$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/8D93B9E0D8E911EE85D9881FC4F9AE02.roa File: 8D93B9E0D8E911EE85D9881FC4F9AE02.roa (raw, json) Hash identifier: V9x6bpv8xEZtOf/5cMvsByj+Mn6sg05mBQ57/CBIKNU= Subject key identifier: BF:F9:FD:DB:E5:98:3A:A3:CC:CF:00:02:DA:C4:56:0C:8A:17:63:85 Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 228B Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/8D93B9E0D8E911EE85D9881FC4F9AE02.roa Signing time: Mon 30 Jun 2025 16:24:51 +0000 ROA not before: Mon 30 Jun 2025 16:24:51 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 36980 IP address blocks: 2402:5380:6f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8843 (0x228b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Jun 30 16:24:51 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6862ba53-c9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:13:a4:95:b0:f2:8b:3c:85:6c:3f:7d:ab: e7:62:ea:8d:25:e7:55:cc:48:70:f8:27:66:75:0d: 0a:ee:ce:31:f3:1f:33:e7:11:d9:29:34:54:91:b8: 7b:08:71:cb:9b:40:e2:e9:66:8a:8c:59:7f:a0:34: 7c:d1:07:4a:32:cd:f7:7d:4e:e6:d8:f9:ac:14:0e: b1:64:d5:0a:c8:00:fc:3d:ef:da:38:8f:62:0c:c2: 40:e5:9d:df:02:f9:1e:18:1b:d3:6a:27:0e:83:3c: 5d:b1:49:cd:3f:31:0f:20:13:c2:48:49:3d:ef:70: 93:d3:99:f0:32:5b:d6:9b:80:ba:4e:af:00:a5:24: 94:de:5e:48:7b:f9:08:d2:62:4b:f4:06:f6:95:dc: e5:9a:24:b6:be:5b:10:37:b3:9d:d6:e0:05:51:ce: 13:5a:5f:3e:e7:cc:97:46:f8:1a:50:30:fd:38:80: e6:c1:53:b8:73:34:e8:56:d9:9b:6a:29:01:be:bf: c7:a5:09:4e:86:bb:0d:46:c2:81:dd:fd:18:4e:ba: c0:03:77:35:0f:2c:e8:a9:78:15:c4:e4:46:2a:87: 23:7c:d6:44:b3:24:2c:54:42:3b:c3:fb:c3:cc:77: c8:be:8b:6d:c6:33:3f:fc:13:0a:69:58:81:74:63: 30:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F9:FD:DB:E5:98:3A:A3:CC:CF:00:02:DA:C4:56:0C:8A:17:63:85 X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/8D93B9E0D8E911EE85D9881FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:5380:6f00::/40 Signature Algorithm: sha256WithRSAEncryption 86:da:a5:20:51:7f:23:7d:dd:57:08:33:a9:11:59:ce:2c:31: 79:ef:f7:20:58:02:52:70:a7:fd:cf:34:3c:85:11:be:30:34: 98:b3:0b:be:67:00:cc:dc:97:60:47:d0:cf:ea:93:dd:16:b9: ea:3d:9b:8c:2f:50:2c:ce:67:dd:65:f6:01:f5:7b:8e:d0:6d: 71:a4:5f:36:46:02:13:cc:f0:c1:9f:c8:7b:1a:9c:00:73:2d: df:09:21:4e:dc:51:21:d1:72:bb:bc:a8:c4:fb:fe:80:7a:36: 7b:62:d7:47:65:66:d0:f2:e6:ff:0c:b5:49:8c:d3:19:03:bb: db:2e:94:e5:7b:97:64:57:e9:14:77:d5:38:30:8c:ab:b8:7b: 37:bb:bf:87:34:c1:8f:8a:e4:be:fe:47:90:ca:4d:72:71:19: 13:42:20:89:a2:67:62:22:22:1b:b1:d5:1b:b6:e7:aa:db:66: 95:f8:3a:10:79:e0:87:6c:c2:34:a3:1d:b8:0f:ff:fd:93:b8: f2:34:96:e4:0b:db:b1:f3:12:7b:7b:a8:63:ca:76:ac:a5:a8: 06:aa:c4:5d:b8:53:16:5a:6e:dc:7d:e0:54:91:4b:0c:b3:05: 2e:ae:28:df:d5:34:d4:d9:81:3b:79:6a:df:25:0e:b4:5e:62: a8:e3:6f:f0 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICIoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjUwNjMwMTYyNDUxWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyYmE1My1jOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtUTpJWw8os8hWw/favnYuqNJedVzEhw+CdmdQ0K7s4x8x8z5xHZKTRUkbh7 CHHLm0Di6WaKjFl/oDR80QdKMs33fU7m2PmsFA6xZNUKyAD8Pe/aOI9iDMJA5Z3f AvkeGBvTaicOgzxdsUnNPzEPIBPCSEk973CT05nwMlvWm4C6Tq8ApSSU3l5Ie/kI 0mJL9Ab2ldzlmiS2vlsQN7Od1uAFUc4TWl8+58yXRvgaUDD9OIDmwVO4czToVtmb aikBvr/HpQlOhrsNRsKB3f0YTrrAA3c1DyzoqXgVxORGKocjfNZEsyQsVEI7w/vD zHfIvottxjM//BMKaViBdGMwdwIDAQABo4IClzCCApMwHQYDVR0OBBYEFL/5/dvl mDqjzM8AAtrEVgyKF2OFMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJBMUMvNjNCMjE0QTJDODE1MTFFNTgxRDIwODg0QzRGOUFFMDIvOEQ5M0I5RTBE OEU5MTFFRTg1RDk4ODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAlOAbzANBgkqhkiG9w0BAQsFAAOCAQEAhtqlIFF/I33d VwgzqRFZziwxee/3IFgCUnCn/c80PIURvjA0mLMLvmcAzNyXYEfQz+qT3Ra56j2b jC9QLM5n3WX2AfV7jtBtcaRfNkYCE8zwwZ/IexqcAHMt3wkhTtxRIdFyu7yoxPv+ gHo2e2LXR2Vm0PLm/wy1SYzTGQO72y6U5XuXZFfpFHfVODCMq7h7N7u/hzTBj4rk vv5HkMpNcnEZE0IgiaJnYiIiG7HVG7bnqttmlfg6EHngh2zCNKMduA///ZO48jSW 5AvbsfMSe3uoY8p2rKWoBqrEXbhTFlpu3H3gVJFLDLMFLq4o39U01NmBO3lq3yUO tF5iqONv8A== -----END CERTIFICATE-----Generated at Sun Jul 6 10:37:36 2025 by rpki-client