$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/F5AF6608370411F0B2A2B987C4F9AE02.roa File: F5AF6608370411F0B2A2B987C4F9AE02.roa (raw, json) Hash identifier: sKL7GxR/Osz7bpKAC1OAVJi+UAvdGvi+MQo+/LHB5R8= Subject key identifier: 21:53:56:8C:40:B8:83:97:B2:85:96:EF:F5:A2:82:51:F0:25:D9:42 Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: CC Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/F5AF6608370411F0B2A2B987C4F9AE02.roa Signing time: Thu 22 May 2025 12:04:49 +0000 ROA not before: Thu 22 May 2025 12:04:49 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 30337 IP address blocks: 2407:7a80:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: May 22 12:04:49 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=682f12e1-a7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:14:9d:80:f0:0d:5f:91:2a:c8:72:cc:f4:32: 1f:a5:c6:32:b6:0b:df:57:b3:39:89:80:96:f3:ed: 19:8a:16:a3:59:f3:ec:08:b6:64:45:2d:9b:2a:b5: dc:01:68:be:01:f1:c7:34:c7:7a:24:f6:7f:0c:62: c0:31:52:d6:81:5a:bb:49:5a:c9:09:33:f5:37:09: a3:1b:bc:83:59:80:48:56:ef:bc:f9:b9:c5:8d:89: 23:e1:b2:54:dd:ca:72:d1:11:c1:1c:90:74:1a:a1: 9e:01:e6:06:f8:62:09:10:ce:7b:ec:3e:e3:82:8c: de:42:1d:35:bc:3e:c6:70:33:eb:05:04:c7:32:8c: 58:4c:29:cd:45:b4:2b:29:19:36:a2:48:75:92:df: 74:e2:13:77:81:69:aa:85:e3:d7:cb:8d:b4:f7:d7: 63:0b:32:c8:bc:9e:65:28:dc:1d:d9:30:e4:06:5a: 0f:59:e7:f7:a4:58:ce:52:7c:2d:79:d0:37:62:4f: 76:5f:37:b8:a7:04:ab:bd:1b:9f:f9:68:b1:95:2c: 5c:c4:de:ba:de:e2:89:59:9f:3a:75:77:95:a2:db: 75:2f:e7:6b:17:d2:b7:1d:f2:eb:a9:65:47:7b:dd: ab:67:c8:87:5a:c6:61:b8:1a:74:38:58:a7:a9:e6: dd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:53:56:8C:40:B8:83:97:B2:85:96:EF:F5:A2:82:51:F0:25:D9:42 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/F5AF6608370411F0B2A2B987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:7a80:10::/48 Signature Algorithm: sha256WithRSAEncryption 44:22:50:a8:16:70:cf:97:86:3b:6e:27:14:0f:52:d4:04:c0: 8e:f6:20:d6:25:94:c5:60:af:2a:50:79:8d:3a:05:52:25:6d: 82:97:84:b5:fd:a5:25:d7:62:b9:63:ff:12:91:be:12:76:04: 59:b9:ad:eb:7d:99:cf:2e:fb:d3:ad:52:96:0c:d9:60:19:6f: 97:b9:8b:12:4f:7a:1b:8a:a7:d1:8b:98:91:e3:b3:e6:36:fb: 13:97:5d:fc:de:d2:91:ad:29:6d:86:33:a1:8f:0e:b5:ba:62: ae:66:09:b2:f2:0a:b0:7a:6e:1a:c7:b8:ec:7a:63:72:53:4b: 83:89:a4:9f:cb:ce:0d:b9:d9:44:48:a2:ca:c2:7d:81:e7:42: d6:5d:3f:b2:28:18:65:54:25:c4:23:61:1d:85:55:4a:77:36: 3d:ad:c7:3a:2d:dd:91:07:11:f4:65:62:03:7f:dd:e0:35:7b: ef:5d:19:66:57:19:82:41:c2:e0:79:aa:a7:11:94:e7:05:b5: c5:c9:61:d7:54:ff:d4:b0:ce:f8:22:7a:b0:63:e2:81:9f:56: 0e:23:84:81:dd:16:75:17:96:68:da:82:f3:31:a9:6d:27:a4: 1e:f5:7e:87:2d:bf:91:4e:05:40:c1:1a:b1:65:11:5f:bc:f0: 7d:89:55:c7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwNTIyMTIwNDQ5WhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmMTJlMS1hN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxSdgPANX5EqyHLM9DIfpcYytgvfV7M5iYCW8+0ZihajWfPsCLZkRS2bKrXc AWi+AfHHNMd6JPZ/DGLAMVLWgVq7SVrJCTP1NwmjG7yDWYBIVu+8+bnFjYkj4bJU 3cpy0RHBHJB0GqGeAeYG+GIJEM577D7jgozeQh01vD7GcDPrBQTHMoxYTCnNRbQr KRk2okh1kt904hN3gWmqhePXy42099djCzLIvJ5lKNwd2TDkBloPWef3pFjOUnwt edA3Yk92Xze4pwSrvRuf+WixlSxcxN663uKJWZ86dXeVott1L+drF9K3HfLrqWVH e92rZ8iHWsZhuBp0OFinqebdKwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCFTVoxA uIOXsoWW7/WiglHwJdlCMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNTg0MEEwN0MxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvRjVBRjY2MDgz NzA0MTFGMEIyQTJCOTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkB3qAABAwDQYJKoZIhvcNAQELBQADggEBAEQiUKgWcM+X hjtuJxQPUtQEwI72INYllMVgrypQeY06BVIlbYKXhLX9pSXXYrlj/xKRvhJ2BFm5 ret9mc8u+9OtUpYM2WAZb5e5ixJPehuKp9GLmJHjs+Y2+xOXXfze0pGtKW2GM6GP DrW6Yq5mCbLyCrB6bhrHuOx6Y3JTS4OJpJ/Lzg252URIosrCfYHnQtZdP7IoGGVU JcQjYR2FVUp3Nj2txzot3ZEHEfRlYgN/3eA1e+9dGWZXGYJBwuB5qqcRlOcFtcXJ YddU/9SwzvgierBj4oGfVg4jhIHdFnUXlmjagvMxqW0npB71foctv5FOBUDBGrFl EV+88H2JVcc= -----END CERTIFICATE-----Generated at Mon Jun 2 07:12:16 2025 by rpki-client