$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa File: 8663E8B6658A11E9930DC678C4F9AE02.roa (raw, json) Hash identifier: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ= Subject key identifier: F8:0B:DF:B0:D2:CF:BA:2E:BE:8F:66:DA:D0:8C:DF:48:C4:29:B0:C8 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FAE Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa Signing time: Fri 16 May 2025 17:52:19 +0000 ROA not before: Fri 16 May 2025 17:52:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138966 IP address blocks: 2402:b940:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 17:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4014 (0xfae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: May 16 17:52:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68277b53-0066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:f3:a5:f2:86:f6:c5:21:5b:2f:c3:e0:82: 7d:c7:1d:eb:de:fc:ff:c1:ab:f9:6a:cc:9f:68:82: 00:a4:6e:4a:4a:6d:b8:6e:b0:99:af:19:49:0c:11: 11:8d:39:6f:1a:8a:88:19:59:c8:df:9c:29:f0:75: 06:19:d6:f9:8d:72:2c:76:ab:22:7d:c4:65:75:0d: 25:f7:eb:3b:10:7b:49:98:65:21:20:40:8d:da:99: 60:2b:cd:8a:0a:48:88:0b:dd:fb:ff:40:3f:f8:95: ab:97:58:e8:04:12:c9:01:b3:01:e5:94:f6:83:92: cc:51:71:d3:6c:cb:ad:38:d8:88:ad:d9:7b:1f:ec: 82:74:8f:b3:af:43:d7:19:81:14:fb:c3:dc:86:dc: a5:33:5d:ae:a6:d0:ad:c7:f4:19:46:9a:af:4a:bb: 96:63:ea:6c:0c:65:af:2f:2f:16:d2:75:19:3b:4c: 12:c3:f5:f0:31:5b:47:b9:c7:01:72:02:80:d7:87: d2:ee:bc:20:ed:93:df:77:a0:82:75:96:a8:04:88: a9:4f:c0:a1:b1:ff:9a:c9:ec:89:df:85:16:c7:31: 84:5f:2b:e6:93:d0:de:3a:41:7e:3b:21:81:e0:6c: 98:8d:ae:95:18:8a:7d:2c:7f:4c:87:5e:7c:85:5d: 3f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0B:DF:B0:D2:CF:BA:2E:BE:8F:66:DA:D0:8C:DF:48:C4:29:B0:C8 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/8663E8B6658A11E9930DC678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:b940:100::/40 Signature Algorithm: sha256WithRSAEncryption 8c:82:62:43:2c:20:cd:82:fa:af:d5:8d:63:f8:95:75:11:1f: 18:7c:ed:23:5e:d7:29:8e:0f:5c:bc:e3:9c:e2:20:18:f4:c2: 53:9e:63:52:7e:ae:02:c7:e6:1b:37:4c:02:46:df:ed:73:3b: 47:af:19:86:2b:4d:05:9d:fd:24:b9:9d:89:a8:7c:12:cf:af: 84:b2:d4:62:f4:97:f3:6f:e9:90:1c:da:b2:2f:37:bb:19:4f: 73:1b:dc:29:10:40:98:de:87:77:9c:80:a0:d5:27:4c:ec:9c: 10:78:75:0a:62:7e:33:82:73:ec:fd:d5:f4:f4:b8:4c:90:87: 3d:70:96:9d:ce:c4:15:1d:fc:51:2f:73:47:4e:35:3c:c0:5d: 3f:2d:41:fd:1c:72:f3:f2:8b:f2:39:69:53:02:23:41:8a:f7: f6:24:1f:ca:3f:d7:53:fb:bc:3a:0f:cd:78:b1:77:d9:d2:35: 69:8b:4b:56:e4:a3:10:0e:5b:68:20:c3:85:38:84:a0:eb:05: ba:7a:9c:f1:89:77:cc:ed:64:8a:5c:74:6b:9c:15:0d:ec:aa: dc:82:d5:5b:7f:29:ed:2b:37:d4:ca:da:4d:6e:b9:e8:55:0b: 6f:db:88:08:5f:28:fc:cb:6e:d0:7e:e7:1b:e8:fc:9c:ff:6b: 2f:3d:cb:ea -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICD64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUwNTE2MTc1MjE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3N2I1My0wMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2XzpfKG9sUhWy/D4IJ9xx3r3vz/wav5asyfaIIApG5KSm24brCZrxlJDBER jTlvGoqIGVnI35wp8HUGGdb5jXIsdqsifcRldQ0l9+s7EHtJmGUhIECN2plgK82K CkiIC937/0A/+JWrl1joBBLJAbMB5ZT2g5LMUXHTbMutONiIrdl7H+yCdI+zr0PX GYEU+8PchtylM12uptCtx/QZRpqvSruWY+psDGWvLy8W0nUZO0wSw/XwMVtHuccB cgKA14fS7rwg7ZPfd6CCdZaoBIipT8Chsf+ayeyJ34UWxzGEXyvmk9DeOkF+OyGB 4GyYja6VGIp9LH9Mh158hV0/zwIDAQABo4IClzCCApMwHQYDVR0OBBYEFPgL37DS z7ouvo9m2tCM30jEKbDIMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvODY2M0U4QjY2 NThBMTFFOTkzMERDNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkArlAATANBgkqhkiG9w0BAQsFAAOCAQEAjIJiQywgzYL6 r9WNY/iVdREfGHztI17XKY4PXLzjnOIgGPTCU55jUn6uAsfmGzdMAkbf7XM7R68Z hitNBZ39JLmdiah8Es+vhLLUYvSX82/pkBzasi83uxlPcxvcKRBAmN6Hd5yAoNUn TOycEHh1CmJ+M4Jz7P3V9PS4TJCHPXCWnc7EFR38US9zR041PMBdPy1B/Rxy8/KL 8jlpUwIjQYr39iQfyj/XU/u8Og/NeLF32dI1aYtLVuSjEA5baCDDhTiEoOsFunqc 8Yl3zO1kilx0a5wVDeyq3ILVW38p7Ss31MraTW656FULb9uICF8o/Mtu0H7nG+j8 nP9rLz3L6g== -----END CERTIFICATE-----Generated at Sun Jun 8 21:03:21 2025 by rpki-client