$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/7A092C88E9E211EFAD188675C4F9AE02.roa File: 7A092C88E9E211EFAD188675C4F9AE02.roa (raw, json) Hash identifier: Ih+3aaDaOz/d8dCkRSwBGnuzOxqfvTbU/QJJ8s8nf54= Subject key identifier: EB:EE:98:BC:68:43:C9:9A:7A:0F:D7:D2:E1:70:0B:2F:EC:B9:7E:EB Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Certificate serial: 14 Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/7A092C88E9E211EFAD188675C4F9AE02.roa Signing time: Thu 13 Feb 2025 08:13:59 +0000 ROA not before: Thu 13 Feb 2025 08:13:59 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153493 IP address blocks: 2401:e720::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7 Validity Not Before: Feb 13 08:13:59 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ada9c7-1172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:77:34:ae:5d:be:6b:d5:4d:5d:d6:58:ce:d1: 56:58:44:d0:81:60:ac:9c:93:31:1e:c1:8e:66:f4: 8b:dd:d7:a9:22:50:d9:85:77:ff:ef:f0:9d:f4:d6: 63:4d:d4:d2:ff:65:a7:72:33:c6:51:5d:b6:0f:4b: 61:35:26:cb:fc:13:06:6e:96:ca:04:6c:19:86:4c: b7:c9:1f:6c:e5:4d:93:2a:80:b0:63:ae:7e:39:b7: eb:16:06:09:90:1c:8e:79:9a:d2:3c:61:06:19:7f: 08:a0:82:24:1c:ac:65:74:ad:c1:d8:da:87:32:2a: 56:6e:b9:b9:11:a5:33:8b:28:9c:49:7b:a4:44:d0: b2:bc:3b:83:2a:f5:4e:68:e9:ef:19:be:ef:75:32: 1e:77:25:16:6f:47:1d:d6:96:1a:42:c7:d3:a5:f8: e1:ef:48:3a:72:74:d1:2e:bc:89:41:38:8e:9c:c2: 27:e5:b7:19:80:a2:22:be:ed:df:e2:81:ae:6f:a5: c9:62:94:21:72:f5:0a:ab:0c:91:6f:6a:1a:92:95: b3:0f:fe:8f:7c:51:c0:c8:d9:6e:04:f9:da:0e:e1: 50:e0:dc:7f:45:9c:92:b2:4a:0c:02:15:4c:b7:7d: 4d:3b:0a:ee:07:c7:af:f3:73:94:5e:1e:44:97:14: bf:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EE:98:BC:68:43:C9:9A:7A:0F:D7:D2:E1:70:0B:2F:EC:B9:7E:EB X509v3 Authority Key Identifier: keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/7A092C88E9E211EFAD188675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e720::/32 Signature Algorithm: sha256WithRSAEncryption 7c:9b:2d:2e:6f:9f:30:2d:fe:8e:9d:4a:f7:2d:d7:12:68:36: ea:6e:97:f4:e1:65:a7:ff:ad:46:b2:ef:4b:2b:d1:8c:12:de: c0:78:5c:e4:ed:a0:23:76:cd:e9:94:ae:5c:fb:55:3d:75:09: ac:69:39:2f:ff:a9:b3:4d:e6:96:91:a5:4a:df:6b:1c:fd:78: de:49:69:86:3a:21:39:a2:61:8e:df:c5:6e:bc:30:23:20:25: 6d:81:cb:81:f3:e1:35:a7:92:46:03:ad:f5:2a:30:94:11:ad: 82:ab:83:24:d3:55:13:b0:d6:71:ac:23:c4:41:09:d3:db:6c: 43:82:25:91:c1:99:19:ac:23:cc:71:3b:99:3c:8f:99:1d:db: fa:7b:dd:5e:00:47:a1:f2:ac:b6:5c:42:5b:83:26:cf:67:be: a7:c7:4c:3f:51:02:cc:da:89:b1:8b:8a:d8:a2:62:ca:25:25: 07:6a:f9:f5:fc:a8:96:bc:31:ee:7a:82:b8:5f:b1:b7:49:27: a8:9b:46:c5:00:0c:46:5f:c8:16:1e:dc:06:38:a7:fb:ea:19: 95:b4:0c:ab:0a:77:01:1b:51:c0:d9:1e:b7:44:1f:c9:9f:7a: 66:72:c4:e5:43:26:5e:30:cf:ac:9c:03:ed:e0:53:1d:91:d3: 06:47:a3:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NUJDQzExMC8GA1UEBRMoMUU0OEVGRTUzRTYyRUQyMDRCQTdBNjk0Mzg0Q0JBQzky NDY3OTRBNzAeFw0yNTAyMTMwODEzNTlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWRhOWM3LTExNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvdzSuXb5r1U1d1ljO0VZYRNCBYKyckzEewY5m9Ivd16kiUNmFd//v8J301mNN 1NL/ZadyM8ZRXbYPS2E1Jsv8EwZulsoEbBmGTLfJH2zlTZMqgLBjrn45t+sWBgmQ HI55mtI8YQYZfwiggiQcrGV0rcHY2ocyKlZuubkRpTOLKJxJe6RE0LK8O4Mq9U5o 6e8Zvu91Mh53JRZvRx3WlhpCx9Ol+OHvSDpydNEuvIlBOI6cwifltxmAoiK+7d/i ga5vpclilCFy9QqrDJFvahqSlbMP/o98UcDI2W4E+doO4VDg3H9FnJKySgwCFUy3 fU07Cu4Hx6/zc5ReHkSXFL+RAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU6+6YvGhD yZp6D9fS4XALL+y5fuswHwYDVR0jBBgwFoAUHkjv5T5i7SBLp6aUOEy6ySRnlKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1QkNDL0I5NTg4QkFDQ0U3 ODExRUY4MEVGNEQ0NEM0RjlBRTAyL0hranY1VDVpN1NCTHA2YVVPRXk2eVNSbmxL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGtqdjVUNWk3U0JMcDZhVU9FeTZ5U1JubEtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUJDQy9COTU4OEJBQ0NFNzgxMUVGODBFRjRENDRDNEY5QUUwMi83QTA5MkM4OEU5 RTIxMUVGQUQxODg2NzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB5yAwDQYJKoZIhvcNAQELBQADggEBAHybLS5vnzAt/o6d Svct1xJoNupul/ThZaf/rUay70sr0YwS3sB4XOTtoCN2zemUrlz7VT11CaxpOS// qbNN5paRpUrfaxz9eN5JaYY6ITmiYY7fxW68MCMgJW2By4Hz4TWnkkYDrfUqMJQR rYKrgyTTVROw1nGsI8RBCdPbbEOCJZHBmRmsI8xxO5k8j5kd2/p73V4AR6HyrLZc QluDJs9nvqfHTD9RAszaibGLitiiYsolJQdq+fX8qJa8Me56grhfsbdJJ6ibRsUA DEZfyBYe3AY4p/vqGZW0DKsKdwEbUcDZHrdEH8mfemZyxOVDJl4wz6ycA+3gUx2R 0wZHoxk= -----END CERTIFICATE-----Generated at Sat Apr 26 08:11:19 2025 by rpki-client