$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa File: F6668BF41FF311EFB0A97A82C4F9AE02.roa (raw, json) Hash identifier: qfe+ZRHsuzJUkN6PV847BSXw2bwliF4QuG/2zTq3t3U= Subject key identifier: 9E:1A:CE:76:14:C2:86:E0:DD:40:8B:E7:A4:3B:8A:98:0F:0C:3E:38 Certificate issuer: /CN=A91E57A9/serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Certificate serial: BE Authority key identifier: F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa Signing time: Tue 03 Jun 2025 06:05:36 +0000 ROA not before: Tue 03 Jun 2025 06:05:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138327 IP address blocks: 2001:df3:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Validity Not Before: Jun 3 06:05:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e90b0-df45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:78:69:32:55:4b:23:bd:3d:04:a4:49:28:3b: 4f:c4:eb:fb:44:62:88:a3:a3:cb:59:58:71:b1:0d: 97:a2:8f:4f:06:a7:5c:c0:30:b2:5f:ee:bc:3b:de: 00:03:d9:d0:72:17:55:11:f9:5f:cd:af:9e:65:dd: 69:a0:f8:72:85:8c:2c:1e:55:b7:50:ea:81:6a:f4: f2:8b:78:23:da:45:f1:f0:e8:23:33:f6:bd:d9:54: 03:ec:2e:df:53:51:b9:32:46:29:d1:ad:e8:53:7b: ca:d2:e9:e5:23:ca:9a:76:56:b7:33:e3:7c:ad:8d: d7:34:50:01:57:f1:4c:a3:95:32:15:36:40:50:35: 78:71:83:cd:8b:c0:3c:cb:7a:0a:05:c0:16:07:cc: 6d:d6:83:45:10:b4:5b:56:8a:f7:a1:7c:a2:65:b6: 3b:6f:77:15:6d:5b:19:51:be:a1:f6:13:d4:cc:69: 42:7d:e1:9c:d6:3c:41:54:5c:00:3e:d7:41:50:d8: 59:1b:a9:57:a5:87:f1:19:c2:21:de:1e:38:85:a2: 37:9d:b9:17:1b:a2:d2:1c:04:0b:80:74:2c:17:a4: e5:c7:06:ea:32:c5:cd:a1:f5:f6:6d:9f:f0:3c:85: ae:00:d0:0a:a2:16:a7:3b:09:d5:38:00:5c:8b:c4: 7f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1A:CE:76:14:C2:86:E0:DD:40:8B:E7:A4:3B:8A:98:0F:0C:3E:38 X509v3 Authority Key Identifier: keyid:F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:de40::/48 Signature Algorithm: sha256WithRSAEncryption 3d:66:5c:d6:e3:28:4b:26:79:24:db:3c:16:fa:d9:13:3d:72: 78:6e:e6:4d:28:69:6c:d4:4d:a4:c2:5d:2b:81:79:7b:0c:96: 7a:9f:f7:42:a9:e7:94:a6:75:4b:a5:f0:4e:ba:79:14:d7:35: 28:e7:d0:5a:05:39:7a:f1:2d:11:4f:01:c2:ae:77:d3:5b:89: 88:07:38:90:59:d9:d4:10:46:f1:4d:0f:27:9b:0e:b5:25:56: be:44:03:37:b2:d6:54:9b:13:22:68:e2:65:3c:26:1b:0a:de: d8:ab:41:52:0b:78:f5:b0:47:a8:fb:38:f8:d1:23:4f:28:16: ff:f0:07:d0:0e:f4:8c:64:c9:56:31:0d:3d:80:c7:96:94:e4: dd:cf:16:87:0f:f6:d7:a3:14:04:07:b4:60:ae:85:ee:e6:5d: 98:04:92:2e:84:50:4a:ae:7b:4b:d2:58:fd:59:8d:97:3e:19: 02:1f:7a:a2:2a:35:51:22:70:d9:78:78:6b:5e:ad:53:d3:5d: 2c:2a:3f:6b:de:08:57:8b:bb:f8:54:f7:87:06:25:9e:74:31: 1c:50:fe:6f:bd:64:32:00:57:9f:2c:61:8c:f0:4b:ac:5f:3d: a0:12:83:c0:84:d1:77:cb:8b:a4:13:a7:35:de:b5:af:3d:1f: 90:30:3d:c1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKEY3RjA2MzY5Mzk5RDk5MzVGNUZCNTlGRDU4NTcxNTQx QTU4MUNDNjMwHhcNMjUwNjAzMDYwNTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlOTBiMC1kZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXhpMlVLI709BKRJKDtPxOv7RGKIo6PLWVhxsQ2Xoo9PBqdcwDCyX+68O94A A9nQchdVEflfza+eZd1poPhyhYwsHlW3UOqBavTyi3gj2kXx8OgjM/a92VQD7C7f U1G5MkYp0a3oU3vK0unlI8qadla3M+N8rY3XNFABV/FMo5UyFTZAUDV4cYPNi8A8 y3oKBcAWB8xt1oNFELRbVor3oXyiZbY7b3cVbVsZUb6h9hPUzGlCfeGc1jxBVFwA PtdBUNhZG6lXpYfxGcIh3h44haI3nbkXG6LSHAQLgHQsF6TlxwbqMsXNofX2bZ/w PIWuANAKohanOwnVOABci8R/zQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJ4aznYU wobg3UCL56Q7ipgPDD44MB8GA1UdIwQYMBaAFPfwY2k5nZk19ftZ/VhXFUGlgcxj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS84NjI0NjM0ODFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi85X0JqYVRtZG1UWDEtMW45V0ZjVlFhV0J6 R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlfQmphVG1kbVRYMS0xbjlXRmNWUWFXQnpHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QTkvODYyNDYzNDgxRkYzMTFFRkEzRkIyQzgxQzRGOUFFMDIvRjY2NjhCRjQx RkYzMTFFRkIwQTk3QTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3z3kAwDQYJKoZIhvcNAQELBQADggEBAD1mXNbjKEsm eSTbPBb62RM9cnhu5k0oaWzUTaTCXSuBeXsMlnqf90Kp55SmdUul8E66eRTXNSjn 0FoFOXrxLRFPAcKud9NbiYgHOJBZ2dQQRvFNDyebDrUlVr5EAzey1lSbEyJo4mU8 JhsK3tirQVILePWwR6j7OPjRI08oFv/wB9AO9IxkyVYxDT2Ax5aU5N3PFocP9tej FAQHtGCuhe7mXZgEki6EUEque0vSWP1ZjZc+GQIfeqIqNVEicNl4eGterVPTXSwq P2veCFeLu/hU94cGJZ50MRxQ/m+9ZDIAV58sYYzwS6xfPaASg8CE0XfLi6QTpzXe ta89H5AwPcE= -----END CERTIFICATE-----Generated at Fri Jul 4 23:22:13 2025 by rpki-client