$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa File: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (raw, json) Hash identifier: Do71l71FTiixHCCIPeakkaaBf4R9F2qJdYWGM64Ufb8= Subject key identifier: AE:80:8E:2A:56:94:77:BF:D0:19:FD:F2:89:69:07:FC:98:ED:D1:C7 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 08FE Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa Signing time: Sat 14 Jun 2025 20:36:21 +0000 ROA not before: Sat 14 Jun 2025 20:36:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9221 IP address blocks: 2406:dc0:232c::/47 maxlen: 48 2406:dc0:235e::/47 maxlen: 48 2406:dc0:23e4::/47 maxlen: 48 2406:dc0:883e::/47 maxlen: 48 2406:dc0:8850::/47 maxlen: 48 2406:dc0:88bc::/47 maxlen: 48 2406:dc0:88ca::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Jun 14 20:36:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684ddd44-e2b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:e7:fb:51:9b:76:de:79:41:b5:9f:43:e9: b4:dd:29:ae:98:1f:8d:25:c4:1b:33:bc:6e:94:e4: 6c:eb:5f:3c:8a:32:91:9d:f9:c0:6f:30:08:6c:c0: a9:3d:66:3c:d8:f3:18:99:90:bd:a6:03:95:f0:b6: b0:a8:28:9a:a8:13:42:2a:b0:0a:02:d2:b2:b1:b0: ef:5a:dd:87:d7:50:81:0c:6e:af:0e:17:87:1f:ec: 47:be:05:ac:52:f7:81:a8:1f:81:67:89:66:b2:d6: f6:67:d0:26:79:c4:b8:1c:13:99:11:26:f6:d1:a3: 20:4b:02:04:41:2d:41:b8:76:84:7e:8c:a0:a6:b1: 29:ef:13:30:3d:b8:73:10:e4:8e:01:d5:49:a0:9c: d1:68:7c:49:db:f0:79:e2:1d:8e:26:f4:00:d0:78: 15:c9:50:5b:4a:37:0b:c9:62:ac:6d:0d:75:00:68: 63:3b:14:f8:5d:c8:b4:a4:c1:fb:6d:bc:38:97:f7: 7d:de:49:58:5a:ec:5d:79:af:9c:c4:81:29:7d:3d: f3:4e:64:e9:d0:15:86:b4:ef:87:7d:05:c2:b0:38: 37:8f:07:fa:33:a9:65:b2:6f:e9:0d:87:36:e8:92: 45:52:ff:5c:ab:dc:8a:8c:db:59:36:f9:e5:3a:89: f1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:80:8E:2A:56:94:77:BF:D0:19:FD:F2:89:69:07:FC:98:ED:D1:C7 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:dc0:232c::/47 2406:dc0:235e::/47 2406:dc0:23e4::/47 2406:dc0:883e::/47 2406:dc0:8850::/47 2406:dc0:88bc::/47 2406:dc0:88ca::/47 Signature Algorithm: sha256WithRSAEncryption 19:e3:66:3d:d0:09:ac:7e:53:37:45:cd:2a:43:c7:8d:c6:19: 7e:c5:36:01:2d:9c:f8:fc:d7:05:ac:4c:b6:6a:39:65:c7:53: 47:b2:91:d2:91:c4:0b:22:57:a1:90:59:65:94:da:7e:80:09: f6:a2:77:d7:0e:89:4a:f9:2c:93:a9:0c:87:23:37:57:cb:46: 12:e8:d5:0f:6c:41:60:51:95:4b:d5:b7:e1:6a:bb:a7:9d:86: 7c:39:fc:aa:f7:b3:db:cd:c0:42:65:63:f1:e0:77:cd:6e:d3: 3b:5d:58:c6:16:e2:6e:10:5f:69:1b:f5:3d:0b:45:3c:0e:2b: 1d:a7:76:c3:dd:74:d4:43:6f:4f:f9:e0:b6:f1:4d:3f:ed:6d: b1:bf:c5:db:52:6f:51:e0:ac:1e:16:14:58:eb:53:46:62:88: ca:c1:54:c3:bb:e2:79:e4:3e:69:ce:61:2c:13:a1:07:cc:48: 3a:25:87:0f:af:e9:c3:05:bd:01:d6:63:3e:06:83:17:6f:33: d0:ca:95:8f:1c:d5:53:18:8f:a9:cd:0e:b2:03:e2:be:0f:11: 72:c6:b7:a7:36:75:b4:07:07:d8:2e:be:ef:cd:09:c7:ef:52: 16:9d:06:ec:df:04:34:c6:df:df:23:1b:37:77:de:ee:8e:8c: 87:f6:0a:e9 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjUwNjE0MjAzNjIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkZGQ0NC1lMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupPn+1Gbdt55QbWfQ+m03SmumB+NJcQbM7xulORs6188ijKRnfnAbzAIbMCp PWY82PMYmZC9pgOV8LawqCiaqBNCKrAKAtKysbDvWt2H11CBDG6vDheHH+xHvgWs UveBqB+BZ4lmstb2Z9AmecS4HBOZESb20aMgSwIEQS1BuHaEfoygprEp7xMwPbhz EOSOAdVJoJzRaHxJ2/B54h2OJvQA0HgVyVBbSjcLyWKsbQ11AGhjOxT4Xci0pMH7 bbw4l/d93klYWuxdea+cxIEpfT3zTmTp0BWGtO+HfQXCsDg3jwf6M6llsm/pDYc2 6JJFUv9cq9yKjNtZNvnlOonxLQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFK6AjipW lHe/0Bn98olpB/yY7dHHMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFENzcvNEI2NDI3RTJBQkY5MTFFQTg4QUFFMzJDQzRGOUFFMDIvRTZGRDVFQkNC QTNBMTFFQkE5NDgyRjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMEUEAgACMD8DBwEkBg3AIywDBwEkBg3AI14DBwEkBg3AI+QDBwEkBg3AiD4D BwEkBg3AiFADBwEkBg3AiLwDBwEkBg3AiMowDQYJKoZIhvcNAQELBQADggEBABnj Zj3QCax+UzdFzSpDx43GGX7FNgEtnPj81wWsTLZqOWXHU0eykdKRxAsiV6GQWWWU 2n6ACfaid9cOiUr5LJOpDIcjN1fLRhLo1Q9sQWBRlUvVt+Fqu6edhnw5/Kr3s9vN wEJlY/Hgd81u0ztdWMYW4m4QX2kb9T0LRTwOKx2ndsPddNRDb0/54LbxTT/tbbG/ xdtSb1HgrB4WFFjrU0ZiiMrBVMO74nnkPmnOYSwToQfMSDolhw+v6cMFvQHWYz4G gxdvM9DKlY8c1VMYj6nNDrID4r4PEXLGt6c2dbQHB9guvu/NCcfvUhadBuzfBDTG 398jGzd33u6OjIf2Cuk= -----END CERTIFICATE-----Generated at Sun Jun 15 05:00:47 2025 by rpki-client