$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/5E4EF73E409011F0986B1F68C4F9AE02.roa File: 5E4EF73E409011F0986B1F68C4F9AE02.roa (raw, json) Hash identifier: zzVlxhn6+jvA03mHN2RlJJu0S5vEXRz/2+gZ9LS069Y= Subject key identifier: CD:54:00:2B:93:D8:A9:31:E7:0D:FB:61:E9:72:BF:AF:AD:35:86:2F Certificate issuer: /CN=A91A7B36/serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Certificate serial: 08 Authority key identifier: 34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/5E4EF73E409011F0986B1F68C4F9AE02.roa Signing time: Fri 13 Jun 2025 03:36:19 +0000 ROA not before: Fri 13 Jun 2025 03:36:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153908 IP address blocks: 2402:ce0::/32 maxlen: 32 2402:ce0::/36 maxlen: 36 2402:ce0:1000::/36 maxlen: 36 2402:ce0:2000::/36 maxlen: 36 2402:ce0:3000::/36 maxlen: 36 2402:ce0:4000::/36 maxlen: 36 2402:ce0:5000::/36 maxlen: 36 2402:ce0:6000::/36 maxlen: 36 2402:ce0:7000::/36 maxlen: 36 2402:ce0:8000::/36 maxlen: 36 2402:ce0:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B36, serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Validity Not Before: Jun 13 03:36:18 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684b9cb2-a4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:4f:60:46:91:d0:3b:f7:78:51:b1:30:60: 3f:ad:0a:eb:e0:28:ad:27:bc:6a:4a:f9:37:bb:ce: bb:bc:b7:7e:be:56:04:d5:e2:3c:7b:58:82:9b:aa: 88:81:f0:5f:e3:43:e6:da:a8:2e:03:88:cf:04:81: a6:7c:0c:37:1e:b8:35:74:a7:22:42:aa:be:dc:4b: a3:66:2e:5b:19:31:ec:ec:8b:10:b5:55:fa:7d:2c: d9:9e:80:c3:b2:aa:c7:bf:12:46:d9:a1:75:50:ba: eb:24:2e:97:f0:00:64:79:6a:47:99:e0:45:1a:f7: e3:66:df:c0:d4:28:70:f6:99:be:85:2e:f5:2a:ac: 41:95:00:06:61:7a:0f:c5:52:91:88:13:f1:9c:3f: 21:68:9f:e6:18:1e:3f:5a:2c:96:7f:c6:6d:5a:4b: 91:ef:bb:44:d5:88:ea:70:12:be:47:6b:90:e5:5c: 41:12:72:86:81:67:5d:e5:9d:42:21:28:66:c8:74: fe:64:55:94:92:35:23:1d:60:77:37:33:67:5c:99: de:8c:86:23:6a:00:1a:ba:ef:27:69:e7:a9:6a:7f: 3e:33:8b:91:cb:34:fc:f3:64:4d:a6:05:52:f8:87: 7d:83:6b:38:ac:6d:19:9a:fc:4a:63:58:a0:fc:a5: 54:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:54:00:2B:93:D8:A9:31:E7:0D:FB:61:E9:72:BF:AF:AD:35:86:2F X509v3 Authority Key Identifier: keyid:34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/5E4EF73E409011F0986B1F68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:ce0::/32 Signature Algorithm: sha256WithRSAEncryption 58:e0:3c:5c:d7:0f:74:13:42:6d:57:c2:69:30:ed:17:fc:10: b6:79:f8:64:27:6b:92:af:34:a8:28:2c:94:e9:75:90:71:7f: 01:f2:1f:08:f7:c9:31:35:21:a6:96:8f:83:98:ca:5b:4e:19: 1c:22:d4:cc:3a:4f:02:6e:dc:23:97:03:e5:7a:7a:bf:ca:f8: a7:51:0c:a2:db:b3:75:90:eb:3b:be:a6:9e:13:af:89:f1:36: 13:b7:d8:3a:52:c1:ff:0e:79:21:b6:72:54:48:55:95:e1:b7: 6e:7d:40:82:df:fe:69:51:45:85:3b:da:74:d9:f1:8f:56:d8: cb:df:a7:60:2c:f0:ea:85:39:68:39:f7:d7:d7:9b:89:1f:e0: 36:b9:5a:a9:4a:12:57:aa:c4:b4:05:1f:bb:f5:0a:d2:33:d9: 75:b7:d3:26:34:f4:d2:bb:ec:0f:d0:84:05:1e:6e:09:45:72: 1c:d3:c6:2b:b4:7e:46:a5:41:81:98:2e:f2:28:8b:f7:10:94: f5:fb:7d:73:25:6a:dc:0b:ac:e0:1f:36:ae:d3:80:e1:68:f7: 5f:d7:ca:aa:7c:0b:95:8d:c9:dd:89:09:7c:fb:d2:f4:04:e5: ad:3f:db:a4:68:cc:0a:26:09:bb:35:da:fe:ac:f6:41:83:66: 0f:63:7a:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0IzNjExMC8GA1UEBRMoMzRGMEY4Q0Q4N0I4OEM0RjUyMEU0NkZCOTVEMkRCODRG QTA0MzM2MjAeFw0yNTA2MTMwMzM2MThaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGI5Y2IyLWE0ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3009gRpHQO/d4UbEwYD+tCuvgKK0nvGpK+Te7zru8t36+VgTV4jx7WIKbqoiB 8F/jQ+baqC4DiM8EgaZ8DDceuDV0pyJCqr7cS6NmLlsZMezsixC1Vfp9LNmegMOy qse/EkbZoXVQuuskLpfwAGR5akeZ4EUa9+Nm38DUKHD2mb6FLvUqrEGVAAZheg/F UpGIE/GcPyFon+YYHj9aLJZ/xm1aS5Hvu0TViOpwEr5Ha5DlXEEScoaBZ13lnUIh KGbIdP5kVZSSNSMdYHc3M2dcmd6MhiNqABq67ydp56lqfz4zi5HLNPzzZE2mBVL4 h32DazisbRma/EpjWKD8pVQPAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUzVQAK5PY qTHnDfth6XK/r601hi8wHwYDVR0jBBgwFoAUNPD4zYe4jE9SDkb7ldLbhPoEM2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3QjM2LzcyRTZGQTI2NDA4 RjExRjBCMzRBRUY0N0M0RjlBRTAyL05QRDR6WWU0akU5U0RrYjdsZExiaFBvRU0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlBENHpZZTRqRTlTRGtiN2xkTGJoUG9FTTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0IzNi83MkU2RkEyNjQwOEYxMUYwQjM0QUVGNDdDNEY5QUUwMi81RTRFRjczRTQw OTAxMUYwOTg2QjFGNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCDOAwDQYJKoZIhvcNAQELBQADggEBAFjgPFzXD3QTQm1X wmkw7Rf8ELZ5+GQna5KvNKgoLJTpdZBxfwHyHwj3yTE1IaaWj4OYyltOGRwi1Mw6 TwJu3COXA+V6er/K+KdRDKLbs3WQ6zu+pp4Tr4nxNhO32DpSwf8OeSG2clRIVZXh t259QILf/mlRRYU72nTZ8Y9W2Mvfp2As8OqFOWg599fXm4kf4Da5WqlKEleqxLQF H7v1CtIz2XW30yY09NK77A/QhAUebglFchzTxiu0fkalQYGYLvIoi/cQlPX7fXMl atwLrOAfNq7TgOFo91/Xyqp8C5WNyd2JCXz70vQE5a0/26RozAomCbs12v6s9kGD Zg9jenU= -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:12 2025 by rpki-client