$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/B2D021C8A55A11F094B38083C4F9AE02.roa File: B2D021C8A55A11F094B38083C4F9AE02.roa (raw, json) Hash identifier: y/V1QRbYCKw+U4t4QASRjqSZUaC3x4XO8OAQeMFDOTk= Subject key identifier: CD:F0:A0:BE:1A:9F:D1:EF:E5:12:56:25:F1:FB:D5:83:AE:A9:3D:AC Certificate issuer: /CN=A91D4781/serialNumber=1EC66D906F7942DF3B77BFDEDDFD009FEB2BFD21 Certificate serial: 03 Authority key identifier: 1E:C6:6D:90:6F:79:42:DF:3B:77:BF:DE:DD:FD:00:9F:EB:2B:FD:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsZtkG95Qt87d7_e3f0An-sr_SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/B2D021C8A55A11F094B38083C4F9AE02.roa Signing time: Thu 09 Oct 2025 21:55:42 +0000 ROA not before: Thu 09 Oct 2025 21:55:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151660 IP address blocks: 2402:3120::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/HsZtkG95Qt87d7_e3f0An-sr_SE.crl rsync://rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/HsZtkG95Qt87d7_e3f0An-sr_SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsZtkG95Qt87d7_e3f0An-sr_SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4781, serialNumber=1EC66D906F7942DF3B77BFDEDDFD009FEB2BFD21 Validity Not Before: Oct 9 21:55:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68e82f5d-c448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:78:e4:09:04:88:b1:aa:a5:49:3a:dc:9a: 75:bf:9c:e1:dd:c8:bb:44:b2:de:27:74:e9:e1:7e: c4:78:35:f9:07:40:45:23:5d:a1:76:fb:c9:40:4c: 43:46:bd:e6:6a:eb:99:95:32:3a:00:8a:e5:d2:f3: 42:c6:ac:02:30:6a:ef:c7:44:61:19:ef:68:12:8d: 28:bb:f6:bb:57:a1:7e:91:fc:e7:aa:ed:36:0b:0d: 8e:bc:83:3f:30:81:30:87:48:25:76:1e:cb:21:36: 6b:62:7f:64:c9:f0:d9:a9:54:c3:86:e2:1c:f8:6e: 65:c4:4f:73:20:95:1c:86:92:54:30:db:4b:07:f8: 6f:05:02:7f:e5:73:9d:1f:4d:7c:5f:7c:0c:c0:7e: eb:96:f5:88:aa:00:7a:85:d5:d2:a3:e7:d7:5f:d3: 3e:95:92:05:a8:58:34:98:75:48:82:ca:b9:04:44: 9e:04:b2:6b:ef:f6:51:61:e5:2d:55:93:cc:56:77: a5:23:63:7d:69:0f:ee:bf:43:85:45:68:64:f6:ee: 9a:60:5a:a4:ab:72:87:a6:75:56:a5:fd:96:54:14: f7:8c:97:1d:55:ca:31:48:2d:e6:78:53:27:bf:7a: 10:a8:49:c7:c0:bd:fe:7f:e4:e6:e1:9f:3f:4f:1e: 48:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F0:A0:BE:1A:9F:D1:EF:E5:12:56:25:F1:FB:D5:83:AE:A9:3D:AC X509v3 Authority Key Identifier: keyid:1E:C6:6D:90:6F:79:42:DF:3B:77:BF:DE:DD:FD:00:9F:EB:2B:FD:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/HsZtkG95Qt87d7_e3f0An-sr_SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsZtkG95Qt87d7_e3f0An-sr_SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4781/E290476CA48D11F0AD97F016C4F9AE02/B2D021C8A55A11F094B38083C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:3120::/32 Signature Algorithm: sha256WithRSAEncryption 9d:a6:6f:a9:a7:75:f8:ae:34:9d:2a:4f:f8:9e:f2:4d:fd:af: e6:60:e3:f8:39:65:77:b3:3b:ed:08:ca:97:f1:8f:a3:56:c2: 63:05:77:31:f9:6b:8c:75:1f:01:9c:2a:b1:d4:b1:aa:0a:51: 7f:31:40:c4:1d:ef:51:5f:c8:bb:f6:80:e8:60:06:f7:2b:da: 65:ca:11:df:c3:bf:84:f7:83:f8:81:00:7a:22:37:74:d8:60: 72:c7:13:54:2c:7b:e3:3a:70:13:ef:4c:c9:22:05:a5:33:c5: e0:dd:36:bd:ed:9d:e1:80:40:bb:9b:36:fb:bd:79:e9:cf:a8: 62:89:90:e9:2a:28:dc:d9:21:40:b2:a7:04:b3:77:4c:9f:f7: 86:03:67:02:44:4f:71:9e:92:6a:19:ba:b6:06:00:3f:01:7b: fe:73:ff:8d:38:4a:99:0e:b7:a7:67:eb:4c:fe:56:81:61:f3: dc:08:7f:19:44:f7:1e:88:2e:c0:ed:44:7c:39:02:66:b7:39: cd:0c:48:72:29:7b:bb:1b:16:50:70:bc:fb:4e:9a:e0:db:02: 39:57:26:84:98:74:7c:b9:08:04:13:68:d4:0d:62:c1:6e:48: 30:cc:e9:4f:a0:38:2d:24:4e:f1:ee:c8:f5:90:7b:4b:42:b1: f6:f8:23:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDc4MTExMC8GA1UEBRMoMUVDNjZEOTA2Rjc5NDJERjNCNzdCRkRFRERGRDAwOUZF QjJCRkQyMTAeFw0yNTEwMDkyMTU1NDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTgyZjVkLWM0NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbDnjkCQSIsaqlSTrcmnW/nOHdyLtEst4ndOnhfsR4NfkHQEUjXaF2+8lATENG veZq65mVMjoAiuXS80LGrAIwau/HRGEZ72gSjSi79rtXoX6R/Oeq7TYLDY68gz8w gTCHSCV2HsshNmtif2TJ8NmpVMOG4hz4bmXET3MglRyGklQw20sH+G8FAn/lc50f TXxffAzAfuuW9YiqAHqF1dKj59df0z6VkgWoWDSYdUiCyrkERJ4Esmvv9lFh5S1V k8xWd6UjY31pD+6/Q4VFaGT27ppgWqSrcoemdVal/ZZUFPeMlx1VyjFILeZ4Uye/ ehCoScfAvf5/5Obhnz9PHkjpAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUzfCgvhqf 0e/lElYl8fvVg66pPawwHwYDVR0jBBgwFoAUHsZtkG95Qt87d7/e3f0An+sr/SEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NzgxL0UyOTA0NzZDQTQ4 RDExRjBBRDk3RjAxNkM0RjlBRTAyL0hzWnRrRzk1UXQ4N2Q3X2UzZjBBbi1zcl9T RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSHNadGtHOTVRdDg3ZDdfZTNmMEFuLXNyX1NFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDc4MS9FMjkwNDc2Q0E0OEQxMUYwQUQ5N0YwMTZDNEY5QUUwMi9CMkQwMjFDOEE1 NUExMUYwOTRCMzgwODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCMSAwDQYJKoZIhvcNAQELBQADggEBAJ2mb6mndfiuNJ0q T/ie8k39r+Zg4/g5ZXezO+0Iypfxj6NWwmMFdzH5a4x1HwGcKrHUsaoKUX8xQMQd 71FfyLv2gOhgBvcr2mXKEd/Dv4T3g/iBAHoiN3TYYHLHE1Qse+M6cBPvTMkiBaUz xeDdNr3tneGAQLubNvu9eenPqGKJkOkqKNzZIUCypwSzd0yf94YDZwJET3GekmoZ urYGAD8Be/5z/404SpkOt6dn60z+VoFh89wIfxlE9x6ILsDtRHw5Ama3Oc0MSHIp e7sbFlBwvPtOmuDbAjlXJoSYdHy5CAQTaNQNYsFuSDDM6U+gOC0kTvHuyPWQe0tC sfb4I4Y= -----END CERTIFICATE-----Generated at Mon Oct 20 14:53:42 2025 by rpki-client