$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa File: 139300E4BA6911EFA78E2F66C4F9AE02.roa (raw, json) Hash identifier: 1qb949nIw/0R9oQhGQh78XGami+Biv1wB24LyYGiBVo= Subject key identifier: 33:01:68:B9:A7:AD:36:9F:08:16:44:C9:C2:AB:84:E2:CC:00:C2:C2 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 01EE Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa Signing time: Thu 12 Jun 2025 21:13:48 +0000 ROA not before: Thu 12 Jun 2025 21:13:48 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 32167 IP address blocks: 2401:b60:2d::/48 maxlen: 48 2401:b60:1000::/36 maxlen: 44 2401:b60:e300::/40 maxlen: 48 2401:b60:e400::/40 maxlen: 48 2401:b60:e500::/40 maxlen: 48 2401:b60:e600::/40 maxlen: 48 2401:b60:e700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jun 12 21:13:48 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=684b430b-ce85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:98:c1:96:87:3b:5b:53:a3:d3:f0:3e:5b: e8:af:44:45:bd:9f:35:bb:a5:10:f1:63:91:3a:e2: ee:1e:f0:24:e5:e3:be:44:b8:7e:e0:74:2e:fc:92: 08:b0:10:c3:2a:b0:db:2b:4d:70:d6:69:95:cb:7a: 42:19:a5:c2:63:c3:19:b8:cb:97:7c:ec:de:4a:bd: 68:1e:da:fd:bc:ad:31:fb:78:b2:6f:c0:9c:c4:56: 94:a6:c5:a5:0f:40:c3:b7:d8:37:a4:a8:b7:5e:49: f6:bc:f9:c5:dc:03:bb:0f:98:42:ad:2a:20:65:3c: 41:6b:57:68:1c:42:9d:14:7a:84:d5:e0:c1:b7:2a: fe:76:1e:28:2f:50:ee:36:fc:1c:b8:7d:cc:33:cf: 45:66:0d:66:8c:48:8f:44:41:6b:83:36:93:8f:ab: 79:e9:b5:51:d3:81:43:f0:0c:f0:af:d8:7d:b3:36: 28:c6:60:7e:46:60:f3:6e:06:c8:c2:d4:7d:8c:48: d9:ac:11:4a:b2:d2:bf:01:c8:e8:f9:60:a8:d7:00: 17:bb:24:6c:58:9a:0c:23:a7:ca:26:4b:2c:fb:36: 3a:72:36:68:38:14:9f:16:22:bd:31:28:50:0e:d5: e3:e9:20:a2:f1:e8:bd:8e:ea:2e:3d:cf:45:51:2a: e0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:01:68:B9:A7:AD:36:9F:08:16:44:C9:C2:AB:84:E2:CC:00:C2:C2 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:2d::/48 2401:b60:1000::/36 2401:b60:e300::-2401:b60:e7ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 87:34:dd:a8:65:e0:fa:63:99:b5:d5:28:dd:4e:93:f9:dc:b7: 65:9b:cc:7f:9a:1b:d4:46:a1:43:08:cf:94:7b:67:08:fd:39: b3:63:1f:84:25:5d:c7:b7:64:f9:ad:35:1a:f1:93:a9:68:0e: 15:23:db:ee:66:c4:89:2d:93:f6:75:01:01:e7:06:94:d6:80: 30:11:54:51:32:1b:49:17:6c:cc:cb:d1:4f:8c:89:a4:39:43: 54:d8:ff:e5:9e:50:59:2c:4f:ff:ab:fa:b4:1e:99:20:3e:2b: d5:b4:db:b6:61:10:6e:20:05:70:6d:ea:a0:8c:f3:d6:08:43: bc:cb:93:4e:8e:b5:c8:dd:ea:8a:d0:bb:0b:30:92:46:e8:4a: d7:2d:d0:29:41:e3:19:d5:a7:76:1a:f1:be:5a:00:5a:ec:6d: 07:24:a7:11:70:95:70:98:16:e3:23:31:c3:6a:1a:bd:ae:e4: 0d:49:18:1d:07:2e:32:a4:39:b9:20:ea:f1:39:9e:43:ea:4a: 1f:df:76:18:56:f2:03:5f:8a:49:19:f6:cc:c5:2c:a6:8e:79: 84:91:f8:32:cf:13:e1:79:58:b0:7b:bc:f1:20:77:a7:b3:fe: 22:c5:1d:ca:58:01:0d:e5:51:7a:12:8f:f9:7e:e1:e2:b8:b4: 12:31:65:6b -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNjEyMjExMzQ4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiNDMwYi1jZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3KYwZaHO1tTo9PwPlvor0RFvZ81u6UQ8WOROuLuHvAk5eO+RLh+4HQu/JII sBDDKrDbK01w1mmVy3pCGaXCY8MZuMuXfOzeSr1oHtr9vK0x+3iyb8CcxFaUpsWl D0DDt9g3pKi3Xkn2vPnF3AO7D5hCrSogZTxBa1doHEKdFHqE1eDBtyr+dh4oL1Du NvwcuH3MM89FZg1mjEiPREFrgzaTj6t56bVR04FD8Azwr9h9szYoxmB+RmDzbgbI wtR9jEjZrBFKstK/Acjo+WCo1wAXuyRsWJoMI6fKJkss+zY6cjZoOBSfFiK9MShQ DtXj6SCi8ei9juouPc9FUSrgxwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFDMBaLmn rTafCBZEycKrhOLMAMLCMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMTM5MzAwRTRC QTY5MTFFRkE3OEUyRjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMCkEAgACMCMDBwAkAQtgAC0DBgQkAQtgEDAQAwYAJAELYOMDBgMkAQtg4DAN BgkqhkiG9w0BAQsFAAOCAQEAhzTdqGXg+mOZtdUo3U6T+dy3ZZvMf5ob1EahQwjP lHtnCP05s2MfhCVdx7dk+a01GvGTqWgOFSPb7mbEiS2T9nUBAecGlNaAMBFUUTIb SRdszMvRT4yJpDlDVNj/5Z5QWSxP/6v6tB6ZID4r1bTbtmEQbiAFcG3qoIzz1ghD vMuTTo61yN3qitC7CzCSRuhK1y3QKUHjGdWndhrxvloAWuxtBySnEXCVcJgW4yMx w2oava7kDUkYHQcuMqQ5uSDq8TmeQ+pKH992GFbyA1+KSRn2zMUspo55hJH4Ms8T 4XlYsHu88SB3p7P+IsUdylgBDeVRehKP+X7h4ri0EjFlaw== -----END CERTIFICATE-----Generated at Thu Jun 19 05:15:44 2025 by rpki-client