$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa File: 378C18A43D3D11EAA59A8012C4F9AE02.roa (raw, json) Hash identifier: yeuXVIZHgdbGSZuuSW+dQGW9Nla3e2FH/EFT8iqpLcQ= Subject key identifier: FE:C1:98:14:AC:D7:2C:08:A1:AB:28:AA:B5:76:E7:24:88:EB:28:E6 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E91 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:37:51 +0000 ROA not before: Tue 02 Sep 2025 18:37:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138990 IP address blocks: 2405:84c0:faaa::/48 maxlen: 48 2405:84c0:faab::/48 maxlen: 48 2405:84c0:fade::/48 maxlen: 48 2405:84c0:fbbb::/48 maxlen: 48 2405:84c0:ff90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7397f-fc53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:06:21:40:8b:c0:9b:1c:51:1b:d1:36:34: 14:23:56:02:59:b7:de:d8:dd:69:9e:b9:ec:1d:62: 55:03:5c:66:0f:e6:45:55:45:44:c0:5d:7e:80:5d: 48:d6:2e:cc:ba:17:21:f5:3a:49:74:85:ae:25:0c: 38:78:d3:3e:35:5a:78:a9:33:88:5b:dc:c4:b6:d0: 8b:d4:a9:11:95:91:38:96:45:fa:2f:bc:84:fd:21: 52:8e:fb:e0:b1:42:8e:e1:f6:ca:9e:0f:76:33:df: c0:ed:c8:62:ac:16:ef:1b:13:f0:21:9a:b8:6d:a2: 6e:24:de:aa:93:49:46:89:ad:21:27:64:58:63:b5: 6d:6f:12:ab:bd:ce:93:cd:25:df:fb:64:bd:1e:9e: 94:4f:01:d1:5a:08:4f:d7:f3:29:5c:ab:58:b7:fb: f8:de:a9:ae:61:05:fb:7e:2a:58:8c:12:b5:4c:66: a1:1c:7d:9a:77:b7:ac:61:a6:f8:0a:dd:66:30:7e: b5:8b:ab:f9:10:28:a0:38:ae:02:72:1f:07:cc:13: ac:95:19:e0:4d:4c:ab:01:2c:cc:14:05:2f:6d:09: 85:e6:54:7c:9e:c9:7f:0e:ee:c4:18:9c:0d:de:b7: a5:76:48:fb:f0:37:b5:59:3a:24:ab:4c:cf:9f:7f: a3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C1:98:14:AC:D7:2C:08:A1:AB:28:AA:B5:76:E7:24:88:EB:28:E6 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/378C18A43D3D11EAA59A8012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:faaa::/47 2405:84c0:fade::/48 2405:84c0:fbbb::/48 2405:84c0:ff90::/44 Signature Algorithm: sha256WithRSAEncryption ba:69:74:59:7c:3c:70:fb:61:cc:c7:04:b7:c9:4b:c2:c4:29: d5:64:0d:3c:3a:59:78:ec:80:02:16:e2:af:2f:c8:3d:76:c4: 6f:ee:2a:24:e1:58:ab:bd:99:46:d1:5b:1e:63:f6:22:fd:62: 80:ab:3a:df:70:af:46:4c:26:03:67:fb:14:b1:0f:aa:c2:32: 88:d3:50:10:a4:91:5c:2c:9e:74:7a:e2:e0:3e:14:e0:3d:82: 8b:d1:7e:f7:03:78:38:62:1e:d4:a7:41:04:c3:83:fe:19:59: e3:43:4c:df:65:98:ea:06:24:4b:d3:b0:cc:56:95:22:d0:58: 83:10:ca:ce:c5:d8:66:78:b3:55:04:21:af:1e:1a:0a:a6:b6: 99:81:a8:8a:7d:7f:f1:6d:a2:ca:82:f3:68:24:2f:00:c4:a4: e2:47:ac:28:43:5e:5e:d9:dc:40:b4:13:1c:c5:01:77:83:ed: c6:55:17:93:32:46:4e:68:ce:cf:9a:7f:ba:cd:ea:de:6c:07: a5:d9:da:b1:dc:f4:d6:aa:b8:a8:95:f0:25:b3:0c:75:b4:44: 8c:7a:49:00:b2:98:0c:df:a5:27:d3:8c:4c:d6:b1:9a:53:21: a5:e6:e7:e2:52:e9:83:02:70:a9:72:10:f0:09:2b:a7:ff:2e: 89:62:e1:53 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk3Zi1mYzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgwGIUCLwJscURvRNjQUI1YCWbfe2N1pnrnsHWJVA1xmD+ZFVUVEwF1+gF1I 1i7Muhch9TpJdIWuJQw4eNM+NVp4qTOIW9zEttCL1KkRlZE4lkX6L7yE/SFSjvvg sUKO4fbKng92M9/A7chirBbvGxPwIZq4baJuJN6qk0lGia0hJ2RYY7VtbxKrvc6T zSXf+2S9Hp6UTwHRWghP1/MpXKtYt/v43qmuYQX7fipYjBK1TGahHH2ad7esYab4 Ct1mMH61i6v5ECigOK4Cch8HzBOslRngTUyrASzMFAUvbQmF5lR8nsl/Du7EGJwN 3reldkj78De1WTokq0zPn3+j0QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFP7BmBSs 1ywIoasoqrV25ySI6yjmMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMzc4QzE4QTQz RDNEMTFFQUE1OUE4MDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgACMCQDBwEkBYTA+qoDBwAkBYTA+t4DBwAkBYTA+7sDBwQkBYTA/5Aw DQYJKoZIhvcNAQELBQADggEBALppdFl8PHD7YczHBLfJS8LEKdVkDTw6WXjsgAIW 4q8vyD12xG/uKiThWKu9mUbRWx5j9iL9YoCrOt9wr0ZMJgNn+xSxD6rCMojTUBCk kVwsnnR64uA+FOA9govRfvcDeDhiHtSnQQTDg/4ZWeNDTN9lmOoGJEvTsMxWlSLQ WIMQys7F2GZ4s1UEIa8eGgqmtpmBqIp9f/FtosqC82gkLwDEpOJHrChDXl7Z3EC0 ExzFAXeD7cZVF5MyRk5ozs+af7rN6t5sB6XZ2rHc9NaquKiV8CWzDHW0RIx6SQCy mAzfpSfTjEzWsZpTIaXm5+JS6YMCcKlyEPAJK6f/Loli4VM= -----END CERTIFICATE-----Generated at Thu Sep 4 10:32:04 2025 by rpki-client