$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/063FA6B25B2811F09B9A3A54C4F9AE02.roa File: 063FA6B25B2811F09B9A3A54C4F9AE02.roa (raw, json) Hash identifier: PdzatKQUNncHpwKWYwWLFeCXI+EXj5VrdThfE8iLC8o= Subject key identifier: BB:57:0C:46:41:3E:0B:D9:28:D4:CB:B9:31:0F:41:0D:E4:FE:85:E4 Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 01DC Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/063FA6B25B2811F09B9A3A54C4F9AE02.roa Signing time: Mon 07 Jul 2025 11:46:31 +0000 ROA not before: Mon 07 Jul 2025 11:46:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 13383 IP address blocks: 2402:be0:fffa::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Jul 7 11:46:31 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=686bb397-567b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:d8:ea:69:41:26:a0:52:10:2f:f7:45:4f: f6:d2:4c:8e:b7:25:c4:99:81:a1:37:12:5c:e5:9e: 6e:c4:ae:ea:03:11:03:66:f0:20:68:ab:a1:cb:c9: 94:54:07:da:17:82:1d:8a:f7:c5:80:8a:41:02:59: bf:cc:f1:91:d6:cb:9e:64:57:45:a1:4b:f2:a9:67: b5:05:22:27:00:98:82:b8:6b:08:94:41:a2:bf:6d: 35:37:1e:ad:74:c2:de:af:44:d4:5e:ea:6b:55:6c: e3:ca:8f:cf:54:c3:75:9b:67:d4:3f:a5:ec:cd:b8: 01:f1:5c:ec:c8:a6:28:f0:b3:95:00:cb:17:48:8c: 88:79:1e:a4:92:3d:98:ad:49:59:e0:aa:2d:92:21: 06:e6:48:9f:94:3c:b9:e4:a4:b0:72:8f:c4:97:f1: d2:63:05:20:7c:dd:b0:47:f9:c2:de:d5:6b:2d:af: f7:a3:3f:64:94:5c:ad:0d:58:cf:ef:be:84:1f:f1: 62:ad:ea:6d:95:f0:3d:2c:b5:74:a3:48:5d:3f:fd: 07:03:9d:15:e8:83:70:3b:4a:d5:cd:80:14:ac:33: 2a:fe:91:d8:c3:56:b7:c4:62:17:1d:46:51:7a:e5: b1:cf:db:29:69:eb:87:b2:89:be:46:7c:21:32:58: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:0C:46:41:3E:0B:D9:28:D4:CB:B9:31:0F:41:0D:E4:FE:85:E4 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/063FA6B25B2811F09B9A3A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:be0:fffa::/47 Signature Algorithm: sha256WithRSAEncryption 8c:00:85:fb:85:28:38:dc:70:10:b1:9c:5e:04:04:ee:3a:fe: f9:fd:65:6e:4e:54:6e:53:f0:71:90:d3:a6:b9:3c:24:bf:7b: 4f:f6:37:44:da:e9:ed:c6:ab:8d:58:b6:6b:2d:df:26:38:07: f1:fa:01:c9:cb:70:24:12:0a:9c:10:ca:4f:96:e2:f5:b6:82: a5:0b:13:1c:08:45:45:bc:a4:61:50:f2:3f:22:9d:45:a2:7b: 9d:d2:43:a5:e8:b6:ab:1e:86:85:b7:c7:a0:1d:53:f4:d8:e0: 83:f2:2d:9f:7b:ca:f7:ab:b1:e7:16:6f:41:d0:1e:f0:0a:37: 43:6e:49:89:64:b1:19:12:a9:10:94:16:52:8a:c8:43:e0:81: fc:be:5b:f2:1b:9b:73:5c:f0:64:e0:c7:7a:0c:c9:5f:2e:a1: 9f:b2:6f:74:86:bb:28:c6:cf:a6:2c:f4:4b:7d:ed:5e:79:85: 46:25:3a:71:b1:c0:e5:e1:25:49:49:26:47:b3:f7:9e:1b:de: bc:31:65:82:05:25:f1:e0:21:a6:53:2c:20:fc:da:d2:be:c0: 13:66:92:9f:23:4a:a3:48:5c:0b:0d:4d:e6:ff:ea:37:74:73: bc:69:39:5c:0b:f3:5e:0f:7f:8c:13:71:d7:e9:e7:44:25:a4: 7d:99:1e:64 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUwNzA3MTE0NjMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiYjM5Ny01NjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VTY6mlBJqBSEC/3RU/20kyOtyXEmYGhNxJc5Z5uxK7qAxEDZvAgaKuhy8mU VAfaF4IdivfFgIpBAlm/zPGR1sueZFdFoUvyqWe1BSInAJiCuGsIlEGiv201Nx6t dMLer0TUXuprVWzjyo/PVMN1m2fUP6XszbgB8VzsyKYo8LOVAMsXSIyIeR6kkj2Y rUlZ4KotkiEG5kiflDy55KSwco/El/HSYwUgfN2wR/nC3tVrLa/3oz9klFytDVjP 776EH/FireptlfA9LLV0o0hdP/0HA50V6INwO0rVzYAUrDMq/pHYw1a3xGIXHUZR euWxz9spaeuHsom+RnwhMli0jQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLtXDEZB PgvZKNTLuTEPQQ3k/oXkMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvMDYzRkE2QjI1 QjI4MTFGMDlCOUEzQTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkAgvg//owDQYJKoZIhvcNAQELBQADggEBAIwAhfuFKDjc cBCxnF4EBO46/vn9ZW5OVG5T8HGQ06a5PCS/e0/2N0Ta6e3Gq41Ytmst3yY4B/H6 AcnLcCQSCpwQyk+W4vW2gqULExwIRUW8pGFQ8j8inUWie53SQ6XotqsehoW3x6Ad U/TY4IPyLZ97yversecWb0HQHvAKN0NuSYlksRkSqRCUFlKKyEPggfy+W/Ibm3Nc 8GTgx3oMyV8uoZ+yb3SGuyjGz6Ys9Et97V55hUYlOnGxwOXhJUlJJkez954b3rwx ZYIFJfHgIaZTLCD82tK+wBNmkp8jSqNIXAsNTeb/6jd0c7xpOVwL814Pf4wTcdfp 50QlpH2ZHmQ= -----END CERTIFICATE-----Generated at Fri Jul 25 01:42:52 2025 by rpki-client