$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/B12A39803A2A11F09E37DB48C4F9AE02.roa File: B12A39803A2A11F09E37DB48C4F9AE02.roa (raw, json) Hash identifier: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI= Subject key identifier: 7D:9E:4F:19:9D:B8:8B:BE:B8:8C:21:A3:9A:90:2B:85:D5:CE:F5:A2 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 02 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/B12A39803A2A11F09E37DB48C4F9AE02.roa Signing time: Mon 26 May 2025 12:12:28 +0000 ROA not before: Mon 26 May 2025 12:12:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153320 IP address blocks: 2401:d960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: May 26 12:12:28 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68345aac-75f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d3:ce:52:d5:49:52:91:cd:75:59:14:b2:af: ba:85:8d:cd:41:c7:ba:b2:a2:eb:e8:92:ef:77:98: cd:60:af:00:6e:b5:7a:4a:cb:1c:f0:42:8f:6e:41: 6f:9b:b5:b7:fb:6c:62:6e:88:04:46:14:fb:ed:ae: 03:00:a9:74:ec:44:38:cc:14:80:95:b9:c8:b1:8b: fc:91:cc:d9:ab:76:e3:aa:3f:b3:c0:90:de:ce:bd: 94:9a:7a:57:3d:cb:0b:d6:f8:65:81:51:8a:cd:94: 3e:3c:a5:30:d9:b7:a0:5c:c6:a2:ab:03:b8:73:96: ef:d3:13:01:53:f7:ed:4c:7e:65:08:b6:e7:de:7c: 36:43:8e:5a:93:4e:02:db:ae:c9:dc:6f:29:36:08: 5c:8a:99:62:67:ed:8a:45:2d:7d:85:99:42:62:69: 4e:46:d7:9f:a0:bc:a7:51:f2:62:5d:1a:46:b0:05: 82:50:b9:79:43:08:fe:0f:67:6a:0d:0f:a4:a1:99: 8d:2c:1e:3e:2c:36:b6:32:78:e4:cb:d7:9f:91:88: bb:9b:67:25:91:ba:c1:e9:8c:58:2b:93:4a:4e:02: 0a:c4:f4:bd:29:fd:41:22:99:ab:b0:af:54:50:ea: ac:b7:f6:d8:9b:6c:da:84:a9:e7:df:0f:08:25:66: 38:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9E:4F:19:9D:B8:8B:BE:B8:8C:21:A3:9A:90:2B:85:D5:CE:F5:A2 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/B12A39803A2A11F09E37DB48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d960::/32 Signature Algorithm: sha256WithRSAEncryption 4f:b6:be:cd:1d:17:18:a8:e4:18:92:75:c3:c0:18:28:ea:27: b8:69:11:fc:a7:96:9a:08:71:8c:46:e5:91:b9:c7:2e:ee:ab: 22:87:80:c9:7c:73:a7:b5:bd:8e:00:6d:d4:aa:63:ef:32:51: 0b:99:d2:14:ca:31:25:5f:bc:ae:2f:05:b4:ac:90:c1:0e:eb: 73:a8:7e:d3:ca:91:2f:b4:e1:c1:fb:42:6b:2e:86:b7:0b:6d: ff:44:4d:51:39:9c:71:ea:0f:87:ca:b3:ab:e8:63:dc:d7:1f: f4:c0:ad:ec:52:2b:29:32:06:f0:b7:d9:48:b1:23:12:86:f4: 91:0e:8b:fc:c8:f1:34:18:ab:fb:cc:87:49:ca:72:fe:d3:d9: b9:c9:2e:6f:f7:26:2b:d3:b7:ea:94:ed:00:10:85:39:aa:25: 53:df:f1:45:56:f9:69:db:54:35:79:7f:ff:19:f0:db:5f:9f: dc:c2:f5:46:2d:72:98:6f:bb:80:5f:42:7d:26:e7:74:ff:5b: d4:f0:68:ab:ed:b5:32:a0:6c:5e:7c:bf:d7:ac:17:45:4c:78: 9c:f4:1e:cb:24:5e:87:28:35:e1:da:f6:b9:31:19:f3:32:a8: 11:cf:3d:e0:8a:b2:e9:fa:e6:84:a4:56:83:9e:c2:0f:6e:5b: 74:fd:ab:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTA1MjYxMjEyMjhaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzQ1YWFjLTc1ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7085S1UlSkc11WRSyr7qFjc1Bx7qyouvoku93mM1grwButXpKyxzwQo9uQW+b tbf7bGJuiARGFPvtrgMAqXTsRDjMFICVucixi/yRzNmrduOqP7PAkN7OvZSaelc9 ywvW+GWBUYrNlD48pTDZt6BcxqKrA7hzlu/TEwFT9+1MfmUItufefDZDjlqTTgLb rsncbyk2CFyKmWJn7YpFLX2FmUJiaU5G15+gvKdR8mJdGkawBYJQuXlDCP4PZ2oN D6ShmY0sHj4sNrYyeOTL15+RiLubZyWRusHpjFgrk0pOAgrE9L0p/UEimauwr1RQ 6qy39tibbNqEqeffDwglZjhfAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUfZ5PGZ24 i764jCGjmpArhdXO9aIwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk3NS82N0M3QTQyQTNBMjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9CMTJBMzk4MDNB MkExMUYwOUUzN0RCNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQB2WAwDQYJKoZIhvcNAQELBQADggEBAE+2vs0dFxio5BiS dcPAGCjqJ7hpEfynlpoIcYxG5ZG5xy7uqyKHgMl8c6e1vY4AbdSqY+8yUQuZ0hTK MSVfvK4vBbSskMEO63OoftPKkS+04cH7QmsuhrcLbf9ETVE5nHHqD4fKs6voY9zX H/TArexSKykyBvC32UixIxKG9JEOi/zI8TQYq/vMh0nKcv7T2bnJLm/3JivTt+qU 7QAQhTmqJVPf8UVW+WnbVDV5f/8Z8Ntfn9zC9UYtcphvu4BfQn0m53T/W9TwaKvt tTKgbF58v9esF0VMeJz0HsskXocoNeHa9rkxGfMyqBHPPeCKsun65oSkVoOewg9u W3T9q4Q= -----END CERTIFICATE-----Generated at Wed Jun 4 00:07:44 2025 by rpki-client