$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/36F318D0890A11EE9F4C014DC4F9AE02.roa File: 36F318D0890A11EE9F4C014DC4F9AE02.roa (raw, json) Hash identifier: vTpHqcdtapOqI/Gsr+oA78H11F3thCsrtmSVIOkFq0M= Subject key identifier: 42:66:B3:14:19:B7:60:E8:92:C7:79:FF:8A:06:72:30:C1:02:1D:3F Certificate issuer: /CN=A91F3260/serialNumber=5AC97C91299A2FA9C8CED8AAC670FFEFC7B69A1B Certificate serial: 06A8 Authority key identifier: 5A:C9:7C:91:29:9A:2F:A9:C8:CE:D8:AA:C6:70:FF:EF:C7:B6:9A:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/36F318D0890A11EE9F4C014DC4F9AE02.roa Signing time: Mon 02 Jun 2025 22:31:05 +0000 ROA not before: Mon 02 Jun 2025 22:31:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140543 IP address blocks: 2405:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.crl rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3260, serialNumber=5AC97C91299A2FA9C8CED8AAC670FFEFC7B69A1B Validity Not Before: Jun 2 22:31:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e2629-14bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1e:29:bf:9b:37:b9:d4:bc:b3:80:87:02:40: ff:bd:d0:2b:c2:04:c7:02:c9:1d:f8:65:43:52:24: 85:12:83:5a:88:9b:1e:93:e8:7f:ec:55:b1:80:ec: 95:19:a0:3d:58:b0:10:fe:1e:5a:bc:4e:42:4d:0c: 26:6f:18:b3:6f:ac:98:af:7a:10:d5:18:b6:6b:6a: 7d:36:8d:45:26:f8:e4:3a:ae:16:f4:e2:f7:fb:a3: 5e:44:28:c2:75:57:33:d9:f2:a8:ed:b4:6b:38:ef: 62:92:0d:78:b9:d5:05:11:4d:9f:81:6b:c2:b9:3e: 68:d7:fb:d3:84:dc:e7:60:5d:a2:8f:23:82:a5:5f: 0f:45:a5:f7:7f:8d:0a:99:95:64:50:73:6e:ef:8e: 02:6f:26:c6:00:6b:47:4c:8e:3a:7c:76:db:2a:cd: 22:ff:44:55:9a:ec:59:fc:f7:0c:ef:b4:1e:c1:fc: 21:ee:73:39:83:4d:70:ca:d3:5b:02:c7:7d:7b:c7: 7d:1b:06:d3:8c:83:6f:3f:a3:26:44:54:86:1a:98: b0:60:4e:88:31:91:11:41:86:90:d3:32:a5:a7:c7: 29:62:8b:f6:b0:49:36:9f:ee:fe:78:f6:51:d3:ed: e3:b2:00:a6:6a:f4:94:00:17:a1:7d:1e:7e:e8:69: 95:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:66:B3:14:19:B7:60:E8:92:C7:79:FF:8A:06:72:30:C1:02:1D:3F X509v3 Authority Key Identifier: keyid:5A:C9:7C:91:29:9A:2F:A9:C8:CE:D8:AA:C6:70:FF:EF:C7:B6:9A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/Wsl8kSmaL6nIztiqxnD_78e2mhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsl8kSmaL6nIztiqxnD_78e2mhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3260/D78D2AA271A611EB87450466C4F9AE02/36F318D0890A11EE9F4C014DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption 41:b1:d5:b0:e8:40:50:3c:7a:54:86:bd:07:24:a3:5b:42:3e: b1:63:0a:a2:96:57:cc:01:f1:d6:25:28:0c:92:a2:90:76:9a: 77:c2:b6:42:82:f9:78:90:4a:30:02:59:fa:ac:1a:93:0d:e6: 10:39:56:82:98:e7:22:3b:34:9e:56:dd:9a:70:b1:8c:14:2c: 46:62:70:50:41:5d:3b:25:83:75:c6:27:bf:87:09:29:f4:3c: 2c:c2:92:f5:8b:2c:2e:32:55:e7:a4:fd:46:1e:30:58:c4:ef: 89:79:3e:fc:98:3e:0e:06:a5:63:79:06:f3:54:59:a1:bd:04: 31:f1:74:df:48:57:89:09:ab:81:44:6a:49:6d:4d:8d:9b:51: 3e:c7:fc:99:25:30:dd:b3:c2:a9:d6:48:0b:73:73:b3:de:37: cb:5c:ec:0b:7b:9d:8e:63:78:79:6c:4a:37:e9:0d:d7:a2:2d: c5:40:5f:29:71:26:16:d8:8c:7b:bd:4a:26:8d:bb:dd:f9:a4: eb:10:d8:44:6b:a7:53:8a:c2:e1:e2:3c:cb:35:b2:1a:9d:25: 42:47:1f:62:25:e6:ec:23:d1:52:03:de:2a:1f:9b:65:c2:48: 0a:48:a3:b7:44:38:2d:08:48:64:83:6a:dd:6b:1e:da:fc:76: a1:9b:9c:44 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMyNjAxMTAvBgNVBAUTKDVBQzk3QzkxMjk5QTJGQTlDOENFRDhBQUM2NzBGRkVG QzdCNjlBMUIwHhcNMjUwNjAyMjIzMTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMjYyOS0xNGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux4pv5s3udS8s4CHAkD/vdArwgTHAskd+GVDUiSFEoNaiJsek+h/7FWxgOyV GaA9WLAQ/h5avE5CTQwmbxizb6yYr3oQ1Ri2a2p9No1FJvjkOq4W9OL3+6NeRCjC dVcz2fKo7bRrOO9ikg14udUFEU2fgWvCuT5o1/vThNznYF2ijyOCpV8PRaX3f40K mZVkUHNu744CbybGAGtHTI46fHbbKs0i/0RVmuxZ/PcM77Qewfwh7nM5g01wytNb Asd9e8d9GwbTjINvP6MmRFSGGpiwYE6IMZERQYaQ0zKlp8cpYov2sEk2n+7+ePZR 0+3jsgCmavSUABehfR5+6GmV1QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEJmsxQZ t2Doksd5/4oGcjDBAh0/MB8GA1UdIwQYMBaAFFrJfJEpmi+pyM7YqsZw/+/Htpob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzI2MC9ENzhEMkFBMjcx QTYxMUVCODc0NTA0NjZDNEY5QUUwMi9Xc2w4a1NtYUw2bkl6dGlxeG5EXzc4ZTJt aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzbDhrU21hTDZuSXp0aXF4bkRfNzhlMm1ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMyNjAvRDc4RDJBQTI3MUE2MTFFQjg3NDUwNDY2QzRGOUFFMDIvMzZGMzE4RDA4 OTBBMTFFRTlGNEMwMTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBfnAAAAwDQYJKoZIhvcNAQELBQADggEBAEGx1bDoQFA8 elSGvQcko1tCPrFjCqKWV8wB8dYlKAySopB2mnfCtkKC+XiQSjACWfqsGpMN5hA5 VoKY5yI7NJ5W3ZpwsYwULEZicFBBXTslg3XGJ7+HCSn0PCzCkvWLLC4yVeek/UYe MFjE74l5PvyYPg4GpWN5BvNUWaG9BDHxdN9IV4kJq4FEakltTY2bUT7H/JklMN2z wqnWSAtzc7PeN8tc7At7nY5jeHlsSjfpDdeiLcVAXylxJhbYjHu9SiaNu935pOsQ 2ERrp1OKwuHiPMs1shqdJUJHH2Il5uwj0VID3iofm2XCSApIo7dEOC0ISGSDat1r Htr8dqGbnEQ= -----END CERTIFICATE-----Generated at Wed Jun 4 00:14:22 2025 by rpki-client