$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa File: BB8F3118497B11F096DCA14EC4F9AE02.roa (raw, json) Hash identifier: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ= Subject key identifier: B8:9A:3D:37:42:9C:27:64:36:8C:C9:34:8C:5F:65:F6:6D:80:0B:9B Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 07 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa Signing time: Sun 15 Jun 2025 00:00:22 +0000 ROA not before: Sun 15 Jun 2025 00:00:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45773 IP address blocks: 2001:df5:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Jun 15 00:00:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=684e0d16-32a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d1:e8:ac:fb:55:8c:50:d1:42:04:54:9f:25: 61:5e:31:11:d2:5d:8f:54:56:50:be:e9:0b:6a:78: 72:d3:07:65:0d:a4:05:d3:ea:c6:38:a6:25:ff:60: 70:b0:fc:24:b3:f1:12:cf:7b:4b:9c:cd:d4:0d:e5: ce:4f:22:79:0a:a4:db:e2:ea:2b:6b:bc:46:c8:28: 0c:2b:0c:c9:bf:48:f5:e5:49:09:c1:96:96:b4:3e: d4:8d:25:ca:0b:7a:4c:ee:9f:c8:1b:4f:78:5e:4f: 08:98:92:5e:29:8a:69:a3:0c:fd:b0:47:ca:2e:fd: cf:d0:2d:1e:34:97:6e:4a:e9:97:a1:c4:c1:f0:45: a6:9a:f2:36:90:0e:a9:7f:d5:9b:5d:9d:9b:7b:8a: 80:c3:be:b1:35:d6:8f:90:06:c9:b2:11:4f:33:51: 8d:46:a5:e6:21:cf:b6:f8:27:f0:4e:df:1d:1f:bd: 3f:d5:ce:95:81:69:c9:e8:79:1e:9f:43:f7:5c:eb: 6a:11:8f:a5:a0:3d:e0:e2:85:80:8a:a3:fb:a6:48: 8a:87:ed:79:09:de:91:91:ed:fe:be:81:c1:03:cc: 9f:e4:0e:bd:1f:5e:42:46:64:67:36:bf:be:a4:f5: e0:3a:ef:82:43:d2:fa:d5:af:68:91:39:8f:fa:83: a6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9A:3D:37:42:9C:27:64:36:8C:C9:34:8C:5F:65:F6:6D:80:0B:9B X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:ac40::/48 Signature Algorithm: sha256WithRSAEncryption bd:15:20:f5:48:b7:3a:94:cf:54:d9:80:f8:4b:e8:62:e0:3e: 0f:39:ae:6e:04:56:a2:54:7c:48:c3:3a:05:8b:82:47:35:9b: c2:da:5a:71:d7:15:98:cb:df:6d:a1:6e:c7:b3:d0:de:12:c4: 1a:23:60:02:7b:a7:6b:55:61:ca:f3:ea:08:8f:d2:01:66:3e: 12:0a:f5:ab:0b:67:eb:12:4d:35:b9:f5:ab:62:94:02:97:0c: 5e:22:9f:60:4f:e9:4c:6a:36:8f:5d:5e:54:ad:f1:5a:7c:0a: 47:15:b2:ac:a8:0e:a5:f5:51:03:0e:b2:a5:f1:33:52:c3:e5: de:99:c6:ce:86:3f:5a:41:c5:49:84:9f:81:3d:a4:96:ed:ba: e9:7c:7b:83:a1:14:2c:8e:96:a1:0b:dc:be:19:0d:46:1e:c3: ae:37:55:c1:c5:0f:6e:33:f8:5a:4f:c1:c7:81:41:df:6f:52: b5:ff:82:dc:68:fc:0e:65:d0:31:95:6a:28:23:71:6c:56:41: d5:0a:32:a8:e0:b6:43:96:1a:b2:f9:61:02:de:83:3b:41:7a: 74:07:90:0d:c2:e3:84:e0:61:c2:a8:7c:6a:d0:45:38:7a:bf: 65:d4:21:26:81:73:b2:d3:4a:27:15:b1:64:3a:2c:44:97:df: 8e:73:de:24 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTA2MTUwMDAwMjJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGUwZDE2LTMyYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS0eis+1WMUNFCBFSfJWFeMRHSXY9UVlC+6QtqeHLTB2UNpAXT6sY4piX/YHCw /CSz8RLPe0uczdQN5c5PInkKpNvi6itrvEbIKAwrDMm/SPXlSQnBlpa0PtSNJcoL ekzun8gbT3heTwiYkl4pimmjDP2wR8ou/c/QLR40l25K6ZehxMHwRaaa8jaQDql/ 1ZtdnZt7ioDDvrE11o+QBsmyEU8zUY1GpeYhz7b4J/BO3x0fvT/VzpWBacnoeR6f Q/dc62oRj6WgPeDihYCKo/umSIqH7XkJ3pGR7f6+gcEDzJ/kDr0fXkJGZGc2v76k 9eA674JD0vrVr2iROY/6g6Z7AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUuJo9N0Kc J2Q2jMk0jF9l9m2AC5swHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9GNURCN0ExNjQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9CQjhGMzExODQ5 N0IxMUYwOTZEQ0ExNEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWsQDANBgkqhkiG9w0BAQsFAAOCAQEAvRUg9Ui3OpTP VNmA+EvoYuA+DzmubgRWolR8SMM6BYuCRzWbwtpacdcVmMvfbaFux7PQ3hLEGiNg Anuna1VhyvPqCI/SAWY+Egr1qwtn6xJNNbn1q2KUApcMXiKfYE/pTGo2j11eVK3x WnwKRxWyrKgOpfVRAw6ypfEzUsPl3pnGzoY/WkHFSYSfgT2klu266Xx7g6EULI6W oQvcvhkNRh7DrjdVwcUPbjP4Wk/Bx4FB329Stf+C3Gj8DmXQMZVqKCNxbFZB1Qoy qOC2Q5YasvlhAt6DO0F6dAeQDcLjhOBhwqh8atBFOHq/ZdQhJoFzstNKJxWxZDos RJffjnPeJA== -----END CERTIFICATE-----Generated at Tue Jul 1 22:11:11 2025 by rpki-client