$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/E9CF18DE0F7111F096BBCF24C4F9AE02.roa File: E9CF18DE0F7111F096BBCF24C4F9AE02.roa (raw, json) Hash identifier: 0kwUuP5urHGVd8jLbBCR4DTFP/4KfdSRWVGXFWx70hg= Subject key identifier: 4A:28:AB:74:BF:FF:83:31:52:0B:10:14:D6:4F:62:38:7D:25:2C:12 Certificate issuer: /CN=A91E6CCA/serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Certificate serial: 02 Authority key identifier: DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/E9CF18DE0F7111F096BBCF24C4F9AE02.roa Signing time: Wed 02 Apr 2025 03:23:58 +0000 ROA not before: Wed 02 Apr 2025 03:23:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138975 IP address blocks: 2001:df3:d540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Validity Not Before: Apr 2 03:23:58 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ecadcd-763b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4b:89:10:1e:f7:7d:e2:13:88:6d:a8:93:de: 2a:f5:bb:f7:d6:e0:92:11:c9:17:5b:5f:d5:eb:c1: 24:e3:dc:4a:20:f1:cf:f3:70:1d:6b:4b:00:c1:da: 06:bf:a1:0e:3a:03:38:98:87:f2:1a:7c:4d:f2:79: 01:d9:e6:59:8f:44:d8:16:ab:49:b4:64:1f:d8:a1: 78:10:d7:4f:4f:3e:c7:5f:12:ab:69:7f:af:18:3d: 0a:2b:c4:40:43:c5:5c:7b:85:ac:8a:13:f7:e6:fe: 86:56:5e:f4:a3:b7:62:80:3f:31:65:79:dc:ad:b0: e7:80:26:69:e7:09:b9:23:cb:1a:a1:25:eb:38:7c: c8:7b:bf:9a:64:63:70:78:a8:ee:00:c9:5e:83:4c: b3:06:09:62:40:e6:15:f2:1b:f3:cc:81:c8:1c:71: 7b:23:13:74:5c:e3:99:de:4e:c7:c1:92:45:84:d4: 28:c4:b1:b9:29:fa:de:7b:99:7c:c8:75:30:3f:ca: b8:89:33:2c:c4:a5:38:20:99:d6:42:3f:78:17:24: 53:b8:a4:7a:46:bb:22:1e:18:59:13:98:5d:59:dd: 0b:84:3f:ce:39:da:a9:60:dc:8f:16:64:b4:c8:f8: cd:21:a4:85:92:09:b7:66:2d:59:1e:4e:c0:37:6b: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:28:AB:74:BF:FF:83:31:52:0B:10:14:D6:4F:62:38:7D:25:2C:12 X509v3 Authority Key Identifier: keyid:DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/E9CF18DE0F7111F096BBCF24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:d540::/48 Signature Algorithm: sha256WithRSAEncryption a7:23:ed:6e:95:2f:30:5a:23:12:a1:c8:d4:06:21:a9:eb:66: 8c:bc:19:2f:49:67:a8:f9:d1:2a:e7:d9:60:6b:89:1e:d6:56: 00:4b:12:c4:e7:de:b2:88:67:54:e9:96:a0:ee:39:96:fb:3e: d5:8b:cf:0b:6a:28:29:ef:52:70:4f:ea:28:52:f3:21:0f:7d: 2b:a1:59:7a:65:fe:df:1d:f1:71:99:c9:6b:24:8b:a2:ff:f8: 46:78:db:37:e6:23:c5:d8:8f:63:a6:ed:37:68:f8:59:74:15: d9:38:f7:b9:b7:c5:85:a7:d3:5d:51:ae:03:b2:a2:51:5d:e9: cf:c7:5a:17:7f:a3:72:77:71:50:87:73:44:b6:13:e4:3d:77: ef:69:2a:46:cf:2f:38:8a:9c:66:70:c8:28:a0:47:b3:f8:d5: 9f:16:98:47:44:44:93:db:12:48:b4:b1:a2:2f:35:2b:46:6d: 72:e7:bb:0b:fd:15:cb:df:e5:3d:30:17:b6:99:96:fb:18:6d: 62:01:ac:28:11:7b:ec:cf:89:43:08:aa:b9:b3:b1:65:2f:a2: 6d:51:92:2f:6d:01:b4:ef:5e:f2:4d:2b:0a:3b:61:81:7f:1a: c0:f7:94:b6:3e:b3:34:d9:00:e5:20:de:da:65:f9:c7:b2:2f: a0:97:85:10 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoREIxM0ZCQUY3QjNCMzhEQjc2MzBEQjBCOTczNzREQUFE MDMxNUFERTAeFw0yNTA0MDIwMzIzNThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWNhZGNkLTc2M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaS4kQHvd94hOIbaiT3ir1u/fW4JIRyRdbX9XrwSTj3Eog8c/zcB1rSwDB2ga/ oQ46AziYh/IafE3yeQHZ5lmPRNgWq0m0ZB/YoXgQ109PPsdfEqtpf68YPQorxEBD xVx7hayKE/fm/oZWXvSjt2KAPzFledytsOeAJmnnCbkjyxqhJes4fMh7v5pkY3B4 qO4AyV6DTLMGCWJA5hXyG/PMgcgccXsjE3Rc45neTsfBkkWE1CjEsbkp+t57mXzI dTA/yriJMyzEpTggmdZCP3gXJFO4pHpGuyIeGFkTmF1Z3QuEP8452qlg3I8WZLTI +M0hpIWSCbdmLVkeTsA3a9LtAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUSiirdL// gzFSCxAU1k9iOH0lLBIwHwYDVR0jBBgwFoAU2xP7r3s7ONt2MNsLlzdNqtAxWt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzI0MDEwRDUyMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050Mk1Oc0xsemROcXRBeFd0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnhQN3IzczdPTnQyTU5zTGx6ZE5xdEF4V3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkNDQS8yNDAxMEQ1MjBGNzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9FOUNGMThERTBG NzExMUYwOTZCQkNGMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfPVQDANBgkqhkiG9w0BAQsFAAOCAQEApyPtbpUvMFoj EqHI1AYhqetmjLwZL0lnqPnRKufZYGuJHtZWAEsSxOfesohnVOmWoO45lvs+1YvP C2ooKe9ScE/qKFLzIQ99K6FZemX+3x3xcZnJaySLov/4RnjbN+YjxdiPY6btN2j4 WXQV2Tj3ubfFhafTXVGuA7KiUV3pz8daF3+jcndxUIdzRLYT5D1372kqRs8vOIqc ZnDIKKBHs/jVnxaYR0REk9sSSLSxoi81K0Ztcue7C/0Vy9/lPTAXtpmW+xhtYgGs KBF77M+JQwiqubOxZS+ibVGSL20BtO9e8k0rCjthgX8awPeUtj6zNNkA5SDe2mX5 x7IvoJeFEA== -----END CERTIFICATE-----Generated at Fri Apr 25 10:44:28 2025 by rpki-client on console.sobornost.net