$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa File: FE6C73289C9A11ED8123147BC4F9AE02.roa (raw, json) Hash identifier: rFSplheoWDm+5MPYS0jTevwHFfJ593Fp0RQ1ghGpvEg= Subject key identifier: BC:1D:54:B4:11:A9:16:F2:29:DC:92:EF:44:87:49:E5:51:C5:79:A7 Certificate issuer: /CN=A91A91D2/serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Certificate serial: 0984 Authority key identifier: 21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa Signing time: Fri 30 May 2025 20:57:37 +0000 ROA not before: Fri 30 May 2025 20:57:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135098 IP address blocks: 2001:df3:a180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91D2, serialNumber=21FC815FCB1CEAD770BD6C903694745F71CA7195 Validity Not Before: May 30 20:57:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a1bc1-0d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d7:9e:17:f1:dc:13:29:05:a6:75:c7:90:e1: 90:79:7d:b9:57:09:29:47:49:66:d7:72:6a:94:89: c8:f2:d6:9b:3d:ca:ef:c4:fa:e3:06:cb:b8:02:e8: b3:0b:3f:46:26:1d:d3:b0:11:33:97:c7:33:64:90: f3:22:60:21:51:17:d0:b1:68:a4:6e:f8:ab:57:34: 18:b7:12:ed:b6:15:a2:18:bc:32:69:24:9d:ff:2c: f1:a9:4a:b5:2e:47:ed:0a:45:02:7d:3a:3c:46:07: 08:58:21:d4:df:7e:e9:94:7a:73:93:a9:22:eb:6a: 41:80:57:85:1b:fe:2f:7a:c8:3e:24:c6:41:b1:35: 1e:bb:07:b3:3c:2a:6e:5e:71:15:1f:40:3c:54:a6: 08:73:c2:c6:24:7f:e4:a6:96:b0:c0:93:3b:09:bd: cb:c8:8f:8d:74:ca:a2:eb:75:64:e3:4b:f8:d8:3d: 7f:e2:71:56:8c:10:ab:dd:e6:be:34:33:29:04:16: dd:ab:dd:32:18:08:41:de:f8:19:df:af:aa:13:67: d1:7d:0e:c0:c9:54:f8:00:ba:7c:b7:51:52:8c:36: 04:a8:e3:a5:f5:a1:90:3a:77:6b:73:0b:c5:d7:7b: 98:fb:1e:51:4f:c2:8a:36:c8:c1:6a:cc:ce:4a:4c: 7c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1D:54:B4:11:A9:16:F2:29:DC:92:EF:44:87:49:E5:51:C5:79:A7 X509v3 Authority Key Identifier: keyid:21:FC:81:5F:CB:1C:EA:D7:70:BD:6C:90:36:94:74:5F:71:CA:71:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/IfyBX8sc6tdwvWyQNpR0X3HKcZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IfyBX8sc6tdwvWyQNpR0X3HKcZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91D2/8C14E94491D111EAA533A978C4F9AE02/FE6C73289C9A11ED8123147BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:a180::/48 Signature Algorithm: sha256WithRSAEncryption 30:ec:56:91:97:01:00:51:da:4f:a0:3b:51:05:70:ba:37:01: 76:ad:a9:e8:e7:78:7a:c2:18:5e:dd:2a:1f:5c:e8:a7:95:e9: c5:b7:0c:c1:3d:f5:a1:27:c0:98:e7:f2:57:56:96:ad:10:83: 58:06:17:7c:e7:2a:bc:8a:31:af:94:01:59:3a:ee:fb:0a:9d: 59:48:16:56:92:35:8b:8e:9c:3b:12:4c:7f:14:6d:36:a3:48: ce:ff:ba:da:35:e9:5a:8c:7c:9f:75:aa:98:59:fe:db:fd:ad: a4:f0:6f:49:5a:c5:77:31:df:1c:88:ca:06:bf:1c:ee:71:ec: ad:7b:a3:d5:68:91:c2:cb:50:36:96:5d:a5:d9:3a:73:fb:fc: fa:88:0d:0e:6c:b6:80:2e:ea:ae:70:49:a4:9d:3e:c7:00:b6: c7:e8:e6:e3:73:e1:39:7d:2d:61:9a:26:72:de:05:8b:8f:14: 7a:d5:58:52:87:fa:95:c5:e8:be:25:68:b2:1b:fb:91:1e:c5: d7:4a:d6:c6:c1:9a:25:34:e9:68:ff:fe:f8:43:40:8a:f3:91: de:80:83:39:9a:17:8d:a9:e4:8d:81:69:29:2a:bc:ff:e4:d1: 75:9a:27:8b:c7:39:73:0b:87:8a:7c:42:43:d2:49:84:ac:28: c5:ae:e3:f7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxRDIxMTAvBgNVBAUTKDIxRkM4MTVGQ0IxQ0VBRDc3MEJENkM5MDM2OTQ3NDVG NzFDQTcxOTUwHhcNMjUwNTMwMjA1NzM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMWJjMS0wZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuteeF/HcEykFpnXHkOGQeX25VwkpR0lm13JqlInI8tabPcrvxPrjBsu4Auiz Cz9GJh3TsBEzl8czZJDzImAhURfQsWikbvirVzQYtxLtthWiGLwyaSSd/yzxqUq1 LkftCkUCfTo8RgcIWCHU337plHpzk6ki62pBgFeFG/4vesg+JMZBsTUeuwezPCpu XnEVH0A8VKYIc8LGJH/kppawwJM7Cb3LyI+NdMqi63Vk40v42D1/4nFWjBCr3ea+ NDMpBBbdq90yGAhB3vgZ36+qE2fRfQ7AyVT4ALp8t1FSjDYEqOOl9aGQOndrcwvF 13uY+x5RT8KKNsjBaszOSkx8HwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLwdVLQR qRbyKdyS70SHSeVRxXmnMB8GA1UdIwQYMBaAFCH8gV/LHOrXcL1skDaUdF9xynGV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFEMi84QzE0RTk0NDkx RDExMUVBQTUzM0E5NzhDNEY5QUUwMi9JZnlCWDhzYzZ0ZHd2V3lRTnBSMFgzSEtj WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmeUJYOHNjNnRkd3ZXeVFOcFIwWDNIS2NaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxRDIvOEMxNEU5NDQ5MUQxMTFFQUE1MzNBOTc4QzRGOUFFMDIvRkU2QzczMjg5 QzlBMTFFRDgxMjMxNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zoYAwDQYJKoZIhvcNAQELBQADggEBADDsVpGXAQBR 2k+gO1EFcLo3AXatqejneHrCGF7dKh9c6KeV6cW3DME99aEnwJjn8ldWlq0Qg1gG F3znKryKMa+UAVk67vsKnVlIFlaSNYuOnDsSTH8UbTajSM7/uto16VqMfJ91qphZ /tv9raTwb0laxXcx3xyIyga/HO5x7K17o9VokcLLUDaWXaXZOnP7/PqIDQ5stoAu 6q5wSaSdPscAtsfo5uNz4Tl9LWGaJnLeBYuPFHrVWFKH+pXF6L4laLIb+5EexddK 1sbBmiU06Wj//vhDQIrzkd6AgzmaF42p5I2BaSkqvP/k0XWaJ4vHOXMLh4p8QkPS SYSsKMWu4/c= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:27 2025 by rpki-client