$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa File: E188F6AEAE1F11EE9E818D16C4F9AE02.roa (raw, json) Hash identifier: pJb5BTsbuqpgQP5Gvhc/gW9a2gX+v1FlOBgvzyj/io0= Subject key identifier: D1:F4:21:AB:BF:60:B9:C1:7C:75:22:EF:C4:2F:64:74:4E:DE:60:22 Certificate issuer: /CN=A91CED30/serialNumber=0AA716EA81CCC5DB5E4BA72114C3429A19D6D95F Certificate serial: CF Authority key identifier: 0A:A7:16:EA:81:CC:C5:DB:5E:4B:A7:21:14:C3:42:9A:19:D6:D9:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa Signing time: Sun 09 Feb 2025 04:26:44 +0000 ROA not before: Sun 09 Feb 2025 04:26:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152306 IP address blocks: 2001:df3:55c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.crl rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=0AA716EA81CCC5DB5E4BA72114C3429A19D6D95F Validity Not Before: Feb 9 04:26:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a82e84-4f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7d:8f:90:13:3c:1c:e2:f4:f0:ac:07:18:1c: 89:66:37:41:00:52:1f:ef:40:e0:a3:14:8d:c1:6d: 81:c1:45:33:ae:3c:dd:15:16:ab:d8:e8:3c:32:95: a1:6f:77:79:60:d6:1f:c4:e2:ff:a0:d7:08:00:c4: 65:17:31:c8:a7:34:34:f8:e0:82:90:bb:51:b7:97: de:b8:67:20:16:a6:1e:9d:dd:ee:3c:1f:8a:d8:30: dd:9e:7f:cd:f2:4c:5c:be:19:ea:d8:06:2c:ae:11: d6:3b:72:1e:47:4b:01:2a:b3:cc:e3:35:29:86:f8: 0c:2d:3c:7d:25:d3:82:d0:b6:57:31:10:d3:3f:ae: e3:09:15:61:2d:db:03:b7:9d:b3:75:0b:ec:a7:35: da:59:7c:98:4e:10:89:76:16:82:fb:fa:f9:55:ce: 4e:61:03:88:c6:ac:07:f4:58:31:f8:a8:bf:7f:13: 69:ad:ec:d1:3b:53:d4:19:23:05:01:a7:b4:ef:d6: 92:93:1d:58:22:3f:a8:b5:d0:c8:cc:9e:6a:2c:cf: 52:da:33:f9:78:ea:b0:6d:f3:fb:06:ae:0b:a5:25: 9d:a6:23:88:f6:cf:79:62:38:7b:00:88:b7:db:e0: 7a:bf:30:99:5a:43:ef:1b:93:cb:54:7b:7d:66:67: eb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F4:21:AB:BF:60:B9:C1:7C:75:22:EF:C4:2F:64:74:4E:DE:60:22 X509v3 Authority Key Identifier: keyid:0A:A7:16:EA:81:CC:C5:DB:5E:4B:A7:21:14:C3:42:9A:19:D6:D9:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/CqcW6oHMxdteS6chFMNCmhnW2V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqcW6oHMxdteS6chFMNCmhnW2V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/C77455C0AE1E11EEA7EA0A77C4F9AE02/E188F6AEAE1F11EE9E818D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:55c0::/48 Signature Algorithm: sha256WithRSAEncryption 54:4b:0f:59:12:40:15:85:96:2f:22:3f:35:95:f4:e6:85:c0: 6e:64:1e:6f:a3:0d:81:f7:ea:a7:06:76:a6:4c:49:a3:09:bd: 4d:ae:46:a4:ed:cf:cf:48:87:a6:5a:5a:06:cf:49:1e:0d:6f: 83:18:50:dd:a3:da:b8:56:36:31:8b:46:57:94:c5:1f:8b:15: 27:8d:66:aa:0c:eb:77:fe:b6:ca:92:6c:a7:b2:63:7d:42:75: b0:44:c1:9a:82:a0:a4:19:f4:e0:26:41:64:0d:c8:6e:cd:c0: f6:56:79:d1:ef:9a:8c:95:e3:48:6f:d6:09:0c:2c:9c:16:25: 9f:f8:8f:33:47:a6:53:f5:c1:7c:b1:25:b5:4b:87:10:09:54: 24:b9:b2:99:49:23:b9:96:e4:94:07:8c:60:f6:8f:f8:c3:d2: 2c:99:9f:41:f2:df:aa:54:be:8b:9c:60:df:08:94:04:cc:31: 4d:29:76:5c:27:5e:ee:04:b5:16:0b:1d:a2:f5:5f:e5:a3:55: 6f:a8:04:13:20:b0:05:31:8d:1b:bc:e0:ca:9e:1d:82:0f:55: 9a:ff:f1:d2:ae:98:f6:73:4a:83:2d:b4:0a:89:1f:7c:85:ab: d3:5f:29:7f:31:23:8a:29:ae:df:27:5d:1b:6a:5e:3e:fe:26: 6f:9b:f8:3e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDBBQTcxNkVBODFDQ0M1REI1RTRCQTcyMTE0QzM0MjlB MTlENkQ5NUYwHhcNMjUwMjA5MDQyNjQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E4MmU4NC00ZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmX2PkBM8HOL08KwHGByJZjdBAFIf70DgoxSNwW2BwUUzrjzdFRar2Og8MpWh b3d5YNYfxOL/oNcIAMRlFzHIpzQ0+OCCkLtRt5feuGcgFqYend3uPB+K2DDdnn/N 8kxcvhnq2AYsrhHWO3IeR0sBKrPM4zUphvgMLTx9JdOC0LZXMRDTP67jCRVhLdsD t52zdQvspzXaWXyYThCJdhaC+/r5Vc5OYQOIxqwH9Fgx+Ki/fxNprezRO1PUGSMF Aae079aSkx1YIj+otdDIzJ5qLM9S2jP5eOqwbfP7Bq4LpSWdpiOI9s95Yjh7AIi3 2+B6vzCZWkPvG5PLVHt9ZmfrjwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNH0Iau/ YLnBfHUi78QvZHRO3mAiMB8GA1UdIwQYMBaAFAqnFuqBzMXbXkunIRTDQpoZ1tlf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9DNzc0NTVDMEFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9DcWNXNm9ITXhkdGVTNmNoRk1OQ21oblcy VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxY1c2b0hNeGR0ZVM2Y2hGTU5DbWhuVzJWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VEMzAvQzc3NDU1QzBBRTFFMTFFRUE3RUEwQTc3QzRGOUFFMDIvRTE4OEY2QUVB RTFGMTFFRTlFODE4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zVcAwDQYJKoZIhvcNAQELBQADggEBAFRLD1kSQBWF li8iPzWV9OaFwG5kHm+jDYH36qcGdqZMSaMJvU2uRqTtz89Ih6ZaWgbPSR4Nb4MY UN2j2rhWNjGLRleUxR+LFSeNZqoM63f+tsqSbKeyY31CdbBEwZqCoKQZ9OAmQWQN yG7NwPZWedHvmoyV40hv1gkMLJwWJZ/4jzNHplP1wXyxJbVLhxAJVCS5splJI7mW 5JQHjGD2j/jD0iyZn0Hy36pUvoucYN8IlATMMU0pdlwnXu4EtRYLHaL1X+WjVW+o BBMgsAUxjRu84MqeHYIPVZr/8dKumPZzSoMttAqJH3yFq9NfKX8xI4oprt8nXRtq Xj7+Jm+b+D4= -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:34 2025 by rpki-client