$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/AC39D9F8615211E7BAD4DA61C4F9AE02.roa File: AC39D9F8615211E7BAD4DA61C4F9AE02.roa (raw, json) Hash identifier: janciRMHjU97zB3lXitJwIl9Ika5JfzU+v8Mkow8p3Q= Subject key identifier: 62:F1:E5:37:26:C6:F0:43:8D:AE:88:2B:9C:63:65:B5:A7:D7:DC:47 Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Certificate serial: 1A84 Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/AC39D9F8615211E7BAD4DA61C4F9AE02.roa Signing time: Fri 04 Apr 2025 16:45:09 +0000 ROA not before: Fri 04 Apr 2025 16:45:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 6939 IP address blocks: 2401:3740:374::/48 maxlen: 48 2401:3740:375::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6788 (0x1a84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F6A8, serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Validity Not Before: Apr 4 16:45:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f00c95-7bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7a:10:a8:af:74:e9:52:8f:91:93:58:f5:5c: 5a:d7:90:7e:43:d2:56:cd:73:20:a3:e6:4b:91:fa: ca:fd:99:45:9e:75:77:31:ab:a5:1a:38:96:cc:c6: 5f:93:8d:56:5d:8b:80:82:d6:1f:a3:1a:f6:42:69: dc:8f:c8:83:da:e9:d8:36:d8:ed:b8:4b:5c:3e:43: f7:7c:b2:85:3b:85:88:6b:a6:4b:ce:9b:e7:e3:5d: e2:c8:81:5e:f2:e1:ae:bd:e8:25:aa:0a:9b:ec:9c: 0e:fd:0d:58:4c:c1:07:19:6a:b8:35:d0:3e:9c:c1: 4b:a9:8d:8b:f6:01:a8:5a:c3:5d:92:6b:35:bf:01: 25:5e:67:a4:c5:55:e2:12:30:d3:e7:91:1a:52:c6: 5f:ad:83:73:97:d4:4f:27:27:2d:c8:9e:86:6b:47: b2:4f:96:e7:9d:c1:ea:77:e8:3a:6d:a2:17:da:70: 74:29:19:91:8e:cb:4f:7d:10:6f:e3:9d:9f:e7:43: b7:c0:0d:b6:e7:d0:4b:59:97:7b:f6:73:03:ee:25: 4a:08:f0:15:36:7c:fb:0d:d7:ab:f1:ae:17:cc:0f: 49:60:9f:ee:33:0b:7b:b8:02:ca:83:2d:8a:51:f2: 79:a7:7a:23:e6:8b:38:6e:f5:43:7e:f5:4e:7f:44: 03:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F1:E5:37:26:C6:F0:43:8D:AE:88:2B:9C:63:65:B5:A7:D7:DC:47 X509v3 Authority Key Identifier: keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/AC39D9F8615211E7BAD4DA61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3740:374::/47 Signature Algorithm: sha256WithRSAEncryption 17:30:37:f6:a5:a1:67:2e:fc:ef:b4:a7:e2:9f:f6:28:24:52: 6b:b9:ea:37:17:02:c9:fc:14:7f:7a:dd:f8:55:79:89:5d:f3: fb:3c:f6:1d:44:dd:09:c7:8a:bf:25:e2:f1:fb:1a:2f:13:52: 3e:40:5a:fd:17:80:15:2f:23:9a:d9:ae:56:98:9e:43:61:07: bf:e6:7c:89:0b:2c:c1:f1:21:9a:49:03:e3:ba:0b:92:b2:7b: 76:ce:3e:e6:00:ae:68:6f:bb:ad:f5:6a:8a:90:7f:0e:18:2d: 71:de:0f:a0:b3:88:fe:6b:38:fb:d0:b7:f2:e2:03:37:fc:a0: dd:c0:e7:9f:e9:23:4b:0d:06:ea:f8:76:58:e7:f6:92:81:fc: 81:33:ca:1f:b0:6a:05:62:15:ee:a3:e5:f5:e3:02:12:38:19: 81:9b:de:46:20:3b:f3:18:6c:6d:55:43:04:ee:4a:66:fc:43: ab:c0:18:8d:5a:f0:2a:e5:9b:4d:65:14:b5:20:63:dc:8a:a9: 31:82:c5:99:eb:95:b1:df:9c:b6:a3:a0:b8:7c:f5:19:e1:a2: 8a:10:02:09:13:f7:10:3e:95:7c:f4:82:3f:f6:09:c6:82:ae: 83:a6:5c:7a:ff:a5:19:e2:76:e1:2a:33:5d:68:b0:02:f9:f6: aa:d5:0b:8a -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICGoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY2QTgxMTAvBgNVBAUTKEY3RDc0QzdGQjhCMEJBRUZDMzYzNUNENEUzNTA0OEFG ODhFMzlFRUYwHhcNMjUwNDA0MTY0NTA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwMGM5NS03YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXoQqK906VKPkZNY9Vxa15B+Q9JWzXMgo+ZLkfrK/ZlFnnV3MaulGjiWzMZf k41WXYuAgtYfoxr2Qmncj8iD2unYNtjtuEtcPkP3fLKFO4WIa6ZLzpvn413iyIFe 8uGuveglqgqb7JwO/Q1YTMEHGWq4NdA+nMFLqY2L9gGoWsNdkms1vwElXmekxVXi EjDT55EaUsZfrYNzl9RPJyctyJ6Ga0eyT5bnncHqd+g6baIX2nB0KRmRjstPfRBv 452f50O3wA2259BLWZd79nMD7iVKCPAVNnz7Dder8a4XzA9JYJ/uMwt7uALKgy2K UfJ5p3oj5os4bvVDfvVOf0QDQQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGLx5Tcm xvBDja6IK5xjZbWn19xHMB8GA1UdIwQYMBaAFPfXTH+4sLrvw2Nc1ONQSK+I457v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjZBOC9GM0JENEMzNjQ5 Q0IxMUU3QTRBODdDN0JDNEY5QUUwMi85OWRNZjdpd3V1X0RZMXpVNDFCSXI0ampu dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5ZE1mN2l3dXVfRFkxelU0MUJJcjRqam51OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY2QTgvRjNCRDRDMzY0OUNCMTFFN0E0QTg3QzdCQzRGOUFFMDIvQUMzOUQ5Rjg2 MTUyMTFFN0JBRDREQTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkATdAA3QwDQYJKoZIhvcNAQELBQADggEBABcwN/aloWcu /O+0p+Kf9igkUmu56jcXAsn8FH963fhVeYld8/s89h1E3QnHir8l4vH7Gi8TUj5A Wv0XgBUvI5rZrlaYnkNhB7/mfIkLLMHxIZpJA+O6C5Kye3bOPuYArmhvu631aoqQ fw4YLXHeD6CziP5rOPvQt/LiAzf8oN3A55/pI0sNBur4dljn9pKB/IEzyh+wagVi Fe6j5fXjAhI4GYGb3kYgO/MYbG1VQwTuSmb8Q6vAGI1a8Crlm01lFLUgY9yKqTGC xZnrlbHfnLajoLh89RnhoooQAgkT9xA+lXz0gj/2CcaCroOmXHr/pRniduEqM11o sAL59qrVC4o= -----END CERTIFICATE-----Generated at Sat Apr 26 07:59:38 2025 by rpki-client