$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/2991FB703EBC11F0B4390D6CC4F9AE02.roa File: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (raw, json) Hash identifier: IHKIsaIRoYA5oB7FIGOUKDZf6ilumTH/na+f7dh2I+I= Subject key identifier: DD:49:5F:CE:0D:26:96:21:BD:F9:DA:E3:24:A7:A6:D3:9F:35:FF:9B Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 207D Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/2991FB703EBC11F0B4390D6CC4F9AE02.roa Signing time: Sun 01 Jun 2025 07:43:52 +0000 ROA not before: Sun 01 Jun 2025 07:43:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 65569 IP address blocks: 2404:b180:1200::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8317 (0x207d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: Jun 1 07:43:52 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=683c04b8-6527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d3:8b:df:73:63:2d:99:88:c8:6c:2d:9c:e1: c2:53:39:8c:7d:61:91:33:ab:4f:07:11:72:e2:ac: 5d:ac:8f:75:b9:24:a0:cc:e8:8c:68:70:b6:35:66: 7b:ae:56:4b:5e:fa:da:a8:c9:8b:62:0f:61:5f:a5: 85:3e:0d:9a:f5:74:0c:e4:7d:5c:ef:63:f3:14:e3: d3:ef:b2:60:2c:cf:ee:eb:7f:53:c0:79:6e:41:54: 82:4e:1a:dd:9a:37:77:00:b4:df:14:86:82:2f:37: 2b:d7:2d:2a:e7:f8:33:da:9d:56:b1:a9:5e:4a:ff: 2f:57:1d:c1:66:64:cb:db:20:ca:0b:a8:9d:79:9d: 5e:65:95:5a:aa:0b:28:6a:ec:a3:68:34:f5:73:f0: e6:95:34:97:e2:81:15:67:0a:f2:f3:df:1d:b6:6e: 81:e2:d1:95:01:e4:c9:c1:0a:7e:a0:c7:6b:c5:c9: 36:1e:3f:64:4a:de:da:f7:e1:b5:0e:c6:d8:46:17: f9:4a:ee:07:13:33:0e:00:f8:1a:d9:5a:e0:2d:2e: a0:a9:af:e0:92:f2:e7:f0:1e:f2:28:93:be:e4:f7: cb:db:44:a5:2a:dc:74:40:93:f1:e1:8c:1d:60:2d: d7:ef:cf:e6:ef:78:bd:cb:d1:b6:36:7c:6b:68:13: 4c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:49:5F:CE:0D:26:96:21:BD:F9:DA:E3:24:A7:A6:D3:9F:35:FF:9B X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/2991FB703EBC11F0B4390D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:b180:1200::/44 Signature Algorithm: sha256WithRSAEncryption a7:b7:0f:18:c5:fb:01:69:77:57:98:b1:0a:d5:25:31:b3:97: d7:3d:c2:6c:17:d4:24:35:8a:90:d9:44:c7:2a:c0:95:50:04: 42:1a:fb:f6:f1:40:23:81:0a:f1:6f:b5:0d:8d:78:7c:24:57: 73:4a:a0:dc:9b:b2:6f:1d:7f:10:79:e4:2d:9c:d2:da:e1:cd: 7b:c0:6c:cd:fd:32:ca:ed:fe:64:11:77:a6:f0:52:39:ea:95: 80:6c:48:64:b5:96:00:25:49:da:94:7d:ae:93:29:13:ec:04: b9:70:aa:84:e0:e2:6a:1c:45:4b:41:c9:a4:7b:90:ab:2c:c5: 0f:a9:9b:6f:e3:31:79:1e:d6:1b:77:d4:24:c2:30:d7:1c:65: 63:6c:60:0d:d8:94:f3:2d:69:0e:f1:14:8a:60:d8:fd:49:a0: 63:29:ed:62:6c:1c:0d:f0:12:65:74:a9:11:e9:e5:a5:38:c6: 2e:b7:fd:1e:85:ed:56:5c:ae:fc:1c:39:67:e2:40:64:bc:59: 4f:9a:9b:08:38:1c:21:93:81:c3:c9:10:5e:23:97:3e:62:5c: a9:57:7d:be:fe:18:a5:1b:c8:b5:69:29:23:60:8a:83:84:0a: ba:05:53:62:df:2d:c9:54:66:ea:39:fd:c2:72:cd:02:28:3e: ec:23:df:e2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICIH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjUwNjAxMDc0MzUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNjMDRiOC02NTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtOL33NjLZmIyGwtnOHCUzmMfWGRM6tPBxFy4qxdrI91uSSgzOiMaHC2NWZ7 rlZLXvraqMmLYg9hX6WFPg2a9XQM5H1c72PzFOPT77JgLM/u639TwHluQVSCThrd mjd3ALTfFIaCLzcr1y0q5/gz2p1WsaleSv8vVx3BZmTL2yDKC6ideZ1eZZVaqgso auyjaDT1c/DmlTSX4oEVZwry898dtm6B4tGVAeTJwQp+oMdrxck2Hj9kSt7a9+G1 DsbYRhf5Su4HEzMOAPga2VrgLS6gqa/gkvLn8B7yKJO+5PfL20SlKtx0QJPx4Ywd YC3X78/m73i9y9G2NnxraBNMnwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFN1JX84N JpYhvfna4ySnptOfNf+bMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTk5NjcvMEJCRjI1NzgxNUE5MTFFNjkxMkQ0MjNCQzRGOUFFMDIvMjk5MUZCNzAz RUJDMTFGMEI0MzkwRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBLGAEgAwDQYJKoZIhvcNAQELBQADggEBAKe3DxjF+wFp d1eYsQrVJTGzl9c9wmwX1CQ1ipDZRMcqwJVQBEIa+/bxQCOBCvFvtQ2NeHwkV3NK oNybsm8dfxB55C2c0trhzXvAbM39Msrt/mQRd6bwUjnqlYBsSGS1lgAlSdqUfa6T KRPsBLlwqoTg4mocRUtByaR7kKssxQ+pm2/jMXke1ht31CTCMNccZWNsYA3YlPMt aQ7xFIpg2P1JoGMp7WJsHA3wEmV0qRHp5aU4xi63/R6F7VZcrvwcOWfiQGS8WU+a mwg4HCGTgcPJEF4jlz5iXKlXfb7+GKUbyLVpKSNgioOECroFU2LfLclUZuo5/cJy zQIoPuwj3+I= -----END CERTIFICATE-----Generated at Sat Jun 21 16:50:54 2025 by rpki-client