$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa File: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (raw, json) Hash identifier: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A= Subject key identifier: 07:2B:55:3A:A5:FC:7B:37:A5:68:AF:33:79:FA:22:88:4E:83:73:5D Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 0167 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa Signing time: Tue 15 Apr 2025 03:08:42 +0000 ROA not before: Tue 15 Apr 2025 03:08:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13981 IP address blocks: 2400:ef20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Apr 15 03:08:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdcdb9-fd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:2b:87:f3:0a:e2:8f:39:60:52:49:d0:b1: a6:f1:83:b5:71:41:f9:7a:0e:2f:ea:fa:8d:c5:c5: 61:90:8c:c0:cd:68:a0:93:70:75:ea:19:8d:48:9f: 3c:74:5c:cb:62:8f:d5:e4:54:e1:45:58:32:5c:4d: ff:b6:4f:76:c8:fb:86:49:a1:4b:37:ae:75:09:18: d7:e6:66:5f:21:c3:79:98:e9:eb:b0:a1:c4:14:57: 96:78:1c:8b:26:05:90:87:ce:07:34:15:fe:a8:4a: 2a:da:91:eb:89:d4:47:72:15:76:a3:6c:42:c4:83: 57:93:7c:2b:e6:46:ba:6d:5c:77:6d:ae:84:2b:10: 65:83:d3:20:eb:d8:6f:97:6b:91:b0:63:1a:b0:35: fe:d9:95:85:e0:6f:2f:48:e4:ac:a0:78:c2:d5:1d: 70:d0:5f:f9:18:f5:58:49:62:09:c5:09:c9:b4:d7: 52:ac:42:58:df:c0:d3:c2:f8:1d:c9:81:4a:7f:51: 50:57:87:05:f6:a4:19:87:28:28:46:f2:f0:50:ae: ba:08:51:10:d6:6f:67:de:a0:d3:e3:f1:c3:05:95: 0b:a8:5c:63:96:34:42:c7:48:38:8f:a8:7d:1d:87: 8b:41:0f:dd:3d:66:75:2c:02:c8:c0:7e:35:27:1c: 3c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2B:55:3A:A5:FC:7B:37:A5:68:AF:33:79:FA:22:88:4E:83:73:5D X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:ef20::/32 Signature Algorithm: sha256WithRSAEncryption 0d:1c:c1:75:c3:c8:ba:f4:e3:59:22:c0:eb:d7:60:b6:ef:55: cc:a3:fc:1a:87:91:57:06:96:dc:45:a0:b1:01:78:bf:dc:e5: e1:c4:6a:bf:84:a8:6a:fa:85:3d:97:03:1c:e6:cc:61:d6:45: 15:58:87:c7:f3:85:dd:41:81:25:0d:2f:d9:dd:93:2b:6e:31: 28:14:c0:fd:49:06:cf:71:f3:8f:b8:90:ec:80:2b:a3:1b:5f: 29:92:fc:a1:d0:24:ad:f4:83:cc:ec:76:ab:1d:dc:1a:8b:67: 6b:61:9c:d9:bb:a0:d7:77:b5:2a:98:0f:64:55:5d:e9:2c:57: fa:87:0b:92:52:48:7f:67:eb:e1:33:53:6c:60:af:50:f9:a4: 4c:7f:fb:57:e3:28:de:f9:ea:70:e1:d5:30:f8:82:22:f5:c4: d5:66:62:a3:4c:18:d8:33:5e:93:0d:8c:8b:26:19:d8:7b:35: 16:95:70:db:28:8d:51:96:4e:85:a1:3a:b3:33:9f:fd:f4:cf: 1b:04:a2:77:02:9d:95:b9:70:34:a7:da:3b:2d:c7:91:fa:fc: fb:dd:de:e9:9b:46:c8:be:c7:aa:ed:18:60:15:7d:03:01:f8: 72:a3:4f:5d:bb:3d:06:a8:d5:00:31:b5:cb:38:52:57:4e:5d: 24:ee:31:33 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNDE1MDMwODQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkY2RiOS1mZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaArh/MK4o85YFJJ0LGm8YO1cUH5eg4v6vqNxcVhkIzAzWigk3B16hmNSJ88 dFzLYo/V5FThRVgyXE3/tk92yPuGSaFLN651CRjX5mZfIcN5mOnrsKHEFFeWeByL JgWQh84HNBX+qEoq2pHridRHchV2o2xCxINXk3wr5ka6bVx3ba6EKxBlg9Mg69hv l2uRsGMasDX+2ZWF4G8vSOSsoHjC1R1w0F/5GPVYSWIJxQnJtNdSrEJY38DTwvgd yYFKf1FQV4cF9qQZhygoRvLwUK66CFEQ1m9n3qDT4/HDBZULqFxjljRCx0g4j6h9 HYeLQQ/dPWZ1LALIwH41Jxw8ZQIDAQABo4ICljCCApIwHQYDVR0OBBYEFAcrVTql /Hs3pWivM3n6IohOg3NdMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM5RkUvNTNDQjY5MENGREUyMTFFRDlEMkQxRjY4QzRGOUFFMDIvQzVDRDMyQUFF NURDMTFFRTg2N0M2RjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAO8gMA0GCSqGSIb3DQEBCwUAA4IBAQANHMF1w8i69ONZ IsDr12C271XMo/wah5FXBpbcRaCxAXi/3OXhxGq/hKhq+oU9lwMc5sxh1kUVWIfH 84XdQYElDS/Z3ZMrbjEoFMD9SQbPcfOPuJDsgCujG18pkvyh0CSt9IPM7HarHdwa i2drYZzZu6DXd7UqmA9kVV3pLFf6hwuSUkh/Z+vhM1NsYK9Q+aRMf/tX4yje+epw 4dUw+IIi9cTVZmKjTBjYM16TDYyLJhnYezUWlXDbKI1Rlk6FoTqzM5/99M8bBKJ3 Ap2VuXA0p9o7LceR+vz73d7pm0bIvseq7RhgFX0DAfhyo09duz0GqNUAMbXLOFJX Tl0k7jEz -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:54 2025 by rpki-client