$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa File: 0741B84C2FFA11EB9544F785C4F9AE02.roa (raw, json) Hash identifier: 9Y1PvZbBWvXkxPJ/R9kxoHARtC3b9XEV8P94nkayA0Y= Subject key identifier: A6:A0:09:0C:7F:A7:3E:77:94:B2:65:D0:C7:09:F5:16:FA:CC:EC:74 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E9C Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:38:01 +0000 ROA not before: Tue 02 Sep 2025 18:38:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 40676 IP address blocks: 2405:84c0:9710::/44 maxlen: 44 2405:84c0:fd16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:38:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73989-bd77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2e:14:f8:c6:0a:7f:8a:60:46:c7:de:73:55: 79:ae:44:79:fb:e3:20:78:a6:c0:b1:2d:22:cb:89: fe:94:ed:e7:86:cb:9c:bc:52:22:a4:0a:9c:04:2f: ac:3f:e3:95:fd:35:0a:00:32:dc:11:7c:3d:74:38: 86:9a:5a:03:00:89:c0:9b:54:72:ae:d8:d2:dd:f5: 41:d4:2f:e8:d5:1f:0b:ca:94:c2:9a:68:04:78:d5: e9:57:60:7f:e4:6a:70:ac:5c:64:67:0f:e9:17:a4: f6:99:55:b4:d5:83:51:fe:38:b0:da:ba:b4:54:d9: 61:2c:d6:f1:11:8c:f5:da:bf:49:7e:13:6a:ba:81: 54:35:fd:50:50:3d:49:c4:39:7b:cd:46:48:59:d0: 3e:8c:6e:2d:8a:5e:d8:75:d4:be:f5:e3:09:94:09: 3d:aa:b1:17:15:83:4e:ab:8c:b6:45:aa:a3:fb:a9: a8:00:8f:2d:fc:26:6b:37:5a:f1:34:c1:02:e7:0f: 12:2e:61:b0:f5:e8:6e:77:a6:a8:4e:8a:92:e2:bc: 5d:c1:2b:27:7e:b0:13:b8:bd:ef:17:51:60:e1:b5: 58:d5:72:7e:3d:79:2e:5a:13:c5:01:96:bb:1c:02: 63:54:d6:b2:fa:c5:0c:d5:dd:5c:b6:a8:96:81:bf: 2f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A0:09:0C:7F:A7:3E:77:94:B2:65:D0:C7:09:F5:16:FA:CC:EC:74 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/0741B84C2FFA11EB9544F785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:9710::/44 2405:84c0:fd16::/48 Signature Algorithm: sha256WithRSAEncryption 04:b3:82:06:db:6e:fe:70:4f:28:fd:4e:13:4d:1b:bb:12:0c: 2d:34:3d:39:07:b6:d4:9c:9f:17:8e:ce:81:ba:0e:4a:35:97: 6b:b2:80:5b:17:75:7a:ad:5a:83:dc:98:75:be:db:e2:9b:57: e5:16:89:d7:a1:88:af:92:cc:6f:bb:28:3e:e9:a2:89:ff:6f: b5:3f:68:75:f4:81:39:73:39:c3:dc:8d:4f:e5:5d:10:38:28: 4d:96:fb:02:34:72:f3:3c:3e:1d:1c:8f:b2:4b:00:1b:11:6e: 9e:15:a2:50:64:0d:89:e4:1b:91:05:8a:b7:08:8d:f7:13:a7: 5b:8f:64:85:91:92:74:b7:43:10:3a:46:8a:0e:cc:2f:a0:85: 67:20:df:1f:d4:41:02:53:c5:dd:99:a3:75:f6:67:f5:ec:43: 0a:a9:96:4d:69:27:38:04:b0:11:be:2f:e0:32:52:34:0d:9c: 49:b9:e2:02:b7:85:67:a9:eb:53:29:56:cb:33:50:91:9c:65: b6:0f:5b:2c:04:32:c9:7e:83:86:34:64:77:8e:8e:1d:ed:7e: 59:fa:7a:1b:2e:12:05:1d:dd:2c:b4:b4:c5:38:8b:57:56:39: e3:82:94:55:74:04:b8:97:5c:47:da:28:a1:78:57:2b:17:69: cb:9e:4f:74 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzODAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4OS1iZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC4U+MYKf4pgRsfec1V5rkR5++MgeKbAsS0iy4n+lO3nhsucvFIipAqcBC+s P+OV/TUKADLcEXw9dDiGmloDAInAm1RyrtjS3fVB1C/o1R8LypTCmmgEeNXpV2B/ 5GpwrFxkZw/pF6T2mVW01YNR/jiw2rq0VNlhLNbxEYz12r9JfhNquoFUNf1QUD1J xDl7zUZIWdA+jG4til7YddS+9eMJlAk9qrEXFYNOq4y2Raqj+6moAI8t/CZrN1rx NMEC5w8SLmGw9ehud6aoToqS4rxdwSsnfrATuL3vF1Fg4bVY1XJ+PXkuWhPFAZa7 HAJjVNay+sUM1d1ctqiWgb8vgwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKagCQx/ pz53lLJl0McJ9Rb6zOx0MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMDc0MUI4NEMy RkZBMTFFQjk1NDRGNzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwQkBYTAlxADBwAkBYTA/RYwDQYJKoZIhvcNAQELBQADggEB AASzggbbbv5wTyj9ThNNG7sSDC00PTkHttScnxeOzoG6Dko1l2uygFsXdXqtWoPc mHW+2+KbV+UWidehiK+SzG+7KD7poon/b7U/aHX0gTlzOcPcjU/lXRA4KE2W+wI0 cvM8Ph0cj7JLABsRbp4VolBkDYnkG5EFircIjfcTp1uPZIWRknS3QxA6RooOzC+g hWcg3x/UQQJTxd2Zo3X2Z/XsQwqplk1pJzgEsBG+L+AyUjQNnEm54gK3hWep61Mp VsszUJGcZbYPWywEMsl+g4Y0ZHeOjh3tfln6ehsuEgUd3Sy0tMU4i1dWOeOClFV0 BLiXXEfaKKF4VysXacueT3Q= -----END CERTIFICATE-----Generated at Thu Sep 4 10:23:26 2025 by rpki-client