$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa File: 3590603EEA9911EDA6A36E18C4F9AE02.roa (raw, json) Hash identifier: VA85W2DwFcltrLQso3iWrGCK1p8MpteiBw4nv3k0XAA= Subject key identifier: FD:5D:3A:52:93:2B:6A:0D:F1:60:40:33:23:76:86:E2:2E:A5:59:9E Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3095 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:46 +0000 ROA not before: Wed 30 Apr 2025 15:52:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140911 IP address blocks: 2405:2000:902::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12437 (0x3095) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812474e-8454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c7:06:d9:f0:1b:23:05:f7:7d:1a:32:17:c7: 6c:b4:c8:90:bd:e9:f4:86:6d:fb:5c:4b:06:fa:0b: 93:84:ba:29:d7:f7:a2:a3:a3:52:e4:c3:0e:c5:e5: fd:84:c0:7e:f6:94:b7:56:15:6a:0e:50:76:a6:4d: 47:8b:24:d5:9a:a5:fc:dc:d0:4f:77:2f:25:08:be: ab:6f:27:0f:26:4f:a4:c8:d0:43:fd:fc:4d:c6:2f: fa:18:f3:d8:01:e8:98:1f:4d:c9:fb:2f:eb:c6:5d: 56:1e:74:ee:95:1b:ef:c2:b0:b6:33:5f:7d:12:f9: f5:04:ce:f3:97:28:c5:f8:58:73:c9:6a:ee:6b:75: 9a:49:c6:7b:9e:84:09:9d:5b:d2:3c:92:0a:6f:91: 66:8b:40:c2:ee:f1:51:29:c1:b7:5d:f2:46:b1:3d: c9:5b:35:70:11:82:b3:1f:c8:d0:08:23:e2:9c:93: f7:2a:b9:07:9e:15:e3:ee:46:94:cd:b9:1a:18:71: 18:0b:ef:89:c3:07:03:46:83:e9:47:99:d6:c6:30: 8d:25:b5:14:d7:68:8a:e8:f9:5d:d0:5a:01:76:79: 49:5a:42:1c:a6:5a:0f:53:e3:09:09:0f:5a:c6:0e: 4e:3c:7e:73:86:b8:d4:de:e2:9f:a6:c9:60:fd:2e: 14:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:5D:3A:52:93:2B:6A:0D:F1:60:40:33:23:76:86:E2:2E:A5:59:9E X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2000:902::/48 Signature Algorithm: sha256WithRSAEncryption 36:4b:05:7b:41:cc:ee:85:c7:7b:d0:f9:8b:b7:25:64:b6:1d: c3:80:57:9e:f9:c2:8e:cd:47:e2:b0:ba:7d:eb:c7:c8:90:72: f3:bc:06:6d:3e:05:84:cb:3a:1b:9c:23:0d:02:5b:8b:fe:b8: 40:1c:28:8e:e0:85:27:df:bb:04:93:7e:5e:84:21:43:1f:0e: 8e:b9:35:74:66:04:a3:a3:28:1a:62:55:a8:db:c9:e6:9e:29: 68:b7:ba:e9:1d:f2:9a:70:78:c4:56:27:eb:44:a0:30:68:35: ed:0b:72:6d:26:af:bd:bb:00:01:09:30:0a:d4:87:bf:a5:98: ff:87:d4:fc:73:c5:a4:9b:6c:5b:47:76:3c:af:23:2a:74:52: 09:f4:03:03:7e:86:0e:85:77:c2:a7:6c:9c:4a:38:19:bf:ea: 71:8b:78:d3:4f:4e:3e:e5:71:c9:7d:6f:8a:ee:69:cc:c2:6d: fa:3a:58:db:ab:1e:dd:f5:e2:9d:f3:57:b3:ef:a1:21:5a:19: 83:52:3d:d4:28:f3:ae:54:46:9a:4b:0a:e9:3d:88:3f:fd:82: 2c:87:be:de:f7:4a:55:43:45:95:d4:70:4e:68:c2:66:29:d1: 07:e1:9f:72:83:51:51:73:6c:87:ee:e4:ca:92:a0:0e:fd:f3: cd:9c:71:15 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICMJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDMwMTU1MjQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc0ZS04NDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6McG2fAbIwX3fRoyF8dstMiQven0hm37XEsG+guThLop1/eio6NS5MMOxeX9 hMB+9pS3VhVqDlB2pk1HiyTVmqX83NBPdy8lCL6rbycPJk+kyNBD/fxNxi/6GPPY AeiYH03J+y/rxl1WHnTulRvvwrC2M199Evn1BM7zlyjF+FhzyWrua3WaScZ7noQJ nVvSPJIKb5Fmi0DC7vFRKcG3XfJGsT3JWzVwEYKzH8jQCCPinJP3KrkHnhXj7kaU zbkaGHEYC++JwwcDRoPpR5nWxjCNJbUU12iK6Pld0FoBdnlJWkIcploPU+MJCQ9a xg5OPH5zhrjU3uKfpslg/S4UgQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFP1dOlKT K2oN8WBAMyN2huIupVmeMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMzU5MDYwM0VF QTk5MTFFREE2QTM2RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBSAACQIwDQYJKoZIhvcNAQELBQADggEBADZLBXtBzO6F x3vQ+Yu3JWS2HcOAV575wo7NR+Kwun3rx8iQcvO8Bm0+BYTLOhucIw0CW4v+uEAc KI7ghSffuwSTfl6EIUMfDo65NXRmBKOjKBpiVajbyeaeKWi3uukd8ppweMRWJ+tE oDBoNe0Lcm0mr727AAEJMArUh7+lmP+H1PxzxaSbbFtHdjyvIyp0Ugn0AwN+hg6F d8KnbJxKOBm/6nGLeNNPTj7lccl9b4ruaczCbfo6WNurHt314p3zV7PvoSFaGYNS PdQo865URppLCuk9iD/9giyHvt73SlVDRZXUcE5owmYp0Qfhn3KDUVFzbIfu5MqS oA79882ccRU= -----END CERTIFICATE-----Generated at Wed May 14 23:58:48 2025 by rpki-client