$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa File: A55DE586ED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: ZKyZxyNBz5zb2OW/liXlXub2chKOr5/WEo8h6rjJk8k= Subject key identifier: 31:7C:5F:C3:C7:1B:98:7B:D8:EB:BE:66:05:B8:93:02:92:DA:6B:3E Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 02B9 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa Signing time: Wed 11 Jun 2025 02:18:40 +0000 ROA not before: Wed 11 Jun 2025 02:18:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18004 IP address blocks: 2407:2440:1b::/48 maxlen: 48 2407:2440:1c::/48 maxlen: 48 2407:2440:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 02:18:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848e780-a929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f2:5f:da:e3:af:f0:98:a2:62:48:88:a2:0b: e1:91:5b:1b:29:1d:55:59:2d:7b:f5:56:a3:5f:3f: 20:87:14:36:a3:02:f9:fc:75:cc:40:9c:fa:c7:3e: df:f1:4a:98:e5:95:6c:e4:ad:7f:af:34:75:10:f0: 4e:b9:fc:80:6a:22:57:36:8c:e5:76:33:8e:0e:8d: 73:c9:ca:40:29:01:5a:53:0d:1d:b2:f5:14:ea:63: 29:5e:9c:6d:4f:4a:c7:c3:f9:69:95:bb:21:69:7e: 16:d3:d6:3e:5c:a3:a4:b3:9c:8a:ed:41:37:d0:5d: 98:7a:23:22:26:42:61:cb:76:2f:fd:a6:ce:a9:18: 05:af:35:8d:24:c4:59:55:16:18:95:91:3f:ff:f5: e8:ef:89:83:9f:1e:26:ea:3e:c7:d6:c8:3e:41:6a: 83:74:c9:90:81:a9:2c:b1:54:a7:12:e1:f3:e3:8a: c7:4c:65:0c:7c:e2:37:a6:ce:6a:c2:04:17:1a:c6: b8:3e:80:57:00:86:2f:c3:59:59:2c:bd:c1:3b:6a: e6:18:4c:8c:b3:58:ca:02:eb:ae:f7:cf:f6:a7:26: 9b:b1:a6:a8:c2:09:36:f5:c1:a0:5d:42:f3:80:f5: ae:d9:63:03:3d:46:15:91:31:c4:e9:15:42:35:20: c4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7C:5F:C3:C7:1B:98:7B:D8:EB:BE:66:05:B8:93:02:92:DA:6B:3E X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:1b::-2407:2440:1d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption bd:66:40:96:d2:16:00:7c:a3:9e:22:5c:22:b4:1a:e5:31:ed: ee:4c:9a:ec:8b:8d:24:16:f8:4b:32:95:80:8f:10:d6:30:0e: f3:7f:c6:5d:42:c2:ee:36:78:e9:89:9f:2b:33:7d:31:af:c1: a9:2f:c0:40:d9:8b:4b:11:3d:60:94:02:82:ae:88:5b:72:00: 25:8a:fb:57:c0:35:6d:02:fe:6f:11:41:bf:89:bf:e1:32:cc: c9:fd:8d:3e:84:a6:f0:78:46:d8:3d:d8:b6:55:11:ec:36:1a: 71:df:d7:e0:13:08:3c:81:a1:ff:1d:8a:30:bb:a8:6f:63:64: 29:94:d9:3a:35:0d:5e:92:63:43:b1:db:6e:5c:df:87:4a:db: e9:64:bf:ca:b4:ab:ce:16:ed:a9:42:91:41:c3:30:ad:6f:ac: 85:b6:ea:fc:10:3f:9e:93:8e:18:38:7f:30:2c:0b:22:52:b9: 26:52:d5:a7:d5:b4:b5:14:ff:e3:5d:d5:50:4f:7c:57:e7:f4: 05:30:0b:c3:85:3c:20:1b:67:aa:bc:6e:f8:40:87:c8:d2:dc: 7d:d5:7b:f7:6f:9f:3c:00:dc:26:9c:f1:b8:33:07:07:44:64: e2:9c:82:37:70:6d:47:86:eb:d0:d4:8d:31:9a:10:e0:fc:74: 57:1d:6b:6b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwNjExMDIxODQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4ZTc4MC1hOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPJf2uOv8JiiYkiIogvhkVsbKR1VWS179VajXz8ghxQ2owL5/HXMQJz6xz7f 8UqY5ZVs5K1/rzR1EPBOufyAaiJXNozldjOODo1zycpAKQFaUw0dsvUU6mMpXpxt T0rHw/lplbshaX4W09Y+XKOks5yK7UE30F2YeiMiJkJhy3Yv/abOqRgFrzWNJMRZ VRYYlZE///Xo74mDnx4m6j7H1sg+QWqDdMmQgakssVSnEuHz44rHTGUMfOI3ps5q wgQXGsa4PoBXAIYvw1lZLL3BO2rmGEyMs1jKAuuu98/2pyabsaaowgk29cGgXULz gPWu2WMDPUYVkTHE6RVCNSDElQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDF8X8PH G5h72Ou+ZgW4kwKS2ms+MB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTU1REU1ODZF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQHJEAAGwMHASQHJEAAHDANBgkqhkiG9w0BAQsFAAOC AQEAvWZAltIWAHyjniJcIrQa5THt7kya7IuNJBb4SzKVgI8Q1jAO83/GXULC7jZ4 6YmfKzN9Ma/BqS/AQNmLSxE9YJQCgq6IW3IAJYr7V8A1bQL+bxFBv4m/4TLMyf2N PoSm8HhG2D3YtlUR7DYacd/X4BMIPIGh/x2KMLuob2NkKZTZOjUNXpJjQ7Hbblzf h0rb6WS/yrSrzhbtqUKRQcMwrW+shbbq/BA/npOOGDh/MCwLIlK5JlLVp9W0tRT/ 413VUE98V+f0BTALw4U8IBtnqrxu+ECHyNLcfdV792+fPADcJpzxuDMHB0Rk4pyC N3BtR4br0NSNMZoQ4Px0Vx1raw== -----END CERTIFICATE-----Generated at Tue Jul 1 02:53:51 2025 by rpki-client