$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa File: A6449CBA54A011EFB35AED26C4F9AE02.roa (raw, json) Hash identifier: TlHlbn6q/SJJmLaIdFeAVpNRm4YQAAsTE8XrQ+CUo9Q= Subject key identifier: 6A:E8:5E:30:37:04:88:9E:3D:A7:F9:10:3A:82:7F:59:B2:AD:C7:CE Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: A2 Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa Signing time: Mon 16 Jun 2025 06:19:23 +0000 ROA not before: Mon 16 Jun 2025 06:19:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131108 IP address blocks: 2401:b860::/32 maxlen: 32 2401:b860::/36 maxlen: 36 2401:b860:1000::/36 maxlen: 36 2401:b860:2000::/36 maxlen: 36 2401:b860:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Validity Not Before: Jun 16 06:19:23 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=684fb76a-32d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:d9:a5:c2:da:87:42:1e:b0:be:ca:a9:c4: 4d:73:5d:0f:2b:92:78:a2:9c:2f:6e:33:5c:b3:94: 05:17:01:dc:80:99:45:c3:4a:3f:83:5f:0a:0e:ca: d2:27:9e:52:17:3e:23:d0:88:5d:2d:a2:ea:2a:a3: bb:ef:d6:4e:a5:87:ce:4a:bd:7f:ff:49:86:99:d8: 42:00:4f:ba:0e:c7:8f:d4:ce:f8:8b:16:bb:ad:d3: b5:76:7e:b5:c8:39:34:29:3a:bc:f9:a3:86:28:52: 89:ff:86:29:46:a3:71:23:c5:0b:66:8e:a5:15:3f: 68:cb:7c:92:9c:72:f5:3e:fb:9a:90:34:00:fc:54: 02:4b:9b:3b:7d:65:ff:1e:39:60:d0:28:6d:64:4d: 3a:8e:ee:48:19:07:cc:6b:e9:c7:b1:39:e1:03:82: af:01:55:d2:cc:4a:94:23:5f:e0:61:b4:61:89:63: 58:ce:1c:fc:12:c0:bb:a7:56:96:b6:32:b8:37:9b: 10:73:ff:de:55:e1:f9:a7:4c:e8:b5:eb:d7:36:e7: ad:16:05:39:f7:66:ce:19:f7:b0:82:93:18:a0:9d: 38:cf:d8:0d:40:b1:c2:44:ca:c0:4c:65:16:6a:5c: 65:ca:e3:0a:aa:04:4b:9f:0f:d9:8c:69:0f:59:23: 84:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E8:5E:30:37:04:88:9E:3D:A7:F9:10:3A:82:7F:59:B2:AD:C7:CE X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b860::/32 Signature Algorithm: sha256WithRSAEncryption 25:12:18:55:42:00:1b:64:d3:95:0e:67:f0:7e:c4:19:15:1c: fa:cd:f5:d4:19:ff:30:75:ad:45:ca:59:8c:c2:0a:6a:e5:0a: 8c:1a:08:e2:56:f6:12:a0:ea:95:db:1f:d8:30:a0:db:d6:ba: 03:41:14:03:f6:74:d2:f7:d5:27:bb:dc:dc:fa:3a:e7:af:2d: 28:10:10:91:a8:3d:bf:36:6c:9e:a8:02:e8:f0:d5:d6:7f:9a: b8:c1:cb:93:6b:95:d5:f0:af:dc:bd:66:4d:dd:6e:37:63:f1: 24:ae:31:b9:1a:a7:d8:95:c5:8c:00:39:21:7c:74:ca:91:b3: 13:f0:aa:b6:e0:19:4a:27:48:0b:35:fd:dc:67:e3:1d:1b:eb: 69:d0:9a:45:1c:a1:55:c3:62:d2:c4:8a:30:aa:3e:9c:6a:0d: d4:2a:56:8b:4d:aa:96:c5:d5:ea:2d:75:41:6e:fd:66:4d:9d: d0:22:ee:09:ed:c7:2a:fc:a1:01:57:0d:e9:b0:ea:0d:a8:1b: d1:96:86:da:be:64:33:c3:ae:8c:12:54:99:b9:3b:60:7e:bd: fb:b8:8f:ea:b8:b6:d5:5b:09:b3:63:03:12:d4:e2:12:8e:f1: 24:09:12:57:fd:c5:25:62:88:11:e5:60:c9:4f:11:db:92:af: f9:06:06:1c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3 RUQ0NkY4QjIwHhcNMjUwNjE2MDYxOTIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmYjc2YS0zMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b3ZpcLah0IesL7KqcRNc10PK5J4opwvbjNcs5QFFwHcgJlFw0o/g18KDsrS J55SFz4j0IhdLaLqKqO779ZOpYfOSr1//0mGmdhCAE+6DseP1M74ixa7rdO1dn61 yDk0KTq8+aOGKFKJ/4YpRqNxI8ULZo6lFT9oy3ySnHL1PvuakDQA/FQCS5s7fWX/ Hjlg0ChtZE06ju5IGQfMa+nHsTnhA4KvAVXSzEqUI1/gYbRhiWNYzhz8EsC7p1aW tjK4N5sQc//eVeH5p0zotevXNuetFgU592bOGfewgpMYoJ04z9gNQLHCRMrATGUW alxlyuMKqgRLnw/ZjGkPWSOEaQIDAQABo4ICljCCApIwHQYDVR0OBBYEFGroXjA3 BIiePaf5EDqCf1myrcfOMB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0 QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNFQjkvMDUxQzlFNjQ1NEEwMTFFRjg2QUU1OTIyQzRGOUFFMDIvQTY0NDlDQkE1 NEEwMTFFRkIzNUFFRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAbhgMA0GCSqGSIb3DQEBCwUAA4IBAQAlEhhVQgAbZNOV DmfwfsQZFRz6zfXUGf8wda1FylmMwgpq5QqMGgjiVvYSoOqV2x/YMKDb1roDQRQD 9nTS99Unu9zc+jrnry0oEBCRqD2/NmyeqALo8NXWf5q4wcuTa5XV8K/cvWZN3W43 Y/EkrjG5GqfYlcWMADkhfHTKkbMT8Kq24BlKJ0gLNf3cZ+MdG+tp0JpFHKFVw2LS xIowqj6cag3UKlaLTaqWxdXqLXVBbv1mTZ3QIu4J7ccq/KEBVw3psOoNqBvRloba vmQzw66MElSZuTtgfr37uI/quLbVWwmzYwMS1OISjvEkCRJX/cUlYogR5WDJTxHb kq/5BgYc -----END CERTIFICATE-----Generated at Fri Jun 20 11:39:49 2025 by rpki-client