$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa File: 3F9CDA68179911EDB9008D18C4F9AE02.roa (raw, json) Hash identifier: DFqO6gnNkZlWs0i15FxZnhMePoBQwEKxGo7fxkcs71I= Subject key identifier: 84:74:58:A1:FE:5A:3A:78:62:E0:F4:72:85:52:34:FD:81:DA:23:3F Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0664 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa Signing time: Mon 30 Jun 2025 23:20:34 +0000 ROA not before: Mon 30 Jun 2025 23:20:34 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 24390 IP address blocks: 2001:dd8::/48 maxlen: 48 2402:2940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Jun 30 23:20:34 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68631bc1-3d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:62:11:08:c5:a9:d0:c0:4c:16:eb:7b:eb: 0a:39:f7:ee:c6:25:7b:43:3d:55:83:09:61:98:64: db:db:32:2b:92:ce:ef:8e:b3:e3:55:18:42:27:d4: 9f:2f:58:68:5a:1e:5e:32:89:a1:04:f0:e3:5c:77: a0:f3:a9:46:25:cd:68:e5:99:be:59:94:25:60:c9: e1:d4:c5:05:80:5d:8c:85:b9:d7:db:c4:08:4e:00: 8c:d6:5e:de:d4:98:82:c5:dd:2a:5e:be:8d:67:81: 96:19:67:be:7c:9b:47:28:f9:46:01:5c:68:51:58: 66:4a:d3:57:4a:b2:fd:ab:20:95:33:8b:cd:cd:d8: c9:0b:ae:47:33:99:91:44:df:a1:37:8d:58:c5:7b: a6:bf:58:0c:4c:ba:71:63:bc:0d:df:bd:de:45:0b: a3:70:29:80:d7:cd:78:29:e1:1a:c6:3f:9b:76:e5: 0e:a8:5e:ab:54:63:b7:e5:37:39:06:80:8f:c5:7d: 12:fb:65:ff:a7:51:2c:ec:85:c4:8d:71:af:ac:65: 69:af:cb:48:b3:e0:27:b3:fd:76:a3:b8:e0:11:60: c8:84:8c:e7:80:5a:b9:b0:4f:bf:59:ed:07:3c:dc: 1f:61:30:20:14:41:73:2c:0a:88:d2:0c:37:de:2d: 67:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:74:58:A1:FE:5A:3A:78:62:E0:F4:72:85:52:34:FD:81:DA:23:3F X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:dd8::/48 2402:2940::/32 Signature Algorithm: sha256WithRSAEncryption 26:3b:5a:81:cc:77:37:31:4e:0c:2b:13:ed:5f:93:95:d6:02: 37:33:4e:fe:10:ee:39:48:09:d7:3d:64:1f:e7:55:fd:cb:38: 8b:31:d4:bf:78:4c:e8:97:db:6a:1b:fc:92:7a:81:68:22:74: 99:e6:b1:c5:1c:d2:4b:71:3e:fb:32:71:44:a9:cb:ab:83:e8: 56:c4:ad:42:4c:b5:d5:ee:84:e0:d6:e8:6c:32:e3:95:46:90: da:a3:cc:70:5b:40:c8:95:e1:e1:5e:da:79:e9:7d:2e:cb:4f: f6:a9:58:3d:75:a7:74:fc:e9:af:27:36:e5:3c:2b:94:d4:b5: 69:0a:da:89:0f:6f:c4:b2:2d:67:ee:f7:29:d5:b7:2a:2d:6b: 0a:81:8d:72:d2:ff:d0:fe:b6:70:2b:51:fc:40:32:05:e4:e3: a0:fe:a4:95:91:30:40:f8:56:dc:5b:11:0d:68:7d:2f:a3:0b: e2:2f:2f:c6:dd:1c:56:93:17:43:f2:fc:fa:b4:d1:66:e2:7b: 1e:31:4d:52:d2:56:53:d1:69:17:f2:c4:66:a3:d7:cf:33:a7: 6e:a5:61:90:b0:ad:36:72:06:76:9e:8e:ee:2c:80:70:e6:3e: be:57:81:30:e0:8b:1a:d9:1c:3a:be:1c:d2:2e:11:44:4f:9d: 53:36:00:d0 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNjMwMjMyMDM0WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMWJjMS0zZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgBiEQjFqdDATBbre+sKOffuxiV7Qz1VgwlhmGTb2zIrks7vjrPjVRhCJ9Sf L1hoWh5eMomhBPDjXHeg86lGJc1o5Zm+WZQlYMnh1MUFgF2MhbnX28QITgCM1l7e 1JiCxd0qXr6NZ4GWGWe+fJtHKPlGAVxoUVhmStNXSrL9qyCVM4vNzdjJC65HM5mR RN+hN41YxXumv1gMTLpxY7wN373eRQujcCmA1814KeEaxj+bduUOqF6rVGO35Tc5 BoCPxX0S+2X/p1Es7IXEjXGvrGVpr8tIs+Ans/12o7jgEWDIhIzngFq5sE+/We0H PNwfYTAgFEFzLAqI0gw33i1nLQIDAQABo4ICnzCCApswHQYDVR0OBBYEFIR0WKH+ Wjp4YuD0coVSNP2B2iM/MB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMEQvQTI4RUNCQzA4QUI2MTFFQjgyMzdENDE0QzRGOUFFMDIvM0Y5Q0RBNjgx Nzk5MTFFREI5MDA4RDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQcBAf8E GjAYMBYEAgACMBADBwAgAQ3YAAADBQAkAilAMA0GCSqGSIb3DQEBCwUAA4IBAQAm O1qBzHc3MU4MKxPtX5OV1gI3M07+EO45SAnXPWQf51X9yziLMdS/eEzol9tqG/yS eoFoInSZ5rHFHNJLcT77MnFEqcurg+hWxK1CTLXV7oTg1uhsMuOVRpDao8xwW0DI leHhXtp56X0uy0/2qVg9dad0/OmvJzblPCuU1LVpCtqJD2/Esi1n7vcp1bcqLWsK gY1y0v/Q/rZwK1H8QDIF5OOg/qSVkTBA+FbcWxENaH0vowviLy/G3RxWkxdD8vz6 tNFm4nseMU1S0lZT0WkX8sRmo9fPM6dupWGQsK02cgZ2no7uLIBw5j6+V4Ew4Isa 2Rw6vhzSLhFET51TNgDQ -----END CERTIFICATE-----Generated at Thu Jul 3 00:43:26 2025 by rpki-client