$ rpki-client -vvf rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/A90DA1C0C71611EE9465BF5EC4F9AE02.roa File: A90DA1C0C71611EE9465BF5EC4F9AE02.roa (raw, json) Hash identifier: z2r7wPyO35kHvr0Idk1WJbUtXEqg34/eESnybLJ0qdg= Subject key identifier: 92:12:6A:FF:68:01:D7:F3:4D:0D:47:D8:96:FF:6B:82:E0:C1:E5:B0 Certificate issuer: /CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Certificate serial: 0199 Authority key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/A90DA1C0C71611EE9465BF5EC4F9AE02.roa Signing time: Tue 03 Jun 2025 04:01:34 +0000 ROA not before: Tue 03 Jun 2025 04:01:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 400618 IP address blocks: 2401:5a0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911710E, serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Validity Not Before: Jun 3 04:01:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e739e-e5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6a:9f:28:64:04:f4:73:ef:fc:b5:40:53:87: ee:f7:02:99:9a:e0:16:43:75:44:fa:20:1b:c3:3a: 15:4b:e2:7b:49:df:0d:fd:13:8d:56:3b:aa:a5:27: 2e:db:78:24:b9:de:17:63:b0:43:e9:de:1c:ed:01: cb:02:31:32:27:60:02:fb:83:08:fb:58:7c:dc:1b: 88:7e:c5:94:eb:54:41:b9:11:03:98:c3:57:92:38: 76:2b:fa:15:10:31:29:32:7b:b2:ba:97:28:37:81: 2f:ae:ac:f4:f7:1e:7f:f7:49:1a:23:e1:c3:4c:df: ef:8b:ee:3e:d5:dd:1a:8f:23:49:db:6c:ce:dd:04: 72:ed:7d:18:cd:d4:9a:00:15:07:12:aa:a8:d7:9e: 75:d3:c6:1d:df:59:d4:2f:5b:70:78:c7:c7:69:4d: b2:ef:98:07:06:42:37:21:d1:b1:4a:c3:39:eb:12: d6:93:56:0c:61:03:17:ac:13:0d:63:62:3c:14:44: cf:21:ab:76:47:cc:b7:d1:55:0d:eb:1d:34:c8:cf: 9e:3d:23:02:d5:ee:aa:3d:ae:6f:1f:41:ab:9a:99: 74:c5:92:25:d0:89:1d:d5:b3:f5:7d:6b:d1:0d:5f: 64:41:e8:ee:fe:e7:23:e0:9b:23:64:89:55:25:03: de:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:12:6A:FF:68:01:D7:F3:4D:0D:47:D8:96:FF:6B:82:E0:C1:E5:B0 X509v3 Authority Key Identifier: keyid:CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/A90DA1C0C71611EE9465BF5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5a0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 19:55:72:4e:83:30:5a:1e:b3:de:b5:87:70:98:bf:5b:60:17: eb:d7:b7:38:d8:00:d8:6f:4a:45:5d:63:12:51:8c:44:c1:26: 21:0c:2c:d9:b2:03:9f:32:1b:a6:34:1a:92:b2:16:ba:55:3d: a5:cb:27:b8:06:d7:d8:52:ad:7f:35:b4:31:c2:56:92:f4:0d: cf:e7:5b:34:5b:56:84:ee:75:89:a4:b7:39:5e:22:f9:8b:a0: d6:b7:a7:6f:55:81:c8:68:68:cc:f6:c0:19:03:79:7c:1d:f2: c6:cc:24:08:eb:99:94:0f:1d:b0:27:65:33:0d:30:fa:08:c1: 85:03:bc:31:e7:49:0e:7c:d0:9a:77:89:e7:d6:f4:8c:b9:64: 36:ba:0b:39:3d:d2:2c:b2:2b:f0:f8:12:f0:1e:aa:0c:c4:b7: 9f:17:e4:cc:4a:e8:50:a7:cb:0d:f8:9b:5c:da:17:bd:0f:2a: d1:38:b7:8e:c5:4b:c3:37:71:4a:71:f8:13:d7:52:fd:78:7a: af:30:96:cc:28:f0:7f:1a:4a:7e:20:19:31:72:75:ad:d6:e9: c8:5e:df:8e:96:4d:be:88:c5:98:f4:ed:a5:74:e0:46:3d:54: 27:87:6a:d5:ff:ab:c5:7a:95:ed:4f:3f:5b:00:60:9d:66:92: c2:3d:06:ee -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcxMEUxMTAvBgNVBAUTKENEMTg0MUI2QzVCRUY3QzQ3ODJFNjdGNjYzRjNDMTk3 NDYxOTkzODMwHhcNMjUwNjAzMDQwMTM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNzM5ZS1lNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGqfKGQE9HPv/LVAU4fu9wKZmuAWQ3VE+iAbwzoVS+J7Sd8N/RONVjuqpScu 23gkud4XY7BD6d4c7QHLAjEyJ2AC+4MI+1h83BuIfsWU61RBuREDmMNXkjh2K/oV EDEpMnuyupcoN4Evrqz09x5/90kaI+HDTN/vi+4+1d0ajyNJ22zO3QRy7X0YzdSa ABUHEqqo155108Yd31nUL1tweMfHaU2y75gHBkI3IdGxSsM56xLWk1YMYQMXrBMN Y2I8FETPIat2R8y30VUN6x00yM+ePSMC1e6qPa5vH0Grmpl0xZIl0Ikd1bP1fWvR DV9kQeju/ucj4JsjZIlVJQPeoQIDAQABo4IClzCCApMwHQYDVR0OBBYEFJISav9o AdfzTQ1H2Jb/a4LgweWwMB8GA1UdIwQYMBaAFM0YQbbFvvfEeC5n9mPzwZdGGZOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzEwRS9DOTNFMTc4QTAx QjUxMUVFODlGNkVCNzhDNEY5QUUwMi96UmhCdHNXLTk4UjRMbWYyWV9QQmwwWVpr NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pSaEJ0c1ctOThSNExtZjJZX1BCbDBZWms0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcxMEUvQzkzRTE3OEEwMUI1MTFFRTg5RjZFQjc4QzRGOUFFMDIvQTkwREExQzBD NzE2MTFFRTk0NjVCRjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAQWgIDANBgkqhkiG9w0BAQsFAAOCAQEAGVVyToMwWh6z 3rWHcJi/W2AX69e3ONgA2G9KRV1jElGMRMEmIQws2bIDnzIbpjQakrIWulU9pcsn uAbX2FKtfzW0McJWkvQNz+dbNFtWhO51iaS3OV4i+Yug1renb1WByGhozPbAGQN5 fB3yxswkCOuZlA8dsCdlMw0w+gjBhQO8MedJDnzQmneJ59b0jLlkNroLOT3SLLIr 8PgS8B6qDMS3nxfkzEroUKfLDfibXNoXvQ8q0Ti3jsVLwzdxSnH4E9dS/Xh6rzCW zCjwfxpKfiAZMXJ1rdbpyF7fjpZNvojFmPTtpXTgRj1UJ4dq1f+rxXqV7U8/WwBg nWaSwj0G7g== -----END CERTIFICATE-----Generated at Tue Jun 3 23:54:46 2025 by rpki-client