$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/F046E896E9B411EFADF57822C4F9AE02.roa File: F046E896E9B411EFADF57822C4F9AE02.roa (raw, json) Hash identifier: l+bVVNm3bbMbBf2jMtRM0oEIl5YU3KZtVBp4SxX67pI= Subject key identifier: D2:F7:FE:7E:9A:34:74:8E:73:84:68:4F:1E:2B:3C:3A:94:F1:56:BF Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 13B5 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/F046E896E9B411EFADF57822C4F9AE02.roa Signing time: Sat 31 May 2025 17:38:20 +0000 ROA not before: Sat 31 May 2025 17:38:19 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 134134 IP address blocks: 2404:9f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: May 31 17:38:19 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b3e8b-2ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8a:49:3f:11:53:4f:45:6f:38:e5:15:54:3f: 99:40:df:a3:8f:df:17:bb:25:e8:ad:af:45:b5:c6: 53:17:1d:d5:6c:7a:5e:91:8e:17:2b:2d:e6:b6:5e: d5:97:12:b7:82:d9:14:20:8e:96:a8:df:de:dc:f9: 89:d3:36:5a:42:c0:a5:5e:95:09:f7:df:63:4f:d0: 27:fb:36:0d:39:e8:82:0e:a1:e3:1d:bd:d9:16:61: 6f:75:32:78:34:eb:50:c1:57:17:f9:bf:7a:39:26: 39:a0:d3:ef:4f:71:d2:6f:ff:29:3a:66:46:e7:58: 7b:71:29:72:34:2f:be:de:8a:90:40:00:8a:4a:36: bb:e9:53:ce:a4:2c:02:0e:94:39:3c:77:c7:4c:9d: df:94:39:39:fa:b5:5a:a9:e9:1a:23:a1:32:c9:d9: 83:42:70:e6:28:f3:f0:69:67:8e:bd:2d:ae:bc:d8: 90:91:9a:1f:19:bf:5e:46:25:51:46:c4:19:d5:3e: 34:1c:ad:07:5b:f7:51:35:ef:8a:75:61:52:20:14: 53:97:5c:14:44:47:c7:8a:f6:56:5c:6a:37:67:db: 70:63:34:d4:30:91:01:ee:f0:66:d8:14:15:b7:6d: f4:6f:6b:46:2a:17:80:d1:fa:33:c0:11:91:3c:01: 80:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F7:FE:7E:9A:34:74:8E:73:84:68:4F:1E:2B:3C:3A:94:F1:56:BF X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/F046E896E9B411EFADF57822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:9f40::/32 Signature Algorithm: sha256WithRSAEncryption b2:ff:8a:d9:e9:eb:91:7f:8a:87:ad:bd:fc:4d:ad:6c:a7:3e: 90:a1:ee:b8:26:82:20:66:81:c7:3f:a0:53:9e:9c:f5:81:e0: 4a:47:9d:bd:c7:5d:6b:0f:ea:a7:bc:f5:a8:eb:1e:e3:fb:b8: 41:61:12:90:d2:0e:a8:ca:c7:9a:c4:56:fb:90:3d:63:88:2a: fd:58:64:b5:7a:e4:0e:02:0f:16:3f:39:64:15:a0:b9:04:85: c8:f7:b8:41:8e:6c:6c:ff:d5:dc:55:37:dc:b6:24:39:03:33: d3:41:d1:ef:49:10:ef:86:f9:9d:39:80:93:71:1e:04:ce:7c: d9:4c:6a:89:fc:1d:34:e8:86:41:36:68:46:67:dd:73:18:49: 19:97:5f:dd:d5:3c:a2:26:c3:91:e4:72:c4:b6:ef:a9:2d:7b: dc:7d:05:d1:76:b7:9e:2c:f3:4f:3a:e8:cd:de:4f:01:3a:ec: 68:39:82:03:f3:bf:69:b7:f7:99:21:25:3e:0a:c5:f2:d7:3c: 30:c1:43:33:a9:da:69:cb:6d:fc:72:3b:76:d2:31:2f:73:1d: e0:1c:fb:98:0c:1c:2d:92:9f:66:14:07:ff:98:f7:d5:c9:e8: c8:b8:25:85:ad:ad:a6:9d:ca:fe:74:9f:c0:27:43:f0:01:2b: 95:e1:6b:86 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjUwNTMxMTczODE5WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiM2U4Yi0yY2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoopJPxFTT0VvOOUVVD+ZQN+jj98XuyXora9FtcZTFx3VbHpekY4XKy3mtl7V lxK3gtkUII6WqN/e3PmJ0zZaQsClXpUJ999jT9An+zYNOeiCDqHjHb3ZFmFvdTJ4 NOtQwVcX+b96OSY5oNPvT3HSb/8pOmZG51h7cSlyNC++3oqQQACKSja76VPOpCwC DpQ5PHfHTJ3flDk5+rVaqekaI6EyydmDQnDmKPPwaWeOvS2uvNiQkZofGb9eRiVR RsQZ1T40HK0HW/dRNe+KdWFSIBRTl1wUREfHivZWXGo3Z9twYzTUMJEB7vBm2BQV t230b2tGKheA0fozwBGRPAGAMwIDAQABo4ICljCCApIwHQYDVR0OBBYEFNL3/n6a NHSOc4RoTx4rPDqU8Va/MB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhEMEUvOEU3MTQ5ODRBMzVFMTFFOEI0MUE1ODc4QzRGOUFFMDIvRjA0NkU4OTZF OUI0MTFFRkFERjU3ODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBJ9AMA0GCSqGSIb3DQEBCwUAA4IBAQCy/4rZ6euRf4qH rb38Ta1spz6Qoe64JoIgZoHHP6BTnpz1geBKR529x11rD+qnvPWo6x7j+7hBYRKQ 0g6oyseaxFb7kD1jiCr9WGS1euQOAg8WPzlkFaC5BIXI97hBjmxs/9XcVTfctiQ5 AzPTQdHvSRDvhvmdOYCTcR4EznzZTGqJ/B006IZBNmhGZ91zGEkZl1/d1TyiJsOR 5HLEtu+pLXvcfQXRdreeLPNPOujN3k8BOuxoOYID879pt/eZISU+CsXy1zwwwUMz qdppy238cjt20jEvcx3gHPuYDBwtkp9mFAf/mPfVyejIuCWFra2mncr+dJ/AJ0Pw ASuV4WuG -----END CERTIFICATE-----Generated at Mon Jun 2 07:20:27 2025 by rpki-client