$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa File: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (raw, json) Hash identifier: BP/glgq2z1dVEQeJ08W20vuLvcBOY54eQXp8HeomvRk= Subject key identifier: A2:A6:20:FC:5F:AF:C0:28:46:95:5E:B4:57:34:B1:40:3C:1A:90:D0 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 01E0 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa Signing time: Wed 09 Apr 2025 02:07:49 +0000 ROA not before: Wed 09 Apr 2025 02:07:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2403:8300:a4e0::/48 maxlen: 48 2403:8300:a4e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 01:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Apr 9 02:07:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5d675-c196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4e:84:a1:f2:be:fc:93:af:96:56:f6:c6:fb: de:fb:c2:61:d5:b4:46:3f:b6:a5:d2:5c:06:1e:05: 89:2d:84:a8:59:b4:ea:7c:56:7d:dc:22:23:06:f5: 34:e3:20:08:aa:55:2d:29:c6:a4:65:16:a7:f5:06: d8:23:68:1b:7e:b3:6b:14:0a:1e:65:ba:61:68:4d: ec:dd:6d:47:bb:dd:60:ff:8d:72:28:2c:88:03:51: fd:5a:f5:45:6c:9b:11:61:10:f2:3a:3c:a5:66:e4: 10:ec:8e:f5:dc:33:59:97:e2:9b:73:53:3e:9d:cf: 03:9e:e0:8a:85:15:c1:af:26:73:f0:5a:3d:3a:03: 83:ef:e2:de:9c:19:15:2d:99:e2:81:3f:1c:55:d9: eb:ed:e0:34:0e:b9:7e:28:ce:e4:fd:1c:63:cb:63: ff:08:dd:2e:e2:f9:ac:9a:e1:3a:b9:69:54:6c:1d: 42:d2:60:ee:7a:e3:de:59:d8:1c:21:88:07:72:12: 62:db:cd:55:7a:f6:fd:02:40:39:99:fa:f0:3b:86: d0:4c:0a:5e:f4:ae:a4:de:7c:39:f9:61:75:1c:28: 6a:b2:fd:b3:e8:37:d0:3e:f4:7d:e3:b3:c8:b1:0e: 5c:cb:21:33:a3:aa:39:80:1e:9e:56:46:55:d5:55: 54:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A6:20:FC:5F:AF:C0:28:46:95:5E:B4:57:34:B1:40:3C:1A:90:D0 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:8300:a4e0::/47 Signature Algorithm: sha256WithRSAEncryption a1:5a:b1:57:89:96:37:cd:d0:de:22:96:d9:da:7d:c8:56:8d: 16:a5:b1:99:2c:01:f8:66:1e:cb:ce:86:65:7d:d6:89:80:d4: 79:eb:40:91:07:01:f5:af:ff:e0:ff:e1:a3:82:f8:a2:44:15: 30:1a:5f:cb:87:43:14:6f:b9:6d:c0:7c:14:aa:8b:36:43:53: 5e:50:2e:42:c9:d7:60:ca:e6:02:da:f5:b4:2f:9d:f5:18:ce: 7b:1b:a1:84:36:81:29:98:fb:26:5a:f2:38:9b:3f:9c:25:1c: 2b:75:a7:f1:c4:d0:a9:48:03:a5:a9:34:32:46:6d:72:9c:77: 65:38:78:05:93:58:3b:83:8f:d5:5d:55:46:50:13:92:46:a7: 2f:c0:9b:16:b2:3b:5c:5f:59:87:bc:a2:dc:ff:3a:67:37:aa: ac:69:48:94:da:41:76:82:2d:99:28:13:d4:c9:43:65:0a:4e: 95:ff:92:63:8d:6f:5e:bf:78:33:56:36:44:94:35:bc:a4:e2: 11:a4:a7:c2:f1:ca:45:12:a9:02:60:01:76:ee:8e:81:0b:05: 42:69:3f:cb:9a:21:7f:42:fd:4b:c1:75:cd:a9:c6:34:30:80: 94:9c:5b:a2:10:f4:4d:b6:27:64:05:83:81:98:18:bf:de:7c: 46:81:5b:b1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUwNDA5MDIwNzQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1ZDY3NS1jMTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk6EofK+/JOvllb2xvve+8Jh1bRGP7al0lwGHgWJLYSoWbTqfFZ93CIjBvU0 4yAIqlUtKcakZRan9QbYI2gbfrNrFAoeZbphaE3s3W1Hu91g/41yKCyIA1H9WvVF bJsRYRDyOjylZuQQ7I713DNZl+Kbc1M+nc8DnuCKhRXBryZz8Fo9OgOD7+LenBkV LZnigT8cVdnr7eA0Drl+KM7k/Rxjy2P/CN0u4vmsmuE6uWlUbB1C0mDueuPeWdgc IYgHchJi281Vevb9AkA5mfrwO4bQTApe9K6k3nw5+WF1HChqsv2z6DfQPvR947PI sQ5cyyEzo6o5gB6eVkZV1VVUXQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKKmIPxf r8AoRpVetFc0sUA8GpDQMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1RjIvNEFFRUQ5MUM0M0I3MTFFRDk4RkY0NTVFQzRGOUFFMDIvRDFGRDIwNEM0 M0I5MTFFREI2QUEyRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkA4MApOAwDQYJKoZIhvcNAQELBQADggEBAKFasVeJljfN 0N4iltnafchWjRalsZksAfhmHsvOhmV91omA1HnrQJEHAfWv/+D/4aOC+KJEFTAa X8uHQxRvuW3AfBSqizZDU15QLkLJ12DK5gLa9bQvnfUYznsboYQ2gSmY+yZa8jib P5wlHCt1p/HE0KlIA6WpNDJGbXKcd2U4eAWTWDuDj9VdVUZQE5JGpy/AmxayO1xf WYe8otz/Omc3qqxpSJTaQXaCLZkoE9TJQ2UKTpX/kmONb16/eDNWNkSUNbyk4hGk p8LxykUSqQJgAXbujoELBUJpP8uaIX9C/UvBdc2pxjQwgJScW6IQ9E22J2QFg4GY GL/efEaBW7E= -----END CERTIFICATE-----Generated at Wed Apr 23 06:35:55 2025 by rpki-client on console.sobornost.net