$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa File: AF2D50BE562B11F0A2095579C4F9AE02.roa (raw, json) Hash identifier: 8RemKyfJQtXvAOB/Ei52MDI9KMaFn3vaXMJC+OL2BTo= Subject key identifier: 17:16:7C:51:58:8E:79:2A:0B:EB:6E:28:33:CD:07:D6:DA:F6:93:B4 Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Certificate serial: 01E9 Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa Signing time: Fri 11 Jul 2025 04:09:36 +0000 ROA not before: Fri 11 Jul 2025 04:09:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151420 IP address blocks: 2401:3fa0:1::/48 maxlen: 48 2401:3fa0:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187FD, serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Validity Not Before: Jul 11 04:09:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68708e80-e439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:67:8d:d0:10:e4:23:6b:02:7f:1c:31:36: 47:2b:30:27:dd:3c:b6:12:de:23:78:dd:06:63:01: ea:02:1e:40:67:e4:55:a8:59:d2:b6:98:99:5c:ea: 5b:a1:1d:72:00:4b:a1:78:1b:f3:a3:d3:4b:2f:33: ec:cc:a6:c8:93:db:be:d1:86:22:30:2d:84:d8:a2: bb:9f:28:e4:7b:21:41:08:ef:45:43:5a:cc:a3:39: f4:65:10:d5:1f:a9:31:b4:33:3c:43:5f:23:80:32: 1b:18:b4:fc:e3:74:8d:42:46:9d:7d:0d:d7:e4:03: cf:17:68:de:b8:54:ce:38:de:9f:d4:79:f7:ca:97: 0e:3c:61:de:17:1b:65:7e:48:35:9b:19:0f:41:8a: 9d:be:2c:f3:30:46:53:20:a7:94:b5:13:0b:95:d4: 9d:d4:70:e3:ce:46:8f:17:a2:53:c3:1c:9f:f0:ac: ec:b2:14:e3:14:cb:f7:fe:81:4b:62:4c:b8:17:fd: be:1b:17:d1:01:df:c2:02:46:ef:96:2c:5a:3f:df: 27:e2:21:a3:e4:e6:1f:be:33:49:ca:c8:df:1b:dd: d3:a5:46:26:ab:66:41:d4:d0:11:73:8e:38:03:ba: e1:de:37:d4:53:67:33:09:55:fd:0a:ae:fa:2f:c0: 35:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:16:7C:51:58:8E:79:2A:0B:EB:6E:28:33:CD:07:D6:DA:F6:93:B4 X509v3 Authority Key Identifier: keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3fa0:1::/48 2401:3fa0:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 23:0c:67:0b:cb:9c:22:83:99:94:c3:4e:7e:c8:e5:17:64:ab: 37:cf:1d:e0:d3:c2:ec:42:30:aa:d4:4f:07:df:ed:0f:e2:5c: 2a:d4:72:8b:3b:ac:fb:04:23:a6:0f:07:78:10:de:a8:49:b6: 32:56:88:78:fc:9e:54:71:2c:67:82:4d:1a:d6:32:bd:22:86: be:2b:92:94:42:ad:55:ca:9b:e6:38:7e:54:c5:c0:ff:eb:bc: 90:68:86:8e:a0:5c:4b:3f:af:bf:db:ef:7c:03:c4:8d:d3:3a: d7:d3:0f:a6:16:47:c0:0b:70:4a:e3:9a:3b:86:f9:c5:21:8e: 58:f6:13:7b:23:44:42:89:e2:00:d8:55:0d:8a:cd:3c:ab:99: 6d:0a:5a:da:f1:81:95:06:9e:87:90:05:ea:d5:cb:6c:26:10: 7d:69:61:5b:b8:77:8e:0c:c0:37:1f:a2:25:3e:7c:a6:b5:ca: fb:89:e9:a5:8d:d9:2a:e8:96:fb:bf:3b:62:64:00:2e:c1:60: 98:6f:19:b5:0a:7f:d0:f8:ba:30:f2:1c:ce:01:f5:d5:0d:c7: e0:ee:93:8a:02:b4:74:e1:cd:9f:26:b7:ec:3e:75:44:b5:21: 09:e4:7b:c8:75:cf:cc:2a:5a:26:08:10:78:ba:8f:63:8b:ac: 91:f3:69:86 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3RkQxMTAvBgNVBAUTKDY4ODUyQUI3RjI3MTRGQ0Y1NEQ3NUYwQUFFMzA2OEFE QzM4QjM1Q0MwHhcNMjUwNzExMDQwOTM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwOGU4MC1lNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1BnjdAQ5CNrAn8cMTZHKzAn3Ty2Et4jeN0GYwHqAh5AZ+RVqFnStpiZXOpb oR1yAEuheBvzo9NLLzPszKbIk9u+0YYiMC2E2KK7nyjkeyFBCO9FQ1rMozn0ZRDV H6kxtDM8Q18jgDIbGLT843SNQkadfQ3X5APPF2jeuFTOON6f1Hn3ypcOPGHeFxtl fkg1mxkPQYqdvizzMEZTIKeUtRMLldSd1HDjzkaPF6JTwxyf8KzsshTjFMv3/oFL Yky4F/2+GxfRAd/CAkbvlixaP98n4iGj5OYfvjNJysjfG93TpUYmq2ZB1NARc444 A7rh3jfUU2czCVX9Cq76L8A1+QIDAQABo4ICoDCCApwwHQYDVR0OBBYEFBcWfFFY jnkqC+tuKDPNB9ba9pO0MB8GA1UdIwQYMBaAFGiFKrfycU/PVNdfCq4waK3DizXM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODdGRC81NUVENkExNjEw QTAxMUVFOTM0OTNDNTJDNEY5QUUwMi9hSVVxdF9KeFQ4OVUxMThLcmpCb3JjT0xO Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJVXF0X0p4VDg5VTExOEtyakJvcmNPTE5jdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3RkQvNTVFRDZBMTYxMEEwMTFFRTkzNDkzQzUyQzRGOUFFMDIvQUYyRDUwQkU1 NjJCMTFGMEEyMDk1NTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBwAkAT+gAAEDBgAkAT+g/DANBgkqhkiG9w0BAQsFAAOCAQEA IwxnC8ucIoOZlMNOfsjlF2SrN88d4NPC7EIwqtRPB9/tD+JcKtRyizus+wQjpg8H eBDeqEm2MlaIePyeVHEsZ4JNGtYyvSKGviuSlEKtVcqb5jh+VMXA/+u8kGiGjqBc Sz+vv9vvfAPEjdM619MPphZHwAtwSuOaO4b5xSGOWPYTeyNEQoniANhVDYrNPKuZ bQpa2vGBlQaeh5AF6tXLbCYQfWlhW7h3jgzANx+iJT58prXK+4nppY3ZKuiW+787 YmQALsFgmG8ZtQp/0Pi6MPIczgH11Q3H4O6TigK0dOHNnya37D51RLUhCeR7yHXP zCpaJggQeLqPY4uskfNphg== -----END CERTIFICATE-----Generated at Sun Jul 20 06:51:47 2025 by rpki-client