$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa File: F88F98EA55A211F0978C8774C4F9AE02.roa (raw, json) Hash identifier: QNh4Gp3kB3GNMrEGFFxhGCwWm4t5z9f8382iFUZwPZ0= Subject key identifier: 83:CB:3A:D6:7A:82:7F:CE:F0:E9:4F:C3:68:10:F8:E4:87:84:C1:9A Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 01D3 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa Signing time: Mon 30 Jun 2025 11:11:29 +0000 ROA not before: Mon 30 Jun 2025 11:11:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 399916 IP address blocks: 2402:be0:fefb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Jun 30 11:11:29 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=686270e1-2052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:4b:fc:5f:0d:32:27:f2:84:32:c3:88:b0: a1:dc:b9:ca:48:61:13:2e:d8:99:b6:d1:56:ad:9c: d3:43:ab:d5:70:d1:1f:74:8c:cc:64:7a:80:8d:a6: 31:7a:d6:a7:5c:3b:90:ee:d3:f7:e6:f0:7f:a2:24: e9:f1:61:2f:63:55:28:02:d4:52:06:f0:40:9d:bd: 08:94:b3:b7:a7:62:59:4e:a7:ee:94:26:9f:4d:4f: ba:79:07:77:18:cf:c9:a3:b3:ce:05:99:96:53:f6: 9a:bd:fc:56:97:ac:ef:00:0d:62:ea:61:b9:69:1e: 41:51:c5:73:50:63:f1:b6:65:9f:32:56:bf:00:2e: f6:04:7b:7c:e3:65:27:3d:63:ed:3e:d2:f1:79:23: 51:6b:0a:35:89:ed:5d:9e:f4:b6:4d:29:9c:1d:cf: e5:0e:4f:50:54:01:23:97:e8:e5:68:f7:a9:01:16: 96:99:5d:c4:dd:dd:45:fe:e8:c4:b5:38:d4:53:17: e1:a1:3c:31:ac:dd:17:64:55:53:d7:65:81:22:06: f5:5e:56:41:7f:97:17:3f:d7:42:97:9a:78:93:8d: 6b:55:56:67:42:2c:8e:49:3c:41:68:1f:64:b0:f4: 23:d5:94:fd:66:15:4a:11:7d:ef:d6:46:d8:ed:6b: 99:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CB:3A:D6:7A:82:7F:CE:F0:E9:4F:C3:68:10:F8:E4:87:84:C1:9A X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:be0:fefb::/48 Signature Algorithm: sha256WithRSAEncryption 8f:ef:24:9c:32:4d:a5:80:25:8b:1d:c6:75:36:9a:69:36:da: 9b:53:13:6f:ee:cd:91:78:cc:69:34:91:e7:8f:f9:13:f0:98: 40:d9:1e:68:82:10:84:6e:8f:5c:ad:1d:f1:af:36:a6:c0:fa: 4e:e2:e9:30:30:c6:3d:5d:44:f0:78:07:26:f7:64:34:cd:5b: bb:dd:13:0d:8b:aa:0f:97:2c:84:ce:91:c8:de:37:15:5d:7c: 69:95:9d:b5:06:c4:34:9d:a0:1a:b3:40:d9:3f:fb:18:dd:ac: 3c:84:72:12:7a:d8:e5:b1:b6:6a:86:9a:60:45:dd:06:f5:b2: 3e:f4:dd:39:06:57:13:d1:f5:a3:df:39:01:99:ec:6c:f4:55: 7b:f3:83:e9:a4:a6:27:e8:a8:7c:e6:1c:02:9c:c0:66:68:d4: 33:f6:6a:25:3d:13:1e:14:b5:94:62:7a:df:96:fc:82:b7:58: 7e:1e:e8:0a:6b:7a:40:fe:92:56:4c:2a:bf:f5:c7:72:b7:ff: d8:c8:1f:e8:f5:9f:24:38:b2:a9:31:15:f0:ba:cc:9d:84:39: 42:aa:09:ba:28:0b:3e:39:04:05:57:15:c7:32:65:43:78:6e: 94:15:d3:93:04:76:b4:6b:1f:e4:2f:0d:c5:e5:2b:e6:3b:25: bd:88:f7:8a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUwNjMwMTExMTI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyNzBlMS0yMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYxL/F8NMifyhDLDiLCh3LnKSGETLtiZttFWrZzTQ6vVcNEfdIzMZHqAjaYx etanXDuQ7tP35vB/oiTp8WEvY1UoAtRSBvBAnb0IlLO3p2JZTqfulCafTU+6eQd3 GM/Jo7POBZmWU/aavfxWl6zvAA1i6mG5aR5BUcVzUGPxtmWfMla/AC72BHt842Un PWPtPtLxeSNRawo1ie1dnvS2TSmcHc/lDk9QVAEjl+jlaPepARaWmV3E3d1F/ujE tTjUUxfhoTwxrN0XZFVT12WBIgb1XlZBf5cXP9dCl5p4k41rVVZnQiyOSTxBaB9k sPQj1ZT9ZhVKEX3v1kbY7WuZbQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFIPLOtZ6 gn/O8OlPw2gQ+OSHhMGaMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvRjg4Rjk4RUE1 NUEyMTFGMDk3OEM4Nzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAgvg/vswDQYJKoZIhvcNAQELBQADggEBAI/vJJwyTaWA JYsdxnU2mmk22ptTE2/uzZF4zGk0keeP+RPwmEDZHmiCEIRuj1ytHfGvNqbA+k7i 6TAwxj1dRPB4Byb3ZDTNW7vdEw2Lqg+XLITOkcjeNxVdfGmVnbUGxDSdoBqzQNk/ +xjdrDyEchJ62OWxtmqGmmBF3Qb1sj703TkGVxPR9aPfOQGZ7Gz0VXvzg+mkpifo qHzmHAKcwGZo1DP2aiU9Ex4UtZRiet+W/IK3WH4e6AprekD+klZMKr/1x3K3/9jI H+j1nyQ4sqkxFfC6zJ2EOUKqCbooCz45BAVXFccyZUN4bpQV05MEdrRrH+QvDcXl K+Y7Jb2I94o= -----END CERTIFICATE-----Generated at Thu Jul 3 06:03:46 2025 by rpki-client