$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa File: 3958EEC642BB11F0B449BB81C4F9AE02.roa (raw, json) Hash identifier: SygYrtM3v/MPPC9qe7TYDUy1/kulSQDEnXRN8vMuKwo= Subject key identifier: 77:1E:26:99:8B:43:3C:2F:93:44:ED:EA:4B:B5:4B:EB:9D:BF:C8:56 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: 3F Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa Signing time: Fri 06 Jun 2025 09:47:14 +0000 ROA not before: Fri 06 Jun 2025 09:47:14 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132894 IP address blocks: 2001:df5:acc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Jun 6 09:47:14 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6842b921-7c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:0a:bc:db:f7:ea:3e:4c:15:bd:01:0a:f6: 13:91:45:ea:f4:c3:ae:ba:b1:55:ef:54:22:d7:55: 30:aa:5d:3b:ee:2b:87:69:a8:3d:f4:b7:e7:3a:6f: 88:72:e9:88:a2:4c:9f:f5:78:2b:d2:ac:bf:f4:93: 1d:35:64:47:82:43:06:b8:66:df:e4:0c:ea:94:85: 09:2a:94:18:0b:ec:67:5c:af:28:24:78:c3:f8:5e: e1:04:e3:06:fa:1a:c3:fe:52:40:14:b6:56:4a:34: f6:f8:6f:e9:0c:d7:00:3a:69:db:e2:ec:32:df:5d: 64:6c:22:47:d0:86:94:79:38:f0:7a:06:d4:96:9f: f0:0e:62:f1:47:01:02:69:f1:01:3b:36:47:85:e2: fd:ed:4a:40:9b:94:41:32:fe:ca:28:d9:c4:44:d7: a7:cc:70:88:c2:32:07:2b:6e:a7:f3:16:15:d8:a1: 37:29:25:6d:cb:d0:2b:fb:3c:34:4c:6e:02:32:9e: 49:3b:46:bc:02:97:a7:37:c5:a2:d0:f0:6e:bc:65: c9:df:37:ce:7a:d6:b6:46:0c:35:0f:0d:7e:aa:7a: df:2d:06:24:44:bd:a4:d5:21:92:cc:aa:da:4d:77: f0:be:65:29:ec:39:f9:47:cf:ab:46:47:9f:b8:1f: 92:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1E:26:99:8B:43:3C:2F:93:44:ED:EA:4B:B5:4B:EB:9D:BF:C8:56 X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:acc0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:00:41:ea:1b:11:95:9c:51:14:16:5c:2c:0a:94:5d:0b:ab: d2:94:82:3b:7a:af:d6:4f:bf:0e:91:be:58:e4:2d:5c:db:b5: 0b:98:3c:fb:a3:da:8f:84:c1:88:19:18:4b:55:1b:82:4c:b7: b3:0e:73:1e:27:9d:a5:46:be:5f:e1:35:15:cf:8f:7b:ad:0c: ac:d3:31:ce:b8:df:a3:d9:5f:c9:67:3c:98:22:43:83:40:4f: 87:4b:5f:bb:73:c6:3f:e9:f2:80:32:8c:be:bd:f1:c4:61:e8: 75:a1:aa:58:ca:bb:fd:5f:53:02:e9:d9:09:cb:8e:1b:c6:eb: 58:7d:70:ff:9d:8b:d4:ec:25:a3:c5:68:c8:6e:0c:4f:07:03: 42:0d:a0:bd:cb:b7:a0:30:18:24:29:51:53:9e:45:d9:14:14: f2:05:a5:dd:85:92:31:88:fd:a4:46:b4:04:3f:4b:3a:c7:3c: e8:49:f7:ec:e4:ac:e7:3c:19:1e:40:0f:b2:e6:37:fe:64:9b: 47:8a:84:2b:a5:cc:8b:01:0b:cc:fe:94:8c:b6:f3:f7:c8:08: f3:30:4d:e9:df:5e:28:da:bb:a5:e9:cd:11:95:cb:6f:5f:3c: 9b:9b:31:3f:ad:da:94:58:67:64:be:04:fd:cd:bc:58:78:52: f2:f1:89:35 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzI3MzExMC8GA1UEBRMoRERBNDlGNDFGNjE4QTU1RjlDQTdDRkM1NUJBRUE3QjYx NkQ5NTc2MjAeFw0yNTA2MDYwOTQ3MTRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDJiOTIxLTdjMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC01Aq82/fqPkwVvQEK9hORRer0w666sVXvVCLXVTCqXTvuK4dpqD30t+c6b4hy 6YiiTJ/1eCvSrL/0kx01ZEeCQwa4Zt/kDOqUhQkqlBgL7GdcrygkeMP4XuEE4wb6 GsP+UkAUtlZKNPb4b+kM1wA6advi7DLfXWRsIkfQhpR5OPB6BtSWn/AOYvFHAQJp 8QE7NkeF4v3tSkCblEEy/soo2cRE16fMcIjCMgcrbqfzFhXYoTcpJW3L0Cv7PDRM bgIynkk7RrwCl6c3xaLQ8G68ZcnfN8561rZGDDUPDX6qet8tBiREvaTVIZLMqtpN d/C+ZSnsOflHz6tGR5+4H5K1AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUdx4mmYtD PC+TRO3qS7VL652/yFYwHwYDVR0jBBgwFoAU3aSfQfYYpV+cp8/FW66nthbZV2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3MjczL0ZDNTA1MDBFRTc3 MTExRUY5REZCREQ1MEM0RjlBRTAyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2FTZlFmWVlwVi1jcDhfRlc2Nm50aGJaVjJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zOTU4RUVDNjQy QkIxMUYwQjQ0OUJCODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWswDANBgkqhkiG9w0BAQsFAAOCAQEALwBB6hsRlZxR FBZcLAqUXQur0pSCO3qv1k+/DpG+WOQtXNu1C5g8+6Paj4TBiBkYS1Ubgky3sw5z HiedpUa+X+E1Fc+Pe60MrNMxzrjfo9lfyWc8mCJDg0BPh0tfu3PGP+nygDKMvr3x xGHodaGqWMq7/V9TAunZCcuOG8brWH1w/52L1Owlo8VoyG4MTwcDQg2gvcu3oDAY JClRU55F2RQU8gWl3YWSMYj9pEa0BD9LOsc86En37OSs5zwZHkAPsuY3/mSbR4qE K6XMiwELzP6UjLbz98gI8zBN6d9eKNq7penNEZXLb188m5sxP63alFhnZL4E/c28 WHhS8vGJNQ== -----END CERTIFICATE-----Generated at Sat Jun 21 00:12:45 2025 by rpki-client