$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa File: 29F2A6202EF711F08A285219C4F9AE02.roa (raw, json) Hash identifier: bA7L+jGDZGEL0erGUM3EYZdvPilaftv3/Gg8hdqNMPM= Subject key identifier: 0C:EE:23:2B:54:10:D4:17:07:7B:A9:A0:9F:2D:42:8A:CE:AF:3E:45 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 02B8 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa Signing time: Wed 11 Jun 2025 02:18:39 +0000 ROA not before: Wed 11 Jun 2025 02:18:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149981 IP address blocks: 2407:2440:21::/48 maxlen: 48 2407:2440:24::/48 maxlen: 48 2407:2440:26::/48 maxlen: 48 2407:2440:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 02:18:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848e77f-cc0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:46:2a:6c:ed:a5:28:4e:b0:7e:d1:e3:f8: 71:34:9b:1a:71:15:a0:27:ec:09:44:12:2b:d0:d3: dc:17:00:e4:7a:59:7e:ec:95:2c:ba:ea:40:87:eb: 8b:9e:33:eb:f9:a7:e5:09:38:21:db:f7:49:a6:cb: 62:0d:26:60:3b:fd:3d:e8:f3:e0:85:9f:4c:84:fd: a4:41:3d:f1:6c:05:77:7c:51:b0:33:0a:d4:08:d7: a2:94:7f:8f:8b:cb:5b:4e:82:b3:07:19:22:85:bc: 13:0d:30:aa:ae:5f:2b:47:16:1f:e9:82:09:ff:b0: 5a:0a:a8:cd:7f:9b:43:e3:49:99:85:dd:fb:b5:bd: 3f:76:6d:4c:16:18:23:a3:57:48:db:e6:be:1e:89: 0a:bd:4f:44:6a:37:1c:b5:2b:80:ec:ed:95:a5:04: 46:06:6a:41:1d:65:d0:57:6e:7b:f2:b6:76:69:2c: 1a:4d:a0:69:0e:92:53:63:07:ec:b7:a3:76:e9:d1: 0f:81:f6:04:9b:b5:68:c4:45:6b:fb:40:9a:b6:b0: 73:b8:ec:b5:80:69:c9:e3:ef:19:39:a2:cd:e4:10: d7:79:64:00:94:99:db:02:4d:6e:20:bf:06:a0:53: 7d:78:9b:2b:88:85:5f:21:bd:4f:6a:b5:0f:34:df: 45:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:EE:23:2B:54:10:D4:17:07:7B:A9:A0:9F:2D:42:8A:CE:AF:3E:45 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:2440:21::/48 2407:2440:24::/48 2407:2440:26::/48 2407:2440:29::/48 Signature Algorithm: sha256WithRSAEncryption 43:f7:ae:90:a5:a3:4d:75:85:e2:fb:b7:ca:a5:87:46:12:e9: 2a:5d:77:28:5a:74:ab:83:f1:1a:ee:98:f0:88:d9:59:a4:94: 6c:aa:d6:59:d6:97:e9:2b:4f:a0:59:62:87:6b:6f:54:80:23: 87:b4:6e:dd:70:9e:20:4b:9c:1b:74:19:63:c8:9d:11:ea:91: 84:8f:4f:65:18:82:d4:d5:ff:c3:21:1d:15:77:67:fa:39:9c: 29:b7:72:60:27:66:83:2c:5d:17:a9:ec:35:97:b8:3e:b1:2d: 85:e8:86:b6:4f:d7:a5:54:81:ef:50:9f:8b:d4:95:0d:69:1e: d4:92:8d:6a:4a:5a:18:41:3f:98:d1:f9:d1:82:59:8c:d6:68: 81:5d:2a:e7:b8:84:71:cf:90:ed:ce:97:1f:18:66:39:fb:49: 79:d6:66:c5:b6:df:c6:a7:7d:b3:26:8a:5f:a0:d2:6e:4c:ff: 10:70:e1:e2:ba:d6:be:4f:6b:ca:89:b0:2e:6b:bc:9d:28:cf: 4c:c3:e8:f1:bd:ff:64:fd:c0:e2:4b:44:55:a2:5c:67:ae:c8: 77:17:ae:7f:95:4d:0f:82:31:8f:bc:e6:82:12:e1:7a:15:5c: 63:9c:0f:1b:37:56:99:af:1a:f6:05:5d:12:7a:af:41:88:28: ed:84:bc:2a -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwNjExMDIxODM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4ZTc3Zi1jYzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2VGKmztpShOsH7R4/hxNJsacRWgJ+wJRBIr0NPcFwDkell+7JUsuupAh+uL njPr+aflCTgh2/dJpstiDSZgO/096PPghZ9MhP2kQT3xbAV3fFGwMwrUCNeilH+P i8tbToKzBxkihbwTDTCqrl8rRxYf6YIJ/7BaCqjNf5tD40mZhd37tb0/dm1MFhgj o1dI2+a+HokKvU9EajcctSuA7O2VpQRGBmpBHWXQV2578rZ2aSwaTaBpDpJTYwfs t6N26dEPgfYEm7VoxEVr+0CatrBzuOy1gGnJ4+8ZOaLN5BDXeWQAlJnbAk1uIL8G oFN9eJsriIVfIb1ParUPNN9FqwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFAzuIytU ENQXB3upoJ8tQorOrz5FMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvMjlGMkE2MjAy RUY3MTFGMDhBMjg1MjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwAkByRAACEDBwAkByRAACQDBwAkByRAACYDBwAkByRAACkw DQYJKoZIhvcNAQELBQADggEBAEP3rpClo011heL7t8qlh0YS6SpddyhadKuD8Rru mPCI2VmklGyq1lnWl+krT6BZYodrb1SAI4e0bt1wniBLnBt0GWPInRHqkYSPT2UY gtTV/8MhHRV3Z/o5nCm3cmAnZoMsXRep7DWXuD6xLYXohrZP16VUge9Qn4vUlQ1p HtSSjWpKWhhBP5jR+dGCWYzWaIFdKue4hHHPkO3Olx8YZjn7SXnWZsW238anfbMm il+g0m5M/xBw4eK61r5Pa8qJsC5rvJ0oz0zD6PG9/2T9wOJLRFWiXGeuyHcXrn+V TQ+CMY+85oIS4XoVXGOcDxs3VpmvGvYFXRJ6r0GIKO2EvCo= -----END CERTIFICATE-----Generated at Sun Jun 15 07:10:55 2025 by rpki-client