$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/671FC40EE29211EE94348874C4F9AE02.roa File: 671FC40EE29211EE94348874C4F9AE02.roa (raw, json) Hash identifier: 8z6xDKhwld/+PqMlkxmQW4jjFgb0KSjTx84Nej4v1h8= Subject key identifier: ED:A1:42:FB:01:85:71:AE:2A:38:AD:36:78:5B:27:D1:BD:DE:B5:DD Certificate issuer: /CN=A912BE9D/serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Certificate serial: 06F0 Authority key identifier: BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/671FC40EE29211EE94348874C4F9AE02.roa Signing time: Tue 22 Jul 2025 23:04:59 +0000 ROA not before: Tue 22 Jul 2025 23:04:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17762 IP address blocks: 2403:8600:c0::/44 maxlen: 44 2403:8600:d0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE9D, serialNumber=BF6AD1ABC9D91619A09287FB6C64F4647B9FD31C Validity Not Before: Jul 22 23:04:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6880191b-2ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:ea:c7:d8:f6:44:bc:65:b5:08:dc:d9:44: 3e:67:59:f3:d0:86:06:53:dd:46:d4:99:f4:b6:28: 6d:e3:fc:ac:db:8b:28:aa:5e:ea:82:4c:16:2a:eb: e8:09:07:79:40:5b:36:ad:db:78:e2:69:2c:5b:0e: 87:28:e5:aa:21:2b:2a:1b:08:80:ae:8c:35:c3:8a: e9:bd:b5:a7:3d:05:fa:00:2a:cd:36:30:82:0a:08: 88:e4:ec:c2:4f:5c:9d:96:9b:eb:bf:2e:10:42:db: ec:84:7a:8d:9d:9d:1d:fd:03:d0:17:35:d3:c5:a7: f5:49:30:5a:b8:00:3c:f9:63:da:82:95:9d:45:86: dd:da:cc:f4:11:dd:0f:f6:d6:8a:73:c8:f8:42:33: 6b:e8:20:35:ea:60:43:36:09:f6:9e:41:ab:07:92: f0:7e:fe:0a:df:fd:69:b1:15:bf:8a:53:d7:8e:71: 87:fc:f9:b3:e1:a5:c1:40:35:ab:bf:a5:d0:df:32: ce:d3:ae:99:aa:b7:03:b9:12:43:34:b7:7c:c3:f7: 09:06:91:89:9b:41:a1:76:42:54:bc:a0:f3:20:e7: 35:3f:f3:19:f2:a2:00:7c:77:63:d5:41:37:f4:61: 6e:b8:ed:2f:c2:d2:ee:8e:48:de:d8:ac:68:37:13: 27:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A1:42:FB:01:85:71:AE:2A:38:AD:36:78:5B:27:D1:BD:DE:B5:DD X509v3 Authority Key Identifier: keyid:BF:6A:D1:AB:C9:D9:16:19:A0:92:87:FB:6C:64:F4:64:7B:9F:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/v2rRq8nZFhmgkof7bGT0ZHuf0xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2rRq8nZFhmgkof7bGT0ZHuf0xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE9D/D305E4EE990E11EB89B76D68C4F9AE02/671FC40EE29211EE94348874C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:8600:c0::/43 Signature Algorithm: sha256WithRSAEncryption 05:84:61:b3:b7:10:cd:b2:62:c5:a1:be:da:e0:81:b9:55:28: 07:c7:5b:a3:0b:45:b8:9c:a6:b0:9b:94:42:ea:02:cc:a9:dd: 90:f5:fa:cd:7a:0e:66:fc:f1:23:dc:52:60:cd:37:14:71:86: e0:54:1d:72:c6:00:d6:f7:04:71:cc:6c:39:e1:44:c6:4e:51: 27:ca:77:2b:f0:f4:57:37:ac:c1:1c:55:4e:3d:2d:23:23:6c: 58:36:43:63:6c:66:67:70:f0:b3:6a:9e:f6:8a:76:61:7d:76: 67:49:3f:8a:a1:ae:54:60:74:63:b0:a0:dd:d8:a6:53:14:36: 22:fe:fc:52:1b:51:26:d4:d0:93:e5:ae:0c:82:50:6f:cf:2d: 5c:5c:47:cf:5b:07:a2:e2:c0:03:7c:04:c0:0f:d9:67:b1:44: 5b:69:2e:b5:6e:ae:e6:b7:6b:c6:73:9e:39:ee:e6:07:ef:e7: a5:a0:5a:95:5b:e0:28:16:e2:18:b4:ae:d0:83:07:6b:e5:4b: 9c:0c:e2:d0:c9:64:6b:ff:24:de:9b:e5:3b:8e:d7:54:8a:78: 59:52:c0:4b:7d:70:88:a5:1f:a1:15:bb:31:a8:a9:51:07:39: 81:c9:26:32:77:72:4f:3b:7a:93:0f:23:91:f5:5e:00:9b:de: 07:0c:7b:f8 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFOUQxMTAvBgNVBAUTKEJGNkFEMUFCQzlEOTE2MTlBMDkyODdGQjZDNjRGNDY0 N0I5RkQzMUMwHhcNMjUwNzIyMjMwNDU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwMTkxYi0yZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNjqx9j2RLxltQjc2UQ+Z1nz0IYGU91G1Jn0tiht4/ys24soql7qgkwWKuvo CQd5QFs2rdt44mksWw6HKOWqISsqGwiArow1w4rpvbWnPQX6ACrNNjCCCgiI5OzC T1ydlpvrvy4QQtvshHqNnZ0d/QPQFzXTxaf1STBauAA8+WPagpWdRYbd2sz0Ed0P 9taKc8j4QjNr6CA16mBDNgn2nkGrB5Lwfv4K3/1psRW/ilPXjnGH/Pmz4aXBQDWr v6XQ3zLO066ZqrcDuRJDNLd8w/cJBpGJm0GhdkJUvKDzIOc1P/MZ8qIAfHdj1UE3 9GFuuO0vwtLujkje2KxoNxMncwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFO2hQvsB hXGuKjitNnhbJ9G93rXdMB8GA1UdIwQYMBaAFL9q0avJ2RYZoJKH+2xk9GR7n9Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU5RC9EMzA1RTRFRTk5 MEUxMUVCODlCNzZENjhDNEY5QUUwMi92MnJScThuWkZobWdrb2Y3YkdUMFpIdWYw eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YyclJxOG5aRmhtZ2tvZjdiR1QwWkh1ZjB4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJFOUQvRDMwNUU0RUU5OTBFMTFFQjg5Qjc2RDY4QzRGOUFFMDIvNjcxRkM0MEVF MjkyMTFFRTk0MzQ4ODc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwUkA4YAAMAwDQYJKoZIhvcNAQELBQADggEBAAWEYbO3EM2y YsWhvtrggblVKAfHW6MLRbicprCblELqAsyp3ZD1+s16Dmb88SPcUmDNNxRxhuBU HXLGANb3BHHMbDnhRMZOUSfKdyvw9Fc3rMEcVU49LSMjbFg2Q2NsZmdw8LNqnvaK dmF9dmdJP4qhrlRgdGOwoN3YplMUNiL+/FIbUSbU0JPlrgyCUG/PLVxcR89bB6Li wAN8BMAP2WexRFtpLrVurua3a8Zznjnu5gfv56WgWpVb4CgW4hi0rtCDB2vlS5wM 4tDJZGv/JN6b5TuO11SKeFlSwEt9cIilH6EVuzGoqVEHOYHJJjJ3ck87epMPI5H1 XgCb3gcMe/g= -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:53 2025 by rpki-client