$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/6AD3BE8A38DF11F09B694578C4F9AE02.roa File: 6AD3BE8A38DF11F09B694578C4F9AE02.roa (raw, json) Hash identifier: 9rhYh2K9C4geTpdroXBWzRdnuI2oKhp0zRB66YiZ9aA= Subject key identifier: 97:F8:ED:D1:F9:6F:A6:44:32:C8:21:C1:E8:FF:A4:E0:9F:F1:0B:FF Certificate issuer: /CN=A91F1962/serialNumber=4E027D29DF587C101E55F4CE48E690306319CDAB Certificate serial: 03 Authority key identifier: 4E:02:7D:29:DF:58:7C:10:1E:55:F4:CE:48:E6:90:30:63:19:CD:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/6AD3BE8A38DF11F09B694578C4F9AE02.roa Signing time: Sat 24 May 2025 20:41:07 +0000 ROA not before: Sat 24 May 2025 20:41:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153902 IP address blocks: 2001:df5:8f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.crl rsync://rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1962, serialNumber=4E027D29DF587C101E55F4CE48E690306319CDAB Validity Not Before: May 24 20:41:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68322ee3-3ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:89:11:8e:08:f5:8f:58:e6:8a:6e:69:2c:75: 08:4a:6c:e2:bc:95:95:cc:78:ec:70:36:58:61:13: 9c:c6:4f:ac:20:be:a4:7a:bd:95:8c:67:61:8f:b3: df:9e:d3:4e:0d:1b:82:6a:d7:0d:7b:ae:c4:46:3a: ae:d8:e0:28:73:8a:cd:65:4a:4a:a4:dc:30:27:ee: 09:96:8e:52:07:56:c7:1a:9a:9d:9e:9d:f1:18:a5: b9:69:10:4d:0e:09:14:d3:21:5b:35:40:77:a9:b8: 7e:9e:ad:64:d2:8f:7f:b1:2f:84:ca:04:20:ab:1c: 42:64:76:34:18:df:33:f4:e7:2c:5a:f4:07:74:bd: a6:dd:a0:47:6f:2e:5a:9a:7c:9b:6d:df:8b:30:e0: 62:61:68:de:c4:f2:ca:66:92:a6:42:81:a5:27:4a: e9:ec:7f:36:fe:17:26:55:16:80:8a:d3:46:3e:72: 36:74:08:4e:ea:b6:b6:8e:11:22:b6:03:66:61:3c: af:86:c1:2f:64:61:5e:01:c5:b4:f1:61:44:dd:b5: cf:b2:6e:e5:f4:5c:06:c2:5a:e4:96:49:74:46:53: 86:4f:36:29:0e:e9:02:f9:46:3c:fb:8a:0a:99:7b: d0:18:fa:d4:4d:06:00:85:c9:9d:b9:b7:e4:68:79: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F8:ED:D1:F9:6F:A6:44:32:C8:21:C1:E8:FF:A4:E0:9F:F1:0B:FF X509v3 Authority Key Identifier: keyid:4E:02:7D:29:DF:58:7C:10:1E:55:F4:CE:48:E6:90:30:63:19:CD:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgJ9Kd9YfBAeVfTOSOaQMGMZzas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1962/B75380C4371311F0AB0D9E4EC4F9AE02/6AD3BE8A38DF11F09B694578C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:8f40::/48 Signature Algorithm: sha256WithRSAEncryption 2e:37:e6:12:92:1d:c8:4b:ac:af:f4:c3:62:5b:b6:d0:fe:91: d2:ea:27:1b:89:2f:58:4a:ab:2e:a9:1b:05:c3:65:26:f9:79: 86:34:91:e6:01:da:d9:d5:4f:fa:13:16:3a:0d:74:01:95:fa: 2d:78:12:af:52:c6:51:d9:18:33:9a:5d:eb:da:bc:d4:c9:54: a2:a4:11:b7:52:11:c4:a2:2b:98:d8:d3:a8:36:4d:3d:b9:28: 5e:d8:ab:0a:9d:1c:40:7a:99:71:8f:1a:c4:62:8b:af:8a:14: ed:4b:c9:fb:be:c0:52:4d:5b:e9:ba:5c:43:dd:0d:09:08:55: 50:a8:5e:ce:cf:2e:c0:e0:83:05:59:e8:c3:ea:60:fe:22:41: 62:b3:61:ff:98:57:a9:5f:4d:3c:4c:8a:43:28:a5:da:80:7a: d0:50:0d:ca:64:e1:b8:4a:74:be:8f:e5:24:5f:22:33:96:41: cc:7a:72:13:47:cd:36:00:0e:2d:a3:4c:89:20:a1:6c:79:60: b0:34:b1:e8:70:a5:b2:f9:3e:83:b7:50:22:97:88:e3:5b:f2: 18:d5:d9:51:95:18:ce:73:9a:b0:7a:11:a2:e0:6c:85:dd:3a: 68:82:65:d3:d6:ee:6d:7e:a2:f9:1e:dc:84:88:0f:66:72:06: 4c:ec:58:cd -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTk2MjExMC8GA1UEBRMoNEUwMjdEMjlERjU4N0MxMDFFNTVGNENFNDhFNjkwMzA2 MzE5Q0RBQjAeFw0yNTA1MjQyMDQxMDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzIyZWUzLTNhZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4iRGOCPWPWOaKbmksdQhKbOK8lZXMeOxwNlhhE5zGT6wgvqR6vZWMZ2GPs9+e 004NG4Jq1w17rsRGOq7Y4Chzis1lSkqk3DAn7gmWjlIHVscamp2enfEYpblpEE0O CRTTIVs1QHepuH6erWTSj3+xL4TKBCCrHEJkdjQY3zP05yxa9Ad0vabdoEdvLlqa fJtt34sw4GJhaN7E8spmkqZCgaUnSunsfzb+FyZVFoCK00Y+cjZ0CE7qtraOESK2 A2ZhPK+GwS9kYV4BxbTxYUTdtc+ybuX0XAbCWuSWSXRGU4ZPNikO6QL5Rjz7igqZ e9AY+tRNBgCFyZ25t+RoeTHtAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUl/jt0flv pkQyyCHB6P+k4J/xC/8wHwYDVR0jBBgwFoAUTgJ9Kd9YfBAeVfTOSOaQMGMZzasw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxOTYyL0I3NTM4MEM0Mzcx MzExRjBBQjBEOUU0RUM0RjlBRTAyL1RnSjlLZDlZZkJBZVZmVE9TT2FRTUdNWnph cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVGdKOUtkOVlmQkFlVmZUT1NPYVFNR01aemFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTk2Mi9CNzUzODBDNDM3MTMxMUYwQUIwRDlFNEVDNEY5QUUwMi82QUQzQkU4QTM4 REYxMUYwOUI2OTQ1NzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWPQDANBgkqhkiG9w0BAQsFAAOCAQEALjfmEpIdyEus r/TDYlu20P6R0uonG4kvWEqrLqkbBcNlJvl5hjSR5gHa2dVP+hMWOg10AZX6LXgS r1LGUdkYM5pd69q81MlUoqQRt1IRxKIrmNjTqDZNPbkoXtirCp0cQHqZcY8axGKL r4oU7UvJ+77AUk1b6bpcQ90NCQhVUKhezs8uwOCDBVnow+pg/iJBYrNh/5hXqV9N PEyKQyil2oB60FANymThuEp0vo/lJF8iM5ZBzHpyE0fNNgAOLaNMiSChbHlgsDSx 6HClsvk+g7dQIpeI41vyGNXZUZUYznOasHoRouBshd06aIJl09bubX6i+R7chIgP ZnIGTOxYzQ== -----END CERTIFICATE-----Generated at Mon Jun 2 06:39:45 2025 by rpki-client