$ rpki-client -vvf rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/C9479880646611F0B371D156C4F9AE02.roa File: C9479880646611F0B371D156C4F9AE02.roa (raw, json) Hash identifier: ebNb1cqmZBUz7WL9tCF2PExl+FU65/gDmGjSUW9LYDU= Subject key identifier: D5:35:A5:39:F0:8A:34:68:A4:2F:B9:3C:37:B0:59:8A:72:AC:A6:91 Certificate issuer: /CN=A91585F0/serialNumber=A9F0AC97B9C18C32E2169C01A4986C7A6C255FFE Certificate serial: 03 Authority key identifier: A9:F0:AC:97:B9:C1:8C:32:E2:16:9C:01:A4:98:6C:7A:6C:25:5F:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfCsl7nBjDLiFpwBpJhsemwlX_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/C9479880646611F0B371D156C4F9AE02.roa Signing time: Sat 19 Jul 2025 06:08:27 +0000 ROA not before: Sat 19 Jul 2025 06:08:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137531 IP address blocks: 2001:df5:e2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/qfCsl7nBjDLiFpwBpJhsemwlX_4.crl rsync://rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/qfCsl7nBjDLiFpwBpJhsemwlX_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfCsl7nBjDLiFpwBpJhsemwlX_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 08:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91585F0, serialNumber=A9F0AC97B9C18C32E2169C01A4986C7A6C255FFE Validity Not Before: Jul 19 06:08:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687b365b-1ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d1:b5:f8:11:21:0b:10:30:c2:7c:a3:cb:c1: bd:62:27:5f:c9:03:15:8b:34:f0:0c:8f:15:fa:f0: 8e:5b:8b:02:2f:fb:5f:1a:89:0b:ee:35:86:3e:95: b5:3f:64:9a:30:c2:7d:c9:35:b1:04:5e:a9:9f:83: d4:30:4a:71:06:b2:8a:25:cd:22:09:7f:43:83:3b: 79:b3:43:98:7c:27:ca:e2:4b:c9:17:92:75:07:f7: 14:aa:ea:fc:2e:38:6c:0f:b2:46:64:47:9d:ef:08: b5:e4:8b:87:83:00:8b:24:88:23:3f:1c:73:77:ed: e0:16:d4:ee:a9:34:c8:24:6b:0b:9b:bd:0f:a5:70: 06:36:63:10:19:5c:79:9e:22:47:31:5a:79:f3:61: 77:ad:1c:69:25:f6:69:22:f2:a3:6f:99:7d:2a:a1: d3:b8:49:19:db:c2:59:f1:d2:fc:c5:f1:f2:f9:b8: 07:c3:ca:8d:e3:43:c0:0b:b7:ed:25:20:32:65:d9: 7e:3b:44:75:ee:84:bc:27:1c:4a:47:98:f9:92:82: 2d:69:64:c0:07:a4:b2:17:38:eb:95:76:86:7d:47: 94:8a:ba:33:d1:4f:89:93:eb:5c:e0:ce:be:e4:9c: 2b:25:89:41:5b:12:fd:02:f1:4e:44:e8:f6:c2:ba: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:35:A5:39:F0:8A:34:68:A4:2F:B9:3C:37:B0:59:8A:72:AC:A6:91 X509v3 Authority Key Identifier: keyid:A9:F0:AC:97:B9:C1:8C:32:E2:16:9C:01:A4:98:6C:7A:6C:25:5F:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/qfCsl7nBjDLiFpwBpJhsemwlX_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfCsl7nBjDLiFpwBpJhsemwlX_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91585F0/56356CD4640011F0B1A1D57EC4F9AE02/C9479880646611F0B371D156C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:e2c0::/48 Signature Algorithm: sha256WithRSAEncryption 40:5b:e6:f5:55:37:56:06:6b:c6:16:43:0b:67:57:b6:47:cc: 74:cc:c5:ab:c5:79:6c:fc:63:56:1e:b0:bc:fc:34:fa:35:c8: d6:9c:fe:c8:40:c0:ce:9b:1b:f7:6e:3f:09:60:27:28:ed:da: f4:55:64:82:f5:29:c8:c6:fa:6e:f7:4a:a9:31:8a:3a:eb:e0: e4:4c:b4:74:18:65:e8:c3:fc:9b:1d:6b:31:d6:c6:ce:e3:33: 72:37:83:da:50:b5:82:94:31:80:90:3c:df:20:47:49:0d:68: 25:aa:e3:2b:e6:76:b3:ec:22:46:f3:ba:dd:9b:21:64:8b:d8: 76:7b:7e:16:74:03:bc:65:41:4d:f9:3e:d9:e3:40:23:40:06: 21:c6:bd:e1:48:0d:f4:14:c3:e4:5f:83:4f:19:5a:0b:d1:f4: f4:81:33:b1:9a:57:41:55:fa:8d:c1:5c:0c:a5:75:40:c8:b1: 31:32:3f:22:62:e7:31:e5:79:6f:c7:e8:21:59:6a:5e:47:26: bd:52:c9:7c:50:d6:c0:2a:9c:e6:c0:ae:a2:15:96:0e:56:a0: 6f:57:16:08:22:76:80:8a:78:83:5b:52:15:30:b2:c1:0b:d7: 87:a6:6e:9c:a1:f1:57:a6:51:75:ee:05:92:22:94:52:e7:c0: 69:31:c9:e2 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODVGMDExMC8GA1UEBRMoQTlGMEFDOTdCOUMxOEMzMkUyMTY5QzAxQTQ5ODZDN0E2 QzI1NUZGRTAeFw0yNTA3MTkwNjA4MjdaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2IzNjViLTFjZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj0bX4ESELEDDCfKPLwb1iJ1/JAxWLNPAMjxX68I5biwIv+18aiQvuNYY+lbU/ ZJowwn3JNbEEXqmfg9QwSnEGsoolzSIJf0ODO3mzQ5h8J8riS8kXknUH9xSq6vwu OGwPskZkR53vCLXki4eDAIskiCM/HHN37eAW1O6pNMgkawubvQ+lcAY2YxAZXHme IkcxWnnzYXetHGkl9mki8qNvmX0qodO4SRnbwlnx0vzF8fL5uAfDyo3jQ8ALt+0l IDJl2X47RHXuhLwnHEpHmPmSgi1pZMAHpLIXOOuVdoZ9R5SKujPRT4mT61zgzr7k nCsliUFbEv0C8U5E6PbCuhRxAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU1TWlOfCK NGikL7k8N7BZinKsppEwHwYDVR0jBBgwFoAUqfCsl7nBjDLiFpwBpJhsemwlX/4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NUYwLzU2MzU2Q0Q0NjQw MDExRjBCMUExRDU3RUM0RjlBRTAyL3FmQ3NsN25CakRMaUZwd0JwSmhzZW13bFhf NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWZDc2w3bkJqRExpRnB3QnBKaHNlbXdsWF80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODVGMC81NjM1NkNENDY0MDAxMUYwQjFBMUQ1N0VDNEY5QUUwMi9DOTQ3OTg4MDY0 NjYxMUYwQjM3MUQxNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXiwDANBgkqhkiG9w0BAQsFAAOCAQEAQFvm9VU3VgZr xhZDC2dXtkfMdMzFq8V5bPxjVh6wvPw0+jXI1pz+yEDAzpsb924/CWAnKO3a9FVk gvUpyMb6bvdKqTGKOuvg5Ey0dBhl6MP8mx1rMdbGzuMzcjeD2lC1gpQxgJA83yBH SQ1oJarjK+Z2s+wiRvO63ZshZIvYdnt+FnQDvGVBTfk+2eNAI0AGIca94UgN9BTD 5F+DTxlaC9H09IEzsZpXQVX6jcFcDKV1QMixMTI/ImLnMeV5b8foIVlqXkcmvVLJ fFDWwCqc5sCuohWWDlagb1cWCCJ2gIp4g1tSFTCywQvXh6ZunKHxV6ZRde4FkiKU UufAaTHJ4g== -----END CERTIFICATE-----Generated at Wed Jul 23 12:21:23 2025 by rpki-client