$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa File: AF2D50BE562B11F0A2095579C4F9AE02.roa (raw, json) Hash identifier: oBVWljrwhjDXm8zgH1LEQxaN2qVBvgb+wgmBiDOYW2I= Subject key identifier: 4F:15:5B:B4:54:80:AD:BD:15:3C:91:19:57:56:99:9D:12:B3:D7:9E Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Certificate serial: 01DF Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa Signing time: Tue 01 Jul 2025 03:30:07 +0000 ROA not before: Tue 01 Jul 2025 03:30:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151420 IP address blocks: 2401:3fa0:1::/48 maxlen: 48 2401:3fa0:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187FD, serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Validity Not Before: Jul 1 03:30:07 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6863563f-e3d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7b:8e:36:c4:74:26:76:0c:1c:63:f7:59:09: c9:ce:ef:8f:ca:d2:95:0e:39:d1:eb:83:63:cd:2b: 6a:cf:01:a5:69:f6:ae:5b:85:95:2e:ab:f0:f9:85: 73:fd:37:ca:7e:6a:58:53:42:c8:1b:2d:30:b1:92: e1:c2:bd:cf:2a:78:0b:75:73:9e:2d:e8:49:f1:97: ce:51:8d:7d:43:a5:66:22:1a:d3:ed:a4:e3:48:32: 09:1e:51:8e:e5:20:e6:eb:29:22:e6:5b:e8:42:2c: f5:7a:f5:24:65:cc:27:a8:f0:12:27:ac:bd:69:19: 06:da:ff:ac:3f:29:70:36:50:bc:3f:ab:fd:23:fc: 3c:ab:ed:da:92:59:00:aa:c9:5b:8e:a3:c7:d7:c6: 38:58:dc:bf:0c:da:40:72:1b:ff:99:fa:d6:d1:8b: df:f5:e3:8d:78:3e:e2:19:31:c3:ea:92:87:2c:a0: e3:98:6d:70:04:ad:f2:c3:49:06:d4:da:12:5e:c7: 63:0e:55:6c:38:74:b6:53:1f:07:93:ca:d0:81:4c: 80:fc:f6:99:10:30:95:76:86:52:42:0b:02:11:2c: 76:be:58:c8:61:34:92:6c:fa:72:88:03:e5:6b:10: bc:65:b7:b5:2b:70:77:dc:e1:38:73:a5:71:87:1e: b9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:15:5B:B4:54:80:AD:BD:15:3C:91:19:57:56:99:9D:12:B3:D7:9E X509v3 Authority Key Identifier: keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/AF2D50BE562B11F0A2095579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3fa0:1::/48 2401:3fa0:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 72:46:51:db:98:84:c9:f0:52:08:d6:e8:4c:88:3a:5b:20:38: 57:69:b4:ff:ae:03:8d:3a:18:5f:5d:56:ae:69:83:15:59:02: 55:aa:2a:c5:18:40:9c:00:99:0f:40:04:a7:1a:02:d1:7f:bc: 86:19:f6:af:5e:63:47:3f:0b:6e:a0:e2:a3:b4:9a:39:e2:16: c0:e8:ec:e7:50:5f:c9:ca:d7:25:da:4d:3c:93:78:72:21:f1: 83:4c:ae:fe:ef:06:fe:de:42:78:58:51:1d:6b:63:5f:48:2d: f5:b7:69:d2:38:fa:34:0e:57:4b:02:ec:30:bf:a7:2f:b7:6f: 9b:8f:7b:4e:15:69:2e:79:80:f2:22:81:71:d0:d3:62:b0:ba: 3f:fd:07:b9:03:0c:54:2b:41:a4:1f:8c:e6:f0:6f:d4:a9:87: 3c:0c:28:8c:54:fa:91:a7:72:2a:a2:f3:65:62:2a:1e:25:93: b8:48:95:9b:85:59:c0:eb:8a:d5:e7:be:a4:fb:64:fe:11:03: f4:2f:a3:57:8e:b4:cf:92:bb:87:cf:ae:1e:3b:fe:b3:83:30: 97:c5:90:cb:99:5b:c4:9a:43:0e:b4:62:24:47:67:96:68:c5: 37:a9:99:6c:24:b5:c3:1f:0d:10:fd:8c:8c:09:85:3b:4e:5d: d3:ce:0a:56 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3RkQxMTAvBgNVBAUTKDY4ODUyQUI3RjI3MTRGQ0Y1NEQ3NUYwQUFFMzA2OEFE QzM4QjM1Q0MwHhcNMjUwNzAxMDMzMDA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNTYzZi1lM2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnuONsR0JnYMHGP3WQnJzu+PytKVDjnR64NjzStqzwGlafauW4WVLqvw+YVz /TfKfmpYU0LIGy0wsZLhwr3PKngLdXOeLehJ8ZfOUY19Q6VmIhrT7aTjSDIJHlGO 5SDm6yki5lvoQiz1evUkZcwnqPASJ6y9aRkG2v+sPylwNlC8P6v9I/w8q+3aklkA qslbjqPH18Y4WNy/DNpAchv/mfrW0Yvf9eONeD7iGTHD6pKHLKDjmG1wBK3yw0kG 1NoSXsdjDlVsOHS2Ux8Hk8rQgUyA/PaZEDCVdoZSQgsCESx2vljIYTSSbPpyiAPl axC8Zbe1K3B33OE4c6Vxhx65vwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFE8VW7RU gK29FTyRGVdWmZ0Ss9eeMB8GA1UdIwQYMBaAFGiFKrfycU/PVNdfCq4waK3DizXM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODdGRC81NUVENkExNjEw QTAxMUVFOTM0OTNDNTJDNEY5QUUwMi9hSVVxdF9KeFQ4OVUxMThLcmpCb3JjT0xO Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJVXF0X0p4VDg5VTExOEtyakJvcmNPTE5jdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3RkQvNTVFRDZBMTYxMEEwMTFFRTkzNDkzQzUyQzRGOUFFMDIvQUYyRDUwQkU1 NjJCMTFGMEEyMDk1NTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgACMBEDBwAkAT+gAAEDBgAkAT+g/DANBgkqhkiG9w0BAQsFAAOCAQEA ckZR25iEyfBSCNboTIg6WyA4V2m0/64DjToYX11WrmmDFVkCVaoqxRhAnACZD0AE pxoC0X+8hhn2r15jRz8LbqDio7SaOeIWwOjs51BfycrXJdpNPJN4ciHxg0yu/u8G /t5CeFhRHWtjX0gt9bdp0jj6NA5XSwLsML+nL7dvm497ThVpLnmA8iKBcdDTYrC6 P/0HuQMMVCtBpB+M5vBv1KmHPAwojFT6kadyKqLzZWIqHiWTuEiVm4VZwOuK1ee+ pPtk/hED9C+jV460z5K7h8+uHjv+s4Mwl8WQy5lbxJpDDrRiJEdnlmjFN6mZbCS1 wx8NEP2MjAmFO05d084KVg== -----END CERTIFICATE-----Generated at Fri Jul 4 17:59:08 2025 by rpki-client