$ rpki-client -vvf rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/8C35F65C57F111F0B413224EC4F9AE02.roa File: 8C35F65C57F111F0B413224EC4F9AE02.roa (raw, json) Hash identifier: voQWhVz+FM5Oce4JeqUGqkpzwLHV4T3Do9szQnC3FmQ= Subject key identifier: 62:D2:B8:DF:0A:22:88:CE:B1:B8:F0:91:47:F9:F8:AA:10:8B:2C:23 Certificate issuer: /CN=A91705D7/serialNumber=0A8BD2B02FF695171DC01E8C7E4AA2D988DA3B9A Certificate serial: DB Authority key identifier: 0A:8B:D2:B0:2F:F6:95:17:1D:C0:1E:8C:7E:4A:A2:D9:88:DA:3B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CovSsC_2lRcdwB6Mfkqi2YjaO5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/8C35F65C57F111F0B413224EC4F9AE02.roa Signing time: Thu 03 Jul 2025 09:59:20 +0000 ROA not before: Thu 03 Jul 2025 09:59:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9825 IP address blocks: 2401:a0e0::/48 maxlen: 48 2401:a0e0:1::/48 maxlen: 48 2401:a0e0:2::/48 maxlen: 48 2401:a0e0:3::/48 maxlen: 48 2401:a0e0:4::/48 maxlen: 48 2401:a0e0:5::/48 maxlen: 48 2401:a0e0:6::/48 maxlen: 48 2401:a0e0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/CovSsC_2lRcdwB6Mfkqi2YjaO5o.crl rsync://rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/CovSsC_2lRcdwB6Mfkqi2YjaO5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CovSsC_2lRcdwB6Mfkqi2YjaO5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91705D7, serialNumber=0A8BD2B02FF695171DC01E8C7E4AA2D988DA3B9A Validity Not Before: Jul 3 09:59:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68665478-0372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:f7:bb:35:f3:00:3d:ad:d9:c7:2d:94:64: 6a:09:57:f5:db:88:64:a9:49:a4:70:b1:c4:32:e0: 60:44:79:1a:3a:2e:66:cb:19:8e:c4:a1:af:13:ea: 7b:4a:4f:63:c8:d5:4c:56:b0:72:40:7c:98:e9:36: 86:dd:e7:95:d5:bb:65:97:d8:93:a2:4a:30:e6:a9: 7a:f2:8c:b1:07:1d:82:64:b1:bd:c8:4a:05:66:0e: 23:4f:75:9c:d7:e0:53:bc:ed:ad:c0:f1:3f:6c:e9: 94:e7:2c:af:40:36:60:7d:ca:a6:ba:0f:af:be:56: 47:26:88:bc:d4:a1:dd:c2:aa:71:b4:cd:bd:76:a7: bd:bf:20:2a:a8:79:2c:16:25:45:e9:90:b0:6c:9d: fe:7b:2b:4b:83:78:93:d0:79:57:ab:e5:84:86:49: a2:92:c9:fb:33:e5:81:21:92:96:fb:61:45:1f:f3: 53:fc:84:83:05:e3:44:78:0a:f7:14:e4:aa:61:38: 82:30:ee:84:71:28:4f:d7:68:3e:06:91:00:64:39: 16:70:ae:70:b6:62:db:e8:0c:a6:f3:a6:fb:dd:1a: e8:c1:01:ed:79:87:5f:64:23:7c:33:c0:fd:4f:b8: 94:a6:23:7e:df:ba:98:f4:df:5f:c2:50:51:fc:ca: 43:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D2:B8:DF:0A:22:88:CE:B1:B8:F0:91:47:F9:F8:AA:10:8B:2C:23 X509v3 Authority Key Identifier: keyid:0A:8B:D2:B0:2F:F6:95:17:1D:C0:1E:8C:7E:4A:A2:D9:88:DA:3B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/CovSsC_2lRcdwB6Mfkqi2YjaO5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CovSsC_2lRcdwB6Mfkqi2YjaO5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91705D7/A0816ED016D811EFBF901E5FC4F9AE02/8C35F65C57F111F0B413224EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a0e0::/45 Signature Algorithm: sha256WithRSAEncryption 08:f8:7a:0a:61:3f:7b:80:be:bc:3a:f5:e0:50:5e:89:ac:46: 32:0b:52:27:88:1e:81:5f:d1:9d:89:c0:53:b6:0f:97:06:ec: 67:77:35:65:e4:3c:3f:98:56:ee:d1:52:3e:3e:0d:69:e0:f6: c2:81:4d:b4:7a:1a:cb:3f:41:4f:7b:8d:76:40:53:fb:77:36: 70:1b:72:1a:3c:89:59:07:03:ae:9d:8b:54:69:7d:58:f4:21: 3b:21:07:a2:1e:ca:0c:ea:90:d3:ee:7e:cc:0a:21:a7:9b:fa: da:f6:95:8b:7c:94:08:25:0d:62:0b:0f:b6:f4:56:c6:41:47: 30:e0:ca:09:c6:de:f6:d5:79:98:2e:38:5a:57:80:26:4b:dd: 03:a7:d4:71:97:75:2f:c7:82:15:04:50:c1:e2:52:cb:c0:e6: b8:99:a6:e2:69:f2:64:ff:f6:84:fd:73:1e:1c:7d:01:90:39: 68:aa:ec:1f:0d:37:1e:f3:e6:4c:10:b7:bf:d9:6f:3f:1e:a1: 9a:c3:0b:89:9b:6d:1b:64:d1:42:1a:f8:1f:81:fe:7a:fb:23: 9e:31:a3:23:0f:da:af:9f:51:c1:97:ef:8f:9a:e6:ee:a6:d8: a0:ae:98:ae:20:b0:a1:16:26:18:58:d9:bd:86:24:39:09:85: 56:32:10:73 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1RDcxMTAvBgNVBAUTKDBBOEJEMkIwMkZGNjk1MTcxREMwMUU4QzdFNEFBMkQ5 ODhEQTNCOUEwHhcNMjUwNzAzMDk1OTIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2NTQ3OC0wMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusH3uzXzAD2t2cctlGRqCVf124hkqUmkcLHEMuBgRHkaOi5myxmOxKGvE+p7 Sk9jyNVMVrByQHyY6TaG3eeV1btll9iTokow5ql68oyxBx2CZLG9yEoFZg4jT3Wc 1+BTvO2twPE/bOmU5yyvQDZgfcqmug+vvlZHJoi81KHdwqpxtM29dqe9vyAqqHks FiVF6ZCwbJ3+eytLg3iT0HlXq+WEhkmiksn7M+WBIZKW+2FFH/NT/ISDBeNEeAr3 FOSqYTiCMO6EcShP12g+BpEAZDkWcK5wtmLb6Aym86b73RrowQHteYdfZCN8M8D9 T7iUpiN+37qY9N9fwlBR/MpDxQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGLSuN8K IojOsbjwkUf5+KoQiywjMB8GA1UdIwQYMBaAFAqL0rAv9pUXHcAejH5KotmI2jua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDVENy9BMDgxNkVEMDE2 RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9Db3ZTc0NfMmxSY2R3QjZNZmtxaTJZamFP NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NvdlNzQ18ybFJjZHdCNk1ma3FpMllqYU81by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA1RDcvQTA4MTZFRDAxNkQ4MTFFRkJGOTAxRTVGQzRGOUFFMDIvOEMzNUY2NUM1 N0YxMTFGMEI0MTMyMjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwMkAaDgAAAwDQYJKoZIhvcNAQELBQADggEBAAj4egphP3uA vrw69eBQXomsRjILUieIHoFf0Z2JwFO2D5cG7Gd3NWXkPD+YVu7RUj4+DWng9sKB TbR6Gss/QU97jXZAU/t3NnAbcho8iVkHA66di1RpfVj0ITshB6IeygzqkNPufswK Iaeb+tr2lYt8lAglDWILD7b0VsZBRzDgygnG3vbVeZguOFpXgCZL3QOn1HGXdS/H ghUEUMHiUsvA5riZpuJp8mT/9oT9cx4cfQGQOWiq7B8NNx7z5kwQt7/Zbz8eoZrD C4mbbRtk0UIa+B+B/nr7I54xoyMP2q+fUcGX74+a5u6m2KCumK4gsKEWJhhY2b2G JDkJhVYyEHM= -----END CERTIFICATE-----Generated at Fri Jul 4 14:39:51 2025 by rpki-client