$ rpki-client -vvf rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa File: BFFAF880912711EE92065180C4F9AE02.roa (raw, json) Hash identifier: Lsqx9/oy87FhklVkD5fx3kw5FODjB7E1qGUY3oaFvE0= Subject key identifier: 23:25:8B:42:04:93:3B:85:73:B2:9A:19:16:63:13:36:E4:62:11:B1 Certificate issuer: /CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Certificate serial: 0374 Authority key identifier: 28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa Signing time: Tue 03 Jun 2025 01:14:39 +0000 ROA not before: Tue 03 Jun 2025 01:14:39 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 151396 IP address blocks: 2400:6be0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91900BF, serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B Validity Not Before: Jun 3 01:14:39 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683e4c7f-e073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:91:a7:da:15:17:e5:34:98:74:70:26:1e: 50:35:5d:b9:81:f0:74:7d:71:d6:39:c0:27:f2:d5: c2:6c:52:70:ae:f2:cc:6d:4b:a2:69:3f:a1:4d:30: be:0a:8d:bd:07:37:5a:a5:15:00:1e:f3:d3:f0:43: f7:04:e1:49:25:bc:bf:74:35:5b:8b:5b:53:cf:b1: 72:26:f7:38:f7:97:47:51:52:f0:3d:4d:45:10:22: db:b0:8a:6f:b5:a4:f7:15:3c:6b:51:ea:5d:0e:66: 6b:36:3e:89:4d:fa:96:21:5e:11:6e:a5:f5:e4:b1: b8:12:3b:b2:ba:d7:39:b0:71:98:ba:9d:2c:81:56: b2:f0:84:15:74:0d:94:93:ba:bf:27:64:41:b1:9f: 86:ad:1b:f1:6b:d3:15:00:84:b3:3c:40:b2:bf:6e: 9c:03:d9:94:be:a0:7d:0f:46:54:05:c3:61:e0:8e: 33:e4:9c:3c:84:dd:72:00:33:88:32:d4:56:a8:1a: 4b:1b:00:a4:0d:56:e4:9c:c2:b3:e8:1b:0f:dd:43: a9:8b:8c:25:a4:2b:03:d7:1e:f9:e8:4a:6f:52:12: 1b:21:53:73:61:f3:da:e8:8a:c7:84:a3:c0:e7:f9: e2:6f:35:52:31:7d:11:ea:53:5e:22:66:2c:0c:5e: e2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:25:8B:42:04:93:3B:85:73:B2:9A:19:16:63:13:36:E4:62:11:B1 X509v3 Authority Key Identifier: keyid:28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/BFFAF880912711EE92065180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:6be0::/36 Signature Algorithm: sha256WithRSAEncryption 50:2d:9c:fb:26:75:32:34:57:ac:ae:4e:7d:12:d1:84:a5:4b: 4c:20:7c:6d:fe:83:27:6f:cc:36:82:ae:7a:f1:e9:48:75:94: 53:ae:3a:8d:db:45:5b:94:a8:e0:83:af:e4:2f:16:86:18:20: 6f:4a:ed:1a:a2:e8:a6:11:81:71:89:8e:36:55:5a:89:74:38: 8b:1d:72:d1:a7:b3:a7:48:de:4d:67:02:53:f4:8f:e3:cd:cc: 14:b6:a2:03:21:c1:c0:f5:8a:d8:c0:7a:e8:c1:c8:56:32:18: 99:72:83:ba:82:8f:27:25:11:21:fd:71:e7:a1:7e:95:96:13: 1a:45:60:0c:9d:a0:1f:c6:14:c2:b3:91:22:4e:82:ad:9d:86: 8a:26:89:96:f0:f7:4a:5a:1c:93:db:87:db:d3:ef:85:a3:32: 70:34:97:ad:9f:6b:76:b8:e2:64:d6:2b:df:b4:e2:6f:1c:61: f4:7c:f8:77:16:c4:f1:ce:69:85:aa:e5:6a:46:54:05:c2:7f: 98:12:da:31:e6:a3:e8:91:49:42:c1:a8:11:4a:ef:1c:05:38: 87:cc:f9:c8:72:d8:e4:1e:82:9d:db:1e:e5:79:b8:33:db:52: d4:c8:38:25:80:b4:cc:ca:0f:aa:2c:9c:69:fa:b1:09:7f:51: f3:d4:9b:f5 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAwQkYxMTAvBgNVBAUTKDI4RUExNTU3Qjk5RTJCMTI3NTUxQ0QzNDBDM0FBRjRD MEE2MTAwNkIwHhcNMjUwNjAzMDExNDM5WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNGM3Zi1lMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FORp9oVF+U0mHRwJh5QNV25gfB0fXHWOcAn8tXCbFJwrvLMbUuiaT+hTTC+ Co29BzdapRUAHvPT8EP3BOFJJby/dDVbi1tTz7FyJvc495dHUVLwPU1FECLbsIpv taT3FTxrUepdDmZrNj6JTfqWIV4RbqX15LG4Ejuyutc5sHGYup0sgVay8IQVdA2U k7q/J2RBsZ+GrRvxa9MVAISzPECyv26cA9mUvqB9D0ZUBcNh4I4z5Jw8hN1yADOI MtRWqBpLGwCkDVbknMKz6BsP3UOpi4wlpCsD1x756EpvUhIbIVNzYfPa6IrHhKPA 5/nibzVSMX0R6lNeImYsDF7ilwIDAQABo4IClzCCApMwHQYDVR0OBBYEFCMli0IE kzuFc7KaGRZjEzbkYhGxMB8GA1UdIwQYMBaAFCjqFVe5nisSdVHNNAw6r0wKYQBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDBCRi9GRUExQ0Q2OEI2 RTMxMUVDQkU1OTk5MkRDNEY5QUUwMi9LT29WVjdtZUt4SjFVYzAwRERxdlRBcGhB R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPb1ZWN21lS3hKMVVjMDBERHF2VEFwaEFHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTAwQkYvRkVBMUNENjhCNkUzMTFFQ0JFNTk5OTJEQzRGOUFFMDIvQkZGQUY4ODA5 MTI3MTFFRTkyMDY1MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkAGvgADANBgkqhkiG9w0BAQsFAAOCAQEAUC2c+yZ1MjRX rK5OfRLRhKVLTCB8bf6DJ2/MNoKuevHpSHWUU646jdtFW5So4IOv5C8Whhggb0rt GqLophGBcYmONlVaiXQ4ix1y0aezp0jeTWcCU/SP483MFLaiAyHBwPWK2MB66MHI VjIYmXKDuoKPJyURIf1x56F+lZYTGkVgDJ2gH8YUwrORIk6CrZ2GiiaJlvD3Sloc k9uH29PvhaMycDSXrZ9rdrjiZNYr37Tibxxh9Hz4dxbE8c5pharlakZUBcJ/mBLa Meaj6JFJQsGoEUrvHAU4h8z5yHLY5B6Cndse5Xm4M9tS1Mg4JYC0zMoPqiycafqx CX9R89Sb9Q== -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:35 2025 by rpki-client