$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa File: 8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa (raw, json) Hash identifier: FcRac2o84caHLtMjvHJ0PmKpdtxd6KVZGVT4UtbkmWg= Subject key identifier: D2:B0:F8:70:52:2F:2D:12:DE:FA:FB:49:E8:76:2B:2C:76:48:2D:B7 Certificate issuer: /CN=A91B7770/serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9 Certificate serial: 095C Authority key identifier: 7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa Signing time: Mon 02 Jun 2025 06:55:22 +0000 ROA not before: Mon 02 Jun 2025 06:55:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38656 IP address blocks: 2406:7ec0:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.crl rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2396 (0x95c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7770, serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9 Validity Not Before: Jun 2 06:55:22 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=683d4ada-d156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ff:94:eb:25:31:ef:18:c2:f3:54:98:b4:18: 57:28:97:cb:06:be:de:99:1c:ac:b3:8a:8a:9e:6d: 41:00:6e:c6:7b:43:18:b9:01:a4:bf:8e:ea:f1:78: 6d:3c:cd:65:b3:23:c9:bb:cd:88:55:c6:32:07:e6: 4f:48:bb:de:ec:88:60:eb:15:29:4c:3a:fe:f0:6e: 31:6a:85:97:f7:a3:09:45:3d:c8:13:f2:33:29:83: 74:99:34:e9:f6:c9:fa:d0:cb:9a:9a:ea:30:87:c3: 72:58:bb:50:49:e0:91:b7:d8:c9:4d:19:20:77:dc: d0:1f:15:98:63:86:b7:31:f8:70:f4:9f:18:2a:66: 2d:25:cd:df:d8:26:8b:13:b1:3b:bf:89:6a:c6:16: 7c:3b:38:92:f1:18:ef:46:41:71:6f:05:62:57:80: 0b:e2:ee:19:f3:2e:15:15:08:81:34:2f:5f:b7:5f: d7:e1:b3:7c:15:57:da:64:65:e2:39:17:ec:3d:43: ef:7b:b3:40:88:84:7d:bf:5d:f6:12:f4:d7:55:66: fe:6a:ab:34:4e:b3:3e:c1:13:74:75:5e:e0:78:90: 3c:c7:c5:c6:f8:f1:fe:1e:9f:0e:8e:f8:36:18:1d: 43:c3:18:c7:61:0a:68:e2:6c:8d:cb:0c:bf:4b:8c: 15:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B0:F8:70:52:2F:2D:12:DE:FA:FB:49:E8:76:2B:2C:76:48:2D:B7 X509v3 Authority Key Identifier: keyid:7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:7ec0:1007::/48 Signature Algorithm: sha256WithRSAEncryption 4a:c7:3a:92:4f:38:28:c4:5e:28:1a:6f:53:74:12:58:62:94: 80:99:06:06:6a:28:2d:de:9e:80:4e:89:61:85:d1:6e:62:a4: 8d:4d:f9:11:99:e4:04:08:0e:8a:8f:1a:a5:dc:e9:ce:43:45: 2f:25:64:08:87:1b:2f:7e:4f:dc:1e:76:ae:61:42:b1:88:52: a0:fe:1c:9d:4f:23:b6:7b:b5:75:83:0a:bb:eb:5c:c4:6e:6f: b7:8a:7c:97:99:02:85:72:a9:ea:6c:0f:3d:2c:9f:9f:24:a7: 96:04:17:24:98:19:7d:9e:31:3f:02:60:a1:bc:5f:4c:ce:31: 87:d7:2e:4f:dd:34:b2:40:5b:9a:8d:ff:72:ac:7a:1c:c1:63: 07:20:fc:3a:5c:70:ca:4b:7d:1f:f1:d0:4b:a0:f2:b4:40:4d: 51:76:f2:58:2e:2a:47:46:00:9f:b7:1e:39:ad:16:d5:68:97: df:11:38:ae:e2:7d:40:d3:7d:75:8c:20:93:cd:34:76:86:bd: 05:25:1c:de:be:00:99:b1:14:30:29:03:27:32:e7:64:bf:5a: 28:f6:c5:2f:99:4f:98:b7:9f:3b:92:09:f6:58:fa:56:89:86: 46:16:d0:9f:d3:09:26:03:1b:d0:be:4e:6a:c8:a9:44:f5:05: c6:55:0f:3e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3NzAxMTAvBgNVBAUTKDdENTU0Njk5MjZEMUY5MzRGM0FGMjk2NDVFQjZDMTBC QjYwNjlCQzkwHhcNMjUwNjAyMDY1NTIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkNGFkYS1kMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P+U6yUx7xjC81SYtBhXKJfLBr7emRyss4qKnm1BAG7Ge0MYuQGkv47q8Xht PM1lsyPJu82IVcYyB+ZPSLve7Ihg6xUpTDr+8G4xaoWX96MJRT3IE/IzKYN0mTTp 9sn60Muamuowh8NyWLtQSeCRt9jJTRkgd9zQHxWYY4a3Mfhw9J8YKmYtJc3f2CaL E7E7v4lqxhZ8OziS8RjvRkFxbwViV4AL4u4Z8y4VFQiBNC9ft1/X4bN8FVfaZGXi ORfsPUPve7NAiIR9v132EvTXVWb+aqs0TrM+wRN0dV7geJA8x8XG+PH+Hp8Ojvg2 GB1DwxjHYQpo4myNywy/S4wVPwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNKw+HBS Ly0S3vr7Seh2Kyx2SC23MB8GA1UdIwQYMBaAFH1VRpkm0fk0868pZF62wQu2BpvJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3MC9FNjgxMDQxMEMw QUUxMUVBQjk1QUI1NzJDNEY5QUUwMi9mVlZHbVNiUi1UVHpyeWxrWHJiQkM3WUdt OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZWVkdtU2JSLVRUenJ5bGtYcmJCQzdZR204ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc3NzAvRTY4MTA0MTBDMEFFMTFFQUI5NUFCNTcyQzRGOUFFMDIvOERBM0Q0RTAz RjdFMTFGMEI4RUY4RjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBn7AEAcwDQYJKoZIhvcNAQELBQADggEBAErHOpJPOCjE Xigab1N0ElhilICZBgZqKC3enoBOiWGF0W5ipI1N+RGZ5AQIDoqPGqXc6c5DRS8l ZAiHGy9+T9wedq5hQrGIUqD+HJ1PI7Z7tXWDCrvrXMRub7eKfJeZAoVyqepsDz0s n58kp5YEFySYGX2eMT8CYKG8X0zOMYfXLk/dNLJAW5qN/3KsehzBYwcg/DpccMpL fR/x0Eug8rRATVF28lguKkdGAJ+3HjmtFtVol98ROK7ifUDTfXWMIJPNNHaGvQUl HN6+AJmxFDApAycy52S/Wij2xS+ZT5i3nzuSCfZY+laJhkYW0J/TCSYDG9C+TmrI qUT1BcZVDz4= -----END CERTIFICATE-----Generated at Sun Jun 8 18:49:21 2025 by rpki-client