$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa File: 3D04EA589D9211EF8083B245C4F9AE02.roa (raw, json) Hash identifier: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A= Subject key identifier: 2E:E8:F8:B4:B5:AD:E1:79:84:62:15:5E:5F:4B:B3:DC:B4:48:DC:A5 Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 70 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa Signing time: Sat 31 May 2025 06:58:53 +0000 ROA not before: Sat 31 May 2025 06:58:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153167 IP address blocks: 2401:b3a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: May 31 06:58:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683aa8ad-721b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cd:1e:5b:77:df:14:bc:fe:e9:c7:f3:f6:dc: fb:c0:59:87:c4:c8:2a:11:21:19:51:73:93:ec:62: 1e:7b:6d:17:72:be:55:4e:16:00:c2:83:46:d1:a1: 47:64:40:46:3e:dd:8d:12:a4:27:02:42:34:1f:08: e9:21:51:20:73:e0:35:89:10:f1:33:60:61:da:12: 91:e1:5c:5c:98:36:a1:6d:e4:41:db:1e:7e:1c:9d: 51:95:81:61:ac:7e:84:ca:ca:9c:0f:bc:5b:a5:05: 8c:77:ae:21:1d:f4:1f:96:50:c1:4a:17:b0:54:39: ea:6c:21:5b:1d:2d:9d:b0:07:9a:bf:e4:37:6d:f3: b2:76:b3:47:f7:7b:9d:6f:ac:b6:93:8d:30:f4:4d: 9a:0e:77:b1:c7:9b:8f:44:1e:5b:57:4d:dc:1e:64: f1:b9:c6:a6:c6:9e:b1:13:52:50:83:91:d4:41:b6: eb:00:a8:82:30:31:63:e5:6f:98:cf:99:11:cc:88: 38:8b:71:ef:d0:e2:04:85:d2:b3:c3:47:74:81:a6: 3d:68:7f:77:6f:e9:5c:70:65:f1:a1:fa:b3:ef:a1: 5d:bf:0c:e6:29:91:6a:f6:82:c3:90:62:59:b1:08: 50:63:d7:04:6c:d9:81:0a:e9:b9:23:09:46:a2:97: fe:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E8:F8:B4:B5:AD:E1:79:84:62:15:5E:5F:4B:B3:DC:B4:48:DC:A5 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/3D04EA589D9211EF8083B245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b3a0::/32 Signature Algorithm: sha256WithRSAEncryption 72:43:75:fd:d9:47:a5:15:ca:4f:b9:b7:8a:91:3f:42:de:4a: 67:30:d6:c5:85:4e:db:3b:27:af:f4:c3:00:35:43:e7:04:d6: 1a:5a:61:31:a3:ef:92:47:83:3e:ae:70:cf:35:e0:94:e3:03: 7f:c0:26:77:f4:54:ba:58:fb:8a:b6:31:bc:46:49:86:17:fd: fb:0c:24:c0:47:0a:7f:f6:f9:43:da:6d:b9:63:de:9e:29:d8: 67:8d:4f:8e:5f:83:e5:ea:78:90:be:af:55:07:71:a0:00:5c: 14:ba:8d:77:54:5e:ab:91:5e:a8:12:02:5c:54:4c:a2:f2:d6: f1:2d:3d:dc:eb:21:73:68:b5:92:d7:62:62:68:b9:a5:df:a0: 14:40:cd:12:07:6f:17:a9:ad:3d:e9:6c:34:10:3f:c6:58:be: 42:31:e4:e9:47:c7:1b:d6:fb:da:fd:d1:a9:36:b2:5b:5e:9d: 33:16:1f:58:55:a9:4c:d1:b5:01:b6:45:de:0d:ba:1c:31:91: d8:89:91:3a:ae:a4:ac:80:35:de:54:a6:bd:d0:44:7d:41:0b: f3:ff:fa:11:e3:a9:5b:62:8f:72:bb:f8:a9:3a:b9:75:3d:db: f2:24:b1:18:32:3a:62:97:0e:89:e9:20:f8:90:8d:59:5b:a9: 9c:11:a5:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoNUYwMDRENTdFQjM2RjQyNjcyRTY2RjMwMDVGNjQ2OUI2 Mjg5MTcxQjAeFw0yNTA1MzEwNjU4NTNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhOGFkLTcyMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnzR5bd98UvP7px/P23PvAWYfEyCoRIRlRc5PsYh57bRdyvlVOFgDCg0bRoUdk QEY+3Y0SpCcCQjQfCOkhUSBz4DWJEPEzYGHaEpHhXFyYNqFt5EHbHn4cnVGVgWGs foTKypwPvFulBYx3riEd9B+WUMFKF7BUOepsIVsdLZ2wB5q/5Ddt87J2s0f3e51v rLaTjTD0TZoOd7HHm49EHltXTdweZPG5xqbGnrETUlCDkdRBtusAqIIwMWPlb5jP mRHMiDiLce/Q4gSF0rPDR3SBpj1of3dv6VxwZfGh+rPvoV2/DOYpkWr2gsOQYlmx CFBj1wRs2YEK6bkjCUail/5lAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQULuj4tLWt 4XmEYhVeX0uz3LRI3KUwHwYDVR0jBBgwFoAUXwBNV+s29CZy5m8wBfZGm2KJFxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1Lzk1NkY2NjJDOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdCTlYtczI5Q1p5NW04d0JmWkdtMktKRnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi8zRDA0RUE1ODlE OTIxMUVGODA4M0IyNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQBs6AwDQYJKoZIhvcNAQELBQADggEBAHJDdf3ZR6UVyk+5 t4qRP0LeSmcw1sWFTts7J6/0wwA1Q+cE1hpaYTGj75JHgz6ucM814JTjA3/AJnf0 VLpY+4q2MbxGSYYX/fsMJMBHCn/2+UPabblj3p4p2GeNT45fg+XqeJC+r1UHcaAA XBS6jXdUXquRXqgSAlxUTKLy1vEtPdzrIXNotZLXYmJouaXfoBRAzRIHbxeprT3p bDQQP8ZYvkIx5OlHxxvW+9r90ak2sltenTMWH1hVqUzRtQG2Rd4NuhwxkdiJkTqu pKyANd5Upr3QRH1BC/P/+hHjqVtij3K7+Kk6uXU92/IksRgyOmKXDonpIPiQjVlb qZwRpVs= -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:04 2025 by rpki-client