$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa File: B370AF6CD18411EF960DE726C4F9AE02.roa (raw, json) Hash identifier: PvYvKo7fKaUqaAiw6Bj232F7oy3FbMJoIWX4/DADB8Y= Subject key identifier: 6B:51:90:EB:61:9C:13:69:E9:DE:46:B1:BF:00:A2:58:5F:12:DF:28 Certificate issuer: /CN=A91E3B1D/serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Certificate serial: 030A Authority key identifier: 5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa Signing time: Sat 05 Jul 2025 02:09:25 +0000 ROA not before: Sat 05 Jul 2025 02:09:25 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149857 IP address blocks: 2400:83e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B1D, serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Validity Not Before: Jul 5 02:09:25 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68688955-9e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:62:de:90:87:6c:cc:23:cd:a2:89:a5:c1: 7f:ec:00:30:9c:6f:25:d4:a6:74:9b:a7:3c:f7:13: b6:20:69:7c:90:c8:26:59:36:f4:55:dd:15:2d:73: 50:18:d7:69:f5:bb:97:bb:27:eb:a4:b1:83:f1:f1: 0f:4a:c6:55:94:a0:ff:2c:0a:8e:16:38:e5:a9:5f: 6e:a8:51:84:cf:0b:b6:38:47:a3:3f:bb:f1:e3:a6: dc:18:19:55:a4:64:b5:80:4a:30:7c:b6:d1:01:fc: ee:ae:9b:7f:c1:63:f5:5b:cc:b3:a8:2e:bf:f1:74: 6d:c3:b8:3a:37:94:2a:f9:1b:b6:58:b6:15:31:81: cc:20:60:13:a8:9e:84:53:9c:1c:27:ef:ab:5f:91: a4:91:61:f3:cd:3e:ac:58:2e:9d:6f:d4:61:c2:ee: 66:b9:84:ef:a9:f6:75:7d:a0:0c:d2:cf:7c:c0:7c: c1:21:95:64:fc:b6:05:9b:67:b4:a3:60:07:09:fe: 07:02:da:9a:31:54:df:e5:c6:a7:9e:cd:62:e9:a8: 16:5b:37:30:29:e2:9f:1c:56:64:70:e9:34:ed:e7: c7:91:c3:73:a8:78:0a:67:4b:98:b0:5d:80:fa:e1: f4:bc:14:3a:d7:29:de:8c:71:d0:88:59:f1:e0:bd: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:51:90:EB:61:9C:13:69:E9:DE:46:B1:BF:00:A2:58:5F:12:DF:28 X509v3 Authority Key Identifier: keyid:5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/B370AF6CD18411EF960DE726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:83e0::/32 Signature Algorithm: sha256WithRSAEncryption 43:f1:3e:01:d0:47:81:8e:2c:98:45:02:81:f0:cb:dd:1a:17: fd:3e:ad:76:71:05:86:2c:4a:24:94:fe:7f:be:1f:b9:c7:13: 20:67:67:37:0a:81:6c:37:68:b8:a7:3d:b8:c0:1c:75:cd:24: 36:6a:52:02:f4:54:b4:7e:a7:c6:11:35:d7:cf:b9:45:de:d3: cb:7c:ec:2f:ec:db:6d:3a:f1:4c:61:12:5a:ef:83:ac:0c:9c: 6b:b8:e9:e1:e0:dd:36:05:7f:b9:83:7d:bb:44:f5:0c:b4:2f: a2:f1:d9:82:3c:a5:0f:c6:01:95:13:05:59:4d:20:0d:c4:9e: ac:3f:f6:bb:e1:e4:17:99:b8:0b:83:95:a2:e7:5d:cb:2e:cd: 12:ed:e4:3f:ea:6e:e9:b2:b9:4e:40:9a:4c:ed:dd:ab:80:cf: a3:dd:f7:88:23:29:4f:7a:44:27:cb:22:4c:c1:76:a5:11:7f: ce:b7:fe:6c:81:15:a5:99:c0:1b:2d:0a:99:01:93:d1:f8:5f: a2:69:22:1e:1d:12:df:e1:4e:17:54:34:67:7a:f7:9a:50:b6: d0:53:3d:d9:73:b9:57:14:06:84:7a:d2:88:eb:8d:96:0c:ca: 24:22:8b:f9:42:56:ad:68:6b:85:fc:b5:b6:35:2f:2d:a7:be: 17:35:ca:1d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMUQxMTAvBgNVBAUTKDVBOTlCMDI3NjcxOUQzQTgzNzcwRkFBRTE0RDc1NzVD QzY2NjQ4OEQwHhcNMjUwNzA1MDIwOTI1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4ODk1NS05ZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpti3pCHbMwjzaKJpcF/7AAwnG8l1KZ0m6c89xO2IGl8kMgmWTb0Vd0VLXNQ GNdp9buXuyfrpLGD8fEPSsZVlKD/LAqOFjjlqV9uqFGEzwu2OEejP7vx46bcGBlV pGS1gEowfLbRAfzurpt/wWP1W8yzqC6/8XRtw7g6N5Qq+Ru2WLYVMYHMIGATqJ6E U5wcJ++rX5GkkWHzzT6sWC6db9Rhwu5muYTvqfZ1faAM0s98wHzBIZVk/LYFm2e0 o2AHCf4HAtqaMVTf5canns1i6agWWzcwKeKfHFZkcOk07efHkcNzqHgKZ0uYsF2A +uH0vBQ61ynejHHQiFnx4L2DAwIDAQABo4ICljCCApIwHQYDVR0OBBYEFGtRkOth nBNp6d5Gsb8AolhfEt8oMB8GA1UdIwQYMBaAFFqZsCdnGdOoN3D6rhTXV1zGZkiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IxRC9CQTY0RDA2NkUz MzcxMUVDOTczMEVCM0RDNEY5QUUwMi9XcG13SjJjWjA2ZzNjUHF1Rk5kWFhNWm1T STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwbXdKMmNaMDZnM2NQcXVGTmRYWE1abVNJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCMUQvQkE2NEQwNjZFMzM3MTFFQzk3MzBFQjNEQzRGOUFFMDIvQjM3MEFGNkNE MTg0MTFFRjk2MERFNzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAIPgMA0GCSqGSIb3DQEBCwUAA4IBAQBD8T4B0EeBjiyY RQKB8MvdGhf9Pq12cQWGLEoklP5/vh+5xxMgZ2c3CoFsN2i4pz24wBx1zSQ2alIC 9FS0fqfGETXXz7lF3tPLfOwv7NttOvFMYRJa74OsDJxruOnh4N02BX+5g327RPUM tC+i8dmCPKUPxgGVEwVZTSANxJ6sP/a74eQXmbgLg5Wi513LLs0S7eQ/6m7psrlO QJpM7d2rgM+j3feIIylPekQnyyJMwXalEX/Ot/5sgRWlmcAbLQqZAZPR+F+iaSIe HRLf4U4XVDRneveaULbQUz3Zc7lXFAaEetKI642WDMokIov5QlataGuF/LW2NS8t p74XNcod -----END CERTIFICATE-----Generated at Sun Jul 20 07:37:25 2025 by rpki-client