$ rpki-client -vvf rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/643F4A3E360611F09EAB971EC4F9AE02.roa File: 643F4A3E360611F09EAB971EC4F9AE02.roa (raw, json) Hash identifier: WYALurcwi6KRd5Ja7Gk61M8Sm/VsFQDEWuo3cpkPK1w= Subject key identifier: E9:81:69:F7:50:C9:10:6D:B1:60:FE:5D:DF:6C:55:D9:15:0D:7F:86 Certificate issuer: /CN=A91618BC/serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Certificate serial: 04BF Authority key identifier: 1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/643F4A3E360611F09EAB971EC4F9AE02.roa Signing time: Wed 21 May 2025 05:42:33 +0000 ROA not before: Wed 21 May 2025 05:42:33 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 210528 IP address blocks: 2407:9240:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618BC, serialNumber=1AEBCD82D7028343B745AD406739CDB92D4DFB77 Validity Not Before: May 21 05:42:33 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=682d67c9-35ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fe:f1:13:89:d4:4b:fb:8f:49:b5:6a:66:f8: 93:4f:13:50:eb:f3:fd:ab:9d:27:a2:b6:7e:0b:1e: 18:e7:0f:81:05:ce:df:73:03:83:9e:6f:e2:1b:31: 33:57:bc:95:4f:bf:16:de:43:9e:34:41:52:a4:ec: c4:21:f4:b5:70:61:ae:05:4e:ad:56:ec:bd:53:e1: e9:e2:15:0e:5b:8e:a9:97:c5:61:6d:1e:03:f6:49: 92:7f:70:64:a7:f8:ca:67:74:7c:6a:80:06:60:10: cd:4b:30:25:4f:03:c8:57:f2:82:7e:09:9c:c0:e1: 6b:de:eb:67:b2:7c:4d:7f:3f:31:53:5c:ea:ac:39: e7:00:be:2a:42:f5:5c:38:e8:b8:d5:33:fd:a7:c2: 16:7a:1e:29:29:51:84:cc:cc:96:0d:1d:09:e0:6c: e5:4e:5f:cd:7b:63:69:30:b9:f2:84:14:77:30:22: 21:26:6a:5c:20:7c:83:5a:10:bf:80:aa:ef:a7:ee: fa:e6:e5:c1:88:5e:c4:8a:41:4c:b6:c9:1d:c2:32: 66:1e:d6:d5:92:02:07:5e:20:f5:f9:8b:2f:e0:bc: 2a:90:24:17:71:39:6e:28:79:04:b7:22:b1:76:23: e6:81:6b:9f:c8:b9:e7:73:2b:be:a3:84:db:18:fb: bf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:81:69:F7:50:C9:10:6D:B1:60:FE:5D:DF:6C:55:D9:15:0D:7F:86 X509v3 Authority Key Identifier: keyid:1A:EB:CD:82:D7:02:83:43:B7:45:AD:40:67:39:CD:B9:2D:4D:FB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/GuvNgtcCg0O3Ra1AZznNuS1N-3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuvNgtcCg0O3Ra1AZznNuS1N-3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618BC/ED7B62AC5D8711EC9C1D702CC4F9AE02/643F4A3E360611F09EAB971EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:9240:2800::/40 Signature Algorithm: sha256WithRSAEncryption 3c:e7:c8:23:1e:60:d8:1b:39:69:b9:c1:0b:50:58:5d:8a:46: d0:a4:8e:55:8e:96:49:6d:3a:b0:58:e5:15:c5:d0:40:80:cf: 4b:89:df:18:2d:b7:91:a2:31:84:ae:3d:31:05:26:f8:4b:5b: a8:46:f6:e8:d6:60:78:0a:94:17:cb:8c:1b:75:d1:1a:fd:c4: a3:3b:8a:80:e8:47:cd:31:1a:93:e0:66:04:a0:ef:03:90:54: e4:cb:ce:e0:55:91:bd:27:74:f1:8f:34:59:29:b8:5f:04:78: 07:fd:bc:cc:55:2d:d3:5b:cc:ad:13:db:b6:1d:7d:fe:19:f8: 15:9f:a7:ad:f3:e9:43:6d:d8:36:f9:26:07:09:c3:0f:f5:41: 08:d0:be:78:b6:4a:23:43:1c:03:e9:35:00:3b:69:6a:db:58: 91:35:5b:17:64:4d:76:7d:31:e6:87:14:9a:f6:a6:5c:10:0e: 2a:be:dc:31:1d:23:11:30:b9:ab:1d:b9:fb:af:cd:f0:17:a4: ce:6d:b2:bd:53:3a:7e:7e:24:ca:3b:9b:19:8d:ad:30:88:34: fd:bd:5a:25:56:34:62:19:77:94:d7:1f:c3:28:68:ff:78:46: 75:1e:ea:74:92:6f:23:de:f4:ba:cc:82:e8:26:ca:27:5a:a0: da:fb:9d:77 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4QkMxMTAvBgNVBAUTKDFBRUJDRDgyRDcwMjgzNDNCNzQ1QUQ0MDY3MzlDREI5 MkQ0REZCNzcwHhcNMjUwNTIxMDU0MjMzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNjdjOS0zNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8v7xE4nUS/uPSbVqZviTTxNQ6/P9q50norZ+Cx4Y5w+BBc7fcwODnm/iGzEz V7yVT78W3kOeNEFSpOzEIfS1cGGuBU6tVuy9U+Hp4hUOW46pl8VhbR4D9kmSf3Bk p/jKZ3R8aoAGYBDNSzAlTwPIV/KCfgmcwOFr3utnsnxNfz8xU1zqrDnnAL4qQvVc OOi41TP9p8IWeh4pKVGEzMyWDR0J4GzlTl/Ne2NpMLnyhBR3MCIhJmpcIHyDWhC/ gKrvp+765uXBiF7EikFMtskdwjJmHtbVkgIHXiD1+Ysv4LwqkCQXcTluKHkEtyKx diPmgWufyLnncyu+o4TbGPu/tQIDAQABo4IClzCCApMwHQYDVR0OBBYEFOmBafdQ yRBtsWD+Xd9sVdkVDX+GMB8GA1UdIwQYMBaAFBrrzYLXAoNDt0WtQGc5zbktTft3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThCQy9FRDdCNjJBQzVE ODcxMUVDOUMxRDcwMkNDNEY5QUUwMi9HdXZOZ3RjQ2cwTzNSYTFBWnpuTnVTMU4t M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dk5ndGNDZzBPM1JhMUFaem5OdVMxTi0zYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4QkMvRUQ3QjYyQUM1RDg3MTFFQzlDMUQ3MDJDQzRGOUFFMDIvNjQzRjRBM0Uz NjA2MTFGMDlFQUI5NzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkB5JAKDANBgkqhkiG9w0BAQsFAAOCAQEAPOfIIx5g2Bs5 abnBC1BYXYpG0KSOVY6WSW06sFjlFcXQQIDPS4nfGC23kaIxhK49MQUm+EtbqEb2 6NZgeAqUF8uMG3XRGv3EozuKgOhHzTEak+BmBKDvA5BU5MvO4FWRvSd08Y80WSm4 XwR4B/28zFUt01vMrRPbth19/hn4FZ+nrfPpQ23YNvkmBwnDD/VBCNC+eLZKI0Mc A+k1ADtpattYkTVbF2RNdn0x5ocUmvamXBAOKr7cMR0jETC5qx25+6/N8Bekzm2y vVM6fn4kyjubGY2tMIg0/b1aJVY0Yhl3lNcfwyho/3hGdR7qdJJvI970usyC6CbK J1qg2vuddw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:13 2025 by rpki-client