$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa File: DB5AB9A0195A11F081485C3AC4F9AE02.roa (raw, json) Hash identifier: JaGf75N3pf7IqU+djnr2Hy5ZxGye9c0JY8fFDo/3ks0= Subject key identifier: DB:FC:A8:F7:72:85:9A:61:11:22:C4:49:9D:D5:22:AA:2E:78:0B:FA Certificate issuer: /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Certificate serial: 0C Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa Signing time: Mon 14 Apr 2025 18:04:07 +0000 ROA not before: Mon 14 Apr 2025 18:04:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136396 IP address blocks: 2001:df5:4d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Validity Not Before: Apr 14 18:04:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fd4e16-ecff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:de:80:8d:a7:c1:9f:01:fa:0a:43:56:0a: 28:56:ac:84:95:10:75:6d:7f:e0:05:98:9d:50:32: d3:cf:4f:38:94:ee:60:d3:0c:6a:c5:e1:7e:88:06: 5d:b8:18:9c:40:e4:79:9e:2f:18:5e:5f:cf:09:2a: 53:f3:56:5c:ff:e0:58:be:b6:0b:7c:f1:04:ac:22: 46:d0:e7:5b:ee:57:5a:fc:a5:d6:5c:b9:6b:be:fa: 2c:5f:96:a3:66:fd:1f:a2:b4:ba:00:b6:21:81:32: 71:72:2f:0f:7e:7c:4d:ee:66:47:0f:27:18:46:e1: 25:b5:78:67:6c:f4:2b:ac:51:97:80:9d:aa:03:3a: ee:cd:df:7e:36:bc:28:78:76:a8:25:96:dd:79:49: d2:f4:0c:5f:f5:50:5c:24:bc:de:31:ec:77:e7:9b: 47:2f:cb:8b:30:e4:97:1b:6d:fc:c2:c7:c0:bd:50: 35:b7:a6:91:19:d9:75:cc:ab:8c:b3:ba:b7:13:04: ba:39:0f:31:24:e0:5d:13:4a:09:6d:1b:b9:9f:b1: 34:d0:1e:69:dc:2c:f7:dc:56:fa:63:fb:d7:a1:ba: 1a:a6:4e:42:a0:c7:22:23:fd:4e:64:3f:a7:02:de: 55:be:3c:1b:ca:b3:65:00:f1:0a:fa:02:2e:00:cb: 47:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FC:A8:F7:72:85:9A:61:11:22:C4:49:9D:D5:22:AA:2E:78:0B:FA X509v3 Authority Key Identifier: keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:4d40::/48 Signature Algorithm: sha256WithRSAEncryption aa:a1:b2:7c:0d:d7:24:d2:f7:04:c4:51:11:0d:e6:bb:0d:ad: a7:86:a6:a1:e2:da:26:1f:90:c2:a1:9b:8b:b8:ea:af:ab:76: 9e:0f:e9:9f:f8:ad:4f:8a:f5:a7:1c:14:10:1f:10:d6:6f:0d: 1f:ca:06:1f:6b:92:db:e9:ee:c3:9f:7f:b1:ed:de:2c:d1:65: 6c:98:38:fc:c4:5d:d5:2a:33:00:8c:f0:7a:f1:95:5e:8b:8f: 14:4f:1d:9c:8a:09:e7:0e:45:ce:ba:bd:8f:3c:b9:0b:49:93: 70:f7:41:6b:85:04:6b:8d:b1:dd:cc:0e:dd:02:bc:01:45:a4: 17:1b:25:c9:d8:e5:48:5d:89:67:86:88:3c:6c:50:bb:db:ea: 55:63:7d:27:12:eb:a7:f9:ee:ab:6a:28:21:07:9c:37:ea:b4: c4:01:db:1d:15:88:34:de:25:b2:f1:3f:17:6b:bd:0b:49:cb: 1c:fe:b9:be:70:7a:b7:33:bc:57:b8:79:58:ea:5e:85:52:14: 21:58:5f:8d:fd:f3:77:1b:37:6b:ac:00:fa:8f:b2:89:fc:3e: 3b:9f:6e:64:f9:17:d2:a9:cf:43:59:2b:c7:e5:ae:09:06:ee: 9d:57:54:c7:69:67:cd:19:34:64:45:9d:6c:40:6a:e1:01:22: 9a:c8:2e:50 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjY0QzExMC8GA1UEBRMoRUZBNDIzQkFGNUJGRDE4OTMxNkU2NTAzMUU4Q0VBRjVB M0ZGQTE0QjAeFw0yNTA0MTQxODA0MDdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmQ0ZTE2LWVjZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw9t6AjafBnwH6CkNWCihWrISVEHVtf+AFmJ1QMtPPTziU7mDTDGrF4X6IBl24 GJxA5HmeLxheX88JKlPzVlz/4Fi+tgt88QSsIkbQ51vuV1r8pdZcuWu++ixflqNm /R+itLoAtiGBMnFyLw9+fE3uZkcPJxhG4SW1eGds9CusUZeAnaoDOu7N3342vCh4 dqgllt15SdL0DF/1UFwkvN4x7Hfnm0cvy4sw5JcbbfzCx8C9UDW3ppEZ2XXMq4yz urcTBLo5DzEk4F0TSgltG7mfsTTQHmncLPfcVvpj+9ehuhqmTkKgxyIj/U5kP6cC 3lW+PBvKs2UA8Qr6Ai4Ay0dnAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU2/yo93KF mmERIsRJndUiqi54C/owHwYDVR0jBBgwFoAU76QjuvW/0YkxbmUDHozq9aP/oUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyNjRDLzI0MUFDN0JFMEUx ODExRjBCNjlCOEIzOEM0RjlBRTAyLzc2UWp1dldfMFlreGJtVURIb3pxOWFQX29V cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzZRanV2V18wWWt4Ym1VREhvenE5YVBfb1VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjY0Qy8yNDFBQzdCRTBFMTgxMUYwQjY5QjhCMzhDNEY5QUUwMi9EQjVBQjlBMDE5 NUExMUYwODE0ODVDM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfVNQDANBgkqhkiG9w0BAQsFAAOCAQEAqqGyfA3XJNL3 BMRREQ3muw2tp4amoeLaJh+QwqGbi7jqr6t2ng/pn/itT4r1pxwUEB8Q1m8NH8oG H2uS2+nuw59/se3eLNFlbJg4/MRd1SozAIzwevGVXouPFE8dnIoJ5w5Fzrq9jzy5 C0mTcPdBa4UEa42x3cwO3QK8AUWkFxslydjlSF2JZ4aIPGxQu9vqVWN9JxLrp/nu q2ooIQecN+q0xAHbHRWINN4lsvE/F2u9C0nLHP65vnB6tzO8V7h5WOpehVIUIVhf jf3zdxs3a6wA+o+yifw+O59uZPkX0qnPQ1krx+WuCQbunVdUx2lnzRk0ZEWdbEBq 4QEimsguUA== -----END CERTIFICATE-----Generated at Sat Apr 26 20:24:17 2025 by rpki-client