$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/FC954A8A50C911F09654D654C4F9AE02.roa File: FC954A8A50C911F09654D654C4F9AE02.roa (raw, json) Hash identifier: ZzZozR1G5F3TKiEfDtTHjXIPCereHx9Ef+sMCG5dh/s= Subject key identifier: 71:04:BF:D4:21:4C:7F:19:80:4B:A5:C2:BB:D7:AF:0B:8C:63:60:53 Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 01D5 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/FC954A8A50C911F09654D654C4F9AE02.roa Signing time: Mon 30 Jun 2025 12:07:36 +0000 ROA not before: Mon 30 Jun 2025 12:07:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 13383 IP address blocks: 2402:be0:fefc::/48 maxlen: 48 2402:be0:fffa::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Jun 30 12:07:36 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68627e08-1a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:d0:72:8c:18:15:82:63:20:08:06:47:b9:91: 92:70:01:de:8a:5c:2a:d6:9b:65:bf:90:2f:74:22: 1c:87:1d:ac:43:27:32:b6:93:2f:d2:1c:0d:98:6e: 02:8a:78:7b:af:df:35:57:2c:d6:8f:7b:a1:09:8c: 96:78:fb:75:ac:f2:da:83:98:a3:c0:d8:5a:86:7a: 41:af:d8:8e:3a:d5:63:c9:69:ac:99:04:e0:a4:60: 7c:28:bb:54:c0:76:cd:3c:94:38:a6:94:45:29:a1: ee:49:a1:12:81:4d:85:39:51:4b:5f:bb:20:1f:12: 6c:d1:20:7b:92:62:30:3d:9e:cb:26:59:c3:1b:f7: 2d:a5:22:54:11:0f:23:79:7f:b6:84:fe:32:db:ee: d0:bb:98:dc:3b:4c:4e:5c:cb:24:a7:2a:4b:f4:69: 26:2c:98:5f:0f:ee:cf:60:70:56:7f:04:d4:e6:a8: e8:44:93:44:cc:07:2f:a3:77:01:21:99:75:5d:60: 39:be:ed:7b:62:eb:99:cb:ca:9f:58:a7:60:c8:ee: 2e:c1:b4:dd:11:77:d0:54:0f:b7:d9:93:bd:61:90: bf:46:91:d1:a7:3e:f6:f1:e1:65:41:dd:d6:91:be: 3c:d5:38:6f:4d:4e:aa:15:b9:81:4c:d6:3e:cd:2e: 60:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:04:BF:D4:21:4C:7F:19:80:4B:A5:C2:BB:D7:AF:0B:8C:63:60:53 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/FC954A8A50C911F09654D654C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:be0:fefc::/48 2402:be0:fffa::/47 Signature Algorithm: sha256WithRSAEncryption a2:83:c3:c8:44:c9:e9:67:61:cf:10:4d:56:ef:a1:fd:ee:e8: 4c:8e:23:df:d5:38:63:64:8f:74:2f:11:a1:81:52:fa:34:e7: 03:00:bb:0f:2f:d9:40:72:2c:d5:8f:5b:a1:b7:97:60:2a:f6: 48:c3:95:c0:06:9a:b0:8b:49:38:04:c7:0f:0e:1a:c8:98:8f: b5:58:9b:e8:2c:8a:6d:8e:aa:f4:0a:8c:3d:01:3a:63:05:e8: f3:7e:0a:ec:f8:af:25:e2:cf:30:88:ef:7d:a7:8d:3d:aa:46: ba:77:17:b7:ea:cc:fc:7a:df:5a:f7:e7:07:0c:f1:50:e8:f9: e4:5c:5a:ca:0f:36:65:6f:46:b1:a9:26:67:34:60:bd:ae:db: 5a:2a:7f:a1:12:6a:03:69:95:6b:47:67:aa:bd:93:e9:a5:39: 0d:8b:b0:1f:83:85:83:07:1e:4c:45:e7:f4:92:43:e7:37:e8: db:88:38:22:2f:9d:d3:05:53:2c:d5:a2:81:9b:cc:f5:7a:54: fd:7e:dd:a4:dc:09:0d:fc:3d:18:0c:31:a7:a4:17:14:db:1b: 5e:f3:25:8b:5e:1d:26:69:79:80:53:e7:79:ca:90:ae:6e:58: c3:99:6a:d4:c8:3e:fd:4c:95:2d:d1:66:a2:03:4a:0c:ef:56: d9:54:0a:f3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUwNjMwMTIwNzM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyN2UwOC0xYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9tByjBgVgmMgCAZHuZGScAHeilwq1ptlv5AvdCIchx2sQycytpMv0hwNmG4C inh7r981VyzWj3uhCYyWePt1rPLag5ijwNhahnpBr9iOOtVjyWmsmQTgpGB8KLtU wHbNPJQ4ppRFKaHuSaESgU2FOVFLX7sgHxJs0SB7kmIwPZ7LJlnDG/ctpSJUEQ8j eX+2hP4y2+7Qu5jcO0xOXMskpypL9GkmLJhfD+7PYHBWfwTU5qjoRJNEzAcvo3cB IZl1XWA5vu17YuuZy8qfWKdgyO4uwbTdEXfQVA+32ZO9YZC/RpHRpz728eFlQd3W kb481ThvTU6qFbmBTNY+zS5gJQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHEEv9Qh TH8ZgEulwrvXrwuMY2BTMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvRkM5NTRBOEE1 MEM5MTFGMDk2NTRENjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwAkAgvg/vwDBwEkAgvg//owDQYJKoZIhvcNAQELBQADggEB AKKDw8hEyelnYc8QTVbvof3u6EyOI9/VOGNkj3QvEaGBUvo05wMAuw8v2UByLNWP W6G3l2Aq9kjDlcAGmrCLSTgExw8OGsiYj7VYm+gsim2OqvQKjD0BOmMF6PN+Cuz4 ryXizzCI732njT2qRrp3F7fqzPx631r35wcM8VDo+eRcWsoPNmVvRrGpJmc0YL2u 21oqf6ESagNplWtHZ6q9k+mlOQ2LsB+DhYMHHkxF5/SSQ+c36NuIOCIvndMFUyzV ooGbzPV6VP1+3aTcCQ38PRgMMaekFxTbG17zJYteHSZpeYBT53nKkK5uWMOZatTI Pv1MlS3RZqIDSgzvVtlUCvM= -----END CERTIFICATE-----Generated at Wed Jul 2 21:04:42 2025 by rpki-client