$ rpki-client -vvf rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/61C842F4467A11F08609BD71C4F9AE02.roa File: 61C842F4467A11F08609BD71C4F9AE02.roa (raw, json) Hash identifier: CN7R3hh6U/a3moc9IYNNpKBkUBMAltkFsKNKJ/Ee7QI= Subject key identifier: 1C:30:CE:F4:62:93:D9:3D:00:5D:BE:82:2B:10:A1:72:08:CB:6E:95 Certificate issuer: /CN=A919B6FC/serialNumber=A68BC0910F831DEC818A50A32145F74355CE63C0 Certificate serial: 0637 Authority key identifier: A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/61C842F4467A11F08609BD71C4F9AE02.roa Signing time: Wed 11 Jun 2025 04:13:09 +0000 ROA not before: Wed 11 Jun 2025 04:13:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142024 IP address blocks: 2407:46c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.crl rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B6FC, serialNumber=A68BC0910F831DEC818A50A32145F74355CE63C0 Validity Not Before: Jun 11 04:13:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68490255-8e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bb:1e:3e:30:5c:99:72:7d:6e:68:15:b2:76: 4b:37:94:f2:25:3a:2b:bf:bd:b7:05:c7:6c:8d:a2: 8f:f3:c0:b3:b5:47:0c:97:01:5f:49:73:2d:68:0d: 90:c3:7f:6e:54:0b:6b:e5:98:a5:95:17:d9:92:78: 41:9e:b6:3f:cb:2e:6b:9c:80:b3:c1:4f:a0:f8:26: b3:f5:0f:e0:47:4a:b9:f7:c7:6b:54:1f:7f:ea:31: 14:75:96:2f:e8:95:d0:47:85:d8:5e:88:24:b3:4b: d0:b0:95:3f:53:5e:6a:36:36:24:69:49:9f:d4:25: ab:a8:8c:75:66:f4:b8:fc:af:4f:44:86:a0:9e:db: f1:41:0f:53:5d:06:e4:83:3b:f6:80:10:3d:e3:1f: bd:cd:33:ff:60:8b:dc:44:12:91:4d:93:2f:a0:e3: 0a:c7:8a:66:94:5b:75:23:38:f4:f4:16:c8:94:7d: a5:04:fb:cb:21:a1:5c:6b:f0:f0:d7:c3:fe:c7:39: 5c:95:16:4b:b5:a5:ae:e4:c9:4b:4a:d1:e1:a0:a2: e3:62:00:49:02:b2:9a:ce:5c:25:16:3d:8d:24:80: db:99:b6:98:93:26:6d:d2:35:f5:08:4d:39:b4:43: 19:a3:a5:15:b8:a2:16:dd:09:c8:78:08:f3:c9:2a: 0d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:30:CE:F4:62:93:D9:3D:00:5D:BE:82:2B:10:A1:72:08:CB:6E:95 X509v3 Authority Key Identifier: keyid:A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/61C842F4467A11F08609BD71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 84:93:31:d7:e1:75:9e:da:26:fa:8e:9e:3d:b0:64:1a:31:ea: f6:65:3d:46:c3:b9:39:1a:41:2f:13:9e:a4:a3:de:e8:d4:65: 05:64:9c:1c:00:3f:48:28:ea:e3:9b:71:cd:4f:ac:fe:04:f5: 05:3d:ac:19:3b:b2:1e:79:94:99:c9:39:ee:a7:ad:55:9a:81: ba:88:c4:9b:b7:92:6b:86:0a:37:0f:1d:02:28:8b:f6:8c:06: 7f:5e:81:5a:ce:b8:57:2c:91:66:59:05:b9:22:19:1a:f2:99: 9b:3d:92:17:88:54:87:80:a3:b0:37:dd:f1:ad:8a:d4:9e:c1: 35:26:18:6f:ae:32:f2:dd:a9:a2:11:0d:26:dc:3e:11:a4:3e: 7f:a3:08:43:ff:20:4a:b3:52:cd:bc:ed:9b:e7:4c:b2:9c:8f: 2a:a1:33:80:07:07:0f:09:cd:70:12:14:62:60:af:dc:09:e7: 18:95:28:99:19:d1:86:55:df:b5:bd:1a:71:9a:94:80:48:27: 1d:45:1b:71:79:1d:10:44:61:14:34:7d:50:ae:27:c6:f2:0a: 88:f4:b7:f2:25:3d:4f:1c:41:95:27:8f:26:06:46:be:12:76: 0d:c3:01:ff:62:a0:62:0c:91:de:ae:db:5f:b1:54:8a:1e:e7: 95:3f:90:5b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI2RkMxMTAvBgNVBAUTKEE2OEJDMDkxMEY4MzFERUM4MThBNTBBMzIxNDVGNzQz NTVDRTYzQzAwHhcNMjUwNjExMDQxMzA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ5MDI1NS04ZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLsePjBcmXJ9bmgVsnZLN5TyJTorv723BcdsjaKP88CztUcMlwFfSXMtaA2Q w39uVAtr5ZillRfZknhBnrY/yy5rnICzwU+g+Caz9Q/gR0q598drVB9/6jEUdZYv 6JXQR4XYXogks0vQsJU/U15qNjYkaUmf1CWrqIx1ZvS4/K9PRIagntvxQQ9TXQbk gzv2gBA94x+9zTP/YIvcRBKRTZMvoOMKx4pmlFt1Izj09BbIlH2lBPvLIaFca/Dw 18P+xzlclRZLtaWu5MlLStHhoKLjYgBJArKazlwlFj2NJIDbmbaYkyZt0jX1CE05 tEMZo6UVuKIW3QnIeAjzySoNMQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBwwzvRi k9k9AF2+gisQoXIIy26VMB8GA1UdIwQYMBaAFKaLwJEPgx3sgYpQoyFF90NVzmPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjZGQy84ODkyQ0M0QTk4 MzkxMUVCQTE0MDk5NjBDNEY5QUUwMi9wb3ZBa1EtREhleUJpbENqSVVYM1ExWE9Z OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvdkFrUS1ESGV5QmlsQ2pJVVgzUTFYT1k4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI2RkMvODg5MkNDNEE5ODM5MTFFQkExNDA5OTYwQzRGOUFFMDIvNjFDODQyRjQ0 NjdBMTFGMDg2MDlCRDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB0bAMA0GCSqGSIb3DQEBCwUAA4IBAQCEkzHX4XWe2ib6 jp49sGQaMer2ZT1Gw7k5GkEvE56ko97o1GUFZJwcAD9IKOrjm3HNT6z+BPUFPawZ O7IeeZSZyTnup61VmoG6iMSbt5Jrhgo3Dx0CKIv2jAZ/XoFazrhXLJFmWQW5Ihka 8pmbPZIXiFSHgKOwN93xrYrUnsE1JhhvrjLy3amiEQ0m3D4RpD5/owhD/yBKs1LN vO2b50yynI8qoTOABwcPCc1wEhRiYK/cCecYlSiZGdGGVd+1vRpxmpSASCcdRRtx eR0QRGEUNH1QrifG8gqI9LfyJT1PHEGVJ48mBka+EnYNwwH/YqBiDJHerttfsVSK HueVP5Bb -----END CERTIFICATE-----Generated at Fri Jun 20 20:11:32 2025 by rpki-client