$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa File: 03774914696211EC8A05D115C4F9AE02.roa (raw, json) Hash identifier: YSreEArv7A+NuKlgpYkqh41Hl5YPxnEtL6X4nDbC/aY= Subject key identifier: 3D:91:4A:53:0B:2B:AB:39:FE:D0:BF:F8:53:9B:0B:02:2C:0C:41:DA Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E94 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:37:54 +0000 ROA not before: Tue 02 Sep 2025 18:37:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147028 IP address blocks: 2405:84c0:fdfa::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3732 (0xe94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73982-1b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:71:83:de:2f:b2:37:56:95:15:3e:d3:73:21: 17:5c:29:66:b2:fd:d9:4f:2c:5c:bd:1f:8a:b7:bc: 71:7a:5c:eb:0f:32:e5:96:a0:eb:06:b3:da:8e:47: 52:b0:e5:6f:52:7f:66:96:fb:af:4f:05:6f:17:d8: e4:bf:b8:e0:64:89:58:b6:64:f3:ef:83:a8:72:9d: 86:72:ef:2c:3b:fe:0c:16:11:50:d6:3b:b3:3e:88: ac:3c:a3:ca:a5:00:bb:a0:71:d3:f1:1a:56:99:8e: 76:9f:84:16:0f:96:1a:33:37:b3:37:6e:be:36:51: 8a:43:02:a4:6f:f2:5e:9d:f5:40:4e:2a:c4:12:2a: cf:63:51:da:b4:2a:e3:42:68:53:b0:6a:79:cc:99: 46:64:af:d5:08:63:8b:92:83:6e:75:7c:57:e8:6f: 82:b5:fc:ac:ed:f0:b2:f1:13:e3:b7:84:f6:70:43: 31:9f:09:f5:a3:88:d1:6f:10:b2:26:5e:bf:05:3e: 60:ab:98:aa:ba:8d:8a:3e:df:ac:5d:1d:6a:06:3e: 15:23:64:0d:05:84:39:de:61:9b:63:31:13:6f:41: af:a9:3e:54:23:87:29:26:09:04:66:c5:16:aa:35: 5f:f1:a8:b8:b9:f4:83:55:83:2a:ca:88:e8:0a:a6: d7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:91:4A:53:0B:2B:AB:39:FE:D0:BF:F8:53:9B:0B:02:2C:0C:41:DA X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/03774914696211EC8A05D115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fdfa::/47 Signature Algorithm: sha256WithRSAEncryption 38:f2:d2:fc:6b:19:6e:3f:6c:0c:95:17:0a:ef:f4:33:7b:71: b2:5f:b7:d2:bf:88:54:3b:5b:3b:7a:7b:4b:f6:5f:b2:fd:23: f5:95:69:fb:ca:c9:ce:2b:81:78:41:91:3d:28:51:aa:f5:83: f3:c6:c6:33:85:02:ce:ef:9e:04:00:30:a1:2e:68:d4:44:4e: 4b:58:a6:a2:8f:d0:8b:d8:29:2c:51:84:55:37:33:ab:f7:49: d0:20:b0:73:05:cb:94:70:21:4b:7f:87:e1:e7:2e:a2:22:36: fc:99:db:cd:53:c7:85:9f:eb:1d:0c:3c:37:6a:89:3f:0f:74: e7:a1:df:6d:57:ce:4e:e1:e3:f9:98:07:eb:1a:62:0f:32:da: ef:ce:43:0e:7a:ca:e3:94:61:f0:c1:c2:91:71:39:5f:78:92: 73:58:45:e9:83:1c:2a:48:ea:b9:79:09:3e:0d:28:c3:e8:66: b5:28:24:0a:8c:50:97:9b:91:42:e0:1d:fe:13:0c:88:29:9f: 12:7c:cb:a0:96:db:2e:1b:0f:d1:9d:5a:c6:1d:46:40:3d:f0: 15:bc:65:a9:be:64:87:67:b5:c0:61:8c:d7:15:9c:58:e8:ee: 46:a1:e7:e6:ea:e9:6c:21:92:80:ac:71:7f:47:15:fb:d1:47: 5e:63:0f:a1 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4Mi0xYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HGD3i+yN1aVFT7TcyEXXClmsv3ZTyxcvR+Kt7xxelzrDzLllqDrBrPajkdS sOVvUn9mlvuvTwVvF9jkv7jgZIlYtmTz74Oocp2Gcu8sO/4MFhFQ1juzPoisPKPK pQC7oHHT8RpWmY52n4QWD5YaMzezN26+NlGKQwKkb/JenfVATirEEirPY1HatCrj QmhTsGp5zJlGZK/VCGOLkoNudXxX6G+Ctfys7fCy8RPjt4T2cEMxnwn1o4jRbxCy Jl6/BT5gq5iquo2KPt+sXR1qBj4VI2QNBYQ53mGbYzETb0GvqT5UI4cpJgkEZsUW qjVf8ai4ufSDVYMqyojoCqbXiwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFD2RSlML K6s5/tC/+FObCwIsDEHaMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMDM3NzQ5MTQ2 OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEkBYTA/fowDQYJKoZIhvcNAQELBQADggEBADjy0vxrGW4/ bAyVFwrv9DN7cbJft9K/iFQ7Wzt6e0v2X7L9I/WVafvKyc4rgXhBkT0oUar1g/PG xjOFAs7vngQAMKEuaNRETktYpqKP0IvYKSxRhFU3M6v3SdAgsHMFy5RwIUt/h+Hn LqIiNvyZ281Tx4Wf6x0MPDdqiT8PdOeh321Xzk7h4/mYB+saYg8y2u/OQw56yuOU YfDBwpFxOV94knNYRemDHCpI6rl5CT4NKMPoZrUoJAqMUJebkULgHf4TDIgpnxJ8 y6CW2y4bD9GdWsYdRkA98BW8Zam+ZIdntcBhjNcVnFjo7kah5+bq6WwhkoCscX9H FfvRR15jD6E= -----END CERTIFICATE-----Generated at Thu Sep 4 10:28:10 2025 by rpki-client