$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa File: 0BD593E6136D11F09F542C81C4F9AE02.roa (raw, json) Hash identifier: B3AcpWyXKMA7OW20cqJ3DyGxcTH2gK1jrAHX+1xbxr0= Subject key identifier: D2:A5:41:E6:FC:FD:9F:99:E3:37:AC:B8:E4:F3:05:C6:7B:69:D1:5C Certificate issuer: /CN=A91F3B5F/serialNumber=9496B1FC6063644372398CEA338B8224259175CB Certificate serial: 03 Authority key identifier: 94:96:B1:FC:60:63:64:43:72:39:8C:EA:33:8B:82:24:25:91:75:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa Signing time: Mon 07 Apr 2025 04:59:12 +0000 ROA not before: Mon 07 Apr 2025 04:59:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153526 IP address blocks: 2401:e9a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=9496B1FC6063644372398CEA338B8224259175CB Validity Not Before: Apr 7 04:59:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f35ba0-a77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c6:4d:1f:e3:cd:54:62:da:81:4b:35:a9:a1: 37:83:6a:53:fb:99:8f:77:65:45:50:95:21:c8:76: 42:03:03:b6:4b:f4:12:4f:d7:91:33:62:43:3d:4e: d1:ea:f9:9c:f8:c8:72:e4:47:35:76:dc:84:95:84: a6:a0:7d:b8:cf:a7:7c:19:70:2f:08:3b:1d:b8:4f: c4:49:68:c6:da:4d:72:1d:dd:9a:eb:43:50:0e:05: 8a:c5:4b:b2:d8:8c:86:56:13:6a:8f:db:c8:45:34: ff:fd:a8:1e:f0:b6:3b:11:bc:7c:cc:bc:77:27:02: 0f:46:b2:0f:e2:f2:dd:ce:c8:ca:8c:d8:f2:06:2e: e1:a6:91:e6:98:94:10:e3:6b:c8:b9:60:a1:a7:b5: 17:6a:fa:1b:ec:db:f1:e5:50:89:36:f8:63:0a:1e: e2:9b:cd:9e:78:98:89:0a:33:c5:c6:a0:7d:69:89: c8:c8:aa:94:b4:64:98:f3:af:6c:6e:d3:79:d5:f5: 8c:3d:82:5c:1d:e4:73:bb:df:72:09:e6:19:f0:1a: 77:e9:d6:fa:75:91:bf:df:a7:80:06:f8:4d:1c:11: 7c:ec:78:3f:9b:95:60:1f:76:56:3d:4e:f9:08:60: 3c:c0:d5:a2:30:02:b0:23:4a:bd:35:9e:9d:92:dc: f0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A5:41:E6:FC:FD:9F:99:E3:37:AC:B8:E4:F3:05:C6:7B:69:D1:5C X509v3 Authority Key Identifier: keyid:94:96:B1:FC:60:63:64:43:72:39:8C:EA:33:8B:82:24:25:91:75:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e9a0::/32 Signature Algorithm: sha256WithRSAEncryption 21:36:c9:02:66:2a:be:93:40:20:9d:0b:05:30:52:a5:6d:f7: 41:56:60:b9:87:85:4b:b9:0f:1e:9e:02:84:e3:a8:9e:69:ed: 52:14:40:30:6b:7c:49:c1:96:ab:87:e6:fa:e9:8f:58:2c:26: 98:a4:a3:03:e7:dd:ed:ee:52:ad:0a:7b:d9:db:47:7c:d4:7b: 1f:df:91:f1:7c:11:68:43:d8:8b:4a:e8:96:42:d5:65:ec:67: 93:d5:7c:32:53:2e:5e:c8:b0:11:60:40:dc:ad:25:45:fa:f5: 13:3d:69:4c:56:9e:7a:49:b2:fd:1e:40:b5:01:93:05:25:3b: 26:39:43:e2:ab:54:7e:5a:3e:aa:1d:ad:a2:3d:11:6a:0f:b9: 0f:39:aa:47:d7:81:b6:96:9a:61:66:ca:4f:ce:96:31:90:38: eb:69:71:5e:bd:7d:fb:67:cb:30:e9:56:a9:89:7b:95:58:14: 7b:2a:eb:17:bc:d0:f2:8f:58:60:10:32:b7:f9:bd:31:9e:08: ca:fb:5b:f7:03:a2:39:f7:a2:70:9c:34:9e:33:3b:db:3c:6d: f2:1c:47:00:7d:95:c6:f2:12:bc:95:66:a4:15:60:50:71:b5: 8b:d1:f4:91:89:78:5b:2c:36:b1:f7:f1:5f:b0:0f:eb:61:7b: 84:fb:e8:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoOTQ5NkIxRkM2MDYzNjQ0MzcyMzk4Q0VBMzM4QjgyMjQy NTkxNzVDQjAeFw0yNTA0MDcwNDU5MTJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjM1YmEwLWE3N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtxk0f481UYtqBSzWpoTeDalP7mY93ZUVQlSHIdkIDA7ZL9BJP15EzYkM9TtHq +Zz4yHLkRzV23ISVhKagfbjPp3wZcC8IOx24T8RJaMbaTXId3ZrrQ1AOBYrFS7LY jIZWE2qP28hFNP/9qB7wtjsRvHzMvHcnAg9Gsg/i8t3OyMqM2PIGLuGmkeaYlBDj a8i5YKGntRdq+hvs2/HlUIk2+GMKHuKbzZ54mIkKM8XGoH1picjIqpS0ZJjzr2xu 03nV9Yw9glwd5HO733IJ5hnwGnfp1vp1kb/fp4AG+E0cEXzseD+blWAfdlY9TvkI YDzA1aIwArAjSr01np2S3PAHAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU0qVB5vz9 n5njN6y45PMFxntp0VwwHwYDVR0jBBgwFoAUlJax/GBjZENyOYzqM4uCJCWRdcsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0JBMDBDNTE0MTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyL2xKYXhfR0JqWkVOeU9ZenFNNHVDSkNXUmRj cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEpheF9HQmpaRU55T1l6cU00dUNKQ1dSZGNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CQTAwQzUxNDEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8wQkQ1OTNFNjEz NkQxMUYwOUY1NDJDODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB6aAwDQYJKoZIhvcNAQELBQADggEBACE2yQJmKr6TQCCd CwUwUqVt90FWYLmHhUu5Dx6eAoTjqJ5p7VIUQDBrfEnBlquH5vrpj1gsJpikowPn 3e3uUq0Ke9nbR3zUex/fkfF8EWhD2ItK6JZC1WXsZ5PVfDJTLl7IsBFgQNytJUX6 9RM9aUxWnnpJsv0eQLUBkwUlOyY5Q+KrVH5aPqodraI9EWoPuQ85qkfXgbaWmmFm yk/OljGQOOtpcV69fftnyzDpVqmJe5VYFHsq6xe80PKPWGAQMrf5vTGeCMr7W/cD ojn3onCcNJ4zO9s8bfIcRwB9lcbyEryVZqQVYFBxtYvR9JGJeFssNrH38V+wD+th e4T76C8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:58 2025 by rpki-client