$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa File: E68B45D6596711F094054D6BC4F9AE02.roa (raw, json) Hash identifier: KsrzFIQg6uK84oBVBjzffm7U9gXX448ArNBcSCFz+n0= Subject key identifier: F3:C3:F2:6D:77:2E:90:8B:E3:EB:F9:E8:4D:0F:D3:2A:5E:50:09:98 Certificate issuer: /CN=A91E33AA/serialNumber=F7D6DE6E7B2AC7BD450C7715863E979955383E4E Certificate serial: 03 Authority key identifier: F7:D6:DE:6E:7B:2A:C7:BD:45:0C:77:15:86:3E:97:99:55:38:3E:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa Signing time: Sat 05 Jul 2025 06:18:43 +0000 ROA not before: Sat 05 Jul 2025 06:18:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134732 IP address blocks: 2001:df5:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.crl rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=F7D6DE6E7B2AC7BD450C7715863E979955383E4E Validity Not Before: Jul 5 06:18:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6868c3c3-7bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c4:1e:3a:87:02:d2:64:1e:2d:06:96:c0:ab: 92:49:89:a5:88:02:20:cd:d0:93:f9:86:1e:87:f2: aa:7a:31:54:61:d4:83:3a:f3:90:ec:52:16:00:99: 44:75:b3:51:47:7f:1f:ba:64:62:68:5b:58:64:cf: bf:1f:97:c6:ef:4d:d8:fd:a3:18:61:5d:87:c9:f5: 74:9e:6c:e3:ce:f4:af:7f:9e:28:ea:d7:d3:ac:23: 7b:83:50:29:a2:07:54:b4:e1:41:98:ca:c3:f1:9f: 07:f7:b0:cd:b5:10:1a:c9:27:bc:e0:f7:39:f1:c2: 7c:b4:ea:ef:78:19:12:7a:f9:72:80:a8:0c:2a:0b: a5:62:0a:a3:30:5a:05:cf:a2:c6:c4:79:39:fd:6f: a7:30:eb:d7:f2:95:73:e5:14:d7:f1:6b:72:f6:0b: 57:f0:55:01:03:49:c0:d1:9a:66:13:06:7b:a4:ee: c4:9b:28:20:06:09:54:3e:91:14:45:b2:f5:f4:8d: 56:94:92:ba:55:a1:21:53:d2:aa:74:07:a3:ee:b5: ad:ef:fe:0a:2f:0f:78:04:e3:ea:f0:ed:8b:ca:6c: a7:f6:de:1f:16:53:dd:52:aa:fb:f4:dc:2b:02:34: 19:1b:04:a2:06:a8:4f:e7:b7:7a:17:e1:e8:94:e3: 32:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C3:F2:6D:77:2E:90:8B:E3:EB:F9:E8:4D:0F:D3:2A:5E:50:09:98 X509v3 Authority Key Identifier: keyid:F7:D6:DE:6E:7B:2A:C7:BD:45:0C:77:15:86:3E:97:99:55:38:3E:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 64:b8:44:7a:6f:bc:1a:d0:ce:f7:05:73:3c:fd:a5:a3:fc:ac: 34:65:e9:60:4f:9f:3a:b0:27:87:0c:13:89:b9:fb:4e:fe:df: ec:03:aa:80:0e:52:08:07:32:0c:f5:0a:8d:f5:84:fe:f1:cf: 64:75:51:5c:2f:16:44:06:ad:a8:99:9e:78:ff:1d:07:2c:70: f9:82:be:71:5a:7c:5b:ad:22:4a:8a:87:57:b8:fe:28:88:95: a4:45:4d:d9:f3:a5:55:f5:ef:09:65:f6:80:3e:cf:01:64:d3: e6:60:99:6f:93:93:6b:08:7b:07:18:b3:93:c6:1d:cc:40:f6: 15:ea:72:33:48:af:d3:8e:c4:03:37:09:cd:f2:5f:85:0e:7e: e4:76:98:ee:33:b6:26:6d:00:3a:84:f4:7d:57:fe:27:d7:8b: 99:df:13:d7:d4:8a:6f:5f:1e:25:b1:51:bb:49:29:80:bd:cf: a3:0f:6e:ff:3b:ca:d5:82:c4:10:db:85:61:8f:a0:26:f0:d1: 7a:06:ba:5c:95:c4:ee:8e:18:c2:a0:68:84:6d:83:5f:49:03: 15:d5:70:2f:de:54:da:05:1c:ec:72:e8:d2:84:81:91:4c:cc: a9:73:2a:dd:34:90:3b:40:8e:5e:a7:73:47:bc:74:14:11:17: 54:8c:17:b6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoRjdENkRFNkU3QjJBQzdCRDQ1MEM3NzE1ODYzRTk3OTk1 NTM4M0U0RTAeFw0yNTA3MDUwNjE4NDNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjhjM2MzLTdiYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYxB46hwLSZB4tBpbAq5JJiaWIAiDN0JP5hh6H8qp6MVRh1IM685DsUhYAmUR1 s1FHfx+6ZGJoW1hkz78fl8bvTdj9oxhhXYfJ9XSebOPO9K9/nijq19OsI3uDUCmi B1S04UGYysPxnwf3sM21EBrJJ7zg9znxwny06u94GRJ6+XKAqAwqC6ViCqMwWgXP osbEeTn9b6cw69fylXPlFNfxa3L2C1fwVQEDScDRmmYTBnuk7sSbKCAGCVQ+kRRF svX0jVaUkrpVoSFT0qp0B6Puta3v/govD3gE4+rw7YvKbKf23h8WU91Sqvv03CsC NBkbBKIGqE/nt3oX4eiU4zK7AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU88PybXcu kIvj6/noTQ/TKl5QCZgwHwYDVR0jBBgwFoAU99bebnsqx71FDHcVhj6XmVU4Pk4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzUyRDlBRDQ2NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyLzk5YmVibnNxeDcxRkRIY1ZoajZYbVZVNFBr NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOTliZWJuc3F4NzFGREhjVmhqNlhtVlU0UGs0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNBQS81MkQ5QUQ0NjU5NjcxMUYwOEM0MDc5MkNDNEY5QUUwMi9FNjhCNDVENjU5 NjcxMUYwOTQwNTRENkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXTwDANBgkqhkiG9w0BAQsFAAOCAQEAZLhEem+8GtDO 9wVzPP2lo/ysNGXpYE+fOrAnhwwTibn7Tv7f7AOqgA5SCAcyDPUKjfWE/vHPZHVR XC8WRAatqJmeeP8dByxw+YK+cVp8W60iSoqHV7j+KIiVpEVN2fOlVfXvCWX2gD7P AWTT5mCZb5OTawh7Bxizk8YdzED2FepyM0iv047EAzcJzfJfhQ5+5HaY7jO2Jm0A OoT0fVf+J9eLmd8T19SKb18eJbFRu0kpgL3Pow9u/zvK1YLEENuFYY+gJvDRega6 XJXE7o4YwqBohG2DX0kDFdVwL95U2gUc7HLo0oSBkUzMqXMq3TSQO0COXqdzR7x0 FBEXVIwXtg== -----END CERTIFICATE-----Generated at Mon Jul 7 11:30:28 2025 by rpki-client