9:e3:fd:20:8d:dd:ee:1b:9c:21:ab: 02:87:73:a6:79:c1:07:93:d9:71:10:17:e9:b0:ac:31:19:c1: e4:1a:09:c2:7e:e7:af:9d:77:c1:d1:40:1e:a3:a0:14:7c:9d: fe:47:af:0f:55:ce:6c:03:f0:2e:dc:0e:a6:c7:2a:98:c4:79: bf:c0:50:76:d3:b0:e1:e1:2d:d7:b0:32:e9:7f:50:83:c3:2a: 98:3a:c0:d9:72:71:cc:09:e7:aa:eb:c5:90:45:87:cb:dd:82: a6:f0:7a:47:d0:6c:da:b4:31:a9:05:f5:77:73:f8:9f:9e:3a: be:20:b9:61:5f:ea:72:4a:d1:1b:49:07:6f:c8:bb:e5:21:b4: 5e:e5:20:fc -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwNDE2MTIzNjAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmYTQzMi1jZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9p4UyVoPteiZxUlUDpF2tr+QvPIWAwZNqSYTIQjh+h3CJqR1wWZxi5bWQgA vn9eK6dkoyX3DzcIRtTx9xuVDxaobOjsXRJ4zVBgZK1dCucg/9OxTs7A7SnWlhwF NBFu0yHWY7olvsAsHwijGy3ULVmu8Bcjsia0/Ana+raFv7rN8+c4Ff4P+otcbISM JpV90WE6MW+Y6LVBknHT2OBC6Z2JyAwCSeaJRpQ+9SBXqFtLXC5OpEdeSESv9WnD tn/L8bnTHQbQnK649GDAxmCYOnSp/37TBthjyFfShGyvJUdwrDh3WQ100u7pgNcC QRtMrgVeYuESe1qi5ETewN31zwIDAQABo4ICvzCCArswHQYDVR0OBBYEFBx8mCJ8 ouOirH2VxmIrBQrojFlkMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUQwMDNGMjg2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgACMDADBwAkBYEAAFcwEgMHACQFgQCAAQMHASQFgQCABDARAwYGJAWB AMADBwAkBYEAxAAwDQYJKoZIhvcNAQELBQADggEBAMuUR06xD3SRz2gZuEyII74v r8I0uSByjX2iU5ThLhkb8tSyt7fCa10fD9xpGmfA+xnRwrw/oFbh18sNEZNQQTOl np0NsOICmCa4B6wAhO/ZhB0/TnPCpDmcHPC/LkSAH19vUzwRqH7/GREiP2py4Fw8 snu54/0gjd3uG5whqwKHc6Z5wQeT2XEQF+mwrDEZweQaCcJ+56+dd8HRQB6joBR8 nf5Hrw9VzmwD8C7cDqbHKpjEeb/AUHbTsOHhLdewMul/UIPDKpg6wNlyccwJ56rr xZBFh8vdgqbwekfQbNq0MakF9Xdz+J+eOr4guWFf6nJK0RtJB2/Iu+UhtF7lIPw= -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:06 2025 by rpki-client