$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa File: D734CCEA1E0A11EF87335F33C4F9AE02.roa (raw, json) Hash identifier: Zn/90qwbG+0Df96/zQSMkzHyx6xwf0/RZMauir90ZH8= Subject key identifier: 7A:8A:D5:18:64:DB:59:18:89:18:BD:2C:79:E7:AB:FB:69:C7:61:11 Certificate issuer: /CN=A91FE75F/serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Certificate serial: 0293 Authority key identifier: 4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa Signing time: Sun 20 Apr 2025 22:53:33 +0000 ROA not before: Sun 20 Apr 2025 22:53:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142000 IP address blocks: 2001:df6:3580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE75F, serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Validity Not Before: Apr 20 22:53:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68057aed-b05d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:43:f3:56:df:18:30:cc:ef:8f:bf:ad:09: ef:e3:26:8b:2b:e5:89:4a:2e:30:0b:56:48:2f:2a: c3:ac:7d:e2:7f:b7:91:83:0e:b6:e6:ae:f3:fe:e6: c5:68:7b:18:cb:ed:20:2f:17:34:22:ff:d4:94:78: 30:fa:b5:b9:f4:46:81:94:42:3e:b6:3b:a4:39:0b: 0f:98:68:af:ad:a2:c1:e5:6a:89:ea:43:0e:31:8f: 5d:ac:06:af:f8:89:e3:01:7a:60:bc:28:f1:9c:3d: 42:f4:e2:cc:c2:35:7d:85:7f:b9:04:fe:52:1e:e2: 32:2d:5b:f0:30:fe:d3:66:ff:42:54:cb:f1:e5:13: d1:40:85:d1:c5:1a:cb:f3:18:70:c3:5c:cc:a0:f3: ce:56:a5:9a:45:8f:53:14:a1:a3:64:28:53:97:a6: d8:93:cf:4f:2a:6e:f7:ea:c3:2f:f8:8d:1b:75:9d: 1a:3f:d0:78:c0:c5:12:b0:85:39:c2:32:23:07:d5: 6a:40:9f:95:9d:41:fb:18:54:0e:d3:50:13:7e:d5: 5f:b8:10:80:5d:81:09:44:90:b9:bc:c8:fa:79:f8: 1c:7d:d4:d9:2a:29:6c:b1:d1:82:ec:a0:e7:2a:45: 24:a4:f1:72:76:ff:0a:f9:da:1f:24:d6:2d:fe:c6: 26:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8A:D5:18:64:DB:59:18:89:18:BD:2C:79:E7:AB:FB:69:C7:61:11 X509v3 Authority Key Identifier: keyid:4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3580::/48 Signature Algorithm: sha256WithRSAEncryption 33:d3:49:09:75:0e:b7:a8:7b:41:8f:db:a2:e2:ca:61:53:75: 95:0f:d0:e5:c7:4e:c0:ee:d5:db:ac:6b:80:65:94:e7:80:e9: 92:1e:7a:d9:ba:11:7e:e6:39:f5:1c:37:fe:df:b2:38:33:11: a0:c4:02:8d:d9:18:e7:16:37:d7:0e:51:26:c3:0b:b1:10:16: 8c:12:a8:76:93:6c:6e:01:ed:25:f3:b8:63:d0:ad:17:61:4c: 78:d8:24:04:3b:aa:dc:c6:52:b3:01:30:94:b3:c2:fa:7f:a6: c7:ef:34:5a:67:26:2f:d4:46:d8:90:44:96:62:d3:b0:64:09: e1:d3:a0:7f:0a:42:d7:d1:ea:82:a3:70:dc:67:13:01:5e:2c: 6d:28:56:45:12:bb:5a:24:17:bc:14:29:97:60:ea:b9:91:81: 41:d9:0b:ec:7b:bd:b3:52:95:58:28:b3:ed:27:96:5e:b1:54: 8d:aa:64:44:43:e3:0a:41:b0:ad:55:84:07:d8:84:51:27:2b: 85:c9:d2:74:d4:59:6e:c5:ad:95:8c:c1:2c:b1:f7:e6:e9:11: 03:a1:4e:92:2a:39:46:a2:1f:7c:b9:f7:3e:af:98:50:5f:93: 52:a4:bb:5c:ac:ed:ca:4f:76:2b:ee:94:16:40:0f:94:60:a3: b3:48:01:84 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3NUYxMTAvBgNVBAUTKDREMTRFMUFGMjJGNTNCMjJGNTZERUYwMkVCNzJFQTVE RDZCRTc3RTIwHhcNMjUwNDIwMjI1MzMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1N2FlZC1iMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2ZD81bfGDDM74+/rQnv4yaLK+WJSi4wC1ZILyrDrH3if7eRgw625q7z/ubF aHsYy+0gLxc0Iv/UlHgw+rW59EaBlEI+tjukOQsPmGivraLB5WqJ6kMOMY9drAav +InjAXpgvCjxnD1C9OLMwjV9hX+5BP5SHuIyLVvwMP7TZv9CVMvx5RPRQIXRxRrL 8xhww1zMoPPOVqWaRY9TFKGjZChTl6bYk89PKm736sMv+I0bdZ0aP9B4wMUSsIU5 wjIjB9VqQJ+VnUH7GFQO01ATftVfuBCAXYEJRJC5vMj6efgcfdTZKilssdGC7KDn KkUkpPFydv8K+dofJNYt/sYm3wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHqK1Rhk 21kYiRi9LHnnq/tpx2ERMB8GA1UdIwQYMBaAFE0U4a8i9Tsi9W3vAuty6l3Wvnfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTc1Ri9BQjlFQjhDQUE5 RjUxMUVCOEE0OTIyNTRDNEY5QUUwMi9UUlRocnlMMU95TDFiZThDNjNMcVhkYS1k LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RSVGhyeUwxT3lMMWJlOEM2M0xxWGRhLWQtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3NUYvQUI5RUI4Q0FBOUY1MTFFQjhBNDkyMjU0QzRGOUFFMDIvRDczNENDRUEx RTBBMTFFRjg3MzM1RjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ32NYAwDQYJKoZIhvcNAQELBQADggEBADPTSQl1Dreo e0GP26LiymFTdZUP0OXHTsDu1dusa4BllOeA6ZIeetm6EX7mOfUcN/7fsjgzEaDE Ao3ZGOcWN9cOUSbDC7EQFowSqHaTbG4B7SXzuGPQrRdhTHjYJAQ7qtzGUrMBMJSz wvp/psfvNFpnJi/URtiQRJZi07BkCeHToH8KQtfR6oKjcNxnEwFeLG0oVkUSu1ok F7wUKZdg6rmRgUHZC+x7vbNSlVgos+0nll6xVI2qZERD4wpBsK1VhAfYhFEnK4XJ 0nTUWW7FrZWMwSyx9+bpEQOhTpIqOUaiH3y59z6vmFBfk1Kku1ys7cpPdivulBZA D5Rgo7NIAYQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:28:56 2025 by rpki-client