$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa File: D40753E8F6C411EEAFF62079C4F9AE02.roa (raw, json) Hash identifier: TJhzWTZSa5k8Gql/1DKmw/NfXVCNcWBU1ddvojpFVGI= Subject key identifier: 22:50:98:D3:36:96:CE:5D:27:2C:19:81:1E:74:96:C0:E7:D5:7C:F2 Certificate issuer: /CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3 Certificate serial: 030C Authority key identifier: 86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa Signing time: Tue 01 Jul 2025 02:08:24 +0000 ROA not before: Tue 01 Jul 2025 02:08:24 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 262287 IP address blocks: 2404:f980:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.crl rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9945, serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3 Validity Not Before: Jul 1 02:08:24 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68634317-d32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:36:e6:1d:0b:72:e7:8e:1a:26:c4:9d:7d:94: 20:76:02:19:12:a3:16:44:3a:50:e1:e3:33:f2:af: 71:28:61:98:3f:00:5b:3d:90:42:9e:75:78:97:1c: 7b:01:79:99:9b:9c:09:a5:06:9e:b8:4f:55:61:f6: c8:a0:ee:ef:48:91:2c:b0:f8:69:90:17:48:9f:6a: 2e:d3:e7:d6:29:80:2d:af:2a:65:76:61:9d:66:bf: f2:f8:dd:19:eb:23:c1:6a:fa:5d:c7:00:65:ee:57: c2:37:35:22:de:6d:13:b9:9c:5c:e7:a5:74:89:c6: df:e0:da:d3:38:3c:72:ad:65:76:5f:87:3c:10:a1: c8:47:5e:94:c3:68:9e:c8:5b:96:d1:a0:57:7f:0c: 44:f9:c9:02:be:7f:45:a9:9f:aa:5d:7f:84:b2:05: 10:b8:86:4b:51:90:55:83:05:3a:2f:c0:05:f6:cb: e4:8c:5d:78:ad:03:59:cf:ec:34:72:09:41:c1:8e: 53:64:e4:c6:f2:dd:9e:b4:0b:de:46:43:5f:7d:8c: 0e:e2:d4:0f:2f:07:18:b2:20:ca:b4:11:c4:85:31: bc:27:2d:94:1c:da:cf:cc:d8:26:29:32:bb:f0:48: a5:28:86:0a:e0:f3:9e:8c:f0:4a:30:d8:48:7c:74: 3f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:50:98:D3:36:96:CE:5D:27:2C:19:81:1E:74:96:C0:E7:D5:7C:F2 X509v3 Authority Key Identifier: keyid:86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/D40753E8F6C411EEAFF62079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f980:8::/48 Signature Algorithm: sha256WithRSAEncryption 7c:ef:e6:20:99:56:af:92:b9:e4:20:b2:b8:25:3b:08:37:34: b9:30:c4:04:b2:ec:29:4e:1f:0e:8b:8a:2c:66:61:7b:53:0b: ea:69:4e:ac:d7:a0:2e:b7:8f:c7:e8:d7:89:ce:ec:0e:9f:ae: 71:cb:c7:5c:70:00:16:d0:ff:78:f3:43:87:27:f4:4e:83:32: 91:2e:96:5b:3d:e0:c8:59:5a:e6:86:f9:40:bb:cf:6c:d3:6e: 43:4b:40:52:2e:6a:53:d2:34:16:18:ff:dd:bc:45:71:13:d5: 3c:f2:61:ba:65:5e:bb:24:8a:35:7f:84:db:87:60:86:b6:05: 8b:2e:51:99:da:59:03:01:37:3d:9e:d4:02:0a:fd:0d:90:ee: f9:a8:7b:d2:db:23:88:84:04:20:cb:24:6c:25:72:34:86:81: 46:61:3f:eb:f4:c1:b9:6a:96:2c:fd:05:58:ac:c8:8f:c3:0b: 29:44:45:f9:33:5c:f6:56:d3:ca:ad:c6:82:84:1f:0f:f4:4f: ab:20:e2:a1:ca:04:d8:a8:6b:55:1a:54:ff:cb:07:70:8e:cc: 90:36:45:9e:e9:a0:42:59:28:e4:80:da:a9:ee:56:77:2c:30: 5d:4b:1f:9a:8b:a0:82:24:58:16:ca:dd:34:6d:ac:0b:0b:be: 65:30:31:51 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5NDUxMTAvBgNVBAUTKDg2OEVDQjY0MjVEQTgzMzI4ODkyRTU3QkIwREY2NDRF MUFFQjczQjMwHhcNMjUwNzAxMDIwODI0WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNDMxNy1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DbmHQty544aJsSdfZQgdgIZEqMWRDpQ4eMz8q9xKGGYPwBbPZBCnnV4lxx7 AXmZm5wJpQaeuE9VYfbIoO7vSJEssPhpkBdIn2ou0+fWKYAtrypldmGdZr/y+N0Z 6yPBavpdxwBl7lfCNzUi3m0TuZxc56V0icbf4NrTODxyrWV2X4c8EKHIR16Uw2ie yFuW0aBXfwxE+ckCvn9FqZ+qXX+EsgUQuIZLUZBVgwU6L8AF9svkjF14rQNZz+w0 cglBwY5TZOTG8t2etAveRkNffYwO4tQPLwcYsiDKtBHEhTG8Jy2UHNrPzNgmKTK7 8EilKIYK4POejPBKMNhIfHQ/6wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCJQmNM2 ls5dJywZgR50lsDn1XzyMB8GA1UdIwQYMBaAFIaOy2Ql2oMyiJLle7DfZE4a63Oz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTk0NS9CQzAwQzhGMkYw OUUxMUVDQUVFNzNFMTlDNEY5QUUwMi9obzdMWkNYYWd6S0lrdVY3c045a1RocnJj N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvN0xaQ1hhZ3pLSWt1VjdzTjlrVGhycmM3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk5NDUvQkMwMEM4RjJGMDlFMTFFQ0FFRTczRTE5QzRGOUFFMDIvRDQwNzUzRThG NkM0MTFFRUFGRjYyMDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBPmAAAgwDQYJKoZIhvcNAQELBQADggEBAHzv5iCZVq+S ueQgsrglOwg3NLkwxASy7ClOHw6LiixmYXtTC+ppTqzXoC63j8fo14nO7A6frnHL x1xwABbQ/3jzQ4cn9E6DMpEulls94MhZWuaG+UC7z2zTbkNLQFIualPSNBYY/928 RXET1TzyYbplXrskijV/hNuHYIa2BYsuUZnaWQMBNz2e1AIK/Q2Q7vmoe9LbI4iE BCDLJGwlcjSGgUZhP+v0wblqliz9BVisyI/DCylERfkzXPZW08qtxoKEHw/0T6sg 4qHKBNioa1UaVP/LB3COzJA2RZ7poEJZKOSA2qnuVncsMF1LH5qLoIIkWBbK3TRt rAsLvmUwMVE= -----END CERTIFICATE-----Generated at Wed Jul 2 02:06:00 2025 by rpki-client