$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa File: 45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa (raw, json) Hash identifier: ullzKPL3x0725kipkj6fcVE+JrOCoQ1xkkGVkrIADK4= Subject key identifier: 00:FA:3E:AF:2F:EC:61:40:99:C8:B1:47:E8:C9:4D:D7:18:EB:93:F9 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0EA1 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa Signing time: Tue 02 Sep 2025 18:38:07 +0000 ROA not before: Tue 02 Sep 2025 18:38:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9516 IP address blocks: 2405:84c0:ff20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3745 (0xea1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:38:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7398f-9617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:d8:e3:4d:4f:67:65:0d:02:d1:b6:2f:87: 2e:84:9c:0b:f6:51:22:ca:34:68:f3:79:a8:47:c4: cb:65:7a:56:0b:bd:81:8c:d6:c3:50:38:24:c9:04: 67:50:5c:10:49:77:7b:26:4d:10:67:9c:a6:da:e7: 22:ba:1d:a3:92:3d:87:06:af:ba:80:48:0f:00:a8: a9:1e:2b:ba:bf:01:c2:20:e1:c5:e6:19:7e:4d:d5: 42:10:c7:a3:33:a6:3f:a1:96:92:7f:aa:85:c8:b7: fe:07:81:8a:35:35:0c:9e:a9:15:fe:4c:72:55:9c: 7a:64:92:2a:e8:08:92:20:1f:12:a2:99:a8:4e:da: 5e:f9:63:b9:15:59:bf:f0:ea:f4:5a:21:9e:52:ef: 65:5c:16:e3:07:a7:67:d4:e6:33:b9:a3:31:10:8b: 0a:f2:d0:9c:1c:bf:94:6b:40:73:91:f4:3f:da:f3: 65:6c:bb:98:68:65:79:5e:b6:23:66:b9:59:df:9c: 68:60:86:fa:72:54:3e:8a:13:31:82:33:1c:5a:29: 6d:cd:29:20:33:5b:28:39:f6:20:07:ac:b9:f1:64: 47:46:82:dc:fb:57:52:5e:4a:9c:68:cb:8d:de:7f: 5f:70:6b:72:84:ac:c8:64:f6:88:66:b9:b6:45:39: 16:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FA:3E:AF:2F:EC:61:40:99:C8:B1:47:E8:C9:4D:D7:18:EB:93:F9 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/45F4DDA265CF11EB9E3CFA6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 8c:09:45:f1:24:0e:c2:1a:e6:68:f5:a1:9f:b7:ea:2e:55:6a: 49:51:62:75:26:a6:d0:09:46:e6:1b:05:5e:54:a3:a7:14:64: 6f:dc:20:08:2f:f7:39:9c:c9:c7:9a:44:7f:9a:aa:74:f9:53: d1:3a:e9:46:ae:bf:e4:dc:1c:eb:2a:7c:ae:8a:33:f4:55:0b: 45:34:41:ab:97:47:08:9a:e3:16:12:f5:30:b3:a1:77:40:6f: 54:bf:da:43:6e:bc:f5:9f:25:65:3b:bf:ac:e1:ac:98:43:90: 2c:21:bc:e5:b1:22:5e:5f:57:9f:a6:86:61:cc:11:4e:af:6b: 2b:bd:fa:53:b5:ba:f6:f0:1c:9b:1f:66:e8:b8:a4:c6:53:94: 94:d9:43:2c:84:b2:0e:8a:b8:8d:ed:2b:d9:37:53:0b:e6:44: 7a:1b:6a:5b:d7:a0:cc:af:48:bd:44:cd:b5:cb:b8:17:70:df: 7f:6e:57:c2:c7:c6:67:03:21:d6:9f:a6:6e:62:49:08:77:5f: b8:33:11:67:0c:a5:6b:5b:04:03:4d:d2:9a:10:eb:4c:91:30: da:9b:3f:6f:d5:ed:98:27:59:51:2e:63:6c:89:b2:19:8e:57: b3:97:0c:c9:83:ff:b9:41:eb:5f:90:47:89:db:a5:13:18:d3: cc:cf:66:be -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzODA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4Zi05NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzHY401PZ2UNAtG2L4cuhJwL9lEiyjRo83moR8TLZXpWC72BjNbDUDgkyQRn UFwQSXd7Jk0QZ5ym2uciuh2jkj2HBq+6gEgPAKipHiu6vwHCIOHF5hl+TdVCEMej M6Y/oZaSf6qFyLf+B4GKNTUMnqkV/kxyVZx6ZJIq6AiSIB8SopmoTtpe+WO5FVm/ 8Or0WiGeUu9lXBbjB6dn1OYzuaMxEIsK8tCcHL+Ua0BzkfQ/2vNlbLuYaGV5XrYj ZrlZ35xoYIb6clQ+ihMxgjMcWiltzSkgM1soOfYgB6y58WRHRoLc+1dSXkqcaMuN 3n9fcGtyhKzIZPaIZrm2RTkW7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAD6Pq8v 7GFAmcixR+jJTdcY65P5MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNDVGNEREQTI2 NUNGMTFFQjlFM0NGQTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBAIwJRfEkDsIa 5mj1oZ+36i5VaklRYnUmptAJRuYbBV5Uo6cUZG/cIAgv9zmcyceaRH+aqnT5U9E6 6Uauv+TcHOsqfK6KM/RVC0U0QauXRwia4xYS9TCzoXdAb1S/2kNuvPWfJWU7v6zh rJhDkCwhvOWxIl5fV5+mhmHMEU6vayu9+lO1uvbwHJsfZui4pMZTlJTZQyyEsg6K uI3tK9k3UwvmRHobalvXoMyvSL1EzbXLuBdw339uV8LHxmcDIdafpm5iSQh3X7gz EWcMpWtbBANN0poQ60yRMNqbP2/V7ZgnWVEuY2yJshmOV7OXDMmD/7lB61+QR4nb pRMY08zPZr4= -----END CERTIFICATE-----Generated at Thu Sep 4 10:24:04 2025 by rpki-client