$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa File: 6C8EAC7A195F11F08408FA45C4F9AE02.roa (raw, json) Hash identifier: y8NFG110fY2dzWel2wKPfGTIBB3jTVOPTk+nGisVEaM= Subject key identifier: 42:58:27:C7:3C:C7:EF:B5:E6:16:45:7A:07:CD:29:A6:9D:F4:72:54 Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: FE Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa Signing time: Fri 27 Jun 2025 05:04:27 +0000 ROA not before: Fri 27 Jun 2025 05:04:27 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 2400:7aa0:2701::/48 maxlen: 48 2400:7aa0:2702::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Jun 27 05:04:27 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e265a-469d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:09:4e:ec:1a:34:fd:e5:cd:4f:6d:d5:c0:4f: ed:54:ce:e1:47:1d:40:13:4b:9e:5e:90:bc:69:24: c4:8c:7b:60:54:99:85:d0:e9:7e:c7:29:6b:86:ef: fe:1e:0f:8b:32:eb:94:28:3a:0f:b9:d7:fd:2c:28: b3:5b:17:bc:ac:92:27:5d:9b:92:2a:53:7b:da:40: 59:f3:24:c2:fd:89:ed:58:cd:3b:9e:68:97:49:27: 4a:0e:59:21:65:02:41:47:cd:50:a0:62:02:22:37: 03:87:2b:56:21:e6:e2:93:cc:9a:e9:4c:c3:c7:a7: ef:49:71:35:7d:9b:91:c6:9b:d8:6c:ea:ef:56:dd: 36:9a:25:3f:a7:d3:3d:d5:c9:fe:ee:60:42:dc:b0: ba:10:36:ea:c7:03:e3:56:e2:57:13:67:62:f3:c6: 88:bc:76:c2:b5:52:19:e1:2b:11:79:3a:2e:87:74: aa:3e:70:7e:d6:bd:29:57:36:f5:3d:4c:e1:4a:c7: 1c:83:ff:dc:12:ba:51:7c:bb:e9:57:5d:d1:0e:35: 3d:4c:17:ea:42:a7:ea:84:db:3f:0e:5e:d6:d1:ba: 32:d8:9c:d5:c6:3b:ce:6f:c4:56:2c:26:2c:8e:ea: 6e:7d:5a:26:3e:9d:1c:3a:34:09:d5:b8:f2:ea:8d: a5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:58:27:C7:3C:C7:EF:B5:E6:16:45:7A:07:CD:29:A6:9D:F4:72:54 X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:7aa0:2701::-2400:7aa0:2702:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3e:0b:83:ab:3b:24:81:e9:c1:e5:63:eb:d2:ea:01:da:48:fe: 9c:ac:57:4f:c5:c5:55:81:a7:3e:48:77:89:16:e2:a2:c5:49: 20:f0:4a:7f:a1:e0:37:17:1c:32:d7:17:d9:e6:f2:5f:f0:a7: fe:ec:b8:a4:9b:50:04:f3:55:a7:db:d6:5f:d9:c6:df:77:93: 15:8b:40:9d:bc:fd:bc:4f:25:73:f4:56:31:cb:a2:6e:0a:6d: bd:1e:9c:17:c9:8a:2a:dd:da:5e:7c:a3:5c:4a:d2:05:7b:d3: 1f:04:c7:ff:c3:e4:80:fa:2d:79:4a:4b:2e:00:1c:4e:01:04: f4:9b:e1:11:dd:5c:91:bb:f3:7f:78:0a:f5:3f:18:48:77:5a: ea:1d:83:d7:b2:d5:b1:2b:bc:cb:b6:bd:af:36:b3:e4:49:42: 94:5a:f3:bb:2f:3c:af:7f:c1:55:ff:30:15:c6:c1:cb:a1:92: b9:45:90:b2:91:69:5a:49:61:34:f5:d0:33:d7:9b:ce:07:79: a8:ea:0d:1a:e6:5e:ad:34:12:3b:4c:8e:11:88:2e:85:31:34: bd:35:c4:7a:24:70:bd:36:28:b5:d0:fd:06:db:de:43:4a:68: f2:76:56:96:64:85:e1:4c:f8:10:29:90:2c:4f:35:96:3a:3c: 26:2a:31:0c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjUwNjI3MDUwNDI3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMjY1YS00NjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAlO7Bo0/eXNT23VwE/tVM7hRx1AE0ueXpC8aSTEjHtgVJmF0Ol+xylrhu/+ Hg+LMuuUKDoPudf9LCizWxe8rJInXZuSKlN72kBZ8yTC/YntWM07nmiXSSdKDlkh ZQJBR81QoGICIjcDhytWIebik8ya6UzDx6fvSXE1fZuRxpvYbOrvVt02miU/p9M9 1cn+7mBC3LC6EDbqxwPjVuJXE2di88aIvHbCtVIZ4SsReTouh3SqPnB+1r0pVzb1 PUzhSsccg//cErpRfLvpV13RDjU9TBfqQqfqhNs/Dl7W0boy2JzVxjvOb8RWLCYs jupufVomPp0cOjQJ1bjy6o2lKwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFEJYJ8c8 x++15hZFegfNKaad9HJUMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvNkM4RUFDN0Ex OTVGMTFGMDg0MDhGQTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQAeqAnAQMHACQAeqAnAjANBgkqhkiG9w0BAQsFAAOC AQEAPguDqzskgenB5WPr0uoB2kj+nKxXT8XFVYGnPkh3iRbiosVJIPBKf6HgNxcc MtcX2ebyX/Cn/uy4pJtQBPNVp9vWX9nG33eTFYtAnbz9vE8lc/RWMcuibgptvR6c F8mKKt3aXnyjXErSBXvTHwTH/8PkgPoteUpLLgAcTgEE9JvhEd1ckbvzf3gK9T8Y SHda6h2D17LVsSu8y7a9rzaz5ElClFrzuy88r3/BVf8wFcbBy6GSuUWQspFpWklh NPXQM9ebzgd5qOoNGuZerTQSO0yOEYguhTE0vTXEeiRwvTYotdD9BtveQ0po8nZW lmSF4Uz4ECmQLE81ljo8JioxDA== -----END CERTIFICATE-----Generated at Thu Jul 3 14:51:40 2025 by rpki-client