$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/370DA046484A11F0B96B9D10C4F9AE02.roa File: 370DA046484A11F0B96B9D10C4F9AE02.roa (raw, json) Hash identifier: 2Lm246NHiIIsj3yU5G9cofOj46hOe93SJKM95sww3VY= Subject key identifier: F4:62:42:A2:D0:60:5A:4D:8E:D2:FE:AB:AF:6D:A5:07:DF:29:AC:3F Certificate issuer: /CN=A91E2EFF/serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Certificate serial: 02 Authority key identifier: 35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/370DA046484A11F0B96B9D10C4F9AE02.roa Signing time: Fri 13 Jun 2025 11:33:24 +0000 ROA not before: Fri 13 Jun 2025 11:33:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 147180 IP address blocks: 2001:df5:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 07:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Validity Not Before: Jun 13 11:33:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684c0c83-7688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:f8:31:dd:67:d9:f0:31:f4:63:f3:0d:67: ca:fe:51:38:2c:5e:4f:61:27:a8:df:79:4d:e4:79: ab:4f:d3:ba:7b:dc:80:8b:86:b5:09:33:2f:64:3f: fd:26:02:85:6c:48:32:5e:7f:c4:e0:8e:5e:cb:2a: 2e:1a:4b:2b:88:8a:0b:55:df:8b:fe:7a:94:70:dc: 9d:c6:6f:b1:24:10:81:55:4f:1b:e2:0d:52:89:b8: 37:c6:3c:be:f7:d7:6b:18:1d:16:ec:f5:0e:4b:06: 2c:a0:16:1c:c0:33:58:f9:41:a1:be:31:ad:7e:25: d7:de:1d:3e:e1:de:35:1c:3a:9f:58:f0:47:c8:42: 28:31:2c:23:83:9d:ec:3a:90:4f:f7:81:22:05:42: 96:64:e2:11:d5:c9:a0:43:a5:9a:2d:1d:ea:5b:a5: a2:2f:54:6c:8d:29:24:4e:62:d1:94:b8:80:ab:23: ff:33:be:ae:cf:20:c6:2d:7a:14:36:92:52:8e:6d: 76:47:ac:d5:49:4a:d5:08:08:9e:c7:24:4b:02:6b: c3:54:d7:73:da:ec:45:9d:fb:14:c7:12:f6:64:0a: 40:7f:c5:11:68:d4:fa:72:8d:39:bf:a0:cb:cf:c7: 8d:82:61:44:f9:32:f9:b7:05:ca:e1:20:a4:be:5b: 3a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:62:42:A2:D0:60:5A:4D:8E:D2:FE:AB:AF:6D:A5:07:DF:29:AC:3F X509v3 Authority Key Identifier: keyid:35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/370DA046484A11F0B96B9D10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:2b:d8:80:5c:ae:60:06:f0:cd:ce:a4:e6:ec:59:96:e3:01: 7f:39:52:3f:94:8e:bd:ce:c8:af:ca:f0:3e:8e:ba:37:bf:5f: 29:21:ca:b4:d2:3b:24:9c:34:37:5c:d6:2f:98:ed:7f:c8:13: 34:38:db:1c:18:97:52:0a:8c:c8:2b:64:04:5f:a4:5b:99:33: 24:6b:7f:d7:35:cc:cd:77:dd:71:4d:2d:5f:fb:be:6f:c8:a4: d6:9f:09:b3:f2:d4:b8:30:77:62:57:91:44:30:c7:00:57:2c: 01:bd:e7:f2:4e:24:cb:3f:e5:77:f1:ce:3c:0a:0a:22:22:5e: a3:d9:db:41:59:4c:6a:7e:89:98:03:c6:02:8f:5d:d9:f0:7b: e5:fa:6e:59:88:e6:6a:85:1a:2b:d8:1c:c3:ca:17:d6:eb:03: 85:ae:2f:41:9b:43:37:cf:d6:46:ea:94:a4:4f:21:a5:9c:6f: 65:63:26:1c:68:6d:16:4e:9d:1a:18:96:41:83:df:39:81:ad: f1:3b:30:15:5f:78:34:b6:99:92:cb:9b:6b:9b:a3:96:37:0d: 1f:14:e7:02:6b:35:d0:ea:2a:d8:52:4c:df:fd:48:4a:0e:c5: ea:d1:c9:64:1a:26:ef:e9:36:7e:5f:71:55:7c:f5:86:ca:76: 2e:c8:ae:9d -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMzU0MzNDOUVDNDA4MDk5RjcwMThCQzUxNDQxRDIyQzRD MTFGQzM4NTAeFw0yNTA2MTMxMTMzMjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGMwYzgzLTc2ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAZvgx3WfZ8DH0Y/MNZ8r+UTgsXk9hJ6jfeU3keatP07p73ICLhrUJMy9kP/0m AoVsSDJef8Tgjl7LKi4aSyuIigtV34v+epRw3J3Gb7EkEIFVTxviDVKJuDfGPL73 12sYHRbs9Q5LBiygFhzAM1j5QaG+Ma1+JdfeHT7h3jUcOp9Y8EfIQigxLCODnew6 kE/3gSIFQpZk4hHVyaBDpZotHepbpaIvVGyNKSROYtGUuICrI/8zvq7PIMYtehQ2 klKObXZHrNVJStUICJ7HJEsCa8NU13Pa7EWd+xTHEvZkCkB/xRFo1PpyjTm/oMvP x42CYUT5Mvm3BcrhIKS+WzppAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU9GJCotBg Wk2O0v6rr22lB98prD8wHwYDVR0jBBgwFoAUNUM8nsQICZ9wGLxRRB0ixMEfw4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0FCOTc1QkNFNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5d0dMeFJSQjBpeE1FZnc0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlVNOG5zUUlDWjl3R0x4UlJCMGl4TUVmdzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGRi9BQjk3NUJDRTQ4NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi8zNzBEQTA0NjQ4 NEExMUYwQjk2QjlEMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWlwDANBgkqhkiG9w0BAQsFAAOCAQEASivYgFyuYAbw zc6k5uxZluMBfzlSP5SOvc7Ir8rwPo66N79fKSHKtNI7JJw0N1zWL5jtf8gTNDjb HBiXUgqMyCtkBF+kW5kzJGt/1zXMzXfdcU0tX/u+b8ik1p8Js/LUuDB3YleRRDDH AFcsAb3n8k4kyz/ld/HOPAoKIiJeo9nbQVlMan6JmAPGAo9d2fB75fpuWYjmaoUa K9gcw8oX1usDha4vQZtDN8/WRuqUpE8hpZxvZWMmHGhtFk6dGhiWQYPfOYGt8Tsw FV94NLaZksuba5ujljcNHxTnAms10Ooq2FJM3/1ISg7F6tHJZBom7+k2fl9xVXz1 hsp2LsiunQ== -----END CERTIFICATE-----Generated at Thu Jun 19 03:13:37 2025 by rpki-client