$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/B9286BC4F33711EEAAA34C78C4F9AE02.roa File: B9286BC4F33711EEAAA34C78C4F9AE02.roa (raw, json) Hash identifier: Ak9ulSCBepvFHHWrtvRX78jK7UjLDTIXpbZCAO4ELzg= Subject key identifier: D5:05:43:56:DE:09:ED:05:8A:86:1C:2F:D3:DA:F2:EC:DC:16:9A:9A Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 30A0 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/B9286BC4F33711EEAAA34C78C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:57 +0000 ROA not before: Wed 30 Apr 2025 15:52:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8220 IP address blocks: 2405:2000:1006::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12448 (0x30a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124759-5a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:42:f9:8f:e5:a4:4a:0a:0e:a2:5e:a7:91:01: 3e:32:10:98:01:46:5e:2b:35:b0:81:72:85:0d:b7: f2:17:fa:9d:39:1a:aa:e4:6e:24:14:c7:36:d5:e1: 1a:d6:fc:6f:77:98:dd:b7:37:ff:50:38:a2:5c:25: ec:6e:5e:7b:98:4a:d7:c5:d7:2c:a2:e5:8f:51:ed: 0b:b7:07:f8:35:96:23:c5:c1:a6:99:7d:7e:60:d1: 61:64:8b:2c:bc:2a:e9:5a:ab:2c:6e:e5:bd:54:25: 6a:ee:ca:70:3b:6f:f9:ae:29:d8:ca:d7:e9:5e:e7: 6e:40:d6:b1:3a:13:9f:d4:ae:28:55:3f:51:4b:ab: fe:5f:ff:01:46:5e:60:24:1e:b7:c1:7f:2a:ed:a0: 3b:8b:ce:e5:6c:43:7b:c5:e3:ef:bf:1f:84:52:0e: 5d:71:02:66:85:21:b1:94:a5:01:84:a2:5c:06:d5: 5b:80:b9:69:a6:1c:d9:d5:45:de:19:d3:4b:ec:57: 3c:34:f6:55:ac:02:71:c2:00:4c:ca:ba:89:10:67: 20:70:91:b9:29:ca:1e:38:d0:58:0a:55:41:56:2d: 64:57:87:93:09:cf:cc:67:ee:28:85:aa:0b:bf:2f: 8e:32:48:14:43:a9:5f:ac:6d:cf:95:69:ca:fc:b0: 16:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:05:43:56:DE:09:ED:05:8A:86:1C:2F:D3:DA:F2:EC:DC:16:9A:9A X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/B9286BC4F33711EEAAA34C78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:2000:1006::/48 Signature Algorithm: sha256WithRSAEncryption 3f:e8:29:c5:71:a2:18:61:a3:9e:02:8a:95:d7:69:44:36:0c: d4:29:96:3c:78:36:79:ad:60:3e:24:4a:d3:d7:f7:c3:f2:d9: 65:db:0d:1e:2b:41:5a:4c:01:49:e5:2a:d6:d7:ae:f3:d7:af: ce:12:34:7f:96:5e:94:22:29:08:94:95:07:9f:aa:1e:50:60: 59:5c:de:c5:92:1a:11:59:fe:db:ad:68:d0:9b:99:56:ac:52: 5c:19:88:9b:55:21:eb:2f:26:84:80:7d:88:d3:ee:23:ec:b8: 3a:d5:97:77:ef:9d:da:3d:34:91:9e:6a:f3:5b:c9:a8:38:07: 2e:93:c6:fd:76:fd:53:fb:88:ee:d4:00:26:73:35:82:6c:68: de:79:c8:9e:bd:5a:7c:02:03:e1:bf:a9:ad:20:ac:5c:80:95: 14:cd:5d:3f:ce:1c:4c:73:5d:a6:7a:a7:4a:29:fb:6d:83:b9: e4:d8:4c:91:40:01:0b:cd:7c:5d:a1:1f:a2:a5:4f:f3:3c:09: c4:ab:62:e0:e3:25:a7:6a:91:c9:98:32:6c:ad:39:f6:ed:7b: eb:b3:bb:61:6a:05:cb:2e:5d:63:20:c6:3c:b5:c5:86:d0:0c: fd:50:39:ed:83:fc:9f:4e:77:84:43:e3:18:a7:b5:b2:11:72: d9:b3:26:83 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICMKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDMwMTU1MjU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc1OS01YTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkL5j+WkSgoOol6nkQE+MhCYAUZeKzWwgXKFDbfyF/qdORqq5G4kFMc21eEa 1vxvd5jdtzf/UDiiXCXsbl57mErXxdcsouWPUe0Ltwf4NZYjxcGmmX1+YNFhZIss vCrpWqssbuW9VCVq7spwO2/5rinYytfpXuduQNaxOhOf1K4oVT9RS6v+X/8BRl5g JB63wX8q7aA7i87lbEN7xePvvx+EUg5dcQJmhSGxlKUBhKJcBtVbgLlpphzZ1UXe GdNL7Fc8NPZVrAJxwgBMyrqJEGcgcJG5KcoeONBYClVBVi1kV4eTCc/MZ+4ohaoL vy+OMkgUQ6lfrG3PlWnK/LAWowIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNUFQ1be Ce0FioYcL9Pa8uzcFpqaMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvQjkyODZCQzRG MzM3MTFFRUFBQTM0Qzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBSAAEAYwDQYJKoZIhvcNAQELBQADggEBAD/oKcVxohhh o54CipXXaUQ2DNQpljx4NnmtYD4kStPX98Py2WXbDR4rQVpMAUnlKtbXrvPXr84S NH+WXpQiKQiUlQefqh5QYFlc3sWSGhFZ/tutaNCbmVasUlwZiJtVIesvJoSAfYjT 7iPsuDrVl3fvndo9NJGeavNbyag4By6Txv12/VP7iO7UACZzNYJsaN55yJ69WnwC A+G/qa0grFyAlRTNXT/OHExzXaZ6p0op+22DueTYTJFAAQvNfF2hH6KlT/M8CcSr YuDjJadqkcmYMmytOfbte+uzu2FqBcsuXWMgxjy1xYbQDP1QOe2D/J9Od4RD4xin tbIRctmzJoM= -----END CERTIFICATE-----Generated at Tue May 13 11:40:24 2025 by rpki-client