$ rpki-client -vvf rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/671EAC66343D11EFB36ED310C4F9AE02.roa File: 671EAC66343D11EFB36ED310C4F9AE02.roa (raw, json) Hash identifier: 01Cn3pOh4671ZkIDU6odEQ9G33TuU+ryqBzUYewO8xQ= Subject key identifier: F6:8E:43:A4:08:89:CF:65:11:87:5D:D9:86:F7:AE:2E:1A:15:60:3E Certificate issuer: /CN=A91774FB/serialNumber=922416659558217C93627B96D9C9EAFAC1FAA3EE Certificate serial: AC Authority key identifier: 92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/671EAC66343D11EFB36ED310C4F9AE02.roa Signing time: Wed 21 May 2025 05:17:05 +0000 ROA not before: Wed 21 May 2025 05:17:05 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152916 IP address blocks: 2001:df3:eec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91774FB, serialNumber=922416659558217C93627B96D9C9EAFAC1FAA3EE Validity Not Before: May 21 05:17:05 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=682d61d1-b844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:db:40:6e:3c:b5:87:82:49:98:ac:7f:3a: 96:ff:27:3d:3b:85:f0:bf:45:aa:06:92:3c:d2:6a: 9e:a6:d6:52:1e:cb:98:1c:3e:ec:7f:79:91:78:8e: dd:24:04:42:8d:de:ce:90:5d:61:49:db:2c:ad:00: 83:9b:18:12:34:5e:a7:90:a3:92:98:f4:0a:1f:8a: 49:2f:8c:3d:05:85:09:f5:f7:9a:bf:f7:4e:1a:67: 38:47:2b:f7:85:c0:f0:e5:04:02:58:23:a7:b1:33: bf:1d:a2:02:2f:77:88:e8:ef:7d:9e:93:dd:6f:93: 7a:12:eb:92:9f:51:f3:4d:f7:12:46:99:e3:92:41: 5b:1e:d4:7d:2a:fc:29:5f:0e:d2:06:f3:c0:6e:6e: 34:46:26:76:44:5e:28:d8:21:6a:3e:35:6a:61:86: ae:80:10:83:b3:22:fe:00:f2:c7:dc:ec:e1:c9:08: 8c:e2:17:cb:0e:9b:76:a9:e2:d7:8f:86:71:05:e8: ee:9b:0a:22:a6:50:4c:d7:2b:fe:56:be:fb:70:32: 95:5d:f0:91:c5:55:8d:bd:a3:bd:89:5e:17:48:a9: 39:4d:a9:89:5d:b5:ea:ef:9e:1f:ff:87:5f:cd:8c: 0f:11:bc:34:da:0e:e6:59:9f:da:6a:eb:e3:d9:6f: 71:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8E:43:A4:08:89:CF:65:11:87:5D:D9:86:F7:AE:2E:1A:15:60:3E X509v3 Authority Key Identifier: keyid:92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/671EAC66343D11EFB36ED310C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:eec0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:02:c7:38:0b:7f:2d:fb:17:d3:a4:aa:a1:44:09:5b:b7:c9: 97:40:e0:db:27:b0:3a:84:46:54:b5:38:8b:c0:11:ff:64:35: 9b:78:55:1a:7a:95:06:c0:1f:d4:f5:4b:03:c8:9a:70:83:ef: 56:48:ed:a0:42:f0:9a:43:b7:2f:a2:3f:38:17:83:f6:6e:e3: ba:f9:6c:92:e1:b8:df:2c:d6:da:0c:91:c6:e6:ba:78:fc:19: 54:c4:34:d2:c6:2f:2d:89:b2:37:91:a6:30:52:f1:78:25:56: 45:db:5a:34:7e:c3:44:75:db:ad:c4:a6:dc:68:b0:3c:13:db: 61:e7:d3:7c:97:03:a2:fd:ae:d5:c2:fb:4c:d0:ad:c4:c5:a6: 33:a3:78:dc:7e:bd:45:36:1c:df:02:aa:60:cb:a0:76:83:ae: 5a:d8:ca:e9:52:10:f2:db:93:13:b6:8c:37:60:10:73:46:3f: f2:02:56:6a:51:84:e3:fe:49:05:82:30:31:8e:7b:53:67:d3: 87:2b:99:0a:0e:1d:68:d7:7f:3c:9c:1d:fd:c1:63:58:b8:7e: e7:df:6c:53:3b:79:86:43:c2:66:09:23:31:97:8f:3a:83:a1: 8a:76:b1:36:f5:3b:a0:e6:d5:5a:ce:4d:3c:bc:a4:7e:c2:72: 6a:ea:ab:1c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0RkIxMTAvBgNVBAUTKDkyMjQxNjY1OTU1ODIxN0M5MzYyN0I5NkQ5QzlFQUZB QzFGQUEzRUUwHhcNMjUwNTIxMDUxNzA1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNjFkMS1iODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQLbQG48tYeCSZisfzqW/yc9O4Xwv0WqBpI80mqeptZSHsuYHD7sf3mReI7d JARCjd7OkF1hSdssrQCDmxgSNF6nkKOSmPQKH4pJL4w9BYUJ9feav/dOGmc4Ryv3 hcDw5QQCWCOnsTO/HaICL3eI6O99npPdb5N6EuuSn1HzTfcSRpnjkkFbHtR9Kvwp Xw7SBvPAbm40RiZ2RF4o2CFqPjVqYYaugBCDsyL+APLH3OzhyQiM4hfLDpt2qeLX j4ZxBejumwoiplBM1yv+Vr77cDKVXfCRxVWNvaO9iV4XSKk5TamJXbXq754f/4df zYwPEbw02g7mWZ/aauvj2W9xiQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPaOQ6QI ic9lEYdd2Yb3ri4aFWA+MB8GA1UdIwQYMBaAFJIkFmWVWCF8k2J7ltnJ6vrB+qPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzRGQi84MTY5NzJDNjM0 MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi9raVFXWlpWWUlYeVRZbnVXMmNucS1zSDZv LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpUVdaWlZZSVh5VFludVcyY25xLXNINm8tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc0RkIvODE2OTcyQzYzNDM5MTFFRjlDM0QyMTNFQzRGOUFFMDIvNjcxRUFDNjYz NDNEMTFFRkIzNkVEMzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3z7sAwDQYJKoZIhvcNAQELBQADggEBADoCxzgLfy37 F9OkqqFECVu3yZdA4NsnsDqERlS1OIvAEf9kNZt4VRp6lQbAH9T1SwPImnCD71ZI 7aBC8JpDty+iPzgXg/Zu47r5bJLhuN8s1toMkcbmunj8GVTENNLGLy2JsjeRpjBS 8XglVkXbWjR+w0R1263EptxosDwT22Hn03yXA6L9rtXC+0zQrcTFpjOjeNx+vUU2 HN8CqmDLoHaDrlrYyulSEPLbkxO2jDdgEHNGP/ICVmpRhOP+SQWCMDGOe1Nn04cr mQoOHWjXfzycHf3BY1i4fuffbFM7eYZDwmYJIzGXjzqDoYp2sTb1O6Dm1VrOTTy8 pH7Ccmrqqxw= -----END CERTIFICATE-----Generated at Thu Jul 3 11:26:59 2025 by rpki-client